diff --git a/CHANGELOG.next.asciidoc b/CHANGELOG.next.asciidoc index 0ffc8dd03ec..c4cba8f4ba2 100644 --- a/CHANGELOG.next.asciidoc +++ b/CHANGELOG.next.asciidoc @@ -20,6 +20,13 @@ https://github.com/elastic/beats/compare/v7.0.0-alpha2...master[Check the HEAD d - Remove the deprecated `xpack.monitoring.*` settings. Going forward only `monitoring.*` settings may be used. {issue}9424[9424] {pull}18608[18608] - Add daemonset.name in pods controlled by DaemonSets {pull}26808[26808], {issue}25816[25816] - Kubernetes autodiscover fails in node scope if node name cannot be discovered {pull}26947[26947] +- Use alias to report container image in k8s metadata. {pull}24380[24380] +- Set `cleanup_timeout` to zero by default in docker and kubernetes autodiscover in all beats except Filebeat where it is kept to 60 seconds. {pull}24681[24681] +- Update to ECS 1.9.0. {pull}24909[24909] +- Remove the deprecated `xpack.monitoring.*` settings. Going forward only `monitoring.*` settings may be used. {issue}9424[9424] {pull}18608[18608] +- Add daemonset.name in pods controlled by DaemonSets {pull}26808[26808], {issue}25816[25816] +- Kubernetes autodiscover fails in node scope if node name cannot be discovered {pull}26947[26947] +- Loading Kibana assets (dashboards, index templates) rely on Saved Object API. So to provide a reliable service, Beats can only import and export dasbhboards using at least Kibana 7.15. {issue}20672[20672] {pull}27220[27220] *Auditbeat* diff --git a/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-executions.json b/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-executions.json deleted file mode 100644 index e3d408d253b..00000000000 --- a/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-executions.json +++ /dev/null @@ -1,336 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Command executions", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "d382f5b0-c1c6-11e7-8995-936807a28b16-ecs", - "title": "Error Codes [Auditbeat Auditd] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "exclude": "0", - "field": "auditd.data.exit", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right", - "type": "pie" - }, - "title": "Error Codes [Auditbeat Auditd] ECS", - "type": "pie" - } - }, - "id": "20a8e8d0-c1c8-11e7-8995-936807a28b16-ecs", - "type": "visualization", - "updated_at": "2018-01-16T22:10:23.921Z", - "version": 4 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Primary Username Tag Cloud [Auditbeat Auditd] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "auditd.summary.actor.primary", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "maxFontSize": 45, - "minFontSize": 18, - "orientation": "single", - "scale": "linear" - }, - "title": "Primary Username Tag Cloud [Auditbeat Auditd] ECS", - "type": "tagcloud" - } - }, - "id": "f81a6de0-c1c1-11e7-8995-936807a28b16-ecs", - "type": "visualization", - "updated_at": "2018-01-16T22:12:18.730Z", - "version": 3 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "d382f5b0-c1c6-11e7-8995-936807a28b16-ecs", - "title": "Exe Name Tag Cloud [Auditbeat Auditd] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "process.executable", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "maxFontSize": 45, - "minFontSize": 14, - "orientation": "single", - "scale": "linear" - }, - "title": "Exe Name Tag Cloud [Auditbeat Auditd] ECS", - "type": "tagcloud" - } - }, - "id": "2efac370-c1ca-11e7-8995-936807a28b16-ecs", - "type": "visualization", - "updated_at": "2018-01-16T22:57:41.411Z", - "version": 4 - }, - { - "attributes": { - "columns": [ - "agent.hostname", - "process.args", - "auditd.summary.actor.primary", - "auditd.summary.actor.secondary", - "process.executable" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "auditd", - "type": "phrase" - }, - "type": "phrase", - "value": "auditd" - }, - "query": { - "match": { - "event.module": { - "query": "auditd", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.action", - "negate": false, - "params": { - "query": "executed", - "type": "phrase" - }, - "type": "phrase", - "value": "executed" - }, - "query": { - "match": { - "event.action": { - "query": "executed", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Process Executions [Auditbeat Auditd] ECS", - "version": 1 - }, - "id": "d382f5b0-c1c6-11e7-8995-936807a28b16-ecs", - "type": "search", - "updated_at": "2018-01-16T22:26:35.050Z", - "version": 5 - }, - { - "attributes": { - "description": "Overview of kernel executions", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "useMargins": false - }, - "panelsJSON": [ - { - "gridData": { - "h": 3, - "i": "1", - "w": 4, - "x": 4, - "y": 0 - }, - "id": "20a8e8d0-c1c8-11e7-8995-936807a28b16-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "3", - "w": 4, - "x": 8, - "y": 0 - }, - "id": "f81a6de0-c1c1-11e7-8995-936807a28b16-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "5", - "w": 4, - "x": 0, - "y": 0 - }, - "id": "2efac370-c1ca-11e7-8995-936807a28b16-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 5, - "i": "6", - "w": 12, - "x": 0, - "y": 3 - }, - "id": "d382f5b0-c1c6-11e7-8995-936807a28b16-ecs", - "panelIndex": "6", - "type": "search", - "version": "6.2.4" - } - ], - "timeRestore": false, - "title": "[Auditbeat Auditd] Executions ECS", - "version": 1 - }, - "id": "7de391b0-c1ca-11e7-8995-936807a28b16-ecs", - "type": "dashboard", - "updated_at": "2018-01-16T22:58:11.243Z", - "version": 5 - } - ], - "version": "6.2.4" -} diff --git a/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-executions.ndjson b/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-executions.ndjson new file mode 100644 index 00000000000..6bf402fe027 --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-executions.ndjson @@ -0,0 +1,5 @@ +{"attributes":{"columns":["agent.name","process.args","auditd.summary.actor.primary","auditd.summary.actor.secondary","process.executable"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"auditd\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"auditd\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"auditd\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"executed\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"executed\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"executed\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Process Executions [Auditbeat Auditd] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"d382f5b0-c1c6-11e7-8995-936807a28b16-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:35:57.797Z","version":"WzQ5NjksMV0="} +{"attributes":{"description":"Command executions","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Error Codes [Auditbeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"exclude\":\"0\",\"field\":\"auditd.data.exit\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Error Codes [Auditbeat Auditd] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"20a8e8d0-c1c8-11e7-8995-936807a28b16-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d382f5b0-c1c6-11e7-8995-936807a28b16-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:57.797Z","version":"WzQ5NjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Primary Username Tag Cloud [Auditbeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"auditd.summary.actor.primary\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":45,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Primary Username Tag Cloud [Auditbeat Auditd] ECS\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"f81a6de0-c1c1-11e7-8995-936807a28b16-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:35:57.797Z","version":"WzQ5NjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Exe Name Tag Cloud [Auditbeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"process.executable\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":45,\"minFontSize\":14,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Exe Name Tag Cloud [Auditbeat Auditd] ECS\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"2efac370-c1ca-11e7-8995-936807a28b16-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d382f5b0-c1c6-11e7-8995-936807a28b16-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:57.797Z","version":"WzQ5NjgsMV0="} +{"attributes":{"description":"Overview of kernel executions","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":12,\"x\":16,\"y\":0,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":12,\"x\":32,\"y\":0,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":12,\"x\":0,\"y\":0,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"w\":48,\"h\":20,\"x\":0,\"y\":12,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Auditbeat Auditd] Executions ECS","version":1},"coreMigrationVersion":"8.0.0","id":"7de391b0-c1ca-11e7-8995-936807a28b16-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"20a8e8d0-c1c8-11e7-8995-936807a28b16-ecs","name":"1:panel_1","type":"visualization"},{"id":"f81a6de0-c1c1-11e7-8995-936807a28b16-ecs","name":"3:panel_3","type":"visualization"},{"id":"2efac370-c1ca-11e7-8995-936807a28b16-ecs","name":"5:panel_5","type":"visualization"},{"id":"d382f5b0-c1c6-11e7-8995-936807a28b16-ecs","name":"6:panel_6","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:35:57.797Z","version":"WzQ5NzAsMV0="} diff --git a/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-overview.json b/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-overview.json deleted file mode 100644 index 35c9c2ec2a7..00000000000 --- a/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-overview.json +++ /dev/null @@ -1,283 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Event Actions [Auditbeat Auditd] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "58c95a20-c1bd-11e7-938f-ab0645b6c431" - } - ], - "bar_color_rules": [ - { - "id": "5bfc71a0-c1bd-11e7-938f-ab0645b6c431" - } - ], - "filter": "event.module:auditd", - "gauge_color_rules": [ - { - "id": "5d20a650-c1bd-11e7-938f-ab0645b6c431" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "auditbeat-*", - "interval": "auto", - "legend_position": "left", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Actions", - "line_width": 1, - "metrics": [ - { - "id": "6b9fb2d0-c1bc-11e7-938f-ab0645b6c431", - "type": "count" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "event.action" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Event Actions [Auditbeat Auditd] ECS", - "type": "metrics" - } - }, - "id": "97680df0-c1c0-11e7-8995-936807a28b16-ecs", - "type": "visualization", - "updated_at": "2018-01-16T22:11:01.438Z", - "version": 3 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "0f10c430-c1c3-11e7-8995-936807a28b16-ecs", - "title": "Event Categories [Auditbeat Auditd] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Category", - "field": "event.category", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Action", - "field": "event.action", - "order": "desc", - "orderBy": "1", - "size": 20 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right", - "type": "pie" - }, - "title": "Event Categories [Auditbeat Auditd] ECS", - "type": "pie" - } - }, - "id": "08679220-c25a-11e7-8692-232bd1143e8a-ecs", - "type": "visualization", - "updated_at": "2018-01-16T22:54:10.330Z", - "version": 4 - }, - { - "attributes": { - "columns": [ - "agent.hostname", - "auditd.summary.actor.primary", - "auditd.summary.actor.secondary", - "event.action", - "auditd.summary.object.type", - "auditd.summary.object.primary", - "auditd.summary.object.secondary", - "auditd.summary.how", - "auditd.result" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "auditd", - "type": "phrase" - }, - "type": "phrase", - "value": "auditd" - }, - "query": { - "match": { - "event.module": { - "query": "auditd", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Audit Event Table [Auditbeat Auditd] ECS", - "version": 1 - }, - "id": "0f10c430-c1c3-11e7-8995-936807a28b16-ecs", - "type": "search", - "updated_at": "2018-01-16T22:51:24.572Z", - "version": 4 - }, - { - "attributes": { - "description": "Summary of Linux kernel audit events.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "useMargins": false - }, - "panelsJSON": [ - { - "gridData": { - "h": 3, - "i": "1", - "w": 7, - "x": 0, - "y": 0 - }, - "id": "97680df0-c1c0-11e7-8995-936807a28b16-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "4", - "w": 5, - "x": 7, - "y": 0 - }, - "id": "08679220-c25a-11e7-8692-232bd1143e8a-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 5, - "i": "5", - "w": 12, - "x": 0, - "y": 3 - }, - "id": "0f10c430-c1c3-11e7-8995-936807a28b16-ecs", - "panelIndex": "5", - "type": "search", - "version": "6.2.4" - } - ], - "timeRestore": false, - "title": "[Auditbeat Auditd] Overview ECS", - "version": 1 - }, - "id": "c0ac2c00-c1c0-11e7-8995-936807a28b16-ecs", - "type": "dashboard", - "updated_at": "2018-01-16T22:55:17.775Z", - "version": 5 - } - ], - "version": "6.2.4" -} diff --git a/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-overview.ndjson b/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-overview.ndjson new file mode 100644 index 00000000000..01dc258378d --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-overview.ndjson @@ -0,0 +1,4 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Event Actions [Auditbeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"58c95a20-c1bd-11e7-938f-ab0645b6c431\"}],\"bar_color_rules\":[{\"id\":\"5bfc71a0-c1bd-11e7-938f-ab0645b6c431\"}],\"filter\":{\"query\":\"event.module:auditd\",\"language\":\"lucene\"},\"gauge_color_rules\":[{\"id\":\"5d20a650-c1bd-11e7-938f-ab0645b6c431\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"auditbeat-*\",\"interval\":\"auto\",\"legend_position\":\"left\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Actions\",\"line_width\":1,\"metrics\":[{\"id\":\"6b9fb2d0-c1bc-11e7-938f-ab0645b6c431\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"event.action\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Event Actions [Auditbeat Auditd] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"97680df0-c1c0-11e7-8995-936807a28b16-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:35:58.815Z","version":"WzQ5NzEsMV0="} +{"attributes":{"columns":["agent.name","auditd.summary.actor.primary","auditd.summary.actor.secondary","event.action","auditd.summary.object.type","auditd.summary.object.primary","auditd.summary.object.secondary","auditd.summary.how","auditd.result"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"auditd\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"auditd\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"auditd\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Audit Event Table [Auditbeat Auditd] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"0f10c430-c1c3-11e7-8995-936807a28b16-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:35:58.815Z","version":"WzQ5NzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Event Categories [Auditbeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Category\",\"field\":\"event.category\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Action\",\"field\":\"event.action\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Event Categories [Auditbeat Auditd] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"08679220-c25a-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"0f10c430-c1c3-11e7-8995-936807a28b16-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:58.815Z","version":"WzQ5NzIsMV0="} +{"attributes":{"description":"Summary of Linux kernel audit events.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":28,\"h\":12,\"x\":0,\"y\":0,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":20,\"h\":12,\"x\":28,\"y\":0,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"w\":48,\"h\":20,\"x\":0,\"y\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Auditbeat Auditd] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"c0ac2c00-c1c0-11e7-8995-936807a28b16-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"97680df0-c1c0-11e7-8995-936807a28b16-ecs","name":"1:panel_1","type":"visualization"},{"id":"08679220-c25a-11e7-8692-232bd1143e8a-ecs","name":"4:panel_4","type":"visualization"},{"id":"0f10c430-c1c3-11e7-8995-936807a28b16-ecs","name":"5:panel_5","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:35:58.815Z","version":"WzQ5NzQsMV0="} diff --git a/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-sockets.json b/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-sockets.json deleted file mode 100644 index 00681daf5ff..00000000000 --- a/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-sockets.json +++ /dev/null @@ -1,930 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "apply": true, - "disabled": false, - "index": "auditbeat-*", - "key": "auditd.summary.object.secondary", - "negate": true, - "params": { - "query": "0", - "type": "phrase" - }, - "type": "phrase", - "value": "0" - }, - "query": { - "match": { - "auditd.summary.object.secondary": { - "query": "0", - "type": "phrase" - } - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "b4c93470-c240-11e7-8692-232bd1143e8a-ecs", - "title": "Bind (non-ephemeral) [Auditbeat Auditd] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Exe", - "field": "auditd.summary.how", - "order": "desc", - "orderBy": "_term", - "size": 50 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Address", - "field": "auditd.summary.object.primary", - "order": "desc", - "orderBy": "_term", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Port", - "field": "auditd.summary.object.secondary", - "order": "desc", - "orderBy": "_term", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Bind (non-ephemeral) [Auditbeat Auditd] ECS", - "type": "table" - } - }, - "id": "faf882f0-c242-11e7-8692-232bd1143e8a-ecs", - "type": "visualization", - "updated_at": "2018-01-16T22:08:02.522Z", - "version": 3 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "5438b030-c246-11e7-8692-232bd1143e8a-ecs", - "title": "Connect [Auditbeat Auditd] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Exe", - "field": "process.executable", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Address", - "field": "auditd.summary.object.primary", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Port", - "field": "auditd.summary.object.secondary", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Connect [Auditbeat Auditd] ECS", - "type": "table" - } - }, - "id": "ea483730-c246-11e7-8692-232bd1143e8a-ecs", - "type": "visualization", - "updated_at": "2018-01-16T23:24:16.851Z", - "version": 4 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "e8734160-c24c-11e7-8692-232bd1143e8a-ecs", - "title": "Accept / Recvfrom Unique Address Table [Auditbeat Auditd] ECS", - "uiStateJSON": { - "spy": { - "mode": { - "fill": false, - "name": null - } - }, - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Unique Addresses", - "field": "auditd.summary.object.primary" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Exe", - "field": "process.executable", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Syscall", - "field": "auditd.data.syscall", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Accept / Recvfrom Unique Address Table [Auditbeat Auditd] ECS", - "type": "table" - } - }, - "id": "ceb91de0-c250-11e7-8692-232bd1143e8a-ecs", - "type": "visualization", - "updated_at": "2018-01-16T22:16:51.535Z", - "version": 5 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Socket Syscalls Time Series [Auditbeat Auditd] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "95b603d0-c252-11e7-8a68-93ffe9ec5950" - } - ], - "bar_color_rules": [ - { - "id": "2cebb0c0-c252-11e7-8a68-93ffe9ec5950" - } - ], - "filter": "auditd.summary.object.type:socket", - "gauge_color_rules": [ - { - "id": "6c891740-c252-11e7-8a68-93ffe9ec5950" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "auditbeat-*", - "interval": "auto", - "legend_position": "left", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "syscall", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "auditd.data.syscall" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Socket Syscalls Time Series [Auditbeat Auditd] ECS", - "type": "metrics" - } - }, - "id": "b21e0c70-c252-11e7-8692-232bd1143e8a-ecs", - "type": "visualization", - "updated_at": "2018-01-16T22:13:38.857Z", - "version": 3 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Socket Families [Auditbeat Auditd] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Socket Family", - "field": "auditd.data.socket.family", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Syscall", - "field": "auditd.data.syscall", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "left", - "type": "pie" - }, - "title": "Socket Families [Auditbeat Auditd] ECS", - "type": "pie" - } - }, - "id": "a8e20450-c256-11e7-8692-232bd1143e8a-ecs", - "type": "visualization", - "updated_at": "2018-01-16T22:12:51.655Z", - "version": 3 - }, - { - "attributes": { - "columns": [ - "agent.hostname", - "auditd.summary.how", - "auditd.summary.object.primary", - "auditd.summary.object.secondary", - "auditd.data.socket.family", - "auditd.result" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "auditd", - "type": "phrase" - }, - "type": "phrase", - "value": "auditd" - }, - "query": { - "match": { - "event.module": { - "query": "auditd", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "auditd.data.syscall", - "negate": false, - "params": { - "query": "bind", - "type": "phrase" - }, - "type": "phrase", - "value": "bind" - }, - "query": { - "match": { - "auditd.data.syscall": { - "query": "bind", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "auditd.data.socket.family", - "negate": true, - "params": { - "query": "netlink", - "type": "phrase" - }, - "type": "phrase", - "value": "netlink" - }, - "query": { - "match": { - "auditd.data.socket.family": { - "query": "netlink", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Socket Binds [Auditbeat Auditd] ECS", - "version": 1 - }, - "id": "b4c93470-c240-11e7-8692-232bd1143e8a-ecs", - "type": "search", - "updated_at": "2018-01-16T23:05:58.935Z", - "version": 5 - }, - { - "attributes": { - "columns": [ - "agent.hostname", - "auditd.summary.how", - "auditd.summary.object.primary", - "auditd.summary.object.secondary", - "auditd.data.socket.family", - "auditd.result", - "auditd.data.exit" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "auditd", - "type": "phrase" - }, - "type": "phrase", - "value": "auditd" - }, - "query": { - "match": { - "event.module": { - "query": "auditd", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.action", - "negate": false, - "params": { - "query": "connected-to", - "type": "phrase" - }, - "type": "phrase", - "value": "connected-to" - }, - "query": { - "match": { - "event.action": { - "query": "connected-to", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "auditd.summary.object.primary" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "auditd.summary.object.primary", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "highlightAll": true, - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Socket Connects [Auditbeat Auditd] ECS", - "version": 1 - }, - "id": "5438b030-c246-11e7-8692-232bd1143e8a-ecs", - "type": "search", - "updated_at": "2018-01-16T23:09:43.937Z", - "version": 5 - }, - { - "attributes": { - "columns": [ - "agent.hostname", - "auditd.summary.how", - "auditd.summary.object.primary", - "auditd.summary.object.secondary", - "auditd.data.socket.family", - "event.action" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "auditd", - "type": "phrase" - }, - "type": "phrase", - "value": "auditd" - }, - "query": { - "match": { - "event.module": { - "query": "auditd", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "auditd.summary.object.type", - "negate": false, - "params": { - "query": "socket", - "type": "phrase" - }, - "type": "phrase", - "value": "socket" - }, - "query": { - "match": { - "auditd.summary.object.type": { - "query": "socket", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "auditd.summary.object.primary" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "auditd.summary.object.primary", - "negate": false, - "type": "exists", - "value": "exists" - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "query", - "negate": false, - "type": "custom", - "value": "{\"terms\":{\"auditd.data.syscall\":[\"accept\",\"accept4\",\"recvfrom\",\"recvmsg\"]}}" - }, - "query": { - "terms": { - "auditd.data.syscall": [ - "accept", - "accept4", - "recvfrom", - "recvmsg" - ] - } - } - } - ], - "highlightAll": true, - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Socket Accept / Recvfrom [Auditbeat Auditd] ECS", - "version": 1 - }, - "id": "e8734160-c24c-11e7-8692-232bd1143e8a-ecs", - "type": "search", - "updated_at": "2018-01-16T23:20:51.403Z", - "version": 4 - }, - { - "attributes": { - "description": "Summary of socket related syscall events.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "useMargins": false - }, - "panelsJSON": [ - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 4, - "i": "1", - "w": 6, - "x": 6, - "y": 3 - }, - "id": "faf882f0-c242-11e7-8692-232bd1143e8a-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "6.2.4" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 5, - "i": "2", - "w": 6, - "x": 0, - "y": 7 - }, - "id": "ea483730-c246-11e7-8692-232bd1143e8a-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "6.2.4" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 5, - "i": "3", - "w": 6, - "x": 6, - "y": 7 - }, - "id": "ceb91de0-c250-11e7-8692-232bd1143e8a-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "4", - "w": 12, - "x": 0, - "y": 0 - }, - "id": "b21e0c70-c252-11e7-8692-232bd1143e8a-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 4, - "i": "5", - "w": 6, - "x": 0, - "y": 3 - }, - "id": "a8e20450-c256-11e7-8692-232bd1143e8a-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "6.2.4" - } - ], - "timeRestore": false, - "title": "[Auditbeat Auditd] Sockets ECS", - "version": 1 - }, - "id": "693a5f40-c243-11e7-8692-232bd1143e8a-ecs", - "type": "dashboard", - "updated_at": "2018-01-16T23:24:37.521Z", - "version": 4 - } - ], - "version": "6.2.4" -} \ No newline at end of file diff --git a/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-sockets.ndjson b/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-sockets.ndjson new file mode 100644 index 00000000000..34d5336ede8 --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-sockets.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"columns":["agent.name","auditd.summary.how","auditd.summary.object.primary","auditd.summary.object.secondary","auditd.data.socket.family","auditd.result"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"auditd\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"auditd\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"auditd\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"auditd.data.syscall\",\"negate\":false,\"params\":{\"query\":\"bind\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"bind\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"auditd.data.syscall\":{\"query\":\"bind\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"auditd.data.socket.family\",\"negate\":true,\"params\":{\"query\":\"netlink\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"netlink\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\"},\"query\":{\"match\":{\"auditd.data.socket.family\":{\"query\":\"netlink\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Socket Binds [Auditbeat Auditd] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"b4c93470-c240-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:35:59.895Z","version":"WzQ5ODAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"apply\":true,\"disabled\":false,\"key\":\"auditd.summary.object.secondary\",\"negate\":true,\"params\":{\"query\":\"0\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"0\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"auditd.summary.object.secondary\":{\"query\":\"0\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Bind (non-ephemeral) [Auditbeat Auditd] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Exe\",\"field\":\"auditd.summary.how\",\"order\":\"desc\",\"orderBy\":\"_term\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Address\",\"field\":\"auditd.summary.object.primary\",\"order\":\"desc\",\"orderBy\":\"_term\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Port\",\"field\":\"auditd.summary.object.secondary\",\"order\":\"desc\",\"orderBy\":\"_term\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Bind (non-ephemeral) [Auditbeat Auditd] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"faf882f0-c242-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"b4c93470-c240-11e7-8692-232bd1143e8a-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:59.895Z","version":"WzQ5NzUsMV0="} +{"attributes":{"columns":["agent.name","auditd.summary.how","auditd.summary.object.primary","auditd.summary.object.secondary","auditd.data.socket.family","auditd.result","auditd.data.exit"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"auditd\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"auditd\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"auditd\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"connected-to\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"connected-to\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"connected-to\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"auditd.summary.object.primary\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"auditd.summary.object.primary\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Socket Connects [Auditbeat Auditd] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"5438b030-c246-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:35:59.895Z","version":"WzQ5ODEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Connect [Auditbeat Auditd] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Exe\",\"field\":\"process.executable\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Address\",\"field\":\"auditd.summary.object.primary\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Port\",\"field\":\"auditd.summary.object.secondary\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Connect [Auditbeat Auditd] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"ea483730-c246-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5438b030-c246-11e7-8692-232bd1143e8a-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:59.895Z","version":"WzQ5NzYsMV0="} +{"attributes":{"columns":["agent.name","auditd.summary.how","auditd.summary.object.primary","auditd.summary.object.secondary","auditd.data.socket.family","event.action"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"auditd\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"auditd\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"auditd\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"auditd.summary.object.type\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"auditd.summary.object.type\":{\"query\":\"socket\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"auditd.summary.object.primary\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"auditd.summary.object.primary\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\"}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"query\",\"negate\":false,\"type\":\"custom\",\"value\":\"{\\\"terms\\\":{\\\"auditd.data.syscall\\\":[\\\"accept\\\",\\\"accept4\\\",\\\"recvfrom\\\",\\\"recvmsg\\\"]}}\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index\"},\"query\":{\"terms\":{\"auditd.data.syscall\":[\"accept\",\"accept4\",\"recvfrom\",\"recvmsg\"]}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Socket Accept / Recvfrom [Auditbeat Auditd] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"e8734160-c24c-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:35:59.895Z","version":"WzQ5ODIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Accept / Recvfrom Unique Address Table [Auditbeat Auditd] ECS","uiStateJSON":"{\"spy\": {\"mode\": {\"fill\": false, \"name\": null}}, \"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique Addresses\",\"field\":\"auditd.summary.object.primary\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Exe\",\"field\":\"process.executable\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Syscall\",\"field\":\"auditd.data.syscall\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Accept / Recvfrom Unique Address Table [Auditbeat Auditd] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"ceb91de0-c250-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e8734160-c24c-11e7-8692-232bd1143e8a-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:59.895Z","version":"WzQ5NzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Socket Syscalls Time Series [Auditbeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"95b603d0-c252-11e7-8a68-93ffe9ec5950\"}],\"bar_color_rules\":[{\"id\":\"2cebb0c0-c252-11e7-8a68-93ffe9ec5950\"}],\"filter\":{\"query\":\"auditd.summary.object.type:socket\",\"language\":\"lucene\"},\"gauge_color_rules\":[{\"id\":\"6c891740-c252-11e7-8a68-93ffe9ec5950\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"auditbeat-*\",\"interval\":\"auto\",\"legend_position\":\"left\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"syscall\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"auditd.data.syscall\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Socket Syscalls Time Series [Auditbeat Auditd] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b21e0c70-c252-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:35:59.895Z","version":"WzQ5NzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Socket Families [Auditbeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Socket Family\",\"field\":\"auditd.data.socket.family\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Syscall\",\"field\":\"auditd.data.syscall\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"left\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Socket Families [Auditbeat Auditd] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"a8e20450-c256-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:35:59.895Z","version":"WzQ5NzksMV0="} +{"attributes":{"description":"Summary of socket related syscall events.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":16,\"x\":24,\"y\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":20,\"x\":0,\"y\":28,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":20,\"x\":24,\"y\":28,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":48,\"h\":12,\"x\":0,\"y\":0,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":16,\"x\":0,\"y\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Auditbeat Auditd] Sockets ECS","version":1},"coreMigrationVersion":"8.0.0","id":"693a5f40-c243-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"faf882f0-c242-11e7-8692-232bd1143e8a-ecs","name":"1:panel_1","type":"visualization"},{"id":"ea483730-c246-11e7-8692-232bd1143e8a-ecs","name":"2:panel_2","type":"visualization"},{"id":"ceb91de0-c250-11e7-8692-232bd1143e8a-ecs","name":"3:panel_3","type":"visualization"},{"id":"b21e0c70-c252-11e7-8692-232bd1143e8a-ecs","name":"4:panel_4","type":"visualization"},{"id":"a8e20450-c256-11e7-8692-232bd1143e8a-ecs","name":"5:panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:35:59.895Z","version":"WzQ5ODMsMV0="} diff --git a/auditbeat/module/auditd/module.yml b/auditbeat/module/auditd/module.yml index 5f7374a3626..82c22b4fef7 100644 --- a/auditbeat/module/auditd/module.yml +++ b/auditbeat/module/auditd/module.yml @@ -1,9 +1,9 @@ dashboards: - id: c0ac2c00-c1c0-11e7-8995-936807a28b16 - file: auditbeat-kernel-overview.json + file: auditbeat-kernel-overview.ndjson - id: 7de391b0-c1ca-11e7-8995-936807a28b16 - file: auditbeat-kernel-executions.json + file: auditbeat-kernel-executions.ndjson - id: 693a5f40-c243-11e7-8692-232bd1143e8a - file: auditbeat-kernel-sockets.json + file: auditbeat-kernel-sockets.ndjson diff --git a/auditbeat/module/file_integrity/_meta/kibana/7/dashboard/auditbeat-file-integrity.json b/auditbeat/module/file_integrity/_meta/kibana/7/dashboard/auditbeat-file-integrity.json deleted file mode 100644 index 88896dade78..00000000000 --- a/auditbeat/module/file_integrity/_meta/kibana/7/dashboard/auditbeat-file-integrity.json +++ /dev/null @@ -1,1155 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", - "title": "Actions [Auditbeat File Integrity] ECS", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Action", - "field": "event.action", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "extendRange": false, - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": true, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "24", - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": true - }, - "type": "gauge" - }, - "title": "Actions [Auditbeat File Integrity] ECS", - "type": "metric" - } - }, - "id": "AV0tVcg6g1PYniApZa-v-ecs", - "type": "visualization", - "updated_at": "2018-01-22T15:54:25.278Z", - "version": 6 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", - "title": "Events Over Time [Auditbeat File Integrity] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Action", - "field": "event.action", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "@timestamp per 5 minutes" - }, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "left", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": true, - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Events Over Time [Auditbeat File Integrity] ECS", - "type": "histogram" - } - }, - "id": "AV0tV05vg1PYniApZbA2-ecs", - "type": "visualization", - "updated_at": "2018-01-22T15:54:25.278Z", - "version": 6 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", - "title": "Top owners [Auditbeat File Integrity] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Owner", - "field": "file.owner", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right", - "type": "pie" - }, - "title": "Top owners [Auditbeat File Integrity] ECS", - "type": "pie" - } - }, - "id": "AV0tWL-Yg1PYniApZbCs-ecs", - "type": "visualization", - "updated_at": "2018-01-22T15:54:25.278Z", - "version": 6 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", - "title": "Top groups [Auditbeat File Integrity] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Group", - "field": "file.group", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right", - "type": "pie" - }, - "title": "Top groups [Auditbeat File Integrity] ECS", - "type": "pie" - } - }, - "id": "AV0tWSdXg1PYniApZbDU-ecs", - "type": "visualization", - "updated_at": "2018-01-22T15:54:25.278Z", - "version": 6 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "event.action:updated OR event.action:attributes_modified" - } - } - }, - "savedSearchId": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", - "title": "Top updated [Auditbeat File Integrity] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Path", - "field": "file.path", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "legendPosition": "right", - "type": "pie" - }, - "title": "Top updated [Auditbeat File Integrity] ECS", - "type": "pie" - } - }, - "id": "AV0tW0djg1PYniApZbGL-ecs", - "type": "visualization", - "updated_at": "2018-01-22T15:54:25.278Z", - "version": 6 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "auditbeat-*", - "query": { - "language": "lucene", - "query": "file.mode:/0..[2367]/ NOT file.type:symlink" - } - } - }, - "savedSearchId": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", - "title": "World Writable File Count [Auditbeat File Integrity] ECS", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "World Writable Files", - "field": "file.inode" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "invertColors": false, - "labels": { - "color": "black", - "show": false - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "23", - "labelColor": false, - "subText": "" - }, - "useRange": false - }, - "type": "metric" - }, - "title": "World Writable File Count [Auditbeat File Integrity] ECS", - "type": "metric" - } - }, - "id": "AV0tY6jwg1PYniApZbRY-ecs", - "type": "visualization", - "updated_at": "2018-01-22T17:48:29.232Z", - "version": 7 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "file.type", - "negate": false, - "params": { - "query": "file", - "type": "phrase" - }, - "type": "phrase", - "value": "file" - }, - "query": { - "match": { - "file.type": { - "query": "file", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", - "title": "Most changed file by count [Auditbeat File Integrity] ECS", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Most changed file by count" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "File", - "field": "file.path", - "order": "desc", - "orderBy": "1", - "size": 1 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "20", - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "type": "gauge" - }, - "title": "Most changed file by count [Auditbeat File Integrity] ECS", - "type": "metric" - } - }, - "id": "AV0tav8Ag1PYniApZbbK-ecs", - "type": "visualization", - "updated_at": "2018-01-22T15:54:25.278Z", - "version": 6 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", - "title": "Most common mode by count [Auditbeat File Integrity] ECS", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Most common mode by count" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Mode", - "field": "file.mode", - "order": "desc", - "orderBy": "1", - "size": 1 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "20", - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "type": "gauge" - }, - "title": "Most common mode by count [Auditbeat File Integrity] ECS", - "type": "metric" - } - }, - "id": "AV0tbcUdg1PYniApZbe1-ecs", - "type": "visualization", - "updated_at": "2018-01-22T15:54:25.278Z", - "version": 6 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", - "title": "File Event Summary By Host [Auditbeat File Integrity] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Total Events" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Host", - "field": "host.name", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "aggregate": "concat", - "customLabel": "Last Report", - "field": "@timestamp", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - } - ], - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": true, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "File Event Summary By Host [Auditbeat File Integrity] ECS", - "type": "table" - } - }, - "id": "AV0tc_xZg1PYniApZbnL-ecs", - "type": "visualization", - "updated_at": "2018-01-22T15:54:25.278Z", - "version": 6 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "event.action:deleted" - } - } - }, - "savedSearchId": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", - "title": "Top deleted [Auditbeat File Integrity] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Path", - "field": "file.path", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "legendPosition": "right", - "type": "pie" - }, - "title": "Top deleted [Auditbeat File Integrity] ECS", - "type": "pie" - } - }, - "id": "AV0tes4Eg1PYniApZbwV-ecs", - "type": "visualization", - "updated_at": "2018-01-22T15:54:25.278Z", - "version": 6 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "event.action:created" - } - } - }, - "savedSearchId": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", - "title": "Top created [Auditbeat File Integrity] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Path", - "field": "file.path", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "legendPosition": "right", - "type": "pie" - }, - "title": "Top created [Auditbeat File Integrity] ECS", - "type": "pie" - } - }, - "id": "AV0te0TCg1PYniApZbw9-ecs", - "type": "visualization", - "updated_at": "2018-01-22T15:54:25.278Z", - "version": 6 - }, - { - "attributes": { - "columns": [ - "file.path", - "event.action" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "file_integrity", - "type": "phrase" - }, - "type": "phrase", - "value": "file_integrity" - }, - "query": { - "match": { - "event.module": { - "query": "file_integrity", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "File Integrity Events [Auditbeat File Integrity] ECS", - "version": 1 - }, - "id": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", - "type": "search", - "updated_at": "2018-01-22T15:54:25.278Z", - "version": 6 - }, - { - "attributes": { - "description": "Monitor file integrity events.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "useMargins": false - }, - "panelsJSON": [ - { - "gridData": { - "h": 6, - "i": "1", - "w": 2, - "x": 0, - "y": 0 - }, - "id": "AV0tVcg6g1PYniApZa-v-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 6, - "i": "2", - "w": 7, - "x": 2, - "y": 0 - }, - "id": "AV0tV05vg1PYniApZbA2-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "3", - "w": 3, - "x": 9, - "y": 0 - }, - "id": "AV0tWL-Yg1PYniApZbCs-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "4", - "w": 3, - "x": 9, - "y": 3 - }, - "id": "AV0tWSdXg1PYniApZbDU-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "5", - "w": 4, - "x": 4, - "y": 8 - }, - "id": "AV0tW0djg1PYniApZbGL-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 2, - "i": "6", - "w": 4, - "x": 0, - "y": 6 - }, - "id": "AV0tY6jwg1PYniApZbRY-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 2, - "i": "7", - "w": 4, - "x": 4, - "y": 6 - }, - "id": "AV0tav8Ag1PYniApZbbK-ecs", - "panelIndex": "7", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 2, - "i": "8", - "w": 4, - "x": 8, - "y": 6 - }, - "id": "AV0tbcUdg1PYniApZbe1-ecs", - "panelIndex": "8", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 5, - "i": "9", - "w": 6, - "x": 0, - "y": 11 - }, - "id": "AV0tc_xZg1PYniApZbnL-ecs", - "panelIndex": "9", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "10", - "w": 4, - "x": 8, - "y": 8 - }, - "id": "AV0tes4Eg1PYniApZbwV-ecs", - "panelIndex": "10", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "11", - "w": 4, - "x": 0, - "y": 8 - }, - "id": "AV0te0TCg1PYniApZbw9-ecs", - "panelIndex": "11", - "type": "visualization", - "version": "6.2.4" - }, - { - "columns": [ - "file.path", - "event.action" - ], - "gridData": { - "h": 5, - "i": "12", - "w": 6, - "x": 6, - "y": 11 - }, - "id": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", - "panelIndex": "12", - "sort": [ - "@timestamp", - "desc" - ], - "type": "search", - "version": "6.2.4" - } - ], - "timeRestore": false, - "title": "[Auditbeat File Integrity] Overview ECS", - "version": 1 - }, - "id": "AV0tXkjYg1PYniApZbKP-ecs", - "type": "dashboard", - "updated_at": "2018-01-22T15:54:25.278Z", - "version": 6 - } - ], - "version": "6.1.2" -} diff --git a/auditbeat/module/file_integrity/_meta/kibana/7/dashboard/auditbeat-file-integrity.ndjson b/auditbeat/module/file_integrity/_meta/kibana/7/dashboard/auditbeat-file-integrity.ndjson new file mode 100644 index 00000000000..b5b58f80517 --- /dev/null +++ b/auditbeat/module/file_integrity/_meta/kibana/7/dashboard/auditbeat-file-integrity.ndjson @@ -0,0 +1,13 @@ +{"attributes":{"columns":["file.path","event.action"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"file_integrity\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"file_integrity\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"file_integrity\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"File Integrity Events [Auditbeat File Integrity] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Actions [Auditbeat File Integrity] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Action\",\"field\":\"event.action\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"extendRange\":false,\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":true,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"24\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":true},\"type\":\"gauge\"},\"title\":\"Actions [Auditbeat File Integrity] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tVcg6g1PYniApZa-v-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Events Over Time [Auditbeat File Integrity] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Action\",\"field\":\"event.action\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per 5 minutes\"},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"left\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":true,\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Events Over Time [Auditbeat File Integrity] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tV05vg1PYniApZbA2-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Top owners [Auditbeat File Integrity] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Owner\",\"field\":\"file.owner\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top owners [Auditbeat File Integrity] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tWL-Yg1PYniApZbCs-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Top groups [Auditbeat File Integrity] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Group\",\"field\":\"file.group\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top groups [Auditbeat File Integrity] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tWSdXg1PYniApZbDU-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"event.action:updated OR event.action:attributes_modified\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Top updated [Auditbeat File Integrity] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Path\",\"field\":\"file.path\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top updated [Auditbeat File Integrity] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tW0djg1PYniApZbGL-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"lucene\",\"query\":\"file.mode:/0..[2367]/ NOT file.type:symlink\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"World Writable File Count [Auditbeat File Integrity] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"World Writable Files\",\"field\":\"file.inode\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":false},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"23\",\"labelColor\":false,\"subText\":\"\"},\"useRange\":false},\"type\":\"metric\"},\"title\":\"World Writable File Count [Auditbeat File Integrity] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tY6jwg1PYniApZbRY-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"file.type\",\"negate\":false,\"params\":{\"query\":\"file\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"file\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"file.type\":{\"query\":\"file\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Most changed file by count [Auditbeat File Integrity] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Most changed file by count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"File\",\"field\":\"file.path\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":1},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"20\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"type\":\"gauge\"},\"title\":\"Most changed file by count [Auditbeat File Integrity] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tav8Ag1PYniApZbbK-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Most common mode by count [Auditbeat File Integrity] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Most common mode by count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Mode\",\"field\":\"file.mode\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":1},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"20\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"type\":\"gauge\"},\"title\":\"Most common mode by count [Auditbeat File Integrity] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tbcUdg1PYniApZbe1-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"File Event Summary By Host [Auditbeat File Integrity] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total Events\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Host\",\"field\":\"host.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Last Report\",\"field\":\"@timestamp\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"File Event Summary By Host [Auditbeat File Integrity] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tc_xZg1PYniApZbnL-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"event.action:deleted\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Top deleted [Auditbeat File Integrity] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Path\",\"field\":\"file.path\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top deleted [Auditbeat File Integrity] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tes4Eg1PYniApZbwV-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"event.action:created\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Top created [Auditbeat File Integrity] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Path\",\"field\":\"file.path\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top created [Auditbeat File Integrity] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"AV0te0TCg1PYniApZbw9-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NjMsMV0="} +{"attributes":{"description":"Monitor file integrity events.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":8,\"h\":24,\"x\":0,\"y\":0,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":28,\"h\":24,\"x\":8,\"y\":0,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":12,\"x\":36,\"y\":0,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":12,\"x\":36,\"y\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":12,\"x\":16,\"y\":32,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":8,\"x\":0,\"y\":24,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":8,\"x\":16,\"y\":24,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":8,\"x\":32,\"y\":24,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":20,\"x\":0,\"y\":44,\"i\":\"9\"},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":12,\"x\":32,\"y\":32,\"i\":\"10\"},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":12,\"x\":0,\"y\":32,\"i\":\"11\"},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"w\":24,\"h\":20,\"x\":24,\"y\":44,\"i\":\"12\"},\"panelIndex\":\"12\",\"embeddableConfig\":{\"columns\":[\"file.path\",\"event.action\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_12\"}]","timeRestore":false,"title":"[Auditbeat File Integrity] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"AV0tXkjYg1PYniApZbKP-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"AV0tVcg6g1PYniApZa-v-ecs","name":"1:panel_1","type":"visualization"},{"id":"AV0tV05vg1PYniApZbA2-ecs","name":"2:panel_2","type":"visualization"},{"id":"AV0tWL-Yg1PYniApZbCs-ecs","name":"3:panel_3","type":"visualization"},{"id":"AV0tWSdXg1PYniApZbDU-ecs","name":"4:panel_4","type":"visualization"},{"id":"AV0tW0djg1PYniApZbGL-ecs","name":"5:panel_5","type":"visualization"},{"id":"AV0tY6jwg1PYniApZbRY-ecs","name":"6:panel_6","type":"visualization"},{"id":"AV0tav8Ag1PYniApZbbK-ecs","name":"7:panel_7","type":"visualization"},{"id":"AV0tbcUdg1PYniApZbe1-ecs","name":"8:panel_8","type":"visualization"},{"id":"AV0tc_xZg1PYniApZbnL-ecs","name":"9:panel_9","type":"visualization"},{"id":"AV0tes4Eg1PYniApZbwV-ecs","name":"10:panel_10","type":"visualization"},{"id":"AV0te0TCg1PYniApZbw9-ecs","name":"11:panel_11","type":"visualization"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"12:panel_12","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NjUsMV0="} diff --git a/auditbeat/module/file_integrity/module.yml b/auditbeat/module/file_integrity/module.yml index bc9bb6fb543..adb7f3a62c7 100644 --- a/auditbeat/module/file_integrity/module.yml +++ b/auditbeat/module/file_integrity/module.yml @@ -1,3 +1,3 @@ dashboards: - id: AV0tXkjYg1PYniApZbKP - file: auditbeat-file-integrity.json + file: auditbeat-file-integrity.ndjson diff --git a/dev-tools/cmd/dashboards/export_dashboards.go b/dev-tools/cmd/dashboards/export_dashboards.go index a3fe4429aab..b13351678f2 100644 --- a/dev-tools/cmd/dashboards/export_dashboards.go +++ b/dev-tools/cmd/dashboards/export_dashboards.go @@ -47,7 +47,7 @@ func main() { kibanaURL := flag.String("kibana", "http://localhost:5601", "Kibana URL") spaceID := flag.String("space-id", "", "Space ID") dashboard := flag.String("dashboard", "", "Dashboard ID") - fileOutput := flag.String("output", "output.json", "Output file") + fileOutput := flag.String("output", "output.ndjson", "Output file") ymlFile := flag.String("yml", "", "Path to the module.yml file containing the dashboards") flag.BoolVar(&indexPattern, "indexPattern", false, "include index-pattern in output") flag.BoolVar(&quiet, "quiet", false, "be quiet") @@ -129,13 +129,12 @@ func exportSingleDashboard(client *kibana.Client, dashboard, output string) erro if err != nil { return fmt.Errorf("failed to export the dashboard: %+v", err) } - result = dashboards.DecodeExported(result) if err = os.MkdirAll(filepath.Dir(output), 0755); err != nil { return errors.Wrap(err, "failed to create directory for dashboard") } - err = ioutil.WriteFile(output, []byte(result.StringToPrint()), dashboards.OutputPermission) + err = ioutil.WriteFile(output, result, dashboards.OutputPermission) if err != nil { return fmt.Errorf("failed to save the dashboard: %+v", err) } diff --git a/dev-tools/mage/dashboard.go b/dev-tools/mage/dashboard.go index 764a9e28695..103a2f38186 100644 --- a/dev-tools/mage/dashboard.go +++ b/dev-tools/mage/dashboard.go @@ -47,7 +47,7 @@ func ExportDashboard() error { dashboardCmd := sh.RunCmd("go", "run", filepath.Join(beatsDir, "dev-tools/cmd/dashboards/export_dashboards.go")) // TODO: This is currently hardcoded for KB 7, we need to figure out what we do for KB 8 if applicable - file := CWD("module", module, "_meta/kibana/7/dashboard", id+".json") + file := CWD("module", module, "_meta/kibana/7/dashboard", id+".ndjson") args := []string{ "-output", file, diff --git a/docs/devguide/newdashboards.asciidoc b/docs/devguide/newdashboards.asciidoc index 3d0029664d3..896670cee29 100644 --- a/docs/devguide/newdashboards.asciidoc +++ b/docs/devguide/newdashboards.asciidoc @@ -134,21 +134,15 @@ See <> for a description of the `setup.dashboards` con [[import-dashboards-for-development]] ==== Import Dashboards for Development -You can make use of the Makefile from the Beat GitHub repository to import the -dashboards. If Elasticsearch is running on localhost, then you can run the following command from the Beat repository: +You can make use of the Magefile from the Beat GitHub repository to import the +dashboards. If Kibana is running on localhost, then you can run the following command +from the root of the Beat: [source,shell] -------------------------------- -make import-dashboards +mage dashboards -------------------------------- -If Elasticsearch is running on a different host, then you can use the `ES_URL` variable: - -[source,shell] -------------------------------- -ES_URL="http://192.168.3.206:9200" make import-dashboards -------------------------------- - [[import-dashboard-options]] ==== Kibana dashboards configuration @@ -227,18 +221,29 @@ make update To export all the dashboards for any Elastic Beat or any community Beat, including any new or modified dashboards and all dependencies such as visualizations, searches, you can use the Go script `export_dashboards.go` from -https://github.com/elastic/beats/tree/master/dev-tools/cmd/dashboards[dev-tools] for exporting Kibana 6.0 dashboards or later, and the Python script `export_5x_dashboards.py` -for exporting Kibana 5.x dashboards. See the dev-tools -https://github.com/elastic/beats/tree/master/dev-tools/README.md[readme] for more info. +https://github.com/elastic/beats/tree/master/dev-tools/cmd/dashboards[dev-tools]. +See the dev-tools https://github.com/elastic/beats/tree/master/dev-tools/README.md[readme] for more info. Alternatively, if the scripts above are not available, you can use your Beat binary to export Kibana 6.0 dashboards or later. -==== Exporting Kibana 6.0 dashboards and newer +==== Exporting from Kibana 6.0 to 7.14 -The `dev-tools/cmd/export_dashboards.go` script helps you export your customized Kibana 6.0 dashboards and newer. You might need to export a single dashboard or all the dashboards available for a module or Beat. +The `dev-tools/cmd/export_dashboards.go` script helps you export your customized Kibana dashboards until the v7.14.x release. +You might need to export a single dashboard or all the dashboards available for a module or Beat. It is also possible to use a Beat binary to export. +==== Exporting from Kibana 7.15 or newer + +From 7.15, your Beats version must be the same as your Kibana version +to make sure the export API required is available. + +===== Migrate legacy dashboards made with Kibana 7.14 or older + +After you updated your Kibana instance to at least 7.15, you have to +export your dashboards again with either `export_dashboards.go` tool or +with your Beat. + ===== Export a single Kibana dashboard To export a single dashboard for a module you can use the following command inside a Beat with modules: @@ -250,10 +255,10 @@ MODULE=redis ID=AV4REOpp5NkDleZmzKkE mage exportDashboard [source,shell] --------------- -./filebeat export dashboard -id 7fea2930-478e-11e7-b1f0-cb29bac6bf8b >> Filebeat-redis.json +./filebeat export dashboard -id 7fea2930-478e-11e7-b1f0-cb29bac6bf8b >> Filebeat-redis.ndjson --------------- -This generates a `AV4REOpp5NkDleZmzKkE.json` file inside dashboard directory in the redis module. +This generates a `AV4REOpp5NkDleZmzKkE.ndjson` file inside dashboard directory in the redis module. It contains all dependencies like visualizations and searches. NOTE: The dashboard ID is available in the dashboard URL. For example, in case the dashboard URL is @@ -270,17 +275,17 @@ Below, it's an example of the `module.yml` file for the system module in Metricb --------------- dashboards: - id: Metricbeat-system-overview - file: Metricbeat-system-overview.json + file: Metricbeat-system-overview.ndjson - id: 79ffd6e0-faa0-11e6-947f-177f697178b8 - file: Metricbeat-host-overview.json + file: Metricbeat-host-overview.ndjson - id: CPU-slash-Memory-per-container - file: Metricbeat-containers-overview.json + file: Metricbeat-containers-overview.ndjson --------------- -Each dashboard is defined by an `id` and the name of json `file` where the dashboard is saved locally. +Each dashboard is defined by an `id` and the name of ndjson `file` where the dashboard is saved locally. By passing the yml file to the `export_dashboards.go` script or to the Beat, you can export all the dashboards defined: diff --git a/filebeat/module/apache/_meta/kibana/7/dashboard/Filebeat-apache.json b/filebeat/module/apache/_meta/kibana/7/dashboard/Filebeat-apache.json deleted file mode 100644 index c9c9e0fed02..00000000000 --- a/filebeat/module/apache/_meta/kibana/7/dashboard/Filebeat-apache.json +++ /dev/null @@ -1,644 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Apache-access-logs-ecs", - "title": "Unique IPs map [Filebeat Apache] ECS", - "uiStateJSON": { - "mapCenter": [ - 14.944784875088372, - 5.09765625 - ] - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "source.address" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "source.geo.location" - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "listeners": {}, - "params": { - "addTooltip": true, - "heatBlur": 15, - "heatMaxZoom": 16, - "heatMinOpacity": 0.1, - "heatNormalizeData": true, - "heatRadius": 25, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 15, - 5 - ], - "mapType": "Scaled Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "attribution": "Maps provided by USGS", - "format": "image/png", - "layers": "0", - "styles": "", - "transparent": true, - "version": "1.3.0" - }, - "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" - } - }, - "title": "Apache access unique IPs map ECS", - "type": "tile_map" - } - }, - "id": "Apache-access-unique-IPs-map-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Apache-access-logs-ecs", - "title": "Top URLs by response code [Filebeat Apache] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "200": "#7EB26D", - "404": "#EF843C" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "URL", - "field": "url.original", - "order": "desc", - "orderBy": "1", - "row": false, - "size": 5 - }, - "schema": "split", - "type": "terms" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "http.response.status_code", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "legendPosition": "right", - "shareYAxis": true - }, - "title": "Apache response codes of top URLs ECS", - "type": "pie" - } - }, - "id": "Apache-response-codes-of-top-URLs-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Apache-access-logs-ecs", - "title": "Browsers breakdown [Filebeat Apache] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "source.address" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user_agent.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "user_agent.version", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "bottom", - "shareYAxis": true - }, - "title": "Apache browsers ECS", - "type": "pie" - } - }, - "id": "Apache-browsers-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Apache-access-logs-ecs", - "title": "Operating systems breakdown [Filebeat Apache] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "source.address" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user_agent.os.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "user_agent.os.version", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "bottom", - "shareYAxis": true - }, - "title": "Apache operating systems ECS", - "type": "pie" - } - }, - "id": "Apache-operating-systems-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Apache-errors-log-ecs", - "title": "Error logs over time [Filebeat Apache] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "log.level", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "shareYAxis": true, - "times": [], - "yAxis": {} - }, - "title": "Apache error logs over time ECS", - "type": "histogram" - } - }, - "id": "Apache-error-logs-over-time-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Apache-access-logs-ecs", - "title": "Response codes over time [Filebeat Apache] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "200": "#629E51", - "404": "#EF843C" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "http.response.status_code", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "shareYAxis": true, - "times": [], - "yAxis": {} - }, - "title": "Apache response codes over time ECS", - "type": "histogram" - } - }, - "id": "Apache-response-codes-over-time-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "columns": [ - "source.address", - "log.level", - "apache2.error.module", - "message" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "event.dataset:apache.error" - } - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Apache errors log [Filebeat Apache] ECS", - "version": 1 - }, - "id": "Apache-errors-log-ecs", - "type": "search", - "version": 1 - }, - { - "attributes": { - "columns": [ - "source.address", - "http.request.method", - "url.original", - "http.response.status_code" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "event.dataset:apache.access" - } - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Apache access logs [Filebeat Apache] ECS", - "version": 1 - }, - "id": "Apache-access-logs-ecs", - "type": "search", - "version": 1 - }, - { - "attributes": { - "description": "Filebeat Apache module dashboard", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "Apache-access-unique-IPs-map-ecs", - "panelIndex": 1, - "row": 1, - "size_x": 12, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "Apache-response-codes-of-top-URLs-ecs", - "panelIndex": 2, - "row": 6, - "size_x": 8, - "size_y": 3, - "type": "visualization" - }, - { - "col": 9, - "id": "Apache-browsers-ecs", - "panelIndex": 3, - "row": 6, - "size_x": 4, - "size_y": 3, - "type": "visualization" - }, - { - "col": 11, - "id": "Apache-operating-systems-ecs", - "panelIndex": 4, - "row": 4, - "size_x": 2, - "size_y": 2, - "type": "visualization" - }, - { - "col": 1, - "id": "Apache-error-logs-over-time-ecs", - "panelIndex": 5, - "row": 9, - "size_x": 12, - "size_y": 2, - "type": "visualization" - }, - { - "col": 1, - "id": "Apache-response-codes-over-time-ecs", - "panelIndex": 6, - "row": 4, - "size_x": 10, - "size_y": 2, - "type": "visualization" - }, - { - "col": 1, - "columns": [ - "source.address", - "log.level", - "apache2.error.module", - "message" - ], - "id": "Apache-errors-log-ecs", - "panelIndex": 7, - "row": 11, - "size_x": 12, - "size_y": 3, - "sort": [ - "@timestamp", - "desc" - ], - "type": "search" - } - ], - "timeRestore": false, - "title": "[Filebeat Apache] Access and error logs ECS", - "uiStateJSON": { - "P-1": { - "mapBounds": { - "bottom_right": { - "lat": -3.864254615721396, - "lon": 205.3125 - }, - "top_left": { - "lat": 67.7427590666639, - "lon": -205.6640625 - } - }, - "mapCenter": [ - 40.713955826286046, - -0.17578125 - ], - "mapCollar": { - "bottom_right": { - "lat": -39.667755, - "lon": 180 - }, - "top_left": { - "lat": 90, - "lon": -180 - }, - "zoom": 2 - }, - "mapZoom": 2 - } - }, - "version": 1 - }, - "id": "Filebeat-Apache-Dashboard-ecs", - "type": "dashboard", - "version": 2 - } - ], - "version": "6.0.0-beta1-SNAPSHOT" -} diff --git a/filebeat/module/apache/_meta/kibana/7/dashboard/Filebeat-apache.ndjson b/filebeat/module/apache/_meta/kibana/7/dashboard/Filebeat-apache.ndjson new file mode 100644 index 00000000000..d58ed2d9027 --- /dev/null +++ b/filebeat/module/apache/_meta/kibana/7/dashboard/Filebeat-apache.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"columns":["source.address","http.request.method","url.original","http.response.status_code"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:apache.access\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Apache access logs [Filebeat Apache] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Apache-access-logs-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:55.372Z","version":"WzQzNDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Unique IPs map [Filebeat Apache] ECS","uiStateJSON":"{\"mapCenter\": [14.944784875088372, 5.09765625]}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"source.address\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\"},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":16,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[15,5],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Apache access unique IPs map ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-access-unique-IPs-map-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-access-logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:55.372Z","version":"WzQzMzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Top URLs by response code [Filebeat Apache] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"200\": \"#7EB26D\", \"404\": \"#EF843C\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"URL\",\"field\":\"url.original\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"http.response.status_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"shareYAxis\":true,\"row\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Apache response codes of top URLs ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-response-codes-of-top-URLs-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-access-logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:55.372Z","version":"WzQzMzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Browsers breakdown [Filebeat Apache] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"source.address\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Apache browsers ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-browsers-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-access-logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:55.372Z","version":"WzQzMzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Operating systems breakdown [Filebeat Apache] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"source.address\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.os.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.os.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Apache operating systems ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-operating-systems-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-access-logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:55.372Z","version":"WzQzNDAsMV0="} +{"attributes":{"columns":["source.address","log.level","apache2.error.module","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:apache.error\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Apache errors log [Filebeat Apache] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Apache-errors-log-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:55.372Z","version":"WzQzNDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Error logs over time [Filebeat Apache] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Apache error logs over time ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-error-logs-over-time-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-errors-log-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:55.372Z","version":"WzQzNDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Response codes over time [Filebeat Apache] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"200\": \"#629E51\", \"404\": \"#EF843C\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"http.response.status_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Apache response codes over time ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-response-codes-over-time-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-access-logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:55.372Z","version":"WzQzNDIsMV0="} +{"attributes":{"description":"Filebeat Apache module dashboard","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"mapBounds\":{\"bottom_right\":{\"lat\":-3.864254615721396,\"lon\":205.3125},\"top_left\":{\"lat\":67.7427590666639,\"lon\":-205.6640625}},\"mapCenter\":[40.713955826286046,-0.17578125],\"mapCollar\":{\"bottom_right\":{\"lat\":-39.667755,\"lon\":180},\"top_left\":{\"lat\":90,\"lon\":-180},\"zoom\":2},\"mapZoom\":2,\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":32,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":20,\"w\":16,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":40,\"y\":12,\"w\":8,\"h\":8,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":32,\"w\":48,\"h\":8,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":40,\"h\":8,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":40,\"w\":48,\"h\":12,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"columns\":[\"source.address\",\"log.level\",\"apache2.error.module\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Filebeat Apache] Access and error logs ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-Apache-Dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Apache-access-unique-IPs-map-ecs","name":"1:panel_1","type":"visualization"},{"id":"Apache-response-codes-of-top-URLs-ecs","name":"2:panel_2","type":"visualization"},{"id":"Apache-browsers-ecs","name":"3:panel_3","type":"visualization"},{"id":"Apache-operating-systems-ecs","name":"4:panel_4","type":"visualization"},{"id":"Apache-error-logs-over-time-ecs","name":"5:panel_5","type":"visualization"},{"id":"Apache-response-codes-over-time-ecs","name":"6:panel_6","type":"visualization"},{"id":"Apache-errors-log-ecs","name":"7:panel_7","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:55.372Z","version":"WzQzNDUsMV0="} diff --git a/filebeat/module/apache/module.yml b/filebeat/module/apache/module.yml index 1d553ef8fc2..83a8378a75b 100644 --- a/filebeat/module/apache/module.yml +++ b/filebeat/module/apache/module.yml @@ -1,4 +1,4 @@ dashboards: - id: Filebeat-Apache-Dashboard - file: Filebeat-apache.json + file: Filebeat-apache.ndjson diff --git a/filebeat/module/auditd/_meta/kibana/7/dashboard/Filebeat-auditd.json b/filebeat/module/auditd/_meta/kibana/7/dashboard/Filebeat-auditd.json deleted file mode 100644 index e45db5bb334..00000000000 --- a/filebeat/module/auditd/_meta/kibana/7/dashboard/Filebeat-auditd.json +++ /dev/null @@ -1,436 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Event types breakdown [Filebeat Auditd] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.action", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Audit Event Types ECS", - "type": "pie" - } - }, - "id": "6295bdd0-0a0e-11e7-825f-6748cda7d858-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "event.action:EXECVE" - } - } - }, - "title": "Top Exec Commands [Filebeat Auditd] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Command (arg 0)", - "field": "auditd.log.a0", - "order": "desc", - "orderBy": "1", - "size": 30 - }, - "schema": "bucket", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Audit Top Exec Commands ECS", - "type": "table" - } - }, - "id": "5ebdbe50-0a0f-11e7-825f-6748cda7d858-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Event Results [Filebeat Auditd] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "expression": ".es(q=\"event.dataset:auditd.log NOT event.outcome:failure\").label(\"Success\"), .es(q=\"event.outcome:failed\").label(\"Failure\").title(\"Audit Event Results\")", - "interval": "auto" - }, - "title": "Event Results [Filebeat Auditd] ECS", - "type": "timelion" - } - }, - "id": "2bb0fa70-0a11-11e7-9e84-43da493ad0c7-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Event Address Geo Location [Filebeat Auditd] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "source.geo.location", - "precision": 2 - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "listeners": {}, - "params": { - "addTooltip": true, - "heatBlur": 15, - "heatMaxZoom": 16, - "heatMinOpacity": 0.1, - "heatNormalizeData": true, - "heatRadius": 25, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 15, - 5 - ], - "mapType": "Scaled Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "attribution": "Maps provided by USGS", - "format": "image/png", - "layers": "0", - "styles": "", - "transparent": true, - "version": "1.3.0" - }, - "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" - } - }, - "title": "Audit Event Address Geo Location ECS", - "type": "tile_map" - } - }, - "id": "d1726930-0a7f-11e7-8b04-eb22a5669f27-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Event Account Tag Cloud [Filebeat Auditd] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user.name", - "order": "desc", - "orderBy": "1", - "size": 15 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "hideLabel": false, - "maxFontSize": 42, - "minFontSize": 15, - "orientation": "single", - "scale": "linear" - }, - "title": "Audit Event Account Tag Cloud ECS", - "type": "tagcloud" - } - }, - "id": "c5411910-0a87-11e7-8b04-eb22a5669f27-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "columns": [ - "event.action", - "auditd.log.sequence", - "user.name" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "event.dataset:auditd.log" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Audit Events [Filebeat Auditd] ECS", - "version": 1 - }, - "id": "4ac0a370-0a11-11e7-8b04-eb22a5669f27-ecs", - "type": "search", - "version": 2 - }, - { - "attributes": { - "description": "Dashboard for the Auditd Filebeat module", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "6295bdd0-0a0e-11e7-825f-6748cda7d858-ecs", - "panelIndex": 1, - "row": 1, - "size_x": 4, - "size_y": 4, - "type": "visualization" - }, - { - "col": 9, - "id": "5ebdbe50-0a0f-11e7-825f-6748cda7d858-ecs", - "panelIndex": 2, - "row": 1, - "size_x": 4, - "size_y": 4, - "type": "visualization" - }, - { - "col": 1, - "id": "2bb0fa70-0a11-11e7-9e84-43da493ad0c7-ecs", - "panelIndex": 3, - "row": 5, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 7, - "id": "d1726930-0a7f-11e7-8b04-eb22a5669f27-ecs", - "panelIndex": 5, - "row": 5, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 5, - "id": "c5411910-0a87-11e7-8b04-eb22a5669f27-ecs", - "panelIndex": 6, - "row": 1, - "size_x": 4, - "size_y": 4, - "type": "visualization" - }, - { - "col": 1, - "columns": [ - "event.action", - "auditd.log.sequence", - "user.name" - ], - "id": "4ac0a370-0a11-11e7-8b04-eb22a5669f27-ecs", - "panelIndex": 7, - "row": 8, - "size_x": 12, - "size_y": 3, - "sort": [ - "@timestamp", - "desc" - ], - "type": "search" - } - ], - "timeRestore": false, - "title": "[Filebeat Auditd] Audit Events ECS", - "uiStateJSON": { - "P-2": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-5": { - "mapBounds": { - "bottom_right": { - "lat": -43.580390855607845, - "lon": 102.65625 - }, - "top_left": { - "lat": 43.58039085560784, - "lon": -102.3046875 - } - }, - "mapCollar": { - "bottom_right": { - "lat": -87.16078, - "lon": 180 - }, - "top_left": { - "lat": 87.16078, - "lon": -180 - }, - "zoom": 2 - }, - "mapZoom": 2 - } - }, - "version": 1 - }, - "id": "dfbb49f0-0a0f-11e7-8a62-2d05eaaac5cb-ecs", - "type": "dashboard", - "version": 4 - } - ], - "version": "6.0.0-beta1-SNAPSHOT" -} diff --git a/filebeat/module/auditd/_meta/kibana/7/dashboard/Filebeat-auditd.ndjson b/filebeat/module/auditd/_meta/kibana/7/dashboard/Filebeat-auditd.ndjson new file mode 100644 index 00000000000..8939e834f64 --- /dev/null +++ b/filebeat/module/auditd/_meta/kibana/7/dashboard/Filebeat-auditd.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Event types breakdown [Filebeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Audit Event Types ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"6295bdd0-0a0e-11e7-825f-6748cda7d858-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:56.442Z","version":"WzQzNDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"event.action:EXECVE\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Top Exec Commands [Filebeat Auditd] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Command (arg 0)\",\"field\":\"auditd.log.a0\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":30},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Audit Top Exec Commands ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"5ebdbe50-0a0f-11e7-825f-6748cda7d858-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:56.442Z","version":"WzQzNDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Event Results [Filebeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"expression\":\".es(q=\\\"event.dataset:auditd.log NOT event.outcome:failure\\\").label(\\\"Success\\\"), .es(q=\\\"event.outcome:failed\\\").label(\\\"Failure\\\").title(\\\"Audit Event Results\\\")\",\"interval\":\"auto\"},\"title\":\"Event Results [Filebeat Auditd] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"2bb0fa70-0a11-11e7-9e84-43da493ad0c7-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:56.442Z","version":"WzQzNDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Event Address Geo Location [Filebeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"precision\":2},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":16,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[15,5],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Audit Event Address Geo Location ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"d1726930-0a7f-11e7-8b04-eb22a5669f27-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:56.442Z","version":"WzQzNDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Event Account Tag Cloud [Filebeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"hideLabel\":false,\"maxFontSize\":42,\"minFontSize\":15,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Audit Event Account Tag Cloud ECS\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"c5411910-0a87-11e7-8b04-eb22a5669f27-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:56.442Z","version":"WzQzNTAsMV0="} +{"attributes":{"columns":["event.action","auditd.log.sequence","user.name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:auditd.log\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Audit Events [Filebeat Auditd] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"4ac0a370-0a11-11e7-8b04-eb22a5669f27-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:56.442Z","version":"WzQzNTEsMV0="} +{"attributes":{"description":"Dashboard for the Auditd Filebeat module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":16,\"h\":16,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":0,\"w\":16,\"h\":16,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":16,\"w\":24,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":16,\"w\":24,\"h\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"mapBounds\":{\"bottom_right\":{\"lat\":-43.580390855607845,\"lon\":102.65625},\"top_left\":{\"lat\":43.58039085560784,\"lon\":-102.3046875}},\"mapCollar\":{\"bottom_right\":{\"lat\":-87.16078,\"lon\":180},\"top_left\":{\"lat\":87.16078,\"lon\":-180},\"zoom\":2},\"mapZoom\":2,\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":0,\"w\":16,\"h\":16,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":28,\"w\":48,\"h\":12,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"columns\":[\"event.action\",\"auditd.log.sequence\",\"user.name\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Filebeat Auditd] Audit Events ECS","version":1},"coreMigrationVersion":"8.0.0","id":"dfbb49f0-0a0f-11e7-8a62-2d05eaaac5cb-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"6295bdd0-0a0e-11e7-825f-6748cda7d858-ecs","name":"1:panel_1","type":"visualization"},{"id":"5ebdbe50-0a0f-11e7-825f-6748cda7d858-ecs","name":"2:panel_2","type":"visualization"},{"id":"2bb0fa70-0a11-11e7-9e84-43da493ad0c7-ecs","name":"3:panel_3","type":"visualization"},{"id":"d1726930-0a7f-11e7-8b04-eb22a5669f27-ecs","name":"5:panel_5","type":"visualization"},{"id":"c5411910-0a87-11e7-8b04-eb22a5669f27-ecs","name":"6:panel_6","type":"visualization"},{"id":"4ac0a370-0a11-11e7-8b04-eb22a5669f27-ecs","name":"7:panel_7","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:56.442Z","version":"WzQzNTIsMV0="} diff --git a/filebeat/module/auditd/module.yml b/filebeat/module/auditd/module.yml index d7f9dd13eb6..c647c58e5b1 100644 --- a/filebeat/module/auditd/module.yml +++ b/filebeat/module/auditd/module.yml @@ -1,3 +1,3 @@ dashboards: - id: dfbb49f0-0a0f-11e7-8a62-2d05eaaac5cb - file: Filebeat-auditd.json + file: Filebeat-auditd.ndjson diff --git a/filebeat/module/haproxy/_meta/kibana/7/dashboard/Filebeat-haproxy-overview.json b/filebeat/module/haproxy/_meta/kibana/7/dashboard/Filebeat-haproxy-overview.json deleted file mode 100644 index 66fe61ed6cd..00000000000 --- a/filebeat/module/haproxy/_meta/kibana/7/dashboard/Filebeat-haproxy-overview.json +++ /dev/null @@ -1,443 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Backend breakdown [Filebeat HAProxy] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "haproxy.backend_name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Backend breakdown [Filebeat HAProxy] ECS", - "type": "pie" - } - }, - "id": "55251360-aa32-11e8-9c06-877f0445e3e0-ecs", - "type": "visualization", - "updated_at": "2018-12-06T11:35:36.721Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Frontend breakdown [Filebeat HAProxy] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "haproxy.frontend_name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Frontend breakdown [Filebeat HAProxy] ECS", - "type": "pie" - } - }, - "id": "7fb671f0-aa32-11e8-9c06-877f0445e3e0-ecs", - "type": "visualization", - "updated_at": "2018-12-06T11:35:36.721Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "IP Geohashes [Filebeat HAProxy] ECS", - "uiStateJSON": { - "mapCenter": [ - 14.944784875088372, - 5.09765625 - ] - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "source.address" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "source.geo.location", - "isFilteredByCollar": true, - "precision": 2, - "useGeocentroid": true - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "params": { - "addTooltip": true, - "heatBlur": 15, - "heatMaxZoom": 16, - "heatMinOpacity": 0.1, - "heatNormalizeData": true, - "heatRadius": 25, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 15, - 5 - ], - "mapType": "Scaled Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "attribution": "Maps provided by USGS", - "format": "image/png", - "layers": "0", - "styles": "", - "transparent": true, - "version": "1.3.0" - }, - "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" - } - }, - "title": "IP Geohashes [Filebeat HAProxy] ECS", - "type": "tile_map" - } - }, - "id": "11f8b9c0-aa32-11e8-9c06-877f0445e3e0-ecs", - "type": "visualization", - "updated_at": "2018-12-06T11:35:36.721Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Response codes over time [Filebeat HAProxy] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "200": "#508642", - "204": "#629E51", - "302": "#6ED0E0", - "404": "#EAB839", - "503": "#705DA0" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "http.response.status_code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_term", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Response codes over time [Filebeat HAProxy] ECS", - "type": "histogram" - } - }, - "id": "68af8ef0-aa33-11e8-9c06-877f0445e3e0-ecs", - "type": "visualization", - "updated_at": "2018-12-06T11:35:36.721Z", - "version": 2 - }, - { - "attributes": { - "description": "Filebeat HAProxy module dashboard", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "1", - "w": 24, - "x": 0, - "y": 0 - }, - "id": "55251360-aa32-11e8-9c06-877f0445e3e0-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "6.5.2" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "2", - "w": 24, - "x": 24, - "y": 0 - }, - "id": "7fb671f0-aa32-11e8-9c06-877f0445e3e0-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "6.5.2" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "3", - "w": 24, - "x": 0, - "y": 15 - }, - "id": "11f8b9c0-aa32-11e8-9c06-877f0445e3e0-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "6.5.2" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "4", - "w": 24, - "x": 24, - "y": 15 - }, - "id": "68af8ef0-aa33-11e8-9c06-877f0445e3e0-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "6.5.2" - } - ], - "timeRestore": false, - "title": "[Filebeat HAProxy] Overview ECS", - "version": 1 - }, - "id": "3560d580-aa34-11e8-9c06-877f0445e3e0-ecs", - "type": "dashboard", - "updated_at": "2018-12-06T11:40:40.204Z", - "version": 6 - } - ], - "version": "6.5.2" -} diff --git a/filebeat/module/haproxy/_meta/kibana/7/dashboard/Filebeat-haproxy-overview.ndjson b/filebeat/module/haproxy/_meta/kibana/7/dashboard/Filebeat-haproxy-overview.ndjson new file mode 100644 index 00000000000..964efd6b687 --- /dev/null +++ b/filebeat/module/haproxy/_meta/kibana/7/dashboard/Filebeat-haproxy-overview.ndjson @@ -0,0 +1,5 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Backend breakdown [Filebeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"haproxy.backend_name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Backend breakdown [Filebeat HAProxy] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"55251360-aa32-11e8-9c06-877f0445e3e0-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:05.531Z","version":"WzQ0MTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Frontend breakdown [Filebeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"haproxy.frontend_name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Frontend breakdown [Filebeat HAProxy] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"7fb671f0-aa32-11e8-9c06-877f0445e3e0-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:05.531Z","version":"WzQ0MTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"IP Geohashes [Filebeat HAProxy] ECS","uiStateJSON":"{\"mapCenter\": [14.944784875088372, 5.09765625]}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"source.address\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"isFilteredByCollar\":true,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":16,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[15,5],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"IP Geohashes [Filebeat HAProxy] ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"11f8b9c0-aa32-11e8-9c06-877f0445e3e0-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:05.531Z","version":"WzQ0MTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Response codes over time [Filebeat HAProxy] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"200\": \"#508642\", \"204\": \"#629E51\", \"302\": \"#6ED0E0\", \"404\": \"#EAB839\", \"503\": \"#705DA0\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"http.response.status_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_term\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Response codes over time [Filebeat HAProxy] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"68af8ef0-aa33-11e8-9c06-877f0445e3e0-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:05.531Z","version":"WzQ0MTYsMV0="} +{"attributes":{"description":"Filebeat HAProxy module dashboard","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Filebeat HAProxy] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"3560d580-aa34-11e8-9c06-877f0445e3e0-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"55251360-aa32-11e8-9c06-877f0445e3e0-ecs","name":"1:panel_1","type":"visualization"},{"id":"7fb671f0-aa32-11e8-9c06-877f0445e3e0-ecs","name":"2:panel_2","type":"visualization"},{"id":"11f8b9c0-aa32-11e8-9c06-877f0445e3e0-ecs","name":"3:panel_3","type":"visualization"},{"id":"68af8ef0-aa33-11e8-9c06-877f0445e3e0-ecs","name":"4:panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:05.531Z","version":"WzQ0MTcsMV0="} diff --git a/filebeat/module/haproxy/module.yml b/filebeat/module/haproxy/module.yml index c8023c7d1e2..92de4d39037 100644 --- a/filebeat/module/haproxy/module.yml +++ b/filebeat/module/haproxy/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Filebeat-haproxy-overview-dashboard - file: Filebeat-haproxy-overview.json + file: Filebeat-haproxy-overview.ndjson diff --git a/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-debug-log.json b/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-debug-log.json deleted file mode 100644 index 281bea5dfa7..00000000000 --- a/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-debug-log.json +++ /dev/null @@ -1,298 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs", - "title": "Debuglog Facility [Filebeat Icinga] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "icinga.debug.facility", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "times": [] - }, - "title": "Icinga Debuglog Facility ECS", - "type": "histogram" - } - }, - "id": "0bc34b60-2419-11e7-a83b-d5f4cebac9ff-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs", - "title": "Debuglog Severity [Filebeat Icinga] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "debug": "#BA43A9", - "information": "#629E51", - "notice": "#6ED0E0", - "warning": "#E5AC0E" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "log.level", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "times": [] - }, - "title": "Icinga Debuglog Severity ECS", - "type": "histogram" - } - }, - "id": "fb09d4b0-2418-11e7-a83b-d5f4cebac9ff-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "columns": [ - "icinga.debug.facility", - "log.level", - "message" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "icinga", - "type": "phrase" - }, - "type": "phrase", - "value": "icinga" - }, - "query": { - "match": { - "event.module": { - "query": "icinga", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "fileset.name", - "negate": false, - "params": { - "query": "debug", - "type": "phrase" - }, - "type": "phrase", - "value": "debug" - }, - "query": { - "match": { - "fileset.name": { - "query": "debug", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Debug Log [Filebeat Icinga] ECS", - "version": 1 - }, - "id": "c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs", - "type": "search", - "version": 2 - }, - { - "attributes": { - "description": "Filebeat Icinga module dashboard for the debug logs", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "0bc34b60-2419-11e7-a83b-d5f4cebac9ff-ecs", - "panelIndex": 1, - "row": 1, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 7, - "id": "fb09d4b0-2418-11e7-a83b-d5f4cebac9ff-ecs", - "panelIndex": 2, - "row": 1, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "columns": [ - "icinga.debug.facility", - "log.level", - "message" - ], - "id": "c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs", - "panelIndex": 3, - "row": 4, - "size_x": 12, - "size_y": 29, - "sort": [ - "@timestamp", - "desc" - ], - "type": "search" - } - ], - "timeRestore": false, - "title": "[Filebeat Icinga] Debug Log ECS", - "uiStateJSON": {}, - "version": 1 - }, - "id": "26309570-2419-11e7-a83b-d5f4cebac9ff-ecs", - "type": "dashboard", - "version": 2 - } - ], - "version": "6.0.0-beta1-SNAPSHOT" -} \ No newline at end of file diff --git a/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-debug-log.ndjson b/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-debug-log.ndjson new file mode 100644 index 00000000000..b1422b853f9 --- /dev/null +++ b/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-debug-log.ndjson @@ -0,0 +1,4 @@ +{"attributes":{"columns":["icinga.debug.facility","log.level","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"icinga\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"icinga\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"icinga\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"debug\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"debug\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"debug\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Debug Log [Filebeat Icinga] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:06.551Z","version":"WzQ0MjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Debuglog Facility [Filebeat Icinga] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"icinga.debug.facility\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"Icinga Debuglog Facility ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"0bc34b60-2419-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:06.551Z","version":"WzQ0MTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Debuglog Severity [Filebeat Icinga] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"debug\": \"#BA43A9\", \"information\": \"#629E51\", \"notice\": \"#6ED0E0\", \"warning\": \"#E5AC0E\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"Icinga Debuglog Severity ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"fb09d4b0-2418-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:06.551Z","version":"WzQ0MTksMV0="} +{"attributes":{"description":"Filebeat Icinga module dashboard for the debug logs","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":24,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":0,\"w\":24,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":116,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"columns\":[\"icinga.debug.facility\",\"log.level\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_3\"}]","timeRestore":false,"title":"[Filebeat Icinga] Debug Log ECS","version":1},"coreMigrationVersion":"8.0.0","id":"26309570-2419-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"0bc34b60-2419-11e7-a83b-d5f4cebac9ff-ecs","name":"1:panel_1","type":"visualization"},{"id":"fb09d4b0-2418-11e7-a83b-d5f4cebac9ff-ecs","name":"2:panel_2","type":"visualization"},{"id":"c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs","name":"3:panel_3","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:06.551Z","version":"WzQ0MjEsMV0="} diff --git a/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-main-log.json b/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-main-log.json deleted file mode 100644 index bc3dba222bd..00000000000 --- a/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-main-log.json +++ /dev/null @@ -1,296 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs", - "title": "Mainlog Severity [Filebeat Icinga] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "critical": "#BF1B00", - "warning": "#E5AC0E" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "log.level", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "times": [] - }, - "title": "Icinga Mainlog Severity ECS", - "type": "histogram" - } - }, - "id": "d8e5dc40-2417-11e7-a83b-d5f4cebac9ff-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "columns": [ - "icinga.main.facility", - "log.level", - "message" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "icinga", - "type": "phrase" - }, - "type": "phrase", - "value": "icinga" - }, - "query": { - "match": { - "event.module": { - "query": "icinga", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "fileset.name", - "negate": false, - "params": { - "query": "main", - "type": "phrase" - }, - "type": "phrase", - "value": "main" - }, - "query": { - "match": { - "fileset.name": { - "query": "main", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Main Log [Filebeat Icinga] ECS", - "version": 1 - }, - "id": "ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs", - "type": "search", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs", - "title": "Mainlog Facility [Filebeat Icinga] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "icinga.main.facility", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "times": [] - }, - "title": "Icinga Mainlog Facility ECS", - "type": "histogram" - } - }, - "id": "2cf77780-2418-11e7-a83b-d5f4cebac9ff-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "Filebeat Icinga module dashboard for the main log files", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 7, - "id": "d8e5dc40-2417-11e7-a83b-d5f4cebac9ff-ecs", - "panelIndex": 1, - "row": 1, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "columns": [ - "icinga.main.facility", - "log.level", - "message" - ], - "id": "ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs", - "panelIndex": 2, - "row": 4, - "size_x": 12, - "size_y": 25, - "sort": [ - "@timestamp", - "desc" - ], - "type": "search" - }, - { - "col": 1, - "id": "2cf77780-2418-11e7-a83b-d5f4cebac9ff-ecs", - "panelIndex": 3, - "row": 1, - "size_x": 6, - "size_y": 3, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Filebeat Icinga] Main Log ECS", - "uiStateJSON": {}, - "version": 1 - }, - "id": "f693d260-2417-11e7-a83b-d5f4cebac9ff-ecs", - "type": "dashboard", - "version": 4 - } - ], - "version": "6.0.0-beta1-SNAPSHOT" -} \ No newline at end of file diff --git a/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-main-log.ndjson b/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-main-log.ndjson new file mode 100644 index 00000000000..337dd0024d1 --- /dev/null +++ b/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-main-log.ndjson @@ -0,0 +1,4 @@ +{"attributes":{"columns":["icinga.main.facility","log.level","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"icinga\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"icinga\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"icinga\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"main\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"main\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"main\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Main Log [Filebeat Icinga] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:07.620Z","version":"WzQ0MjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Mainlog Severity [Filebeat Icinga] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"critical\": \"#BF1B00\", \"warning\": \"#E5AC0E\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"Icinga Mainlog Severity ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"d8e5dc40-2417-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:07.620Z","version":"WzQ0MjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Mainlog Facility [Filebeat Icinga] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"icinga.main.facility\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"Icinga Mainlog Facility ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"2cf77780-2418-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:07.620Z","version":"WzQ0MjQsMV0="} +{"attributes":{"description":"Filebeat Icinga module dashboard for the main log files","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":0,\"w\":24,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":100,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"columns\":[\"icinga.main.facility\",\"log.level\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":24,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"}]","timeRestore":false,"title":"[Filebeat Icinga] Main Log ECS","version":1},"coreMigrationVersion":"8.0.0","id":"f693d260-2417-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"d8e5dc40-2417-11e7-a83b-d5f4cebac9ff-ecs","name":"1:panel_1","type":"visualization"},{"id":"ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs","name":"2:panel_2","type":"search"},{"id":"2cf77780-2418-11e7-a83b-d5f4cebac9ff-ecs","name":"3:panel_3","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:07.620Z","version":"WzQ0MjUsMV0="} diff --git a/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-startup-errors.json b/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-startup-errors.json deleted file mode 100644 index 0a26774f97b..00000000000 --- a/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-startup-errors.json +++ /dev/null @@ -1,154 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "710043e0-2417-11e7-a83b-d5f4cebac9ff-ecs", - "title": "Startup Errors [Filebeat Icinga] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "Count": "#BF1B00" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "times": [] - }, - "title": "Icinga Startup Errors ECS", - "type": "histogram" - } - }, - "id": "a59b5e00-2417-11e7-a83b-d5f4cebac9ff-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "columns": [ - "icinga.startup.facility", - "log.level", - "message" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "log.level:critical" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Startup Errors [Filebeat Icinga] ECS", - "version": 1 - }, - "id": "710043e0-2417-11e7-a83b-d5f4cebac9ff-ecs", - "type": "search", - "version": 2 - }, - { - "attributes": { - "description": "Filebeat Icinga module dashboard for startup errors", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "a59b5e00-2417-11e7-a83b-d5f4cebac9ff-ecs", - "panelIndex": 1, - "row": 1, - "size_x": 12, - "size_y": 2, - "type": "visualization" - }, - { - "col": 1, - "columns": [ - "icinga.startup.facility", - "log.level", - "message" - ], - "id": "710043e0-2417-11e7-a83b-d5f4cebac9ff-ecs", - "panelIndex": 2, - "row": 3, - "size_x": 12, - "size_y": 13, - "sort": [ - "@timestamp", - "desc" - ], - "type": "search" - } - ], - "timeRestore": false, - "title": "[Filebeat Icinga] Startup Errors ECS", - "uiStateJSON": {}, - "version": 1 - }, - "id": "b9163ea0-2417-11e7-a83b-d5f4cebac9ff-ecs", - "type": "dashboard", - "version": 2 - } - ], - "version": "6.0.0-beta1-SNAPSHOT" -} \ No newline at end of file diff --git a/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-startup-errors.ndjson b/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-startup-errors.ndjson new file mode 100644 index 00000000000..1ad592f014c --- /dev/null +++ b/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-startup-errors.ndjson @@ -0,0 +1,3 @@ +{"attributes":{"columns":["icinga.startup.facility","log.level","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"log.level:critical\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Startup Errors [Filebeat Icinga] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"710043e0-2417-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:08.576Z","version":"WzQ0MjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Startup Errors [Filebeat Icinga] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Count\": \"#BF1B00\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"Icinga Startup Errors ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"a59b5e00-2417-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"710043e0-2417-11e7-a83b-d5f4cebac9ff-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:08.576Z","version":"WzQ0MjYsMV0="} +{"attributes":{"description":"Filebeat Icinga module dashboard for startup errors","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":8,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":8,\"w\":48,\"h\":52,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"columns\":[\"icinga.startup.facility\",\"log.level\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_2\"}]","timeRestore":false,"title":"[Filebeat Icinga] Startup Errors ECS","version":1},"coreMigrationVersion":"8.0.0","id":"b9163ea0-2417-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a59b5e00-2417-11e7-a83b-d5f4cebac9ff-ecs","name":"1:panel_1","type":"visualization"},{"id":"710043e0-2417-11e7-a83b-d5f4cebac9ff-ecs","name":"2:panel_2","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:08.576Z","version":"WzQ0MjgsMV0="} diff --git a/filebeat/module/icinga/module.yml b/filebeat/module/icinga/module.yml index c5b53d65b2b..7b481ab5897 100644 --- a/filebeat/module/icinga/module.yml +++ b/filebeat/module/icinga/module.yml @@ -1,10 +1,10 @@ dashboards: - id: 26309570-2419-11e7-a83b-d5f4cebac9ff - file: Filebeat-icinga-debug-log.json + file: Filebeat-icinga-debug-log.ndjson - id: b9163ea0-2417-11e7-a83b-d5f4cebac9ff - file: Filebeat-icinga-startup-errors.json + file: Filebeat-icinga-startup-errors.ndjson - id: f693d260-2417-11e7-a83b-d5f4cebac9ff - file: Filebeat-icinga-main-log.json + file: Filebeat-icinga-main-log.ndjson diff --git a/filebeat/module/iis/_meta/kibana/7/dashboard/Filebeat-iis.json b/filebeat/module/iis/_meta/kibana/7/dashboard/Filebeat-iis.json deleted file mode 100644 index 5b2a187c432..00000000000 --- a/filebeat/module/iis/_meta/kibana/7/dashboard/Filebeat-iis.json +++ /dev/null @@ -1,656 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Access map [Filebeat IIS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "source.geo.location", - "isFilteredByCollar": true, - "precision": 2, - "useGeocentroid": true - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "params": { - "addTooltip": true, - "heatClusterSize": 1.5, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 0, - 0 - ], - "mapType": "Scaled Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "format": "image/png", - "transparent": true - } - } - }, - "title": "Access map [Filebeat IIS] ECS", - "type": "tile_map" - } - }, - "id": "eb2db5b0-fe11-11e7-a3b0-d13028918f9f-ecs", - "type": "visualization", - "updated_at": "2018-01-20T18:44:17.162Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Response codes over time [Filebeat IIS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "http.response.status_code", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Response codes over time [Filebeat IIS] ECS", - "type": "histogram" - } - }, - "id": "f31414b0-fe14-11e7-a3b0-d13028918f9f-ecs", - "type": "visualization", - "updated_at": "2018-01-20T19:05:58.905Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Browsers breakdown [Filebeat IIS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user_agent.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "user_agent.version", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Browsers breakdown [Filebeat IIS] ECS", - "type": "pie" - } - }, - "id": "63129c80-fe12-11e7-a3b0-d13028918f9f-ecs", - "type": "visualization", - "updated_at": "2018-01-20T18:47:38.312Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Operating systems breakdown [Filebeat IIS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user_agent.os.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "user_agent.os.version", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Operating systems breakdown [Filebeat IIS] ECS", - "type": "pie" - } - }, - "id": "ccd3f9c0-fe12-11e7-a3b0-d13028918f9f-ecs", - "type": "visualization", - "updated_at": "2018-01-20T18:51:54.619Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Error logs over time [Filebeat IIS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "http.response.status_code", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Error logs over time [Filebeat IIS] ECS", - "type": "histogram" - } - }, - "id": "41f38230-fe17-11e7-a3b0-d13028918f9f-ecs", - "type": "visualization", - "updated_at": "2018-01-20T19:22:30.227Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top URLs by response code [Filebeat IIS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "URL", - "field": "url.path", - "order": "desc", - "orderBy": "1", - "row": false, - "size": 5 - }, - "schema": "split", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "http.response.status_code", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Top URLs by response code [Filebeat IIS] ECS", - "type": "pie" - } - }, - "id": "c0d02cd0-fe1b-11e7-a3b0-d13028918f9f-ecs", - "type": "visualization", - "updated_at": "2018-01-20T19:58:24.005Z", - "version": 2 - }, - { - "attributes": { - "description": "Dashboard for the Filebeat IIS module", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "gridData": { - "h": 3, - "i": "1", - "w": 12, - "x": 0, - "y": 0 - }, - "id": "eb2db5b0-fe11-11e7-a3b0-d13028918f9f-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "6.1.2" - }, - { - "gridData": { - "h": 3, - "i": "2", - "w": 7, - "x": 0, - "y": 3 - }, - "id": "f31414b0-fe14-11e7-a3b0-d13028918f9f-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "6.1.2" - }, - { - "gridData": { - "h": 3, - "i": "4", - "w": 6, - "x": 0, - "y": 9 - }, - "id": "63129c80-fe12-11e7-a3b0-d13028918f9f-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "6.1.2" - }, - { - "gridData": { - "h": 3, - "i": "5", - "w": 6, - "x": 6, - "y": 9 - }, - "id": "ccd3f9c0-fe12-11e7-a3b0-d13028918f9f-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "6.1.2" - }, - { - "gridData": { - "h": 3, - "i": "6", - "w": 5, - "x": 7, - "y": 3 - }, - "id": "41f38230-fe17-11e7-a3b0-d13028918f9f-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "6.1.2" - }, - { - "gridData": { - "h": 3, - "i": "7", - "w": 12, - "x": 0, - "y": 6 - }, - "id": "c0d02cd0-fe1b-11e7-a3b0-d13028918f9f-ecs", - "panelIndex": "7", - "type": "visualization", - "version": "6.1.2" - } - ], - "timeRestore": false, - "title": "[Filebeat IIS] Access and error logs ECS", - "uiStateJSON": {}, - "version": 1 - }, - "id": "4278ad30-fe16-11e7-a3b0-d13028918f9f-ecs", - "type": "dashboard", - "updated_at": "2018-01-20T19:57:50.287Z", - "version": 4 - } - ], - "version": "6.1.2" -} diff --git a/filebeat/module/iis/_meta/kibana/7/dashboard/Filebeat-iis.ndjson b/filebeat/module/iis/_meta/kibana/7/dashboard/Filebeat-iis.ndjson new file mode 100644 index 00000000000..7b1bcadafbe --- /dev/null +++ b/filebeat/module/iis/_meta/kibana/7/dashboard/Filebeat-iis.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Access map [Filebeat IIS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"isFilteredByCollar\":true,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true}}},\"title\":\"Access map [Filebeat IIS] ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"eb2db5b0-fe11-11e7-a3b0-d13028918f9f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:09.583Z","version":"WzQ0MjksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Response codes over time [Filebeat IIS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"http.response.status_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Response codes over time [Filebeat IIS] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"f31414b0-fe14-11e7-a3b0-d13028918f9f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:09.583Z","version":"WzQ0MzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Browsers breakdown [Filebeat IIS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Browsers breakdown [Filebeat IIS] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"63129c80-fe12-11e7-a3b0-d13028918f9f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:09.583Z","version":"WzQ0MzEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Operating systems breakdown [Filebeat IIS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.os.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.os.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Operating systems breakdown [Filebeat IIS] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"ccd3f9c0-fe12-11e7-a3b0-d13028918f9f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:09.583Z","version":"WzQ0MzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Error logs over time [Filebeat IIS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"http.response.status_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Error logs over time [Filebeat IIS] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"41f38230-fe17-11e7-a3b0-d13028918f9f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:09.583Z","version":"WzQ0MzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Top URLs by response code [Filebeat IIS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"URL\",\"field\":\"url.path\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"http.response.status_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"row\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top URLs by response code [Filebeat IIS] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"c0d02cd0-fe1b-11e7-a3b0-d13028918f9f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:09.583Z","version":"WzQ0MzQsMV0="} +{"attributes":{"description":"Dashboard for the Filebeat IIS module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":48,\"h\":12,\"x\":0,\"y\":0,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":28,\"h\":12,\"x\":0,\"y\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":36,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":36,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":20,\"h\":12,\"x\":28,\"y\":12,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":48,\"h\":12,\"x\":0,\"y\":24,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Filebeat IIS] Access and error logs ECS","version":1},"coreMigrationVersion":"8.0.0","id":"4278ad30-fe16-11e7-a3b0-d13028918f9f-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"eb2db5b0-fe11-11e7-a3b0-d13028918f9f-ecs","name":"1:panel_1","type":"visualization"},{"id":"f31414b0-fe14-11e7-a3b0-d13028918f9f-ecs","name":"2:panel_2","type":"visualization"},{"id":"63129c80-fe12-11e7-a3b0-d13028918f9f-ecs","name":"4:panel_4","type":"visualization"},{"id":"ccd3f9c0-fe12-11e7-a3b0-d13028918f9f-ecs","name":"5:panel_5","type":"visualization"},{"id":"41f38230-fe17-11e7-a3b0-d13028918f9f-ecs","name":"6:panel_6","type":"visualization"},{"id":"c0d02cd0-fe1b-11e7-a3b0-d13028918f9f-ecs","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:09.583Z","version":"WzQ0MzUsMV0="} diff --git a/filebeat/module/kafka/_meta/kibana/7/dashboard/Filebeat-Kafka-overview.json b/filebeat/module/kafka/_meta/kibana/7/dashboard/Filebeat-Kafka-overview.json deleted file mode 100644 index 252eaa7670b..00000000000 --- a/filebeat/module/kafka/_meta/kibana/7/dashboard/Filebeat-Kafka-overview.json +++ /dev/null @@ -1,456 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Kafka stacktraces-ecs", - "title": "Number of stracktraces by class [Filebeat Kafka] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "kafka.log.trace.class", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "@timestamp per 30 minutes" - }, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Number of Kafka stracktraces by class [Filebeat Kafka] ECS", - "type": "histogram" - } - }, - "id": "number-of-kafka-stracktraces-by-class-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "columns": [ - "kafka.log.class", - "kafka.log.trace.class", - "kafka.log.trace.full" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "kafka.log.trace.class:*" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Stacktraces [Filebeat Kafka] ECS", - "version": 1 - }, - "id": "Kafka stacktraces-ecs", - "type": "search", - "version": 1 - }, - { - "attributes": { - "columns": [ - "log.level", - "kafka.log.component", - "message" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "kafka", - "type": "phrase" - }, - "type": "phrase", - "value": "kafka" - }, - "query": { - "match": { - "event.module": { - "query": "kafka", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "fileset.name", - "negate": false, - "params": { - "query": "log", - "type": "phrase" - }, - "type": "phrase", - "value": "log" - }, - "query": { - "match": { - "fileset.name": { - "query": "log", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "All logs [Filebeat Kafka] ECS", - "version": 1 - }, - "id": "All Kafka logs-ecs", - "type": "search", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "All Kafka logs-ecs", - "title": "Log levels over time [Filebeat Kafka] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Log Level", - "field": "log.level", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "@timestamp per day" - }, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Log levels over time [Filebeat Kafka] ECS", - "type": "histogram" - } - }, - "id": "3f7c33c0-87ee-11e7-ad9c-db80de0bf8d3-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "Filebeat Kafka module dashboard", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "number-of-kafka-stracktraces-by-class-ecs", - "panelIndex": 1, - "row": 1, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 7, - "columns": [ - "kafka.log.class", - "kafka.log.trace.class", - "kafka.log.trace.full" - ], - "id": "Kafka stacktraces-ecs", - "panelIndex": 2, - "row": 1, - "size_x": 6, - "size_y": 3, - "sort": [ - "@timestamp", - "desc" - ], - "type": "search" - }, - { - "col": 1, - "columns": [ - "log.level", - "kafka.log.component", - "message" - ], - "id": "All Kafka logs-ecs", - "panelIndex": 3, - "row": 6, - "size_x": 12, - "size_y": 5, - "sort": [ - "@timestamp", - "desc" - ], - "type": "search" - }, - { - "col": 1, - "id": "3f7c33c0-87ee-11e7-ad9c-db80de0bf8d3-ecs", - "panelIndex": 4, - "row": 4, - "size_x": 12, - "size_y": 2, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Filebeat Kafka] Overview ECS", - "uiStateJSON": {}, - "version": 1 - }, - "id": "943caca0-87ee-11e7-ad9c-db80de0bf8d3-ecs", - "type": "dashboard", - "version": 1 - } - ], - "version": "6.0.0-beta1-SNAPSHOT" -} diff --git a/filebeat/module/kafka/_meta/kibana/7/dashboard/Filebeat-Kafka-overview.ndjson b/filebeat/module/kafka/_meta/kibana/7/dashboard/Filebeat-Kafka-overview.ndjson new file mode 100644 index 00000000000..3a4955e6858 --- /dev/null +++ b/filebeat/module/kafka/_meta/kibana/7/dashboard/Filebeat-Kafka-overview.ndjson @@ -0,0 +1,5 @@ +{"attributes":{"columns":["kafka.log.class","kafka.log.trace.class","kafka.log.trace.full"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"kafka.log.trace.class:*\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Stacktraces [Filebeat Kafka] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Kafka stacktraces-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:46.165Z","version":"WzQyOTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Number of stracktraces by class [Filebeat Kafka] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"kafka.log.trace.class\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per 30 minutes\"},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Number of Kafka stracktraces by class [Filebeat Kafka] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"number-of-kafka-stracktraces-by-class-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Kafka stacktraces-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:46.165Z","version":"WzQyOTEsMV0="} +{"attributes":{"columns":["log.level","kafka.log.component","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"kafka\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"kafka\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"kafka\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"log\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"log\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"log\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"All logs [Filebeat Kafka] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"All Kafka logs-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:46.165Z","version":"WzQyOTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Log levels over time [Filebeat Kafka] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Log Level\",\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per day\"},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Log levels over time [Filebeat Kafka] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"3f7c33c0-87ee-11e7-ad9c-db80de0bf8d3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"All Kafka logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:46.165Z","version":"WzQyOTQsMV0="} +{"attributes":{"description":"Filebeat Kafka module dashboard","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":24,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":24,\"y\":0,\"w\":24,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"columns\":[\"kafka.log.class\",\"kafka.log.trace.class\",\"kafka.log.trace.full\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":20,\"w\":48,\"h\":20,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"columns\":[\"log.level\",\"kafka.log.component\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":8,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Filebeat Kafka] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"943caca0-87ee-11e7-ad9c-db80de0bf8d3-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"number-of-kafka-stracktraces-by-class-ecs","name":"1:panel_1","type":"visualization"},{"id":"Kafka stacktraces-ecs","name":"2:panel_2","type":"search"},{"id":"All Kafka logs-ecs","name":"3:panel_3","type":"search"},{"id":"3f7c33c0-87ee-11e7-ad9c-db80de0bf8d3-ecs","name":"4:panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:46.165Z","version":"WzQyOTUsMV0="} diff --git a/filebeat/module/kafka/module.yml b/filebeat/module/kafka/module.yml index 1e307dc3bf5..943e4136fa4 100644 --- a/filebeat/module/kafka/module.yml +++ b/filebeat/module/kafka/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 943caca0-87ee-11e7-ad9c-db80de0bf8d3 - file: Filebeat-Kafka-overview.json + file: Filebeat-Kafka-overview.ndjson diff --git a/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-log.json b/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-log.json deleted file mode 100644 index d5f260f3c43..00000000000 --- a/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-log.json +++ /dev/null @@ -1,337 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs", - "title": "Logs Severity [Filebeat Logstash] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "log.level", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right", - "type": "pie" - }, - "title": "Logs Severity [Filebeat Logstash] ECS", - "type": "pie" - } - }, - "id": "0b1dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs", - "title": "logs over time [Filebeat Logstash] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "log.level", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "logs over time [Filebeat Logstash] ECS", - "type": "histogram" - } - }, - "id": "e90b7240-cbda-11e7-9852-73e0a9df1bb6-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "columns": [ - "log.level", - "logstash.log.module", - "message", - "source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "logstash", - "type": "phrase" - }, - "type": "phrase", - "value": "logstash" - }, - "query": { - "match": { - "event.module": { - "query": "logstash", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "fileset.name", - "negate": false, - "params": { - "query": "log", - "type": "phrase" - }, - "type": "phrase", - "value": "log" - }, - "query": { - "match": { - "fileset.name": { - "query": "log", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "logs [Filebeat Logstash] ECS", - "version": 1 - }, - "id": "cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs", - "type": "search", - "version": 1 - }, - { - "attributes": { - "description": "Overview of Logstash logs", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 7, - "id": "0b1dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs", - "panelIndex": 2, - "row": 1, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "e90b7240-cbda-11e7-9852-73e0a9df1bb6-ecs", - "panelIndex": 3, - "row": 1, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "columns": [ - "log.level", - "logstash.log.module", - "message", - "source" - ], - "id": "cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs", - "panelIndex": 4, - "row": 4, - "size_x": 12, - "size_y": 10, - "sort": [ - "@timestamp", - "desc" - ], - "type": "search" - } - ], - "timeRestore": false, - "title": "[Filebeat Logstash] Logstash Logs ECS", - "uiStateJSON": {}, - "version": 1 - }, - "id": "Filebeat-Logstash-Log-Dashboard-ecs", - "type": "dashboard", - "version": 1 - } - ], - "version": "6.0.0" -} diff --git a/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-log.ndjson b/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-log.ndjson new file mode 100644 index 00000000000..89c89940aa8 --- /dev/null +++ b/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-log.ndjson @@ -0,0 +1,4 @@ +{"attributes":{"columns":["log.level","logstash.log.module","message","source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"logstash\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"logstash\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"logstash\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"log\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"log\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"log\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"logs [Filebeat Logstash] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:11.672Z","version":"WzQ0NDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Logs Severity [Filebeat Logstash] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Logs Severity [Filebeat Logstash] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0b1dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:11.672Z","version":"WzQ0NDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"logs over time [Filebeat Logstash] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"logs over time [Filebeat Logstash] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"e90b7240-cbda-11e7-9852-73e0a9df1bb6-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:11.672Z","version":"WzQ0NDIsMV0="} +{"attributes":{"description":"Overview of Logstash logs","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":0,\"w\":24,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":24,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":40,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"columns\":[\"log.level\",\"logstash.log.module\",\"message\",\"source\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Filebeat Logstash] Logstash Logs ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-Logstash-Log-Dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"0b1dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs","name":"2:panel_2","type":"visualization"},{"id":"e90b7240-cbda-11e7-9852-73e0a9df1bb6-ecs","name":"3:panel_3","type":"visualization"},{"id":"cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs","name":"4:panel_4","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:10.617Z","version":"WzQ0MzksMV0="} diff --git a/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-slowlog.json b/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-slowlog.json deleted file mode 100644 index ca522523e45..00000000000 --- a/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-slowlog.json +++ /dev/null @@ -1,550 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "columns": [ - "log.level", - "logstash.slowlog.plugin_type", - "logstash.slowlog.plugin_name", - "logstash.slowlog.message", - "logstash.slowlog.plugin_params", - "logstash.slowlog.execution_time_ns" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "logstash", - "type": "phrase" - }, - "type": "phrase", - "value": "logstash" - }, - "query": { - "match": { - "event.module": { - "query": "logstash", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "fileset.name", - "negate": false, - "params": { - "query": "slowlog", - "type": "phrase" - }, - "type": "phrase", - "value": "slowlog" - }, - "query": { - "match": { - "fileset.name": { - "query": "slowlog", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "log.level", - "asc" - ], - "title": "Slow logs [Filebeat Logstash] ECS", - "version": 1 - }, - "id": "742e45d0-cbdd-11e7-9852-73e0a9df1bb6-ecs", - "type": "search", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs", - "title": "Logs Severity [Filebeat Logstash] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "log.level", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right", - "type": "pie" - }, - "title": "Logs Severity [Filebeat Logstash] ECS", - "type": "pie" - } - }, - "id": "0b1dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs", - "title": "logs over time [Filebeat Logstash] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "log.level", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "logs over time [Filebeat Logstash] ECS", - "type": "histogram" - } - }, - "id": "e90b7240-cbda-11e7-9852-73e0a9df1bb6-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "742e45d0-cbdd-11e7-9852-73e0a9df1bb6-ecs", - "title": "Slowest plugins [Filebeat Logstash] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": 3, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "Average", - "field": "logstash.slowlog.took_in_millis" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Min", - "field": "logstash.slowlog.took_in_millis" - }, - "schema": "metric", - "type": "min" - }, - { - "enabled": true, - "id": "8", - "params": { - "customLabel": "Plugin Name", - "field": "logstash.slowlog.plugin_name", - "order": "desc", - "orderBy": "5", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "7", - "params": { - "customLabel": "Max", - "field": "logstash.slowlog.took_in_millis" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "9", - "params": { - "customLabel": "Plugin Type", - "field": "logstash.slowlog.plugin_type", - "order": "desc", - "orderBy": "5", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Slowest plugins [Filebeat Logstash] ECS", - "type": "table" - } - }, - "id": "b3315630-cbdf-11e7-9852-73e0a9df1bb6-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "columns": [ - "log.level", - "logstash.log.module", - "message", - "source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "logstash", - "type": "phrase" - }, - "type": "phrase", - "value": "logstash" - }, - "query": { - "match": { - "event.module": { - "query": "logstash", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "fileset.name", - "negate": false, - "params": { - "query": "log", - "type": "phrase" - }, - "type": "phrase", - "value": "log" - }, - "query": { - "match": { - "fileset.name": { - "query": "log", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "logs [Filebeat Logstash] ECS", - "version": 1 - }, - "id": "cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs", - "type": "search", - "version": 1 - }, - { - "attributes": { - "description": "Overview of Logstash Slowlogs", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "columns": [ - "log.level", - "logstash.slowlog.plugin_type", - "logstash.slowlog.plugin_name", - "logstash.slowlog.message", - "logstash.slowlog.plugin_params", - "logstash.slowlog.execution_time_ns" - ], - "id": "742e45d0-cbdd-11e7-9852-73e0a9df1bb6-ecs", - "panelIndex": 1, - "row": 7, - "size_x": 12, - "size_y": 9, - "sort": [ - "@timestamp", - "desc" - ], - "type": "search" - }, - { - "col": 7, - "id": "0b1dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs", - "panelIndex": 2, - "row": 1, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "e90b7240-cbda-11e7-9852-73e0a9df1bb6-ecs", - "panelIndex": 3, - "row": 1, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "b3315630-cbdf-11e7-9852-73e0a9df1bb6-ecs", - "panelIndex": 4, - "row": 4, - "size_x": 12, - "size_y": 3, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Filebeat Logstash] Slowlogs ECS", - "uiStateJSON": { - "P-4": { - "vis": { - "params": { - "sort": { - "columnIndex": 3, - "direction": null - } - } - } - } - }, - "version": 1 - }, - "id": "Filebeat-Logstash-Slowlog-Dashboard-ecs", - "type": "dashboard", - "version": 1 - } - ], - "version": "6.0.0" -} diff --git a/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-slowlog.ndjson b/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-slowlog.ndjson new file mode 100644 index 00000000000..8c1eeaeb8da --- /dev/null +++ b/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-slowlog.ndjson @@ -0,0 +1,6 @@ +{"attributes":{"columns":["log.level","logstash.slowlog.plugin_type","logstash.slowlog.plugin_name","logstash.slowlog.message","logstash.slowlog.plugin_params","logstash.slowlog.execution_time_ns"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"logstash\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"logstash\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"logstash\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"slowlog\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"slowlog\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"slowlog\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["log.level","asc"]],"title":"Slow logs [Filebeat Logstash] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"742e45d0-cbdd-11e7-9852-73e0a9df1bb6-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:11.672Z","version":"WzQ0NDAsMV0="} +{"attributes":{"columns":["log.level","logstash.log.module","message","source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"logstash\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"logstash\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"logstash\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"log\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"log\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"log\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"logs [Filebeat Logstash] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:11.672Z","version":"WzQ0NDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Logs Severity [Filebeat Logstash] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Logs Severity [Filebeat Logstash] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0b1dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:11.672Z","version":"WzQ0NDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"logs over time [Filebeat Logstash] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"logs over time [Filebeat Logstash] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"e90b7240-cbda-11e7-9852-73e0a9df1bb6-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:11.672Z","version":"WzQ0NDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Slowest plugins [Filebeat Logstash] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 3, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Average\",\"field\":\"logstash.slowlog.took_in_millis\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Min\",\"field\":\"logstash.slowlog.took_in_millis\"},\"schema\":\"metric\",\"type\":\"min\"},{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"Plugin Name\",\"field\":\"logstash.slowlog.plugin_name\",\"order\":\"desc\",\"orderBy\":\"5\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"Max\",\"field\":\"logstash.slowlog.took_in_millis\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"9\",\"params\":{\"customLabel\":\"Plugin Type\",\"field\":\"logstash.slowlog.plugin_type\",\"order\":\"desc\",\"orderBy\":\"5\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Slowest plugins [Filebeat Logstash] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"b3315630-cbdf-11e7-9852-73e0a9df1bb6-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"742e45d0-cbdd-11e7-9852-73e0a9df1bb6-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:11.672Z","version":"WzQ0NDMsMV0="} +{"attributes":{"description":"Overview of Logstash Slowlogs","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":24,\"w\":48,\"h\":36,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"columns\":[\"log.level\",\"logstash.slowlog.plugin_type\",\"logstash.slowlog.plugin_name\",\"logstash.slowlog.message\",\"logstash.slowlog.plugin_params\",\"logstash.slowlog.execution_time_ns\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":0,\"w\":24,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":24,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":3,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Filebeat Logstash] Slowlogs ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-Logstash-Slowlog-Dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"742e45d0-cbdd-11e7-9852-73e0a9df1bb6-ecs","name":"1:panel_1","type":"search"},{"id":"0b1dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs","name":"2:panel_2","type":"visualization"},{"id":"e90b7240-cbda-11e7-9852-73e0a9df1bb6-ecs","name":"3:panel_3","type":"visualization"},{"id":"b3315630-cbdf-11e7-9852-73e0a9df1bb6-ecs","name":"4:panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:11.672Z","version":"WzQ0NDUsMV0="} diff --git a/filebeat/module/logstash/module.yml b/filebeat/module/logstash/module.yml index c039b2b4d0b..d8d9c492d6a 100644 --- a/filebeat/module/logstash/module.yml +++ b/filebeat/module/logstash/module.yml @@ -1,5 +1,5 @@ dashboards: - id: Filebeat-Logstash-Log-Dashboard - file: Filebeat-logstash-log.json + file: Filebeat-logstash-log.ndjson - id: Filebeat-Logstash-Slowlog-Dashboard - file: Filebeat-logstash-slowlog.json + file: Filebeat-logstash-slowlog.ndjson diff --git a/filebeat/module/mongodb/_meta/kibana/7/dashboard/Filebeat-Mongodb-overview.json b/filebeat/module/mongodb/_meta/kibana/7/dashboard/Filebeat-Mongodb-overview.json deleted file mode 100644 index 4604b94e20f..00000000000 --- a/filebeat/module/mongodb/_meta/kibana/7/dashboard/Filebeat-Mongodb-overview.json +++ /dev/null @@ -1,205 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "bfc96a60-0a80-11e8-bffe-ff7d4f68cf94-ecs", - "title": "Logs Severity [Filebeat MongoDB] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Log severity", - "field": "log.level", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right", - "type": "pie" - }, - "title": "Logs Severity [Filebeat MongoDB] ECS", - "type": "pie" - } - }, - "id": "0fef5710-0a82-11e8-bffe-ff7d4f68cf94-ecs", - "type": "visualization", - "version": 3 - }, - { - "attributes": { - "columns": [ - "mongodb.log.timestamp", - "log.level", - "mongodb.log.component", - "mongodb.log.context", - "message" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "log.level: F or log.level: W" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Error logs [Filebeat MongoDB] ECS", - "version": 1 - }, - "id": "e49fe000-0a7e-11e8-bffe-ff7d4f68cf94-ecs", - "type": "search", - "version": 3 - }, - { - "attributes": { - "columns": [ - "mongodb.log.timestamp", - "log.level", - "mongodb.log.component", - "mongodb.log.context", - "message" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "log.level: *" - }, - "version": true - } - }, - "sort": [ - "mongodb.log.timestamp", - "asc" - ], - "title": "All logs [Filebeat MongoDB] ECS", - "version": 1 - }, - "id": "bfc96a60-0a80-11e8-bffe-ff7d4f68cf94-ecs", - "type": "search", - "version": 2 - }, - { - "attributes": { - "description": "Filebeat MongoDB module overview", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "0fef5710-0a82-11e8-bffe-ff7d4f68cf94-ecs", - "panelIndex": 1, - "row": 1, - "size_x": 4, - "size_y": 3, - "type": "visualization" - }, - { - "col": 5, - "columns": [ - "mongodb.log.timestamp", - "log.level", - "mongodb.log.component", - "mongodb.log.context", - "message" - ], - "id": "e49fe000-0a7e-11e8-bffe-ff7d4f68cf94-ecs", - "panelIndex": 2, - "row": 1, - "size_x": 8, - "size_y": 3, - "sort": [ - "@timestamp", - "desc" - ], - "type": "search" - }, - { - "col": 1, - "columns": [ - "mongodb.log.timestamp", - "log.level", - "mongodb.log.component", - "mongodb.log.context", - "message" - ], - "id": "bfc96a60-0a80-11e8-bffe-ff7d4f68cf94-ecs", - "panelIndex": 3, - "row": 4, - "size_x": 12, - "size_y": 6, - "sort": [ - "mongodb.log.timestamp", - "asc" - ], - "type": "search" - } - ], - "timeRestore": false, - "title": "[Filebeat MongoDB] Overview ECS", - "uiStateJSON": {}, - "version": 1 - }, - "id": "abcf35b0-0a82-11e8-bffe-ff7d4f68cf94-ecs", - "type": "dashboard", - "version": 2 - } - ], - "version": "6.0.0" -} diff --git a/filebeat/module/mongodb/_meta/kibana/7/dashboard/Filebeat-Mongodb-overview.ndjson b/filebeat/module/mongodb/_meta/kibana/7/dashboard/Filebeat-Mongodb-overview.ndjson new file mode 100644 index 00000000000..fe51cc753d9 --- /dev/null +++ b/filebeat/module/mongodb/_meta/kibana/7/dashboard/Filebeat-Mongodb-overview.ndjson @@ -0,0 +1,4 @@ +{"attributes":{"columns":["mongodb.log.timestamp","log.level","mongodb.log.component","mongodb.log.context","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"log.level: *\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["mongodb.log.timestamp","asc"]],"title":"All logs [Filebeat MongoDB] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"bfc96a60-0a80-11e8-bffe-ff7d4f68cf94-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:48.189Z","version":"WzQzMDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Logs Severity [Filebeat MongoDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Log severity\",\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Logs Severity [Filebeat MongoDB] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0fef5710-0a82-11e8-bffe-ff7d4f68cf94-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"bfc96a60-0a80-11e8-bffe-ff7d4f68cf94-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:48.189Z","version":"WzQzMDAsMV0="} +{"attributes":{"columns":["mongodb.log.timestamp","log.level","mongodb.log.component","mongodb.log.context","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"log.level: F or log.level: W\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Error logs [Filebeat MongoDB] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"e49fe000-0a7e-11e8-bffe-ff7d4f68cf94-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:48.189Z","version":"WzQzMDEsMV0="} +{"attributes":{"description":"Filebeat MongoDB module overview","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":16,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":16,\"y\":0,\"w\":32,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"columns\":[\"mongodb.log.timestamp\",\"log.level\",\"mongodb.log.component\",\"mongodb.log.context\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":24,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"columns\":[\"mongodb.log.timestamp\",\"log.level\",\"mongodb.log.component\",\"mongodb.log.context\",\"message\"],\"sort\":[\"mongodb.log.timestamp\",\"asc\"],\"enhancements\":{}},\"panelRefName\":\"panel_3\"}]","timeRestore":false,"title":"[Filebeat MongoDB] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"abcf35b0-0a82-11e8-bffe-ff7d4f68cf94-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"0fef5710-0a82-11e8-bffe-ff7d4f68cf94-ecs","name":"1:panel_1","type":"visualization"},{"id":"e49fe000-0a7e-11e8-bffe-ff7d4f68cf94-ecs","name":"2:panel_2","type":"search"},{"id":"bfc96a60-0a80-11e8-bffe-ff7d4f68cf94-ecs","name":"3:panel_3","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:48.189Z","version":"WzQzMDMsMV0="} diff --git a/filebeat/module/mongodb/module.yml b/filebeat/module/mongodb/module.yml index 2fef4e2c89f..2b04d86e4aa 100644 --- a/filebeat/module/mongodb/module.yml +++ b/filebeat/module/mongodb/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 158be870-87f4-11e7-ad9c-db80de0bf8d3 - file: Filebeat-Mongodb-overview.json + file: Filebeat-Mongodb-overview.ndjson diff --git a/filebeat/module/mysql/_meta/kibana/7/dashboard/Filebeat-mysql.json b/filebeat/module/mysql/_meta/kibana/7/dashboard/Filebeat-mysql.json deleted file mode 100644 index 15c3165a428..00000000000 --- a/filebeat/module/mysql/_meta/kibana/7/dashboard/Filebeat-mysql.json +++ /dev/null @@ -1,742 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Filebeat-MySQL-Slow-log-ecs", - "title": "Top slowest queries [Filebeat MySQL] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Query time", - "field": "event.duration" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Query", - "field": "mysql.slowlog.query", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "User", - "field": "user.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top slowest queries [Filebeat MySQL] ECS", - "type": "table" - } - }, - "id": "MySQL-slowest-queries-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Filebeat-MySQL-Slow-log-ecs", - "title": "Slow queries over time [Filebeat MySQL] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "Slow queries": "#EF843C" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Slow queries" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "@timestamp per 30 seconds" - }, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Slow queries" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Slow queries" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Slow queries over time [Filebeat MySQL] ECS", - "type": "histogram" - } - }, - "id": "MySQL-Slow-queries-over-time-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Filebeat-MySQL-error-log-ecs", - "title": "Error logs over time [Filebeat MySQL] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "Count": "#447EBC", - "Error logs": "#1F78C1" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Error logs" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "@timestamp per 30 seconds" - }, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Error logs" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Error logs" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Error logs over time [Filebeat MySQL] ECS", - "type": "histogram" - } - }, - "id": "MySQL-error-logs-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "columns": [ - "log.level", - "message" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "mysql", - "type": "phrase" - }, - "type": "phrase", - "value": "mysql" - }, - "query": { - "match": { - "event.module": { - "query": "mysql", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "fileset.name", - "negate": false, - "params": { - "query": "error", - "type": "phrase" - }, - "type": "phrase", - "value": "error" - }, - "query": { - "match": { - "fileset.name": { - "query": "error", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Error logs [Filebeat MySQL] ECS", - "version": 1 - }, - "id": "Filebeat-MySQL-error-log-ecs", - "type": "search", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Filebeat-MySQL-error-log-ecs", - "title": "Error logs levels breakdown [Filebeat MySQL] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "ERROR": "#E24D42", - "Note": "#9AC48A", - "Warning": "#F9934E" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "log.level", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "legendPosition": "bottom", - "shareYAxis": true, - "type": "pie" - }, - "title": "Error logs levels breakdown [Filebeat MySQL] ECS", - "type": "pie" - } - }, - "id": "MySQL-Error-logs-levels-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Filebeat-MySQL-Slow-log-ecs", - "title": "Slow logs breakdown [Filebeat MySQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "mysql.slowlog.query", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "legendPosition": "bottom", - "shareYAxis": true, - "type": "pie" - }, - "title": "Slow logs breakdown [Filebeat MySQL] ECS", - "type": "pie" - } - }, - "id": "MySQL-Slow-logs-by-count-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "mysql", - "type": "phrase" - }, - "type": "phrase", - "value": "mysql" - }, - "query": { - "match": { - "event.module": { - "query": "mysql", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "fileset.name", - "negate": false, - "params": { - "query": "slowlog", - "type": "phrase" - }, - "type": "phrase", - "value": "slowlog" - }, - "query": { - "match": { - "fileset.name": { - "query": "slowlog", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Slow logs [Filebeat MySQL] ECS", - "version": 1 - }, - "id": "Filebeat-MySQL-Slow-log-ecs", - "type": "search", - "version": 1 - }, - { - "attributes": { - "description": "Overview dashboard for the Filebeat MySQL module", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "MySQL-slowest-queries-ecs", - "panelIndex": 1, - "row": 8, - "size_x": 6, - "size_y": 4, - "type": "visualization" - }, - { - "col": 1, - "id": "MySQL-Slow-queries-over-time-ecs", - "panelIndex": 2, - "row": 1, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 7, - "id": "MySQL-error-logs-ecs", - "panelIndex": 3, - "row": 1, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 7, - "columns": [ - "log.level", - "message" - ], - "id": "Filebeat-MySQL-error-log-ecs", - "panelIndex": 4, - "row": 8, - "size_x": 6, - "size_y": 5, - "sort": [ - "@timestamp", - "desc" - ], - "type": "search" - }, - { - "col": 7, - "id": "MySQL-Error-logs-levels-ecs", - "panelIndex": 5, - "row": 4, - "size_x": 6, - "size_y": 4, - "type": "visualization" - }, - { - "col": 1, - "id": "MySQL-Slow-logs-by-count-ecs", - "panelIndex": 6, - "row": 4, - "size_x": 6, - "size_y": 4, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Filebeat MySQL] Overview ECS", - "uiStateJSON": { - "P-1": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - } - }, - "version": 1 - }, - "id": "Filebeat-MySQL-Dashboard-ecs", - "type": "dashboard", - "version": 2 - } - ], - "version": "6.0.0-beta1-SNAPSHOT" -} \ No newline at end of file diff --git a/filebeat/module/mysql/_meta/kibana/7/dashboard/Filebeat-mysql.ndjson b/filebeat/module/mysql/_meta/kibana/7/dashboard/Filebeat-mysql.ndjson new file mode 100644 index 00000000000..eb202c0ef9f --- /dev/null +++ b/filebeat/module/mysql/_meta/kibana/7/dashboard/Filebeat-mysql.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"mysql\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"mysql\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"mysql\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"slowlog\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"slowlog\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"slowlog\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Slow logs [Filebeat MySQL] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-MySQL-Slow-log-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:13.657Z","version":"WzQ0NjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Top slowest queries [Filebeat MySQL] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Query time\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Query\",\"field\":\"mysql.slowlog.query\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"User\",\"field\":\"user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top slowest queries [Filebeat MySQL] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"MySQL-slowest-queries-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Filebeat-MySQL-Slow-log-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:13.657Z","version":"WzQ0NTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Slow queries over time [Filebeat MySQL] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Slow queries\": \"#EF843C\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Slow queries\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per 30 seconds\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Slow queries\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Slow queries\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Slow queries over time [Filebeat MySQL] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"MySQL-Slow-queries-over-time-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Filebeat-MySQL-Slow-log-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:13.657Z","version":"WzQ0NTUsMV0="} +{"attributes":{"columns":["log.level","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"mysql\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"mysql\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"mysql\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"error\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"error\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"error\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Error logs [Filebeat MySQL] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-MySQL-error-log-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:13.657Z","version":"WzQ0NTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Error logs over time [Filebeat MySQL] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Count\": \"#447EBC\", \"Error logs\": \"#1F78C1\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Error logs\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per 30 seconds\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Error logs\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Error logs\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Error logs over time [Filebeat MySQL] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"MySQL-error-logs-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Filebeat-MySQL-error-log-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:13.657Z","version":"WzQ0NTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Error logs levels breakdown [Filebeat MySQL] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"ERROR\": \"#E24D42\", \"Note\": \"#9AC48A\", \"Warning\": \"#F9934E\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Error logs levels breakdown [Filebeat MySQL] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"MySQL-Error-logs-levels-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Filebeat-MySQL-error-log-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:13.657Z","version":"WzQ0NTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Slow logs breakdown [Filebeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"mysql.slowlog.query\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Slow logs breakdown [Filebeat MySQL] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"MySQL-Slow-logs-by-count-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Filebeat-MySQL-Slow-log-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:13.657Z","version":"WzQ0NTksMV0="} +{"attributes":{"description":"Overview dashboard for the Filebeat MySQL module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":28,\"w\":24,\"h\":16,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":24,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":0,\"w\":24,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":24,\"y\":28,\"w\":24,\"h\":20,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"columns\":[\"log.level\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":12,\"w\":24,\"h\":16,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":24,\"h\":16,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Filebeat MySQL] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-MySQL-Dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"MySQL-slowest-queries-ecs","name":"1:panel_1","type":"visualization"},{"id":"MySQL-Slow-queries-over-time-ecs","name":"2:panel_2","type":"visualization"},{"id":"MySQL-error-logs-ecs","name":"3:panel_3","type":"visualization"},{"id":"Filebeat-MySQL-error-log-ecs","name":"4:panel_4","type":"search"},{"id":"MySQL-Error-logs-levels-ecs","name":"5:panel_5","type":"visualization"},{"id":"MySQL-Slow-logs-by-count-ecs","name":"6:panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:13.657Z","version":"WzQ0NjEsMV0="} diff --git a/filebeat/module/mysql/module.yml b/filebeat/module/mysql/module.yml index 48dbd6d3076..33aa2fe23fc 100644 --- a/filebeat/module/mysql/module.yml +++ b/filebeat/module/mysql/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Filebeat-MySQL-Dashboard - file: Filebeat-mysql.json + file: Filebeat-mysql.ndjson diff --git a/filebeat/module/nats/_meta/kibana/7/dashboard/Filebeat-nats-overview.json b/filebeat/module/nats/_meta/kibana/7/dashboard/Filebeat-nats-overview.json deleted file mode 100644 index 0b281987921..00000000000 --- a/filebeat/module/nats/_meta/kibana/7/dashboard/Filebeat-nats-overview.json +++ /dev/null @@ -1,1274 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of NATS server statistics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Message Types Timeline" - }, - "gridData": { - "h": 11, - "i": "1", - "w": 17, - "x": 0, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "Message Types Timeline", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Communication Directions" - }, - "gridData": { - "h": 11, - "i": "2", - "w": 17, - "x": 31, - "y": 0 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "Communication Directions", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Topics Timeline" - }, - "gridData": { - "h": 12, - "i": "3", - "w": 25, - "x": 0, - "y": 20 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "Topics Timeline", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": " Bytes Timeline", - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 9, - "i": "4", - "w": 12, - "x": 11, - "y": 11 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "title": " Bytes Timeline", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Communication Directions Distribution", - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 9, - "i": "5", - "w": 11, - "x": 0, - "y": 11 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "title": "Communication Directions Distribution", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Log Level Distribution", - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 9, - "i": "6", - "w": 11, - "x": 37, - "y": 11 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "title": "Log Level Distribution", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Message Type Distribution", - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 11, - "i": "7", - "w": 14, - "x": 17, - "y": 0 - }, - "panelIndex": "7", - "panelRefName": "panel_6", - "title": "Message Type Distribution", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Log Level Timeline" - }, - "gridData": { - "h": 9, - "i": "8", - "w": 14, - "x": 23, - "y": 11 - }, - "panelIndex": "8", - "panelRefName": "panel_7", - "title": "Log Level Timeline", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Client IP Count Timeline" - }, - "gridData": { - "h": 12, - "i": "9", - "w": 22, - "x": 25, - "y": 20 - }, - "panelIndex": "9", - "panelRefName": "panel_8", - "title": "Client IP Count Timeline", - "version": "7.10.0" - } - ], - "timeRestore": false, - "title": "[Filebeat NATS] Overview ECS", - "version": 1 - }, - "id": "Filebeat-nats-overview-ecs", - "migrationVersion": { - "dashboard": "7.9.3" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "6987a800-41a8-11e9-a4da-b1df688edbcd-ecs", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "0b2061d0-41ad-11e9-a4da-b1df688edbcd-ecs", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "4a6d9ec0-41a8-11e9-a4da-b1df688edbcd-ecs", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "c3d1ab80-41a8-11e9-a4da-b1df688edbcd-ecs", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "7716c780-41ad-11e9-a4da-b1df688edbcd-ecs", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "3f6cca40-41ae-11e9-a4da-b1df688edbcd-ecs", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "7ed62870-41ae-11e9-a4da-b1df688edbcd-ecs", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "04083600-41af-11e9-a4da-b1df688edbcd-ecs", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "c669ae20-41ed-11e9-ac5c-71ffa38a62e3-ecs", - "name": "panel_8", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-11-23T16:25:23.231Z", - "version": "WzYyNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Message Types Timeline [Filebeat NATS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "nats.log.msg.type", - "size": 15 - }, - "schema": "group", - "type": "significant_terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "cardinal", - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Message Types Timeline [Filebeat NATS] ECS", - "type": "line" - } - }, - "id": "6987a800-41a8-11e9-a4da-b1df688edbcd-ecs", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-11-23T16:05:55.609Z", - "version": "WzEwMSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "service.type: nats" - } - } - }, - "title": "Communication Directions [Filebeat NATS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "network.direction", - "size": 2 - }, - "schema": "group", - "type": "significant_terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Communication Directions [Filebeat NATS] ECS", - "type": "line" - } - }, - "id": "0b2061d0-41ad-11e9-a4da-b1df688edbcd-ecs", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-11-23T16:05:55.609Z", - "version": "WzEwMiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Topics Timeline [Filebeat NATS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "nats.log.msg.subject", - "size": 5 - }, - "schema": "group", - "type": "significant_terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Topics Timeline [Filebeat NATS] ECS", - "type": "line" - } - }, - "id": "4a6d9ec0-41a8-11e9-a4da-b1df688edbcd-ecs", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-11-23T16:05:55.609Z", - "version": "WzEwMywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": " Bytes Timeline [Filebeat NATS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Sum of Message Bytes", - "field": "nats.log.msg.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Sum of Message Bytes" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Sum of Message Bytes" - }, - "type": "value" - } - ] - }, - "title": " Bytes Timeline [Filebeat NATS] ECS", - "type": "line" - } - }, - "id": "c3d1ab80-41a8-11e9-a4da-b1df688edbcd-ecs", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-11-23T16:05:55.609Z", - "version": "WzEwNCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "service.type: nats" - } - } - }, - "title": "Communication Directions Distribution [Filebeat NATS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "network.direction", - "size": 2 - }, - "schema": "segment", - "type": "significant_terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": true, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Communication Directions Distribution [Filebeat NATS] ECS", - "type": "pie" - } - }, - "id": "7716c780-41ad-11e9-a4da-b1df688edbcd-ecs", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-11-23T16:05:55.609Z", - "version": "WzEwNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "service.type: nats" - } - } - }, - "title": "Log Level Distribution [Filebeat NATS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "log.level", - "size": 10 - }, - "schema": "segment", - "type": "significant_terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": true, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Log Level Distribution [Filebeat NATS] ECS", - "type": "pie" - } - }, - "id": "3f6cca40-41ae-11e9-a4da-b1df688edbcd-ecs", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-11-23T16:05:55.609Z", - "version": "WzEwNiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Message Type Distribution [Filebeat NATS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "nats.log.msg.type", - "size": 15 - }, - "schema": "segment", - "type": "significant_terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": true, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Message Type Distribution [Filebeat NATS] ECS", - "type": "pie" - } - }, - "id": "7ed62870-41ae-11e9-a4da-b1df688edbcd-ecs", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-11-23T16:05:55.609Z", - "version": "WzEwNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "service.type: nats" - } - } - }, - "title": "Log Level Timeline [Filebeat NATS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "log.level", - "size": 10 - }, - "schema": "group", - "type": "significant_terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Log Level Timeline [Filebeat NATS] ECS", - "type": "area" - } - }, - "id": "04083600-41af-11e9-a4da-b1df688edbcd-ecs", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-11-23T16:05:55.609Z", - "version": "WzEwOCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "service.type: nats" - } - } - }, - "title": "Client IP Count Timeline [Filebeat NATS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "client.ip", - "ipRangeType": "fromTo", - "ranges": { - "fromTo": [ - { - "from": "0.0.0.0", - "to": "127.255.255.255" - }, - { - "from": "128.0.0.0", - "to": "191.255.255.255" - } - ], - "mask": [ - { - "mask": "0.0.0.0/1" - }, - { - "mask": "128.0.0.0/2" - } - ] - } - }, - "schema": "group", - "type": "ip_range" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Client IP Count Timeline [Filebeat NATS] ECS", - "type": "line" - } - }, - "id": "c669ae20-41ed-11e9-ac5c-71ffa38a62e3-ecs", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-11-23T16:05:55.609Z", - "version": "WzEwOSwxXQ==" - } - ], - "version": "7.10.0" -} \ No newline at end of file diff --git a/filebeat/module/nats/_meta/kibana/7/dashboard/Filebeat-nats-overview.ndjson b/filebeat/module/nats/_meta/kibana/7/dashboard/Filebeat-nats-overview.ndjson new file mode 100644 index 00000000000..74f3ac2eed0 --- /dev/null +++ b/filebeat/module/nats/_meta/kibana/7/dashboard/Filebeat-nats-overview.ndjson @@ -0,0 +1,10 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Message Types Timeline [Filebeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"nats.log.msg.type\",\"size\":15},\"schema\":\"group\",\"type\":\"significant_terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Message Types Timeline [Filebeat NATS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"6987a800-41a8-11e9-a4da-b1df688edbcd-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"service.type: nats\"}}"},"title":"Communication Directions [Filebeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"network.direction\",\"size\":2},\"schema\":\"group\",\"type\":\"significant_terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Communication Directions [Filebeat NATS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"0b2061d0-41ad-11e9-a4da-b1df688edbcd-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Topics Timeline [Filebeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"nats.log.msg.subject\",\"size\":5},\"schema\":\"group\",\"type\":\"significant_terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Topics Timeline [Filebeat NATS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"4a6d9ec0-41a8-11e9-a4da-b1df688edbcd-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":" Bytes Timeline [Filebeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Sum of Message Bytes\",\"field\":\"nats.log.msg.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Sum of Message Bytes\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Sum of Message Bytes\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\" Bytes Timeline [Filebeat NATS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"c3d1ab80-41a8-11e9-a4da-b1df688edbcd-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"service.type: nats\"}}"},"title":"Communication Directions Distribution [Filebeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.direction\",\"size\":2},\"schema\":\"segment\",\"type\":\"significant_terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Communication Directions Distribution [Filebeat NATS] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"7716c780-41ad-11e9-a4da-b1df688edbcd-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"service.type: nats\"}}"},"title":"Log Level Distribution [Filebeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"log.level\",\"size\":10},\"schema\":\"segment\",\"type\":\"significant_terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Log Level Distribution [Filebeat NATS] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"3f6cca40-41ae-11e9-a4da-b1df688edbcd-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Message Type Distribution [Filebeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"nats.log.msg.type\",\"size\":15},\"schema\":\"segment\",\"type\":\"significant_terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Message Type Distribution [Filebeat NATS] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"7ed62870-41ae-11e9-a4da-b1df688edbcd-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NjksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"service.type: nats\"}}"},"title":"Log Level Timeline [Filebeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"log.level\",\"size\":10},\"schema\":\"group\",\"type\":\"significant_terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Log Level Timeline [Filebeat NATS] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"04083600-41af-11e9-a4da-b1df688edbcd-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"service.type: nats\"}}"},"title":"Client IP Count Timeline [Filebeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"client.ip\",\"ipRangeType\":\"fromTo\",\"ranges\":{\"fromTo\":[{\"from\":\"0.0.0.0\",\"to\":\"127.255.255.255\"},{\"from\":\"128.0.0.0\",\"to\":\"191.255.255.255\"}],\"mask\":[{\"mask\":\"0.0.0.0/1\"},{\"mask\":\"128.0.0.0/2\"}]}},\"schema\":\"group\",\"type\":\"ip_range\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Client IP Count Timeline [Filebeat NATS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"c669ae20-41ed-11e9-ac5c-71ffa38a62e3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NzEsMV0="} +{"attributes":{"description":"Overview of NATS server statistics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"1\",\"w\":17,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Message Types Timeline\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"2\",\"w\":17,\"x\":31,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Communication Directions\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"3\",\"w\":25,\"x\":0,\"y\":20},\"panelIndex\":\"3\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Topics Timeline\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"4\",\"w\":12,\"x\":11,\"y\":11},\"panelIndex\":\"4\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\" Bytes Timeline\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"5\",\"w\":11,\"x\":0,\"y\":11},\"panelIndex\":\"5\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Communication Directions Distribution\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"6\",\"w\":11,\"x\":37,\"y\":11},\"panelIndex\":\"6\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Log Level Distribution\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"7\",\"w\":14,\"x\":17,\"y\":0},\"panelIndex\":\"7\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Message Type Distribution\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"8\",\"w\":14,\"x\":23,\"y\":11},\"panelIndex\":\"8\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Log Level Timeline\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"9\",\"w\":22,\"x\":25,\"y\":20},\"panelIndex\":\"9\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Client IP Count Timeline\",\"panelRefName\":\"panel_9\"}]","timeRestore":false,"title":"[Filebeat NATS] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-nats-overview-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"6987a800-41a8-11e9-a4da-b1df688edbcd-ecs","name":"1:panel_1","type":"visualization"},{"id":"0b2061d0-41ad-11e9-a4da-b1df688edbcd-ecs","name":"2:panel_2","type":"visualization"},{"id":"4a6d9ec0-41a8-11e9-a4da-b1df688edbcd-ecs","name":"3:panel_3","type":"visualization"},{"id":"c3d1ab80-41a8-11e9-a4da-b1df688edbcd-ecs","name":"4:panel_4","type":"visualization"},{"id":"7716c780-41ad-11e9-a4da-b1df688edbcd-ecs","name":"5:panel_5","type":"visualization"},{"id":"3f6cca40-41ae-11e9-a4da-b1df688edbcd-ecs","name":"6:panel_6","type":"visualization"},{"id":"7ed62870-41ae-11e9-a4da-b1df688edbcd-ecs","name":"7:panel_7","type":"visualization"},{"id":"04083600-41af-11e9-a4da-b1df688edbcd-ecs","name":"8:panel_8","type":"visualization"},{"id":"c669ae20-41ed-11e9-ac5c-71ffa38a62e3-ecs","name":"9:panel_9","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NjIsMV0="} diff --git a/filebeat/module/nats/module.yml b/filebeat/module/nats/module.yml index 84ef91da146..ddf36a9f64e 100644 --- a/filebeat/module/nats/module.yml +++ b/filebeat/module/nats/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Filebeat-nats-overview - file: Filebeat-nats-overview.json + file: Filebeat-nats-overview.ndjson diff --git a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-logs.json b/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-logs.json deleted file mode 100644 index a3788ec20a6..00000000000 --- a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-logs.json +++ /dev/null @@ -1,359 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Dashboard for the Filebeat Nginx Ingress Controller", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 4, - "i": "36b94fba-26a2-4a63-9260-1e5bdf3a9dd8", - "w": 48, - "x": 0, - "y": 0 - }, - "panelIndex": "36b94fba-26a2-4a63-9260-1e5bdf3a9dd8", - "panelRefName": "panel_0", - "version": "7.8.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "a7e7600a-703f-48a0-9a3a-3670294ee98b", - "w": 48, - "x": 0, - "y": 4 - }, - "panelIndex": "a7e7600a-703f-48a0-9a3a-3670294ee98b", - "panelRefName": "panel_1", - "version": "7.8.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "1a56c416-e1e4-4e0e-bd2b-ac5e3553d118", - "w": 48, - "x": 0, - "y": 16 - }, - "panelIndex": "1a56c416-e1e4-4e0e-bd2b-ac5e3553d118", - "panelRefName": "panel_2", - "version": "7.8.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 28, - "i": "7e5729fd-aa67-4ee2-aaa3-8a67e529d4b1", - "w": 48, - "x": 0, - "y": 28 - }, - "panelIndex": "7e5729fd-aa67-4ee2-aaa3-8a67e529d4b1", - "panelRefName": "panel_3", - "version": "7.8.0" - } - ], - "timeRestore": false, - "title": "[Filebeat Nginx] Ingress Controller access and error logs", - "version": 1 - }, - "id": "0b3dba40-f341-11ea-a3fd-1b45ec532bb3", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "c37e2770-f341-11ea-a3fd-1b45ec532bb3", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "78738850-f342-11ea-a3fd-1b45ec532bb3", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "a832bcf0-f342-11ea-a3fd-1b45ec532bb3", - "name": "panel_2", - "type": "search" - }, - { - "id": "d20d4ea0-f342-11ea-a3fd-1b45ec532bb3", - "name": "panel_3", - "type": "search" - } - ], - "type": "dashboard", - "updated_at": "2020-09-10T08:52:04.498Z", - "version": "WzIzNzIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboards Ingress Controller [Filebeat Nginx] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Nginx Ingress Controller logs overview](#/dashboard/dfbc0840-f340-11ea-a3fd-1b45ec532bb3) | [Nginx Ingress Controller access and error logs](#/dashboard/0b3dba40-f341-11ea-a3fd-1b45ec532bb3)", - "openLinksInNewTab": false - }, - "title": "Dashboards Ingress Controller [Filebeat Nginx] ECS", - "type": "markdown" - } - }, - "id": "c37e2770-f341-11ea-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-09-10T08:43:56.647Z", - "version": "WzIyOTYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Ingress Controller access logs over time [Filebeat Nginx]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [ - { - "color": "#F00", - "icon": "fa-tag", - "id": "970b1420-a1f3-11e7-a062-a1c3587f4874", - "ignore_global_filters": 1, - "ignore_panel_filters": 1, - "index_pattern": "filebeat-*", - "time_field": "@timestamp" - } - ], - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "3189aa80-a1f3-11e7-a062-a1c3587f4874" - } - ], - "default_index_pattern": "heartbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "lucene", - "query": "event.module:nginx AND fileset.name:ingress_controller" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "auto", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Access logs", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "id": "1db649a0-a1f3-11e7-a062-a1c3587f4874" - } - ], - "split_mode": "everything", - "stacked": "none", - "terms_field": "url.original", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Ingress Controller access logs over time [Filebeat Nginx]", - "type": "metrics" - } - }, - "id": "78738850-f342-11ea-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-09-10T08:49:00.245Z", - "version": "WzIzNTcsMV0=" - }, - { - "attributes": { - "columns": [ - "log.level", - "message" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.module:nginx AND message:*" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Nginx Ingress Controller error logs [Filebeat Nginx]", - "version": 1 - }, - "id": "a832bcf0-f342-11ea-a3fd-1b45ec532bb3", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-09-10T08:50:20.351Z", - "version": "WzIzNjQsMV0=" - }, - { - "attributes": { - "columns": [ - "url.original", - "http.request.method", - "http.response.status_code", - "http.response.body.bytes" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.module:nginx AND url.original:*" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Nginx Ingress Controller access logs [Filebeat Nginx]", - "version": 1 - }, - "id": "d20d4ea0-f342-11ea-a3fd-1b45ec532bb3", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-09-10T08:51:30.569Z", - "version": "WzIzNzEsMV0=" - } - ], - "version": "7.8.0" -} diff --git a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-logs.ndjson b/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-logs.ndjson new file mode 100644 index 00000000000..2ecb2e5779e --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-logs.ndjson @@ -0,0 +1,5 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboards Ingress Controller [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Nginx Ingress Controller logs overview](#/dashboard/dfbc0840-f340-11ea-a3fd-1b45ec532bb3) | [Nginx Ingress Controller access and error logs](#/dashboard/0b3dba40-f341-11ea-a3fd-1b45ec532bb3)\",\"openLinksInNewTab\":false},\"title\":\"Dashboards Ingress Controller [Filebeat Nginx] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"c37e2770-f341-11ea-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:17.806Z","version":"WzQ0OTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ingress Controller access logs over time [Filebeat Nginx]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"icon\":\"fa-tag\",\"id\":\"970b1420-a1f3-11e7-a062-a1c3587f4874\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"filebeat-*\",\"time_field\":\"@timestamp\"}],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"3189aa80-a1f3-11e7-a062-a1c3587f4874\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:nginx AND fileset.name:ingress_controller\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Access logs\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"1db649a0-a1f3-11e7-a062-a1c3587f4874\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"url.original\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Ingress Controller access logs over time [Filebeat Nginx]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"78738850-f342-11ea-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:16.767Z","version":"WzQ0ODQsMV0="} +{"attributes":{"columns":["log.level","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlight\": {\"fields\": {\"*\": {}}, \"fragment_size\": 2147483647, \"post_tags\": [\"@/kibana-highlighted-field@\"], \"pre_tags\": [\"@kibana-highlighted-field@\"], \"require_field_match\": false}, \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.module:nginx AND message:*\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Nginx Ingress Controller error logs [Filebeat Nginx]","version":1},"coreMigrationVersion":"8.0.0","id":"a832bcf0-f342-11ea-a3fd-1b45ec532bb3","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:16.767Z","version":"WzQ0ODUsMV0="} +{"attributes":{"columns":["url.original","http.request.method","http.response.status_code","http.response.body.bytes"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlight\": {\"fields\": {\"*\": {}}, \"fragment_size\": 2147483647, \"post_tags\": [\"@/kibana-highlighted-field@\"], \"pre_tags\": [\"@kibana-highlighted-field@\"], \"require_field_match\": false}, \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.module:nginx AND url.original:*\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Nginx Ingress Controller access logs [Filebeat Nginx]","version":1},"coreMigrationVersion":"8.0.0","id":"d20d4ea0-f342-11ea-a3fd-1b45ec532bb3","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:16.767Z","version":"WzQ0ODYsMV0="} +{"attributes":{"description":"Dashboard for the Filebeat Nginx Ingress Controller","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"36b94fba-26a2-4a63-9260-1e5bdf3a9dd8\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"36b94fba-26a2-4a63-9260-1e5bdf3a9dd8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_36b94fba-26a2-4a63-9260-1e5bdf3a9dd8\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"a7e7600a-703f-48a0-9a3a-3670294ee98b\",\"w\":48,\"x\":0,\"y\":4},\"panelIndex\":\"a7e7600a-703f-48a0-9a3a-3670294ee98b\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a7e7600a-703f-48a0-9a3a-3670294ee98b\"},{\"version\":\"7.8.0\",\"type\":\"search\",\"gridData\":{\"h\":12,\"i\":\"1a56c416-e1e4-4e0e-bd2b-ac5e3553d118\",\"w\":48,\"x\":0,\"y\":16},\"panelIndex\":\"1a56c416-e1e4-4e0e-bd2b-ac5e3553d118\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1a56c416-e1e4-4e0e-bd2b-ac5e3553d118\"},{\"version\":\"7.8.0\",\"type\":\"search\",\"gridData\":{\"h\":28,\"i\":\"7e5729fd-aa67-4ee2-aaa3-8a67e529d4b1\",\"w\":48,\"x\":0,\"y\":28},\"panelIndex\":\"7e5729fd-aa67-4ee2-aaa3-8a67e529d4b1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7e5729fd-aa67-4ee2-aaa3-8a67e529d4b1\"}]","timeRestore":false,"title":"[Filebeat Nginx] Ingress Controller access and error logs","version":1},"coreMigrationVersion":"8.0.0","id":"0b3dba40-f341-11ea-a3fd-1b45ec532bb3","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"c37e2770-f341-11ea-a3fd-1b45ec532bb3","name":"36b94fba-26a2-4a63-9260-1e5bdf3a9dd8:panel_36b94fba-26a2-4a63-9260-1e5bdf3a9dd8","type":"visualization"},{"id":"78738850-f342-11ea-a3fd-1b45ec532bb3","name":"a7e7600a-703f-48a0-9a3a-3670294ee98b:panel_a7e7600a-703f-48a0-9a3a-3670294ee98b","type":"visualization"},{"id":"a832bcf0-f342-11ea-a3fd-1b45ec532bb3","name":"1a56c416-e1e4-4e0e-bd2b-ac5e3553d118:panel_1a56c416-e1e4-4e0e-bd2b-ac5e3553d118","type":"search"},{"id":"d20d4ea0-f342-11ea-a3fd-1b45ec532bb3","name":"7e5729fd-aa67-4ee2-aaa3-8a67e529d4b1:panel_7e5729fd-aa67-4ee2-aaa3-8a67e529d4b1","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:16.767Z","version":"WzQ0ODIsMV0="} diff --git a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-overview.json b/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-overview.json deleted file mode 100644 index 3f618adf2ec..00000000000 --- a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-overview.json +++ /dev/null @@ -1,1118 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Dashboard for the Filebeat Nginx Ingress Controller", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "3", - "w": 12, - "x": 36, - "y": 32 - }, - "panelIndex": "3", - "panelRefName": "panel_0", - "version": "7.8.0" - }, - { - "embeddableConfig": { - "vis": { - "legendOpen": true - } - }, - "gridData": { - "h": 12, - "i": "4", - "w": 11, - "x": 25, - "y": 32 - }, - "panelIndex": "4", - "panelRefName": "panel_1", - "version": "7.8.0" - }, - { - "embeddableConfig": { - "mapBounds": { - "bottom_right": { - "lat": -7.362466865535738, - "lon": 245.39062500000003 - }, - "top_left": { - "lat": 77.07878389624943, - "lon": -245.74218750000003 - } - }, - "mapCenter": null, - "mapCollar": { - "bottom_right": { - "lat": -49.583095, - "lon": 180 - }, - "top_left": { - "lat": 90, - "lon": -180 - }, - "zoom": 2 - }, - "mapZoom": null - }, - "gridData": { - "h": 16, - "i": "8", - "w": 48, - "x": 0, - "y": 4 - }, - "panelIndex": "8", - "panelRefName": "panel_2", - "version": "7.8.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 4, - "i": "f760cd68-8472-4709-b516-ba74f0c00db8", - "w": 48, - "x": 0, - "y": 0 - }, - "panelIndex": "f760cd68-8472-4709-b516-ba74f0c00db8", - "panelRefName": "panel_3", - "version": "7.8.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "9351d7ed-b2f4-419b-8c15-4696f69c2831", - "w": 48, - "x": 0, - "y": 20 - }, - "panelIndex": "9351d7ed-b2f4-419b-8c15-4696f69c2831", - "panelRefName": "panel_4", - "version": "7.8.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "a62866e6-5c7f-4c52-a619-d01fb5005d7c", - "w": 12, - "x": 0, - "y": 32 - }, - "panelIndex": "a62866e6-5c7f-4c52-a619-d01fb5005d7c", - "panelRefName": "panel_5", - "version": "7.8.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "453e4965-85d2-48a8-aea6-b37970d50ec5", - "w": 13, - "x": 12, - "y": 32 - }, - "panelIndex": "453e4965-85d2-48a8-aea6-b37970d50ec5", - "panelRefName": "panel_6", - "version": "7.8.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "606dd662-23fe-4fec-a781-7a5831eb1dc4", - "w": 18, - "x": 0, - "y": 44 - }, - "panelIndex": "606dd662-23fe-4fec-a781-7a5831eb1dc4", - "panelRefName": "panel_7", - "version": "7.8.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "23972f5a-8e18-457a-8288-adf6f15e792e", - "w": 15, - "x": 18, - "y": 44 - }, - "panelIndex": "23972f5a-8e18-457a-8288-adf6f15e792e", - "panelRefName": "panel_8", - "version": "7.8.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "4b4ec4d3-b8a2-4d94-9a6c-b469552940e8", - "w": 15, - "x": 33, - "y": 44 - }, - "panelIndex": "4b4ec4d3-b8a2-4d94-9a6c-b469552940e8", - "panelRefName": "panel_9", - "version": "7.8.0" - } - ], - "timeRestore": false, - "title": "[Filebeat Nginx] Ingress Controller Overview", - "version": 1 - }, - "id": "dfbc0840-f340-11ea-a3fd-1b45ec532bb3", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "Nginx-Access-Browsers-ecs", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "Nginx-Access-OSes-ecs", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "Nginx-Access-Map-ecs", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "c37e2770-f341-11ea-a3fd-1b45ec532bb3", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "ba138ab0-f344-11ea-a3fd-1b45ec532bb3", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "f137cb40-f345-11ea-a3fd-1b45ec532bb3", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "ee250270-f344-11ea-a3fd-1b45ec532bb3", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "1aa782a0-f345-11ea-a3fd-1b45ec532bb3", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "a3bf1ce0-f347-11ea-a3fd-1b45ec532bb3", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "afd506b0-f348-11ea-a3fd-1b45ec532bb3", - "name": "panel_9", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-09-10T09:37:31.793Z", - "version": "WzI0OTksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Browsers breakdown [Filebeat Nginx] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user_agent.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "user_agent.version", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "bottom", - "shareYAxis": true - }, - "title": "Nginx Access Browsers ECS", - "type": "pie" - } - }, - "id": "Nginx-Access-Browsers-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-09-10T08:33:36.686Z", - "version": "WzIxNjcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Operating systems breakdown [Filebeat Nginx] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user_agent.os.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "user_agent.os.version", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "bottom", - "shareYAxis": true - }, - "title": "Nginx Access OSes ECS", - "type": "pie" - } - }, - "id": "Nginx-Access-OSes-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-09-10T08:33:36.686Z", - "version": "WzIxNjgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Access Map [Filebeat Nginx] ECS", - "uiStateJSON": { - "mapCenter": [ - 12.039320557540572, - -0.17578125 - ] - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "source.geo.location" - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "listeners": {}, - "params": { - "addTooltip": true, - "heatBlur": 15, - "heatMaxZoom": 16, - "heatMinOpacity": 0.1, - "heatNormalizeData": true, - "heatRadius": 25, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 15, - 5 - ], - "mapType": "Scaled Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "attribution": "Maps provided by USGS", - "format": "image/png", - "layers": "0", - "styles": "", - "transparent": true, - "version": "1.3.0" - }, - "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" - } - }, - "title": "Nginx Access Map ECS", - "type": "tile_map" - } - }, - "id": "Nginx-Access-Map-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [ - { - "id": "Filebeat-Nginx-module-ecs", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-09-10T08:33:36.686Z", - "version": "WzIxNjksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboards Ingress Controller [Filebeat Nginx] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Nginx Ingress Controller logs overview](#/dashboard/dfbc0840-f340-11ea-a3fd-1b45ec532bb3) | [Nginx Ingress Controller access and error logs](#/dashboard/0b3dba40-f341-11ea-a3fd-1b45ec532bb3)", - "openLinksInNewTab": false - }, - "title": "Dashboards Ingress Controller [Filebeat Nginx] ECS", - "type": "markdown" - } - }, - "id": "c37e2770-f341-11ea-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-09-10T08:43:56.647Z", - "version": "WzIyOTYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Ingress Controller response codes over time [Filebeat Nginx]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "heartbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "lucene", - "query": "event.module:nginx AND fileset.name:ingress_controller" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "auto", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "lucene", - "query": "http.response.status_code:[200 TO 299]" - }, - "id": "5acdc750-a29d-11e7-a062-a1c3587f4874", - "label": "200s" - }, - { - "color": "rgba(252,196,0,1)", - "filter": { - "language": "lucene", - "query": "http.response.status_code:[300 TO 399]" - }, - "id": "6efd2ae0-a29d-11e7-a062-a1c3587f4874", - "label": "300s" - }, - { - "color": "rgba(211,49,21,1)", - "filter": { - "language": "lucene", - "query": "http.response.status_code:[400 TO 499]" - }, - "id": "76089a90-a29d-11e7-a062-a1c3587f4874", - "label": "400s" - }, - { - "color": "rgba(171,20,158,1)", - "filter": { - "language": "lucene", - "query": "http.response.status_code:[500 TO 599]" - }, - "id": "7c7929d0-a29d-11e7-a062-a1c3587f4874", - "label": "500s" - } - ], - "split_mode": "filters", - "stacked": "stacked", - "terms_field": "http.response.status_code", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Ingress Controller response codes over time [Filebeat Nginx]", - "type": "metrics" - } - }, - "id": "ba138ab0-f344-11ea-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-09-10T09:05:09.339Z", - "version": "WzIzOTcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Ingress Controller top Upstreams [Filebeat Nginx]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "6252c320-a1f5-11e7-92ba-5d0b8663aece" - } - ], - "default_index_pattern": "heartbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "lucene", - "query": "event.module:nginx AND fileset.name:ingress_controller" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "nginx.ingress_controller.upstream.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "value_template": "" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "Ingress Controller top Upstreams [Filebeat Nginx]", - "type": "metrics" - } - }, - "id": "f137cb40-f345-11ea-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-09-10T09:13:51.348Z", - "version": "WzI0MzAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Ingress Controller top pages [Filebeat Nginx]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "6252c320-a1f5-11e7-92ba-5d0b8663aece" - } - ], - "default_index_pattern": "heartbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "lucene", - "query": "event.module:nginx AND fileset.name:ingress_controller" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "url.original", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "value_template": "" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "Ingress Controller top pages [Filebeat Nginx]", - "type": "metrics" - } - }, - "id": "ee250270-f344-11ea-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-09-10T09:06:36.695Z", - "version": "WzI0MDIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Ingress Controller Data Volume [Filebeat Nginx]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "heartbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "lucene", - "query": "event.module: nginx AND fileset.name:ingress_controller" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "auto", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "http.response.body.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "lucene", - "query": "http.response.status_code:[200 TO 299]" - }, - "id": "7c343c20-a29e-11e7-a062-a1c3587f4874", - "label": "200s" - } - ], - "split_mode": "everything", - "stacked": "none", - "terms_field": null - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Ingress Controller Data Volume [Filebeat Nginx]", - "type": "metrics" - } - }, - "id": "1aa782a0-f345-11ea-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-09-10T09:07:51.369Z", - "version": "WzI0MTMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Ingress Controller Upstream Time Consumed By Path [Filebeat Nginx]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "heartbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "lucene", - "query": "event.module: nginx AND fileset.name:ingress_controller" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "auto", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "s,s,", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "nginx.ingress_controller.upstream.response.time", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "lucene", - "query": "http.response.status_code:[200 TO 299]" - }, - "id": "7c343c20-a29e-11e7-a062-a1c3587f4874", - "label": "200s" - } - ], - "split_mode": "terms", - "stacked": "none", - "terms_field": "url.original", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Ingress Controller Upstream Time Consumed By Path [Filebeat Nginx]", - "type": "metrics" - } - }, - "id": "a3bf1ce0-f347-11ea-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-09-10T09:26:00.366Z", - "version": "WzI0NjMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Ingress Controller Request Volume By Path [Filebeat Nginx]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "heartbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "lucene", - "query": "event.module: nginx AND fileset.name:ingress_controller" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "auto", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "nginx.ingress_controller.upstream.response.length", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum", - "values": [ - "0.5", - "0.95", - "0.99" - ] - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "lucene", - "query": "http.response.status_code:[200 TO 299]" - }, - "id": "7c343c20-a29e-11e7-a062-a1c3587f4874", - "label": "200s" - } - ], - "split_mode": "terms", - "stacked": "none", - "terms_exclude": "", - "terms_field": "url.original", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Ingress Controller request Volume By Path [Filebeat Nginx]", - "type": "metrics" - } - }, - "id": "afd506b0-f348-11ea-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-09-10T09:33:30.139Z", - "version": "WzI0OTMsMV0=" - }, - { - "attributes": { - "columns": [ - "url.original", - "http.request.method", - "http.response.status_code", - "http.request.referrer", - "http.response.body.bytes" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.module:nginx" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Nginx logs [Filebeat Nginx] ECS", - "version": 1 - }, - "id": "Filebeat-Nginx-module-ecs", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-09-10T08:33:36.686Z", - "version": "WzIxNzUsMV0=" - } - ], - "version": "7.8.0" -} diff --git a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-overview.ndjson b/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-overview.ndjson new file mode 100644 index 00000000000..f25e4aae61d --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-overview.ndjson @@ -0,0 +1,12 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Browsers breakdown [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Nginx Access Browsers ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Nginx-Access-Browsers-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Operating systems breakdown [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.os.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.os.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Nginx Access OSes ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Nginx-Access-OSes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MDUsMV0="} +{"attributes":{"columns":["url.original","http.request.method","http.response.status_code","http.request.referrer","http.response.body.bytes"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.module:nginx\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Nginx logs [Filebeat Nginx] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-Nginx-module-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Access Map [Filebeat Nginx] ECS","uiStateJSON":"{\"mapCenter\": [12.039320557540572, -0.17578125]}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\"},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":16,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[15,5],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Nginx Access Map ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"Nginx-Access-Map-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Filebeat-Nginx-module-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboards Ingress Controller [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Nginx Ingress Controller logs overview](#/dashboard/dfbc0840-f340-11ea-a3fd-1b45ec532bb3) | [Nginx Ingress Controller access and error logs](#/dashboard/0b3dba40-f341-11ea-a3fd-1b45ec532bb3)\",\"openLinksInNewTab\":false},\"title\":\"Dashboards Ingress Controller [Filebeat Nginx] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"c37e2770-f341-11ea-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:17.806Z","version":"WzQ0OTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ingress Controller response codes over time [Filebeat Nginx]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:nginx AND fileset.name:ingress_controller\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"lucene\",\"query\":\"http.response.status_code:[200 TO 299]\"},\"id\":\"5acdc750-a29d-11e7-a062-a1c3587f4874\",\"label\":\"200s\"},{\"color\":\"rgba(252,196,0,1)\",\"filter\":{\"language\":\"lucene\",\"query\":\"http.response.status_code:[300 TO 399]\"},\"id\":\"6efd2ae0-a29d-11e7-a062-a1c3587f4874\",\"label\":\"300s\"},{\"color\":\"rgba(211,49,21,1)\",\"filter\":{\"language\":\"lucene\",\"query\":\"http.response.status_code:[400 TO 499]\"},\"id\":\"76089a90-a29d-11e7-a062-a1c3587f4874\",\"label\":\"400s\"},{\"color\":\"rgba(171,20,158,1)\",\"filter\":{\"language\":\"lucene\",\"query\":\"http.response.status_code:[500 TO 599]\"},\"id\":\"7c7929d0-a29d-11e7-a062-a1c3587f4874\",\"label\":\"500s\"}],\"split_mode\":\"filters\",\"stacked\":\"stacked\",\"terms_field\":\"http.response.status_code\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Ingress Controller response codes over time [Filebeat Nginx]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ba138ab0-f344-11ea-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:17.806Z","version":"WzQ0OTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ingress Controller top Upstreams [Filebeat Nginx]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"6252c320-a1f5-11e7-92ba-5d0b8663aece\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:nginx AND fileset.name:ingress_controller\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nginx.ingress_controller.upstream.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"value_template\":\"\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Ingress Controller top Upstreams [Filebeat Nginx]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f137cb40-f345-11ea-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:17.806Z","version":"WzQ0OTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ingress Controller top pages [Filebeat Nginx]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"6252c320-a1f5-11e7-92ba-5d0b8663aece\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:nginx AND fileset.name:ingress_controller\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"url.original\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"value_template\":\"\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Ingress Controller top pages [Filebeat Nginx]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ee250270-f344-11ea-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:17.806Z","version":"WzQ0OTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ingress Controller Data Volume [Filebeat Nginx]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"lucene\",\"query\":\"event.module: nginx AND fileset.name:ingress_controller\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"http.response.body.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"lucene\",\"query\":\"http.response.status_code:[200 TO 299]\"},\"id\":\"7c343c20-a29e-11e7-a062-a1c3587f4874\",\"label\":\"200s\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Ingress Controller Data Volume [Filebeat Nginx]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1aa782a0-f345-11ea-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:17.806Z","version":"WzQ0OTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ingress Controller Upstream Time Consumed By Path [Filebeat Nginx]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"lucene\",\"query\":\"event.module: nginx AND fileset.name:ingress_controller\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"s,s,\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.ingress_controller.upstream.response.time\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"lucene\",\"query\":\"http.response.status_code:[200 TO 299]\"},\"id\":\"7c343c20-a29e-11e7-a062-a1c3587f4874\",\"label\":\"200s\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"url.original\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Ingress Controller Upstream Time Consumed By Path [Filebeat Nginx]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a3bf1ce0-f347-11ea-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:17.806Z","version":"WzQ0OTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ingress Controller Request Volume By Path [Filebeat Nginx]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"lucene\",\"query\":\"event.module: nginx AND fileset.name:ingress_controller\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.ingress_controller.upstream.response.length\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\",\"values\":[\"0.5\",\"0.95\",\"0.99\"]}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"lucene\",\"query\":\"http.response.status_code:[200 TO 299]\"},\"id\":\"7c343c20-a29e-11e7-a062-a1c3587f4874\",\"label\":\"200s\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_exclude\":\"\",\"terms_field\":\"url.original\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Ingress Controller request Volume By Path [Filebeat Nginx]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"afd506b0-f348-11ea-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:17.806Z","version":"WzQ0OTcsMV0="} +{"attributes":{"description":"Dashboard for the Filebeat Nginx Ingress Controller","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"3\",\"w\":12,\"x\":36,\"y\":32},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"4\",\"w\":11,\"x\":25,\"y\":32},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"8\",\"w\":48,\"x\":0,\"y\":4},\"panelIndex\":\"8\",\"embeddableConfig\":{\"mapBounds\":{\"bottom_right\":{\"lat\":-7.362466865535738,\"lon\":245.39062500000003},\"top_left\":{\"lat\":77.07878389624943,\"lon\":-245.74218750000003}},\"mapCenter\":null,\"mapCollar\":{\"bottom_right\":{\"lat\":-49.583095,\"lon\":180},\"top_left\":{\"lat\":90,\"lon\":-180},\"zoom\":2},\"mapZoom\":null,\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"f760cd68-8472-4709-b516-ba74f0c00db8\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"f760cd68-8472-4709-b516-ba74f0c00db8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_f760cd68-8472-4709-b516-ba74f0c00db8\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"9351d7ed-b2f4-419b-8c15-4696f69c2831\",\"w\":48,\"x\":0,\"y\":20},\"panelIndex\":\"9351d7ed-b2f4-419b-8c15-4696f69c2831\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9351d7ed-b2f4-419b-8c15-4696f69c2831\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"a62866e6-5c7f-4c52-a619-d01fb5005d7c\",\"w\":12,\"x\":0,\"y\":32},\"panelIndex\":\"a62866e6-5c7f-4c52-a619-d01fb5005d7c\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a62866e6-5c7f-4c52-a619-d01fb5005d7c\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"453e4965-85d2-48a8-aea6-b37970d50ec5\",\"w\":13,\"x\":12,\"y\":32},\"panelIndex\":\"453e4965-85d2-48a8-aea6-b37970d50ec5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_453e4965-85d2-48a8-aea6-b37970d50ec5\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"606dd662-23fe-4fec-a781-7a5831eb1dc4\",\"w\":18,\"x\":0,\"y\":44},\"panelIndex\":\"606dd662-23fe-4fec-a781-7a5831eb1dc4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_606dd662-23fe-4fec-a781-7a5831eb1dc4\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"23972f5a-8e18-457a-8288-adf6f15e792e\",\"w\":15,\"x\":18,\"y\":44},\"panelIndex\":\"23972f5a-8e18-457a-8288-adf6f15e792e\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_23972f5a-8e18-457a-8288-adf6f15e792e\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"4b4ec4d3-b8a2-4d94-9a6c-b469552940e8\",\"w\":15,\"x\":33,\"y\":44},\"panelIndex\":\"4b4ec4d3-b8a2-4d94-9a6c-b469552940e8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4b4ec4d3-b8a2-4d94-9a6c-b469552940e8\"}]","timeRestore":false,"title":"[Filebeat Nginx] Ingress Controller Overview","version":1},"coreMigrationVersion":"8.0.0","id":"dfbc0840-f340-11ea-a3fd-1b45ec532bb3","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Nginx-Access-Browsers-ecs","name":"3:panel_3","type":"visualization"},{"id":"Nginx-Access-OSes-ecs","name":"4:panel_4","type":"visualization"},{"id":"Nginx-Access-Map-ecs","name":"8:panel_8","type":"visualization"},{"id":"c37e2770-f341-11ea-a3fd-1b45ec532bb3","name":"f760cd68-8472-4709-b516-ba74f0c00db8:panel_f760cd68-8472-4709-b516-ba74f0c00db8","type":"visualization"},{"id":"ba138ab0-f344-11ea-a3fd-1b45ec532bb3","name":"9351d7ed-b2f4-419b-8c15-4696f69c2831:panel_9351d7ed-b2f4-419b-8c15-4696f69c2831","type":"visualization"},{"id":"f137cb40-f345-11ea-a3fd-1b45ec532bb3","name":"a62866e6-5c7f-4c52-a619-d01fb5005d7c:panel_a62866e6-5c7f-4c52-a619-d01fb5005d7c","type":"visualization"},{"id":"ee250270-f344-11ea-a3fd-1b45ec532bb3","name":"453e4965-85d2-48a8-aea6-b37970d50ec5:panel_453e4965-85d2-48a8-aea6-b37970d50ec5","type":"visualization"},{"id":"1aa782a0-f345-11ea-a3fd-1b45ec532bb3","name":"606dd662-23fe-4fec-a781-7a5831eb1dc4:panel_606dd662-23fe-4fec-a781-7a5831eb1dc4","type":"visualization"},{"id":"a3bf1ce0-f347-11ea-a3fd-1b45ec532bb3","name":"23972f5a-8e18-457a-8288-adf6f15e792e:panel_23972f5a-8e18-457a-8288-adf6f15e792e","type":"visualization"},{"id":"afd506b0-f348-11ea-a3fd-1b45ec532bb3","name":"4b4ec4d3-b8a2-4d94-9a6c-b469552940e8:panel_4b4ec4d3-b8a2-4d94-9a6c-b469552940e8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:17.806Z","version":"WzQ0ODcsMV0="} diff --git a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-logs.json b/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-logs.json deleted file mode 100644 index b25c6da5482..00000000000 --- a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-logs.json +++ /dev/null @@ -1,279 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "columns": [ - "log.level", - "message" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "event.module:nginx AND message:*" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Nginx error logs [Filebeat Nginx] ECS", - "version": 1 - }, - "id": "9eb25600-a1f0-11e7-928f-5dbe6f6f5519-ecs", - "type": "search", - "version": 1 - }, - { - "attributes": { - "columns": [ - "url.original", - "http.request.method", - "http.response.status_code", - "http.response.body.bytes" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "event.module:nginx AND url.original:*" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Nginx access logs [Filebeat Nginx] ECS", - "version": 1 - }, - "id": "6d9e66d0-a1f0-11e7-928f-5dbe6f6f5519-ecs", - "type": "search", - "version": 4 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Access logs over time [Filebeat Nginx] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [ - { - "color": "#F00", - "icon": "fa-tag", - "id": "970b1420-a1f3-11e7-a062-a1c3587f4874", - "ignore_global_filters": 1, - "ignore_panel_filters": 1, - "index_pattern": "filebeat-*", - "time_field": "@timestamp" - } - ], - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "3189aa80-a1f3-11e7-a062-a1c3587f4874" - } - ], - "filter": "event.module:nginx AND fileset.name:access", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "auto", - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Access logs", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_filters": [ - { - "color": "#68BC00", - "id": "1db649a0-a1f3-11e7-a062-a1c3587f4874" - } - ], - "split_mode": "everything", - "stacked": "none", - "terms_field": "url.original", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Access logs over time [Filebeat Nginx] ECS", - "type": "metrics" - } - }, - "id": "1cfb1a80-a1f4-11e7-928f-5dbe6f6f5519-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Dashboards [Filebeat Nginx] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Nginx logs overview](#/dashboard/55a9e6e0-a29e-11e7-928f-5dbe6f6f5519-ecs) | [Nginx access and error logs](#/dashboard/046212a0-a2a1-11e7-928f-5dbe6f6f5519-ecs)" - }, - "title": "Dashboards [Filebeat Nginx] ECS", - "type": "markdown" - } - }, - "id": "97109780-a2a5-11e7-928f-5dbe6f6f5519-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "Dashboard for the Filebeat Nginx module", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "columns": [ - "log.level", - "message" - ], - "id": "9eb25600-a1f0-11e7-928f-5dbe6f6f5519-ecs", - "panelIndex": 11, - "row": 5, - "size_x": 12, - "size_y": 3, - "sort": [ - "@timestamp", - "desc" - ], - "type": "search" - }, - { - "col": 1, - "columns": [ - "url.original", - "http.request.method", - "http.response.status_code", - "http.response.body.bytes" - ], - "id": "6d9e66d0-a1f0-11e7-928f-5dbe6f6f5519-ecs", - "panelIndex": 16, - "row": 8, - "size_x": 12, - "size_y": 7, - "sort": [ - "@timestamp", - "desc" - ], - "type": "search" - }, - { - "col": 1, - "id": "1cfb1a80-a1f4-11e7-928f-5dbe6f6f5519-ecs", - "panelIndex": 18, - "row": 2, - "size_x": 12, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "97109780-a2a5-11e7-928f-5dbe6f6f5519-ecs", - "panelIndex": 19, - "row": 1, - "size_x": 12, - "size_y": 1, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Filebeat Nginx] Access and error logs ECS", - "uiStateJSON": {}, - "version": 1 - }, - "id": "046212a0-a2a1-11e7-928f-5dbe6f6f5519-ecs", - "type": "dashboard", - "version": 2 - } - ], - "version": "6.0.0-beta2" -} diff --git a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-logs.ndjson b/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-logs.ndjson new file mode 100644 index 00000000000..6add65282c6 --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-logs.ndjson @@ -0,0 +1,5 @@ +{"attributes":{"columns":["log.level","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.module:nginx AND message:*\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Nginx error logs [Filebeat Nginx] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"9eb25600-a1f0-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:18.875Z","version":"WzQ0OTksMV0="} +{"attributes":{"columns":["url.original","http.request.method","http.response.status_code","http.response.body.bytes"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.module:nginx AND url.original:*\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Nginx access logs [Filebeat Nginx] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"6d9e66d0-a1f0-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:18.875Z","version":"WzQ1MDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Access logs over time [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"icon\":\"fa-tag\",\"id\":\"970b1420-a1f3-11e7-a062-a1c3587f4874\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"filebeat-*\",\"time_field\":\"@timestamp\"}],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"3189aa80-a1f3-11e7-a062-a1c3587f4874\"}],\"filter\":{\"query\":\"event.module:nginx AND fileset.name:access\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Access logs\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"1db649a0-a1f3-11e7-a062-a1c3587f4874\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"url.original\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Access logs over time [Filebeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1cfb1a80-a1f4-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:18.875Z","version":"WzQ1MDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Dashboards [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Nginx logs overview](#/dashboard/55a9e6e0-a29e-11e7-928f-5dbe6f6f5519-ecs) | [Nginx access and error logs](#/dashboard/046212a0-a2a1-11e7-928f-5dbe6f6f5519-ecs)\"},\"title\":\"Dashboards [Filebeat Nginx] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"97109780-a2a5-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MTEsMV0="} +{"attributes":{"description":"Dashboard for the Filebeat Nginx module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":16,\"w\":48,\"h\":12,\"i\":\"11\"},\"panelIndex\":\"11\",\"embeddableConfig\":{\"columns\":[\"log.level\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":28,\"w\":48,\"h\":28,\"i\":\"16\"},\"panelIndex\":\"16\",\"embeddableConfig\":{\"columns\":[\"url.original\",\"http.request.method\",\"http.response.status_code\",\"http.response.body.bytes\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":48,\"h\":12,\"i\":\"18\"},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"19\"},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"}]","timeRestore":false,"title":"[Filebeat Nginx] Access and error logs ECS","version":1},"coreMigrationVersion":"8.0.0","id":"046212a0-a2a1-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"9eb25600-a1f0-11e7-928f-5dbe6f6f5519-ecs","name":"11:panel_11","type":"search"},{"id":"6d9e66d0-a1f0-11e7-928f-5dbe6f6f5519-ecs","name":"16:panel_16","type":"search"},{"id":"1cfb1a80-a1f4-11e7-928f-5dbe6f6f5519-ecs","name":"18:panel_18","type":"visualization"},{"id":"97109780-a2a5-11e7-928f-5dbe6f6f5519-ecs","name":"19:panel_19","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:18.875Z","version":"WzQ1MDMsMV0="} diff --git a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-overview.json b/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-overview.json deleted file mode 100644 index 7b20868cac6..00000000000 --- a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-overview.json +++ /dev/null @@ -1,677 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Browsers breakdown [Filebeat Nginx] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user_agent.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "user_agent.version", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "bottom", - "shareYAxis": true - }, - "title": "Nginx Access Browsers ECS", - "type": "pie" - } - }, - "id": "Nginx-Access-Browsers-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Operating systems breakdown [Filebeat Nginx] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user_agent.os.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "user_agent.os.version", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "bottom", - "shareYAxis": true - }, - "title": "Nginx Access OSes ECS", - "type": "pie" - } - }, - "id": "Nginx-Access-OSes-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Filebeat-Nginx-module-ecs", - "title": "Access Map [Filebeat Nginx] ECS", - "uiStateJSON": { - "mapCenter": [ - 12.039320557540572, - -0.17578125 - ] - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "source.geo.location" - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "listeners": {}, - "params": { - "addTooltip": true, - "heatBlur": 15, - "heatMaxZoom": 16, - "heatMinOpacity": 0.1, - "heatNormalizeData": true, - "heatRadius": 25, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 15, - 5 - ], - "mapType": "Scaled Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "attribution": "Maps provided by USGS", - "format": "image/png", - "layers": "0", - "styles": "", - "transparent": true, - "version": "1.3.0" - }, - "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" - } - }, - "title": "Nginx Access Map ECS", - "type": "tile_map" - } - }, - "id": "Nginx-Access-Map-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Response codes over time [Filebeat Nginx] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "filter": "event.module:nginx AND fileset.name:access", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "auto", - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_filters": [ - { - "color": "#68BC00", - "filter": "http.response.status_code:[200 TO 299]", - "id": "5acdc750-a29d-11e7-a062-a1c3587f4874", - "label": "200s" - }, - { - "color": "rgba(252,196,0,1)", - "filter": "http.response.status_code:[300 TO 399]", - "id": "6efd2ae0-a29d-11e7-a062-a1c3587f4874", - "label": "300s" - }, - { - "color": "rgba(211,49,21,1)", - "filter": "http.response.status_code:[400 TO 499]", - "id": "76089a90-a29d-11e7-a062-a1c3587f4874", - "label": "400s" - }, - { - "color": "rgba(171,20,158,1)", - "filter": "http.response.status_code:[500 TO 599]", - "id": "7c7929d0-a29d-11e7-a062-a1c3587f4874", - "label": "500s" - } - ], - "split_mode": "filters", - "stacked": "stacked", - "terms_field": "http.response.status_code", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Response codes over time [Filebeat Nginx] ECS", - "type": "metrics" - } - }, - "id": "b70b1b20-a1f4-11e7-928f-5dbe6f6f5519-ecs", - "type": "visualization", - "version": 7 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Top pages [Filebeat Nginx] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "id": "6252c320-a1f5-11e7-92ba-5d0b8663aece" - } - ], - "filter": "event.module:nginx AND fileset.name:access", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "url.original", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "value_template": "" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "Top pages [Filebeat Nginx] ECS", - "type": "metrics" - } - }, - "id": "9184fa00-a1f5-11e7-928f-5dbe6f6f5519-ecs", - "type": "visualization", - "version": 3 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Errors over time [Filebeat Nginx] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "filter": "event.module:nginx AND fileset.name:error", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "auto", - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "rgba(211,49,21,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "log.level", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Errors over time [Filebeat Nginx] ECS", - "type": "metrics" - } - }, - "id": "46322e50-a1f6-11e7-928f-5dbe6f6f5519-ecs", - "type": "visualization", - "version": 5 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Data Volume [Filebeat Nginx] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "filter": "event.module: nginx AND fileset.name: access", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "auto", - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "http.response.body.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_filters": [ - { - "color": "#68BC00", - "filter": "http.response.status_code:[200 TO 299]", - "id": "7c343c20-a29e-11e7-a062-a1c3587f4874", - "label": "200s" - } - ], - "split_mode": "everything", - "stacked": "none", - "terms_field": null - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Data Volume [Filebeat Nginx] ECS", - "type": "metrics" - } - }, - "id": "0dd6f320-a29f-11e7-928f-5dbe6f6f5519-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Dashboards [Filebeat Nginx] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Nginx logs overview](#/dashboard/55a9e6e0-a29e-11e7-928f-5dbe6f6f5519-ecs) | [Nginx access and error logs](#/dashboard/046212a0-a2a1-11e7-928f-5dbe6f6f5519-ecs)" - }, - "title": "Dashboards [Filebeat Nginx] ECS", - "type": "markdown" - } - }, - "id": "97109780-a2a5-11e7-928f-5dbe6f6f5519-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "columns": [ - "url.original", - "http.request.method", - "http.response.status_code", - "http.request.referrer", - "http.response.body.bytes" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "event.module:nginx" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Nginx logs [Filebeat Nginx] ECS", - "version": 1 - }, - "id": "Filebeat-Nginx-module-ecs", - "type": "search", - "version": 2 - }, - { - "attributes": { - "description": "Dashboard for the Filebeat Nginx module", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 10, - "id": "Nginx-Access-Browsers-ecs", - "panelIndex": 3, - "row": 12, - "size_x": 3, - "size_y": 3, - "type": "visualization" - }, - { - "col": 7, - "id": "Nginx-Access-OSes-ecs", - "panelIndex": 4, - "row": 12, - "size_x": 3, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "Nginx-Access-Map-ecs", - "panelIndex": 8, - "row": 2, - "size_x": 12, - "size_y": 4, - "type": "visualization" - }, - { - "col": 1, - "id": "b70b1b20-a1f4-11e7-928f-5dbe6f6f5519-ecs", - "panelIndex": 13, - "row": 6, - "size_x": 12, - "size_y": 3, - "type": "visualization" - }, - { - "col": 7, - "id": "9184fa00-a1f5-11e7-928f-5dbe6f6f5519-ecs", - "panelIndex": 14, - "row": 9, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "46322e50-a1f6-11e7-928f-5dbe6f6f5519-ecs", - "panelIndex": 15, - "row": 9, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "0dd6f320-a29f-11e7-928f-5dbe6f6f5519-ecs", - "panelIndex": 16, - "row": 12, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "97109780-a2a5-11e7-928f-5dbe6f6f5519-ecs", - "panelIndex": 17, - "row": 1, - "size_x": 12, - "size_y": 1, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Filebeat Nginx] Overview ECS", - "uiStateJSON": { - "P-4": { - "vis": { - "legendOpen": true - } - }, - "P-8": { - "mapBounds": { - "bottom_right": { - "lat": -7.362466865535738, - "lon": 245.39062500000003 - }, - "top_left": { - "lat": 77.07878389624943, - "lon": -245.74218750000003 - } - }, - "mapCenter": [ - 50.51342652633956, - -0.17578125 - ], - "mapCollar": { - "bottom_right": { - "lat": -49.583095, - "lon": 180 - }, - "top_left": { - "lat": 90, - "lon": -180 - }, - "zoom": 2 - }, - "mapZoom": 2 - } - }, - "version": 1 - }, - "id": "55a9e6e0-a29e-11e7-928f-5dbe6f6f5519-ecs", - "type": "dashboard", - "version": 6 - } - ], - "version": "6.0.0-beta2" -} diff --git a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-overview.ndjson b/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-overview.ndjson new file mode 100644 index 00000000000..7553bdc0fcd --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-overview.ndjson @@ -0,0 +1,10 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Browsers breakdown [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Nginx Access Browsers ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Nginx-Access-Browsers-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Operating systems breakdown [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.os.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.os.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Nginx Access OSes ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Nginx-Access-OSes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MDUsMV0="} +{"attributes":{"columns":["url.original","http.request.method","http.response.status_code","http.request.referrer","http.response.body.bytes"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.module:nginx\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Nginx logs [Filebeat Nginx] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-Nginx-module-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Access Map [Filebeat Nginx] ECS","uiStateJSON":"{\"mapCenter\": [12.039320557540572, -0.17578125]}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\"},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":16,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[15,5],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Nginx Access Map ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"Nginx-Access-Map-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Filebeat-Nginx-module-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Response codes over time [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"query\":\"event.module:nginx AND fileset.name:access\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"query\":\"http.response.status_code:[200 TO 299]\",\"language\":\"lucene\"},\"id\":\"5acdc750-a29d-11e7-a062-a1c3587f4874\",\"label\":\"200s\"},{\"color\":\"rgba(252,196,0,1)\",\"filter\":{\"query\":\"http.response.status_code:[300 TO 399]\",\"language\":\"lucene\"},\"id\":\"6efd2ae0-a29d-11e7-a062-a1c3587f4874\",\"label\":\"300s\"},{\"color\":\"rgba(211,49,21,1)\",\"filter\":{\"query\":\"http.response.status_code:[400 TO 499]\",\"language\":\"lucene\"},\"id\":\"76089a90-a29d-11e7-a062-a1c3587f4874\",\"label\":\"400s\"},{\"color\":\"rgba(171,20,158,1)\",\"filter\":{\"query\":\"http.response.status_code:[500 TO 599]\",\"language\":\"lucene\"},\"id\":\"7c7929d0-a29d-11e7-a062-a1c3587f4874\",\"label\":\"500s\"}],\"split_mode\":\"filters\",\"stacked\":\"stacked\",\"terms_field\":\"http.response.status_code\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Response codes over time [Filebeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b70b1b20-a1f4-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top pages [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"6252c320-a1f5-11e7-92ba-5d0b8663aece\"}],\"filter\":{\"query\":\"event.module:nginx AND fileset.name:access\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"url.original\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"value_template\":\"\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top pages [Filebeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9184fa00-a1f5-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Errors over time [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"query\":\"event.module:nginx AND fileset.name:error\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"log.level\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Errors over time [Filebeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"46322e50-a1f6-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Data Volume [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"query\":\"event.module: nginx AND fileset.name: access\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"http.response.body.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"query\":\"http.response.status_code:[200 TO 299]\",\"language\":\"lucene\"},\"id\":\"7c343c20-a29e-11e7-a062-a1c3587f4874\",\"label\":\"200s\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Data Volume [Filebeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0dd6f320-a29f-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Dashboards [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Nginx logs overview](#/dashboard/55a9e6e0-a29e-11e7-928f-5dbe6f6f5519-ecs) | [Nginx access and error logs](#/dashboard/046212a0-a2a1-11e7-928f-5dbe6f6f5519-ecs)\"},\"title\":\"Dashboards [Filebeat Nginx] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"97109780-a2a5-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MTEsMV0="} +{"attributes":{"description":"Dashboard for the Filebeat Nginx module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":36,\"y\":44,\"w\":12,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":44,\"w\":12,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":48,\"h\":16,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"mapBounds\":{\"bottom_right\":{\"lat\":-7.362466865535738,\"lon\":245.39062500000003},\"top_left\":{\"lat\":77.07878389624943,\"lon\":-245.74218750000003}},\"mapCenter\":[50.51342652633956,-0.17578125],\"mapCollar\":{\"bottom_right\":{\"lat\":-49.583095,\"lon\":180},\"top_left\":{\"lat\":90,\"lon\":-180},\"zoom\":2},\"mapZoom\":2,\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":48,\"h\":12,\"i\":\"13\"},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":32,\"w\":24,\"h\":12,\"i\":\"14\"},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":32,\"w\":24,\"h\":12,\"i\":\"15\"},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":44,\"w\":24,\"h\":12,\"i\":\"16\"},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"17\"},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"}]","timeRestore":false,"title":"[Filebeat Nginx] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"55a9e6e0-a29e-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Nginx-Access-Browsers-ecs","name":"3:panel_3","type":"visualization"},{"id":"Nginx-Access-OSes-ecs","name":"4:panel_4","type":"visualization"},{"id":"Nginx-Access-Map-ecs","name":"8:panel_8","type":"visualization"},{"id":"b70b1b20-a1f4-11e7-928f-5dbe6f6f5519-ecs","name":"13:panel_13","type":"visualization"},{"id":"9184fa00-a1f5-11e7-928f-5dbe6f6f5519-ecs","name":"14:panel_14","type":"visualization"},{"id":"46322e50-a1f6-11e7-928f-5dbe6f6f5519-ecs","name":"15:panel_15","type":"visualization"},{"id":"0dd6f320-a29f-11e7-928f-5dbe6f6f5519-ecs","name":"16:panel_16","type":"visualization"},{"id":"97109780-a2a5-11e7-928f-5dbe6f6f5519-ecs","name":"17:panel_17","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MTMsMV0="} diff --git a/filebeat/module/nginx/module.yml b/filebeat/module/nginx/module.yml index f0447f9173e..ee22a349a27 100644 --- a/filebeat/module/nginx/module.yml +++ b/filebeat/module/nginx/module.yml @@ -1,12 +1,12 @@ dashboards: - id: 55a9e6e0-a29e-11e7-928f-5dbe6f6f5519 - file: Filebeat-nginx-overview.json + file: Filebeat-nginx-overview.ndjson - id: 046212a0-a2a1-11e7-928f-5dbe6f6f5519 - file: Filebeat-nginx-logs.json + file: Filebeat-nginx-logs.ndjson - id: ML-Nginx-Access-Remote-IP-Count-Explorer - file: ml-nginx-access-remote-ip-count-explorer.json + file: ml-nginx-access-remote-ip-count-explorer.ndjson - id: ML-Nginx-Remote-IP-URL-Explorer - file: ml-nginx-remote-ip-url-explorer.json + file: ml-nginx-remote-ip-url-explorer.ndjson diff --git a/filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-compliance.json b/filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-compliance.json deleted file mode 100644 index 0e882438eb7..00000000000 --- a/filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-compliance.json +++ /dev/null @@ -1,668 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "columns": [ - "osquery.result.columns.path", - "osquery.result.columns.type", - "osquery.result.columns.flags" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "osquery.result.name", - "negate": false, - "params": { - "query": "pack_it-compliance_mounts", - "type": "phrase" - }, - "type": "phrase", - "value": "pack_it-compliance_mounts" - }, - "query": { - "match": { - "osquery.result.name": { - "query": "pack_it-compliance_mounts", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Mounts [Filebeat Osquery] ECS", - "version": 1 - }, - "id": "7a9482d0-eb00-11e7-8f04-51231daa5b05-ecs", - "type": "search", - "updated_at": "2018-01-08T17:35:32.102Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "7a9482d0-eb00-11e7-8f04-51231daa5b05-ecs", - "title": "Mounts by type [Filebeat Osquery] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "osquery.result.columns.path", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "osquery.result.columns.type", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Mounts by type [Filebeat Osquery] ECS", - "type": "pie" - } - }, - "id": "a9fd8bb0-eb01-11e7-8f04-51231daa5b05-ecs", - "type": "visualization", - "updated_at": "2018-01-08T17:35:32.102Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "osquery.result.columns.name", - "osquery.result.columns.version", - "osquery.result.columns.revision" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "osquery.result.name", - "negate": false, - "params": { - "query": "pack_it-compliance_deb_packages", - "type": "phrase" - }, - "type": "phrase", - "value": "pack_it-compliance_deb_packages" - }, - "query": { - "match": { - "osquery.result.name": { - "query": "pack_it-compliance_deb_packages", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "DEB packages installed [Filebeat Osquery] ECS", - "version": 1 - }, - "id": "3824b080-eb02-11e7-8f04-51231daa5b05-ecs", - "type": "search", - "updated_at": "2018-01-08T17:35:32.102Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "b5d6baa0-eb02-11e7-8f04-51231daa5b05-ecs", - "title": "OS versions [Filebeat Osquery] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "osquery.result.host_identifier" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "4", - "params": { - "field": "osquery.result.columns.platform_like", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "osquery.result.columns.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "osquery.result.columns.version", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "OS versions [Filebeat Osquery] ECS", - "type": "pie" - } - }, - "id": "1da1ed30-eb03-11e7-8f04-51231daa5b05-ecs", - "type": "visualization", - "updated_at": "2018-01-08T17:35:32.102Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "osquery.result.columns.status", - "negate": false, - "params": { - "query": "Live", - "type": "phrase" - }, - "type": "phrase", - "value": "Live" - }, - "query": { - "match": { - "osquery.result.columns.status": { - "query": "Live", - "type": "phrase" - } - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "f59e21e0-eb03-11e7-8f04-51231daa5b05-ecs", - "title": "Number of Kernel modules [Filebeat Osquery] ECS", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Live Kernel modules", - "field": "osquery.result.columns.name" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "gauge": { - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "extendRange": true, - "gaugeColorMode": "Labels", - "gaugeStyle": "Full", - "gaugeType": "Arc", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": true - }, - "style": { - "bgColor": false, - "bgFill": "#eee", - "bgMask": false, - "bgWidth": 0.9, - "fontSize": 60, - "labelColor": true, - "mask": false, - "maskBars": 50, - "subText": "", - "width": 0.9 - }, - "type": "meter", - "verticalSplit": false - }, - "isDisplayWarning": false, - "type": "gauge" - }, - "title": "Number of Kernel modules [Filebeat Osquery] ECS", - "type": "gauge" - } - }, - "id": "240f3630-eb05-11e7-8f04-51231daa5b05-ecs", - "type": "visualization", - "updated_at": "2018-01-08T17:35:32.102Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Navigation [Filebeat Osquery] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "[Compilance](#/dashboard/69f5ae20-eb02-11e7-8f04-51231daa5b05-ecs) | [OSSEC Rootkit](#/dashboard/c0a7ce90-f4aa-11e7-8647-534bb4c21040-ecs)" - }, - "title": "Navigation [Filebeat Osquery] ECS", - "type": "markdown" - } - }, - "id": "2d6e0760-f4ab-11e7-8647-534bb4c21040-ecs", - "type": "visualization", - "updated_at": "2018-01-08T19:41:10.264Z", - "version": 3 - }, - { - "attributes": { - "columns": [ - "osquery.result.name" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "osquery.result.name", - "negate": false, - "params": { - "query": "pack_it-compliance_os_version", - "type": "phrase" - }, - "type": "phrase", - "value": "pack_it-compliance_os_version" - }, - "query": { - "match": { - "osquery.result.name": { - "query": "pack_it-compliance_os_version", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "OS versions [Filebeat Osquery] ECS", - "version": 1 - }, - "id": "b5d6baa0-eb02-11e7-8f04-51231daa5b05-ecs", - "type": "search", - "updated_at": "2018-01-08T17:35:32.102Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "osquery.result.name", - "osquery.result.columns.name", - "osquery.result.columns.status" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "osquery.result.name", - "negate": false, - "params": { - "query": "pack_it-compliance_kernel_modules", - "type": "phrase" - }, - "type": "phrase", - "value": "pack_it-compliance_kernel_modules" - }, - "query": { - "match": { - "osquery.result.name": { - "query": "pack_it-compliance_kernel_modules", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Kernel modules [Filebeat Osquery] ECS", - "version": 1 - }, - "id": "f59e21e0-eb03-11e7-8f04-51231daa5b05-ecs", - "type": "search", - "updated_at": "2018-01-08T17:35:32.102Z", - "version": 1 - }, - { - "attributes": { - "description": "Dashboard for visualizing the data collected by the Osquery compliance pack.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "gridData": { - "h": 4, - "i": "1", - "w": 6, - "x": 6, - "y": 6 - }, - "id": "7a9482d0-eb00-11e7-8f04-51231daa5b05-ecs", - "panelIndex": "1", - "type": "search", - "version": "6.2.4" - }, - { - "gridData": { - "h": 5, - "i": "2", - "w": 7, - "x": 5, - "y": 1 - }, - "id": "a9fd8bb0-eb01-11e7-8f04-51231daa5b05-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 4, - "i": "3", - "w": 6, - "x": 0, - "y": 6 - }, - "id": "3824b080-eb02-11e7-8f04-51231daa5b05-ecs", - "panelIndex": "3", - "type": "search", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "4", - "w": 5, - "x": 0, - "y": 1 - }, - "id": "1da1ed30-eb03-11e7-8f04-51231daa5b05-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "6.2.4" - }, - { - "embeddableConfig": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - }, - "legendOpen": false - } - }, - "gridData": { - "h": 2, - "i": "5", - "w": 5, - "x": 0, - "y": 4 - }, - "id": "240f3630-eb05-11e7-8f04-51231daa5b05-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 1, - "i": "6", - "w": 12, - "x": 0, - "y": 0 - }, - "id": "2d6e0760-f4ab-11e7-8647-534bb4c21040-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "6.1.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Filebeat Osquery] Compliance pack ECS", - "uiStateJSON": { - "P-5": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - } - }, - "version": 1 - }, - "id": "69f5ae20-eb02-11e7-8f04-51231daa5b05-ecs", - "type": "dashboard", - "updated_at": "2018-01-08T19:42:15.406Z", - "version": 2 - } - ], - "version": "6.1.0-SNAPSHOT" -} diff --git a/filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-compliance.ndjson b/filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-compliance.ndjson new file mode 100644 index 00000000000..efcece85296 --- /dev/null +++ b/filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-compliance.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"columns":["osquery.result.columns.path","osquery.result.columns.type","osquery.result.columns.flags"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"osquery.result.name\",\"negate\":false,\"params\":{\"query\":\"pack_it-compliance_mounts\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"pack_it-compliance_mounts\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"osquery.result.name\":{\"query\":\"pack_it-compliance_mounts\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Mounts [Filebeat Osquery] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"7a9482d0-eb00-11e7-8f04-51231daa5b05-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:54.660Z","version":"WzQ5MjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Mounts by type [Filebeat Osquery] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"osquery.result.columns.path\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"osquery.result.columns.type\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Mounts by type [Filebeat Osquery] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"a9fd8bb0-eb01-11e7-8f04-51231daa5b05-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"7a9482d0-eb00-11e7-8f04-51231daa5b05-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:54.660Z","version":"WzQ5MjUsMV0="} +{"attributes":{"columns":["osquery.result.columns.name","osquery.result.columns.version","osquery.result.columns.revision"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"osquery.result.name\",\"negate\":false,\"params\":{\"query\":\"pack_it-compliance_deb_packages\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"pack_it-compliance_deb_packages\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"osquery.result.name\":{\"query\":\"pack_it-compliance_deb_packages\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"DEB packages installed [Filebeat Osquery] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"3824b080-eb02-11e7-8f04-51231daa5b05-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:54.660Z","version":"WzQ5MjYsMV0="} +{"attributes":{"columns":["osquery.result.name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"osquery.result.name\",\"negate\":false,\"params\":{\"query\":\"pack_it-compliance_os_version\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"pack_it-compliance_os_version\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"osquery.result.name\":{\"query\":\"pack_it-compliance_os_version\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"OS versions [Filebeat Osquery] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"b5d6baa0-eb02-11e7-8f04-51231daa5b05-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:54.660Z","version":"WzQ5MzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"OS versions [Filebeat Osquery] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"osquery.result.host_identifier\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"osquery.result.columns.platform_like\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"osquery.result.columns.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"osquery.result.columns.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"OS versions [Filebeat Osquery] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"1da1ed30-eb03-11e7-8f04-51231daa5b05-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b5d6baa0-eb02-11e7-8f04-51231daa5b05-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:54.660Z","version":"WzQ5MjcsMV0="} +{"attributes":{"columns":["osquery.result.name","osquery.result.columns.name","osquery.result.columns.status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"osquery.result.name\",\"negate\":false,\"params\":{\"query\":\"pack_it-compliance_kernel_modules\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"pack_it-compliance_kernel_modules\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"osquery.result.name\":{\"query\":\"pack_it-compliance_kernel_modules\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Kernel modules [Filebeat Osquery] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"f59e21e0-eb03-11e7-8f04-51231daa5b05-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:54.660Z","version":"WzQ5MzEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"osquery.result.columns.status\",\"negate\":false,\"params\":{\"query\":\"Live\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"Live\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"osquery.result.columns.status\":{\"query\":\"Live\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Number of Kernel modules [Filebeat Osquery] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Live Kernel modules\",\"field\":\"osquery.result.columns.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"gauge\":{\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"extendRange\":true,\"gaugeColorMode\":\"Labels\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Arc\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":true},\"style\":{\"bgColor\":false,\"bgFill\":\"#eee\",\"bgMask\":false,\"bgWidth\":0.9,\"fontSize\":60,\"labelColor\":true,\"mask\":false,\"maskBars\":50,\"subText\":\"\",\"width\":0.9},\"type\":\"meter\",\"alignment\":\"horizontal\"},\"isDisplayWarning\":false,\"type\":\"gauge\"},\"title\":\"Number of Kernel modules [Filebeat Osquery] ECS\",\"type\":\"gauge\"}"},"coreMigrationVersion":"8.0.0","id":"240f3630-eb05-11e7-8f04-51231daa5b05-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"f59e21e0-eb03-11e7-8f04-51231daa5b05-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:54.660Z","version":"WzQ5MjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Navigation [Filebeat Osquery] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"[Compilance](#/dashboard/69f5ae20-eb02-11e7-8f04-51231daa5b05-ecs) | [OSSEC Rootkit](#/dashboard/c0a7ce90-f4aa-11e7-8647-534bb4c21040-ecs)\"},\"title\":\"Navigation [Filebeat Osquery] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"2d6e0760-f4ab-11e7-8647-534bb4c21040-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:55.664Z","version":"WzQ5MzYsMV0="} +{"attributes":{"description":"Dashboard for visualizing the data collected by the Osquery compliance pack.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"gridData\":{\"w\":24,\"h\":16,\"x\":24,\"y\":24,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.3.0\",\"gridData\":{\"w\":28,\"h\":20,\"x\":20,\"y\":4,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"gridData\":{\"w\":24,\"h\":16,\"x\":0,\"y\":24,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"gridData\":{\"w\":20,\"h\":12,\"x\":0,\"y\":4,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"gridData\":{\"w\":20,\"h\":8,\"x\":0,\"y\":16,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"},\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"6.1.0-SNAPSHOT\",\"gridData\":{\"h\":1,\"i\":\"6\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Filebeat Osquery] Compliance pack ECS","version":1},"coreMigrationVersion":"8.0.0","id":"69f5ae20-eb02-11e7-8f04-51231daa5b05-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"7a9482d0-eb00-11e7-8f04-51231daa5b05-ecs","name":"panel_0","type":"search"},{"id":"a9fd8bb0-eb01-11e7-8f04-51231daa5b05-ecs","name":"panel_1","type":"visualization"},{"id":"3824b080-eb02-11e7-8f04-51231daa5b05-ecs","name":"panel_2","type":"search"},{"id":"1da1ed30-eb03-11e7-8f04-51231daa5b05-ecs","name":"panel_3","type":"visualization"},{"id":"240f3630-eb05-11e7-8f04-51231daa5b05-ecs","name":"panel_4","type":"visualization"},{"id":"2d6e0760-f4ab-11e7-8647-534bb4c21040-ecs","name":"panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:54.660Z","version":"WzQ5MzIsMV0="} diff --git a/filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-rootkit.json b/filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-rootkit.json deleted file mode 100644 index ab1ca9b8dbf..00000000000 --- a/filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-rootkit.json +++ /dev/null @@ -1,387 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Info OSSEC rootkit [Filebeat Osquery] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "This dashboard shows data collected by the ossec-rootkit pack from osquery." - }, - "title": "Info OSSEC rootkit [Filebeat Osquery] ECS", - "type": "markdown" - } - }, - "id": "6ec10290-f4aa-11e7-8647-534bb4c21040-ecs", - "type": "visualization", - "updated_at": "2018-01-08T19:30:49.785Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs", - "title": "Number of rootkits found [Filebeat Osquery] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Rootkits", - "field": "osquery.result.name" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 40, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Number of rootkits found [Filebeat Osquery] ECS", - "type": "metric" - } - }, - "id": "ffdbba50-f4a9-11e7-8647-534bb4c21040-ecs", - "type": "visualization", - "updated_at": "2018-01-08T19:40:05.060Z", - "version": 3 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs", - "title": "Number of hosts infected [Filebeat Osquery] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Hosts", - "field": "agent.hostname" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 40, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Number of hosts infected [Filebeat Osquery] ECS", - "type": "metric" - } - }, - "id": "ab587180-f4a9-11e7-8647-534bb4c21040-ecs", - "type": "visualization", - "updated_at": "2018-01-08T19:39:45.085Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Navigation [Filebeat Osquery] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "[Compilance](#/dashboard/69f5ae20-eb02-11e7-8f04-51231daa5b05-ecs) | [OSSEC Rootkit](#/dashboard/c0a7ce90-f4aa-11e7-8647-534bb4c21040-ecs)" - }, - "title": "Navigation [Filebeat Osquery] ECS", - "type": "markdown" - } - }, - "id": "2d6e0760-f4ab-11e7-8647-534bb4c21040-ecs", - "type": "visualization", - "updated_at": "2018-01-08T19:41:10.264Z", - "version": 3 - }, - { - "attributes": { - "columns": [ - "osquery.result.name", - "osquery.result.columns.path", - "agent.hostname" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "query", - "negate": false, - "type": "custom", - "value": "{\"prefix\":{\"osquery.result.name\":\"pack_ossec-rootkit\"}}" - }, - "query": { - "prefix": { - "osquery.result.name": "pack_ossec-rootkit" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "osquery", - "type": "phrase" - }, - "type": "phrase", - "value": "osquery" - }, - "query": { - "match": { - "event.module": { - "query": "osquery", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "fileset.name", - "negate": false, - "params": { - "query": "result", - "type": "phrase" - }, - "type": "phrase", - "value": "result" - }, - "query": { - "match": { - "fileset.name": { - "query": "result", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "OSSEC Rootkits [Filebeat Osquery] ECS", - "version": 1 - }, - "id": "0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs", - "type": "search", - "updated_at": "2018-01-08T19:38:24.483Z", - "version": 2 - }, - { - "attributes": { - "description": "This dashboard shows data collected by the OSSEC rootkit pack from osquery", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "gridData": { - "h": 2, - "i": "1", - "w": 4, - "x": 8, - "y": 1 - }, - "id": "6ec10290-f4aa-11e7-8647-534bb4c21040-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "6.1.0-SNAPSHOT" - }, - { - "gridData": { - "h": 2, - "i": "2", - "w": 4, - "x": 4, - "y": 1 - }, - "id": "ffdbba50-f4a9-11e7-8647-534bb4c21040-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "6.1.0-SNAPSHOT" - }, - { - "gridData": { - "h": 2, - "i": "3", - "w": 4, - "x": 0, - "y": 1 - }, - "id": "ab587180-f4a9-11e7-8647-534bb4c21040-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "6.1.0-SNAPSHOT" - }, - { - "gridData": { - "h": 1, - "i": "4", - "w": 12, - "x": 0, - "y": 0 - }, - "id": "2d6e0760-f4ab-11e7-8647-534bb4c21040-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "6.1.0-SNAPSHOT" - }, - { - "gridData": { - "h": 4, - "i": "5", - "w": 12, - "x": 0, - "y": 3 - }, - "id": "0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs", - "panelIndex": "5", - "type": "search", - "version": "6.1.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Filebeat Osquery] OSSEC rootkit pack ECS", - "uiStateJSON": {}, - "version": 1 - }, - "id": "c0a7ce90-f4aa-11e7-8647-534bb4c21040-ecs", - "type": "dashboard", - "updated_at": "2018-01-08T19:40:16.304Z", - "version": 6 - } - ], - "version": "6.1.0-SNAPSHOT" -} diff --git a/filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-rootkit.ndjson b/filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-rootkit.ndjson new file mode 100644 index 00000000000..bdd3aa1d3f0 --- /dev/null +++ b/filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-rootkit.ndjson @@ -0,0 +1,6 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Info OSSEC rootkit [Filebeat Osquery] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"This dashboard shows data collected by the ossec-rootkit pack from osquery.\"},\"title\":\"Info OSSEC rootkit [Filebeat Osquery] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"6ec10290-f4aa-11e7-8647-534bb4c21040-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:55.664Z","version":"WzQ5MzMsMV0="} +{"attributes":{"columns":["osquery.result.name","osquery.result.columns.path","agent.name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"query\",\"negate\":false,\"type\":\"custom\",\"value\":\"{\\\"prefix\\\":{\\\"osquery.result.name\\\":\\\"pack_ossec-rootkit\\\"}}\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"prefix\":{\"osquery.result.name\":\"pack_ossec-rootkit\"}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"osquery\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"osquery\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"osquery\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"result\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"result\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"result\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"OSSEC Rootkits [Filebeat Osquery] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:55.664Z","version":"WzQ5MzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Number of rootkits found [Filebeat Osquery] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Rootkits\",\"field\":\"osquery.result.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":40,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Number of rootkits found [Filebeat Osquery] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"ffdbba50-f4a9-11e7-8647-534bb4c21040-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:55.664Z","version":"WzQ5MzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Number of hosts infected [Filebeat Osquery] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Hosts\",\"field\":\"agent.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":40,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Number of hosts infected [Filebeat Osquery] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"ab587180-f4a9-11e7-8647-534bb4c21040-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:55.664Z","version":"WzQ5MzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Navigation [Filebeat Osquery] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"[Compilance](#/dashboard/69f5ae20-eb02-11e7-8f04-51231daa5b05-ecs) | [OSSEC Rootkit](#/dashboard/c0a7ce90-f4aa-11e7-8647-534bb4c21040-ecs)\"},\"title\":\"Navigation [Filebeat Osquery] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"2d6e0760-f4ab-11e7-8647-534bb4c21040-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:55.664Z","version":"WzQ5MzYsMV0="} +{"attributes":{"description":"This dashboard shows data collected by the OSSEC rootkit pack from osquery","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"6.1.0-SNAPSHOT\",\"gridData\":{\"h\":2,\"i\":\"1\",\"w\":4,\"x\":8,\"y\":1},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"6.1.0-SNAPSHOT\",\"gridData\":{\"h\":2,\"i\":\"2\",\"w\":4,\"x\":4,\"y\":1},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"6.1.0-SNAPSHOT\",\"gridData\":{\"h\":2,\"i\":\"3\",\"w\":4,\"x\":0,\"y\":1},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"6.1.0-SNAPSHOT\",\"gridData\":{\"h\":1,\"i\":\"4\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"6.1.0-SNAPSHOT\",\"gridData\":{\"h\":4,\"i\":\"5\",\"w\":12,\"x\":0,\"y\":3},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Filebeat Osquery] OSSEC rootkit pack ECS","version":1},"coreMigrationVersion":"8.0.0","id":"c0a7ce90-f4aa-11e7-8647-534bb4c21040-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"6ec10290-f4aa-11e7-8647-534bb4c21040-ecs","name":"panel_0","type":"visualization"},{"id":"ffdbba50-f4a9-11e7-8647-534bb4c21040-ecs","name":"panel_1","type":"visualization"},{"id":"ab587180-f4a9-11e7-8647-534bb4c21040-ecs","name":"panel_2","type":"visualization"},{"id":"2d6e0760-f4ab-11e7-8647-534bb4c21040-ecs","name":"panel_3","type":"visualization"},{"id":"0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs","name":"panel_4","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:55.664Z","version":"WzQ5MzgsMV0="} diff --git a/filebeat/module/osquery/module.yml b/filebeat/module/osquery/module.yml index 621dc6a3d36..5ded7315e99 100644 --- a/filebeat/module/osquery/module.yml +++ b/filebeat/module/osquery/module.yml @@ -1,5 +1,5 @@ dashboards: - id: 69f5ae20-eb02-11e7-8f04-51231daa5b05 - file: osquery-compliance.json + file: osquery-compliance.ndjson - id: c0a7ce90-f4aa-11e7-8647-534bb4c21040 - file: osquery-rootkit.json + file: osquery-rootkit.ndjson diff --git a/filebeat/module/pensando/_meta/kibana/7/dashboard/pensando-dfw-overview.json b/filebeat/module/pensando/_meta/kibana/7/dashboard/pensando-dfw-overview.json deleted file mode 100644 index bbc7b1283b6..00000000000 --- a/filebeat/module/pensando/_meta/kibana/7/dashboard/pensando-dfw-overview.json +++ /dev/null @@ -1,1341 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of events coming from Pensando DSC distributed firewall system.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": false - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "85119076-2756-4415-8917-14c9d46732a5", - "w": 41, - "x": 0, - "y": 0 - }, - "panelIndex": "85119076-2756-4415-8917-14c9d46732a5", - "panelRefName": "panel_0", - "version": "7.8.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "9215c2be-bca5-4b21-8042-0e0be99e38c0", - "w": 7, - "x": 41, - "y": 0 - }, - "panelIndex": "9215c2be-bca5-4b21-8042-0e0be99e38c0", - "panelRefName": "panel_1", - "version": "7.8.0" - }, - { - "embeddableConfig": { - "title": "Active Workloads" - }, - "gridData": { - "h": 9, - "i": "81013c87-76c2-4ff0-9545-1295babad06e", - "w": 8, - "x": 0, - "y": 5 - }, - "panelIndex": "81013c87-76c2-4ff0-9545-1295babad06e", - "panelRefName": "panel_2", - "title": "Active Workloads", - "version": "7.8.0" - }, - { - "embeddableConfig": { - "title": "DFW Allowed Count" - }, - "gridData": { - "h": 9, - "i": "3ee01275-08dd-4d3f-9834-d844f5550365", - "w": 8, - "x": 8, - "y": 5 - }, - "panelIndex": "3ee01275-08dd-4d3f-9834-d844f5550365", - "panelRefName": "panel_3", - "title": "DFW Allowed Count", - "version": "7.8.0" - }, - { - "embeddableConfig": { - "title": "DFW Denied Count" - }, - "gridData": { - "h": 9, - "i": "9628e969-1f18-4659-a8d9-e9409f11f3a9", - "w": 8, - "x": 16, - "y": 5 - }, - "panelIndex": "9628e969-1f18-4659-a8d9-e9409f11f3a9", - "panelRefName": "panel_4", - "title": "DFW Denied Count", - "version": "7.8.0" - }, - { - "embeddableConfig": { - "title": "Denied Destination IPs" - }, - "gridData": { - "h": 11, - "i": "37787af1-b5ef-467e-8c5e-b0dfba56c9f9", - "w": 24, - "x": 24, - "y": 5 - }, - "panelIndex": "37787af1-b5ef-467e-8c5e-b0dfba56c9f9", - "panelRefName": "panel_5", - "title": "Denied Destination IPs", - "version": "7.8.0" - }, - { - "embeddableConfig": { - "title": "Traffic by Workload" - }, - "gridData": { - "h": 14, - "i": "efafcbff-a163-4475-8d12-59f716e5a3ef", - "w": 12, - "x": 0, - "y": 14 - }, - "panelIndex": "efafcbff-a163-4475-8d12-59f716e5a3ef", - "panelRefName": "panel_6", - "title": "Traffic by Workload", - "version": "7.8.0" - }, - { - "embeddableConfig": { - "title": "Client to Server FW Action" - }, - "gridData": { - "h": 14, - "i": "52506949-eb15-4b23-b50c-2e5083df5e0f", - "w": 12, - "x": 12, - "y": 14 - }, - "panelIndex": "52506949-eb15-4b23-b50c-2e5083df5e0f", - "panelRefName": "panel_7", - "title": "Client to Server FW Action", - "version": "7.8.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "077406bd-aa47-4dc9-b1f6-04cae0ae34b6", - "w": 24, - "x": 24, - "y": 16 - }, - "panelIndex": "077406bd-aa47-4dc9-b1f6-04cae0ae34b6", - "panelRefName": "panel_8", - "version": "7.8.0" - }, - { - "embeddableConfig": { - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 14, - "i": "58e763b7-a23a-480a-a984-24dd115aba2c", - "w": 12, - "x": 0, - "y": 28 - }, - "panelIndex": "58e763b7-a23a-480a-a984-24dd115aba2c", - "panelRefName": "panel_9", - "version": "7.8.0" - }, - { - "embeddableConfig": { - "table": null, - "title": "Dest Port by DSC", - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 14, - "i": "36fc48c8-0044-4af6-a8b2-da8023806f32", - "w": 12, - "x": 12, - "y": 28 - }, - "panelIndex": "36fc48c8-0044-4af6-a8b2-da8023806f32", - "panelRefName": "panel_10", - "title": "Dest Port by DSC", - "version": "7.8.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "a1d34501-4d64-4213-b192-1b4ca2d88793", - "w": 24, - "x": 24, - "y": 29 - }, - "panelIndex": "a1d34501-4d64-4213-b192-1b4ca2d88793", - "panelRefName": "panel_11", - "version": "7.8.0" - } - ], - "timeRestore": false, - "title": "[Filebeat Pensando] DFW Overview", - "version": 1 - }, - "id": "2713ee40-f3b1-11ea-ba07-c1efedbf0bf9", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "a73c8dc0-cc8d-11ea-918e-c778f7abe5d7", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "39e26d70-cc4d-11ea-918e-c778f7abe5d7", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "bc6a36b0-cdba-11ea-a0ef-8f5241e594be", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "fa745d10-cc88-11ea-918e-c778f7abe5d7", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "1d2d5f00-cc89-11ea-918e-c778f7abe5d7", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "bf9d4650-cc8a-11ea-918e-c778f7abe5d7", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "07983660-cd38-11ea-a0ef-8f5241e594be", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "fd2202d0-cc86-11ea-918e-c778f7abe5d7", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "2aa5d850-cc85-11ea-918e-c778f7abe5d7", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "b8bfd3e0-e8b7-11ea-ba07-c1efedbf0bf9", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "c6188140-cdb9-11ea-a0ef-8f5241e594be", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "0583e120-cc8f-11ea-918e-c778f7abe5d7", - "name": "panel_11", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-09-10T22:32:33.177Z", - "version": "WzI1NjMsMTFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Client/Server - input list [Filebeat Pensando]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "client.ip", - "id": "1595471403191", - "indexPatternRefName": "control_0_index_pattern", - "label": "Client", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 500, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "server.ip", - "id": "1595471807689", - "indexPatternRefName": "control_1_index_pattern", - "label": "Server", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 500, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "log.source.address", - "id": "1595471848091", - "indexPatternRefName": "control_2_index_pattern", - "label": "DSC", - "options": { - "dynamicOptions": false, - "multiselect": false, - "order": "desc", - "size": 500, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": true, - "updateFiltersOnChange": true, - "useTimeFilter": true - }, - "title": "Client/Server - input list [Filebeat Pensando]", - "type": "input_control_vis" - } - }, - "id": "a73c8dc0-cc8d-11ea-918e-c778f7abe5d7", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-09-10T21:58:28.390Z", - "version": "WzI0OTMsMTFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": { - "match_all": {} - } - } - } - }, - "title": "Logo [Filebeat Pensando]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 8, - "markdown": "[![Pensando](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAASAAAABJCAYAAACdD/umAAAACXBIWXMAAA7EAAAOxAGVKw4bAAAF42lUWHRYTUw6Y29tLmFkb2JlLnhtcAAAAAAAPD94cGFja2V0IGJlZ2luPSLvu78iIGlkPSJXNU0wTXBDZWhpSHpyZVN6TlRjemtjOWQiPz4gPHg6eG1wbWV0YSB4bWxuczp4PSJhZG9iZTpuczptZXRhLyIgeDp4bXB0az0iQWRvYmUgWE1QIENvcmUgNS42LWMxNDggNzkuMTY0MDM2LCAyMDE5LzA4LzEzLTAxOjA2OjU3ICAgICAgICAiPiA8cmRmOlJERiB4bWxuczpyZGY9Imh0dHA6Ly93d3cudzMub3JnLzE5OTkvMDIvMjItcmRmLXN5bnRheC1ucyMiPiA8cmRmOkRlc2NyaXB0aW9uIHJkZjphYm91dD0iIiB4bWxuczp4bXA9Imh0dHA6Ly9ucy5hZG9iZS5jb20veGFwLzEuMC8iIHhtbG5zOmRjPSJodHRwOi8vcHVybC5vcmcvZGMvZWxlbWVudHMvMS4xLyIgeG1sbnM6cGhvdG9zaG9wPSJodHRwOi8vbnMuYWRvYmUuY29tL3Bob3Rvc2hvcC8xLjAvIiB4bWxuczp4bXBNTT0iaHR0cDovL25zLmFkb2JlLmNvbS94YXAvMS4wL21tLyIgeG1sbnM6c3RFdnQ9Imh0dHA6Ly9ucy5hZG9iZS5jb20veGFwLzEuMC9zVHlwZS9SZXNvdXJjZUV2ZW50IyIgeG1wOkNyZWF0b3JUb29sPSJBZG9iZSBQaG90b3Nob3AgMjEuMCAoV2luZG93cykiIHhtcDpDcmVhdGVEYXRlPSIyMDIwLTA3LTIyVDE0OjQ3OjMwLTA2OjAwIiB4bXA6TW9kaWZ5RGF0ZT0iMjAyMC0wNy0yMlQxNDo0OToyMi0wNjowMCIgeG1wOk1ldGFkYXRhRGF0ZT0iMjAyMC0wNy0yMlQxNDo0OToyMi0wNjowMCIgZGM6Zm9ybWF0PSJpbWFnZS9wbmciIHBob3Rvc2hvcDpDb2xvck1vZGU9IjMiIHBob3Rvc2hvcDpJQ0NQcm9maWxlPSJzUkdCIElFQzYxOTY2LTIuMSIgeG1wTU06SW5zdGFuY2VJRD0ieG1wLmlpZDpkMTUyMWZhMi0wZjgzLWMzNDItYmQzZC03ZGVkYmRiNThmNjQiIHhtcE1NOkRvY3VtZW50SUQ9InhtcC5kaWQ6ZTc4NjkzZWMtOGViNC03NTRlLWFiMzgtMTZmMGY3ZDRhNzg1IiB4bXBNTTpPcmlnaW5hbERvY3VtZW50SUQ9InhtcC5kaWQ6ZTc4NjkzZWMtOGViNC03NTRlLWFiMzgtMTZmMGY3ZDRhNzg1Ij4gPHhtcE1NOkhpc3Rvcnk+IDxyZGY6U2VxPiA8cmRmOmxpIHN0RXZ0OmFjdGlvbj0iY3JlYXRlZCIgc3RFdnQ6aW5zdGFuY2VJRD0ieG1wLmlpZDplNzg2OTNlYy04ZWI0LTc1NGUtYWIzOC0xNmYwZjdkNGE3ODUiIHN0RXZ0OndoZW49IjIwMjAtMDctMjJUMTQ6NDc6MzAtMDY6MDAiIHN0RXZ0OnNvZnR3YXJlQWdlbnQ9IkFkb2JlIFBob3Rvc2hvcCAyMS4wIChXaW5kb3dzKSIvPiA8cmRmOmxpIHN0RXZ0OmFjdGlvbj0ic2F2ZWQiIHN0RXZ0Omluc3RhbmNlSUQ9InhtcC5paWQ6ZDE1MjFmYTItMGY4My1jMzQyLWJkM2QtN2RlZGJkYjU4ZjY0IiBzdEV2dDp3aGVuPSIyMDIwLTA3LTIyVDE0OjQ5OjIyLTA2OjAwIiBzdEV2dDpzb2Z0d2FyZUFnZW50PSJBZG9iZSBQaG90b3Nob3AgMjEuMCAoV2luZG93cykiIHN0RXZ0OmNoYW5nZWQ9Ii8iLz4gPC9yZGY6U2VxPiA8L3htcE1NOkhpc3Rvcnk+IDwvcmRmOkRlc2NyaXB0aW9uPiA8L3JkZjpSREY+IDwveDp4bXBtZXRhPiA8P3hwYWNrZXQgZW5kPSJyIj8+LBGpEgAAMvVJREFUeJztvXecXkd97/+eOe3p27sk27Il27KQbVkGG7Ax2DRjMK70EmpCICSEy025N8ANhOAE8ruFFLi5JBSDCxjiggXYuADuNm5qlmWtyq6216efM/P7Y85TdvfZ1e5qJRnyfF6vZ8tzzpQzZ+Y73z5i11PPQi5H8amnzszfeecVemIiKlzXp4466qhjpaC10Pm8bZ911j7v4kv+j1zVw7qXbMAWnocaGyPYtu0KcrlrhGVFgOB497eOOur4nYIQtm2pgwf7gj17HrJOXvsIgO0/9dSm4pNPXZ7feudnrZ5V4Lqg9fHubB111PG7BCHAdVH79p2Uu+nGn8qO9lex/uSnrA/6wafUgf0fkslkAsc53t2so446flehNSIWQ0DE37lzqutt1/5cMj0NSmXrxKeOOuo46tAaPA+mpwGwMQrnoC521VFHHccEWhPSHeTx7ksdddTxnxd1AlRHHXUcN9QJUB111HHcUCdAddRRx3FDnQDVUUcdxw11AlRHHXUcN9QJUB111HHcUCdAddRRx3FDnQDVUUcdxw11AlRHHXUcNxx3AqTLP81fYgUiQkT4UUdeFWKe7/V8F44TBNWjOPsKoBQoFd4zt/OayrgdSR+OH2o//dFoZbGt6Vl/Cb0y83tp0OF7FabPWiOUQrxIQq/sla5Qq8qDmcFW5YlZulL+XwikMr+1AIQiEBKhwdIKLZdOH0uER2uQGrTUJgp30RRDh30RoM1LE1VFtQaURgiN0BotKsu2/OTCkAMhjs2SVISTG1BCIxX4hTxqagrtK7QELBs0iCBAobEsgYjFcSJRlAVCS0OwxfIJidIaLTRWoFFCoBHhDmfIm5CiMkYlirf4yuctpBAoIbDDLUcLcfSIoQrQaNACUV7WZRJDacHr8CoiJFZCmfmuZWXxH4vpoQWBJRHFAsHwCAECbVlorRBBgBQSy3Ox4gmUYx9zjmTlCJAwg+2Pj6OKRbQwE2GhbUJqAE2AmbRowJbYiQQqEkEKEcbILoNaCxBmqlAcn4RiYRGFzASX8SQyGUMEasZkFpaFmp6mODllJpmoTMDSpFNK4zYmsKIxtOKYTDKpBYEEUcihxqbIqgC7s43UxpfhrVmD09GGnWpEaE0wMUluYIBgYICpPXuYPtiHU1Q4DQlUIoYVCITQSx5xAQQW2D7kxyZRqoClwRcl4qyxGpuwIxFQCiUWx34LKVGFAsXREeYbTA04XhTV1IgIfCwNaqXHXQgEimBigqJvCK0oz7DyTVRzO1JrFDrkfDRKgOVFsONxhL3ie39taNC5LCoep/Hd7yTRsxod9fDTGfzhYYpDw6Sff4703r1Yg1mcRByrIRVuwEefS1qxUdC+j/Z9Ot7xNtwTTwSlsGyr6hkqL8f8K0ApgsBHBz46nSE/NkGh9wDpbdvI9PXhxKM4jQ1ILBSKxexrGkPYAsAPiiBdWt79TuKd7Sh/4UyzQgiwLMZ++RDpRx9BJGM4WpTFLX9yksg5m+l6+Xn4SiEViDJPLRDSQhUK9P3gBzA0gh1Poo4Sz60BoRVCWICmODiIlpKGC15JxyteTtO5Z5FcfcKCdeQGhxh78kkmHnyY8XvvITjQT6ytDeU5oLThIBe5kDUgs3l0soGOj78dJxZF+j5KGMKtfZ/+H96CGhhBxmLhuB2+8iCdxu3qouOD70dIiVazBGshEVIy9rN7mP7NYzgtraijIIoJv0g+0DS/6x2k1pwESqNcw8HPhhYCoTTaL+L7RWQhT2FsksLQMJm9e8k9vwc1NYWbTGAnUyEXfZQWuwAyWUR7F2s++Ud4NW4pZrJMbnuG9MOPMfSLX5DZ/TyxpmZEPI7WIVdZVd1KYuXIcBCgc3naL72U6EknLrsaBaT372P0rnsZ2nonmZ07ibe0IzyXxb4kLczuExQDlBvQc80VRFvbF92HwtQkk7+4Cy8eNyJNyOcUJ6do3HQG3VdeuXD5YpG+r/5PEok4R4MFMsQHwEIFAflDA3hnbGD1Rz5Ey4WvXDQbHWlvo+u1l9D12kuYuPoK+r7xTcYefghXJrEsq6znWPQTKMhls7S/4RJirR1zLqd3v8DwTT8kHo2EHIrkcO/UT6eJNzfTc801C97nnbGBHR/8ME4ug45EFrVZLQXaDyj6itY3XEbT2jXLrqeQLZDe9izD99/H5K8eIPvcCzgNSeyG5FziugLQQoOUaK1QU9OQTMy5x4lFadlyLi1bzqXtHdfQ993vM3jDDVhDaZzW1pCLOwLZfAGsnMgnBEhJcXx82VUozHRMrl7DCe9/Dxu/8XVa3/N+smPDkE0jlqoTCsWnYGxiaeWyWSNuzRpwYVnoTAZYeNmsuvpK3FNPxp+cnKlAWiEYHYQGpckO9pN6wxvZ+PV/pC0kPnoJrHOJyDScfjqnf/U6ej75cXJTU8iiXxYzFgvheqihQUbu+yUwN7F4dNNLKNoWaI1e5NQTUqIPw7lqoOXUU2l+/espDo8gj8ZKEQIhwB8fq2p18QSjdLcbdWk652zW/fEn2fCNf6bjDz5I0REUBg4ZDvwo6Q0FHJbAaSDa1MLJH/9DTvnKVwla2/D7B7C1UTAeDWb+6OucFtFpH6NjFAosXVkUkUSc0/7k43R+5r+QnpoiyOYoiXKzLTlaq/LHWHuCUHEZ4OtKVw73ATNRlABbydmC46xnq2EL0Ro3FqPlzW8iMzmF1PPoU0LdlkYglChXJao6I4KQzsx6VgkgBOnBA8QuuogNX/o8biyGQqO1Nv3XeoZBoHb3NVrNNBwU+vtwkBAS+8MuBwW+VqA0vqWxgoDMU8/U5JxaX/4y4qu7CTIZ09cVEjtK9Lbr2mvxkw2oXHah7objrVE6MCJU1biX3oNGLVsHMpc0mUbKlsqwkWhjI2s/+hE2/su/YG3cRPpgHwQKtQQipAnfX+CjgwB8hQ4qH+ErZOCjtJp3A9fazBuhK8/c9tItnPF//xm9fh35Q0MhcVzOaCyMo0qANKEy0Iz6vPfZgBQgJGUrjClm9tC1115D63vfTX54BKECZkil4csqjIyS6x8gPzBIbmCI7MAwfv8A6cFhrHjM3LqID4DtxRGBD0KjscplF/fMpl+rrngrsVPX449PlgWNuSNgbHaZ0WHyB/vJ9/eT7e8n199P/uABitlppHSQSs1YrAJBcXIcZ/UaTv/vf1num0QghLE8CVGxOk317mXw1w9w6J57GX78CfJTk+HQmcGW0tSw/UtfZuj/fRuvIUlgWzWUrFWQEq0C/MEhCv0D5Ib6Uf2D+LkM/T/9OelDh+ZMrmhzK8lNGymkM1hqsTzQ4VEa38ZT19H0+kvIjU7My0gIQNngT02TPzhApr+PXP8hM+4HD+KPjaClQCpr2eRRMHthyZJNzHxE9WyD5Mlr2fi1fyB+wXnk+w6FxplFQErwfYojI+TGxsiPjZMfG6M4OkpxdJTC6CjZ8VGCyTTSiyDjHr4KyIyOUqgi0qJsKJjJgaU6Oznj77+MXrOKwsgQUqw8uTjKqngdLjGBFND/6wcZ2roVL5Ew5kmlkK5NpKWN1Lnn0njaqTNKB0iE0lhSsPajH2XqVw9S7O1FNrUY9gDDngspab3qCpy2NlQuByUGP9D4rsvEI48y9eBDCOtwAygQjsP0tqexEo0EIjCTQSywEGc8ruE+JODFk7S95TJ6/+7vSaVSSDHTMqMFUAwILEHidRcRa+1EFYqmHSGwPIf0s9sp7HwOO+IhtFXmgQVQmE6z6qMfIdLYVG6z/BThJBq45xcM/+BHpHfvNuKg0uA4RHt6SGzZQve1VxNfvQqA5/7hfzH23RuJdHegpTy8n0ixSCAEDddeTqS1A/IFDOsQkCsE+MVizWLRDRsZvG0rEYzyfCWgMdYmC0nPtVcz8dO70NkcIhKZ04JQmiCXxjt7E43rTkXn0ggMsbE9l3TfQbKPP4kjQQt7SZv+xNPPMrD1DpxYCtvzwLERUQ9n1SqaNm/G9WqpgM0TeJEYZ/zt3/D4x/6I4tPbiXR1orRiPkOqQBBkMwS+pvPDH8Dr7oK8j5LhXAjnrRWLoqVm4K572f2Xn6M4PIY/MYEVc4muXkXq1RfT9ZqLEELMEd01EO/pZu2f/1d2fPJTeLkswousGOcKR5kACUR5UYJgatcuRr75LeLtbRXfHxTKV5BsoO2tb+aEj30U14sQaONHI0OTsOs4dFzxVvZd9xUSWoWWA9CFAngeJ374Q9iNjTX78cynPsPILbfgti9OEW0n4rgNKVTgs/jtyEBWme07L38zh275IcWBEazG1Cx9ikb4BYrS5dSPfYxUZ/ecunq/ewMHHngQq6eHKg8a/Ewad82JdLzh9WFVeo7u4MCdd/Lcn/034oDd0oSbaght5VDYf5DBZ55m9K5fsPpTnyA3OMDwt79NrLMdteCxTCXTrMYfm8DbtJFTPvNf53AyWisGH38cVq+uelrTfOOWc+lrbkYXchCZb0EuFZWRbVi/nqbXvoqxH96O192FEmoGDyu0pjg+Tc8bXkfXGy+dU1P/ju0898sHiERcfNdhKURyaucuDnztX4g3txgijkZpgXIdomvX0nrpa+l55zuwavB+AQonmuD0z3+WbR/4CIWpCUQyCYFAigA9g/tQaC3JjY7R/va3ccKHPrhgv164/jtkH3kcNTKK4zkIz8EPfCaefJah237C+FVXcupf/BnWbBFNawIBbS89l/Err2Dwe98j0tONCOVLyeKtpPPhqItg1Y3Y8RheVyduRztuRzuR9na89i5i3d1EbUHf1/6JPdf9gykjzL4kqhZ00/nnYnW1o7OZypOHC684UVvRrAE7ESXa1k6kteWwn2hrC3Y0ilbBHFb5sBBiBpHxkik6rriSXHrCmOxnvS0tBBKNSqdrV5fLIixpiG1V0UI6S3zT6URbW81YzSqXGRxk///+R+JRD3f1akQ0apzPpIVyLOyGBlInnIjITtH72b9m6J++TrS9DRWNsJBiVaBAgxKCYqFA83kvLbdttG2m7PB9v6TvezfVrCO59kTiG083HNkKKRWEYIbiueft70Sl4pDLIrUsb1YQ+qZZFjqbq1mXSmfK+gBrif2woxG8zk689na89lbcjg6inW0kGlL4e3bzwhe+zLZPfKosAlc9AcbLCFJrTqDj/e8hNz6BUD4WUJSzRkpDkJnG7uxh1e+9b+4zoMtvccd117H/r7+MDbjdHVgtjchECqehGWd1D9HWFka/9W12ffHLNUhtRXHQ8953YbW3o6emQczWSi4fxzUUQ4c/NUAsTnzNKka33snErp1VPqUVRHt6iK9ag8rl5lLe6l1bz7YEiXBSHf6jxdKHVlceZg7a33Qp3gknoyYmjUm0Vvl5rBPzWrOUJtLVWfl/VpenHvsNxcEBoqlGdBDMseZpNIEGN57ETsXxYkmQjvGO1fNPCQ0oqRDFIiIVJ37ulnJ9ukrtPPn8c0zedz/B8Gi5ZLXpIHXOZorKP7JwgAWKJtedQsNFF1IYGUeGHutzis87tpV3cWSCRkWvoiwLp7mZ5JoTmLj7bnb8xV+V33l5ieuKCLT62muInrEBf2IaJRVSixl9UcIiOzVJ00WvKG9C1ZDhp+/22xj6zvXEVq9GeA5CK1SoMdOYkAzpxYifeAKDN9xA/9ats55dlj3kYx0dtFz6RgoTU6EVU6+Is+dxjwUrQ2scN0KhkGd893PA3P3RljZWWwvFoLZK9zANrEQv5yAIa67Fimog1tRE+xWXk02nUSsQnSY0IMGy3KpWZiE9ia1LXsgzw1AkhhYH4VeOdNCOhZIaga5yrJzVLqB1aCXIZLE7O0mccnJ4TSARWOEby/f2IgYHGXn6mUoXdWXXTG7ciIgl0H5tPdHhoDHqrIXo16p3vQPVEMcv5I6FM/phIRBIRxI/YQ2Td9/L7n/858rFMLTHCjc/2/VouugCCtkMUtUIIyr6yGiC1te8Cpg5A8yYCIq5LH3fvZFoNIbleWYMaiiRBQq8CLFUkr5vX08+Mx12ybwvKSpEouXVr0KmolAMwrJHjhcPAQK0kLhKw9hsFrUCFfGWeXD9UfKv0EbhnZ2aZGx4eM41gK63vAlnzZqQfT2yfmgR6jFyRoTQiLnUr7k5tOAFaGHPUGNVi8XVhHNmZNM8bUuQWGTT06S2nIsTjc25p5ieIv98L9JxmNy5LaxcoETF6TC+/hT0qm7jVrGM4dCYeD0NTPQPEARzZ0Tj+lNpeOUFFAaHay68Y42yIdiyiXe0MXjjTUyGnL6qYeFufNn5yGQSZinzBYIgM0187VpSmzaZ73T1dYPhe+4nu30HsrkFdMU3vOZwa43b3ERu206G7robwFi8Zt3ccPppuGvXEUyl0YedLYvD8X8zVRAIAq3QdiWEcTa0X0Sij1z7tUIoDWBhcoLnv39DmbUuGc4VGq+pmdYrLyM3MY0VKMOWA0fClQVjY0DFK6q6pobNmxGrV5MfHApNv0c+UTTGu1wWi/gRh+aXn1/+vhqTu3eT238AryFFdseOKp5PgRYEgBeN03HeeeSn0yYYeYl2FQFYQiMF7L/1P5jctqPUQhizaghS97vfAakkKpcBBEKvxEgcIbRGxqPoyWkG77gTmGuWB2g4YyPx008ln5mesUg1oHN5vFNOwna88ndlhNWMPvQQFgrk4jRZWkgsC9KPPjGjrWpYtkNkwwYK+QysUMDLi4oABcUMMpGiMaTss6EARkYR9lHxdV0ewo5EWpqZuvc+hu65t+qaKA9w99VX4p64Bn9qHCMWLZ/82NEo2ed2U8gadlnrmbtgpLGRdX/xF4i2djL79hLkCyviYauBIJsj0dND4oxTa94z9diTqKkpZGOKyd17yO4/ABjCoBBlbqzlZS/D8lx8vwhqaV621YRE7e2l/z9undHHku6w6fTTaHzVheSHxsscSK3YrWMNrcGNRRh78imK+Ty1tlvLEkRPXkdQKM7YawWaoq+Ir+qplJr1av1Ckdz+fTjR+Lwi9dw+aZxIlPTeXorZDHNJokHzhg3maGWl5uhol4PjQIBE1af0lcDSgum+Q8TP3Uzj6Rtq+j8UhoYI9vdhux5LWb6F8XFyfX3kBwbm/xwaINd/iGBqCrmcNCBeBJHP0fe9G8KnNCZrrQ23E0k00HbppWQmMuXUGct9gXY8Rnrnbobv+7Vpa5aVTGtN65ZzeMm//l8a33o5+XyGbO9+dDoT3h/et/SnJJeZJnLqBqINTeE3FQTA5NNP4TgOwouiB4aYfPLJ8D5prCfCcCfeqadgdXWGXstiyb0paZQi8QQDt9xCdnQ4VL4aF40SnWm7+iqCeBRyOYIlulQcLWjAikVRfQNke3vD78SM6wBedzdCODMU40IpAkdCe0f57tmzKDc4iBoeRkRclhIuYnke/uAhsgcPzupJ5e/omh5IJBHByhCPo54TQAmF1IYNVIGPKuRRhXyYyiL0E8rnSQ8P4Z12Gif98ScA40uitDRbY8hJjD3+BNmDB4g0tyw4ZbXQhOErKDSJLVuQ0sJOJSs3icquq4VACIV2IhR791HcuxfhujXrng9aa7yWFqZ/9QDjv3mSxrPONES0ijZ0vuNqBm+/k+LoMLIhZdJVLKmVsC1p4diCwe/dTOfrXodxZDZ7vwqJu0ARX9XNGX/9OUaffCuDt9zK1IMPkT94kEgijpNMoaSs6UM0H6QOCLQmec7m8JkppT4CAYXRMfL7D6BjLiBwg4Cxp5+k67I3YZWJnuFeo41NRM94CVO33YqdSFUqWczzC102u4vGBMXefQzcejsnvu99xuCpK06fbWeeyeCrL2Ty9p/h9rQTyJXYt48MAhCWQ3E6zfSBg6TWr5/lIWbucVqawBIzJrryfbx4jHhPl/k/HNHq8mp0kGBqEtdy0Fos8vUKhGtRmJggs+8AqVPW1eg1WE3NePEETE6i3SMnH0fZERE0Vjn3iw4UfrFAEOYLUuHgyMZGmt58KSf93vuItbbhY5zHtDCGWwsIVMDBG25GWhIp5YL7ZZmwhKLJ2ve+G9777kX1ue/Ht/LC3/wt8daWJZvkhesgCjn2fed6UmediZxVPppsoPWy19P3f75GoiHJchXjSgjclmayv3mcnX97Haf/+WcAQaA0UqiQKlT2p+Yzz6L5zLOY2tfLyE/vYuC228nvO4CbjOEmUyb2aBEmcZ3L4nV10nz+y8zzhkul9H5zO3YQ9A3gJmOGSEQjZHe/QFDMYzke5SRdIZrO38LET36CDAKUbbNYLmjGqAlBpCHJ4A9+TMdllxJtaTNEqOqWrquvZvzue6BQAHulnB+PDEIKRFA0EerzwE3EEY5t5NdQlaODACueINLcMm+5wmQaP5fHS0SWLnr7GsZLRqC5ZZ1oBCfqURg3PkpHSsyPOgckMMoOhaDrNa+hZd16LMc0GyiF9myiXauItTQDhpOwkEZNW8U99P6/f6Pw+BNEuzrRZbpfG1oIE2QpFrfbzdh7i4XlDarWJtKhuZWp++5n7NFHadlS8ZMpLbzuK97K8G13osaGEW5kOS1haYUSEqeznbGbb2QXsPYzf4ptWWF7qio8I/T5QJJccwLJD32A9qsuZ+AnWxm88YdkevcS7ehAOy5CBwuKhcXpNLFzNhPv7AxrNj9Kc3zikcdQmQyi2XA0MhIj6D1ApreX5CnrmT1dmzafQ++qTorjE1jx1PJms9bIVILc3l4Gf3QrJ3zwA3N4qaazzqTxkouZvv0neB0dLCY13dGGFgIr8BHZzJxrJcIuIhGwrfC9hFKEUliRGE40Gt47F0HeRxQDY0NfNGNpMhRIpSmkQ91iraK2jbIthPotMcNXB+ElujppfukWGs4+i4azz6L5nM20bNxUJj6gKyKLEOWy/T+5g75//Xcirc1gWyDkwoRdl9qGUD453K1Ve69e3siGrL9wXSzlc/D7N1bVrcveqdHWVtoveyOZ8alFKwjn9tkocy3HI9bWzvCNN/H0xz/OyAMPhF0xxDnQRn1Qci4s2ZpiTS2c9M53csY/f43k5W9hemgEP2NSh+jZ3trhRwKFoiJ22hkhZ6vKFEhgNpOxHdtxIhGMX7IEz6E4PMTIQ4+VhmgGYp0dJE45BZXOHoFRU4CWxBpSDP7H7eTGxmaJM6Z/3W+7hqLnGS7oRQHjPhH4c3U0Zb8fKdFCzkxqpzXCsZB2iSUScxT4Ktz0BUs0FguB0IpimD20ZlFLoqV1JAbcGTg2SmixeDm0wvaYfaD3+u+z9wtfJOK6iFh8UaICQiOkyaDo64WVcLNV4jIaMyk9ljXAAqE1Tmsz4/f8kuEHHzR1aglalA2XXW++FHv1Kvzp6WVvI1pg/Dscl1h3F/nHnmDnn36a7X/1OYYfeyI0VYeR7qLcu7AHhhwmOjvY+Lm/oudPPkF+Mo0/nZnjMlMaG13IQ1MjTee91LQPJnVrWHdm/34K+/Zjxyu+QdqSKNtiIlRE10Jy40byQbBsYmz6IrFTCTK9L9B/8y0172k64wwaL3wl+ZGxY5areyFoQEmBdGqYyUvvyy+llJlVVi/suCAtkwlhyX3SGi3Bi0fLfazVcYFY9rydjaMqglVzFUvJqKaA0Uce48D132P6nl/gtbQgYzFQi3dBFGEqValh/y0/Ird9O1ZibjY4MItZoBFujOyOnUSSyaUPsK44lNm2iy0CDt30A9rOO8/Ur3RIhDWRzi7ar3gzh77yP7Ebm45sNwkT47vtHVAoMHn7nUz87C4ObDmb7rdcRtOFF+F4bunWcFesRPcL4KR3vwvpehz48t8Rd110KCKXdNtKgD85RdO559C04XRzTcswtMQw6ukdO1FDw9DaUtU1jROPo17YS25ygkiqoWq4jFja9IrzOPjd6xG5HNpbnkiK8AFJPNXE8B0/ofttV+OlUoZbEJic4whWvePtPHPPfVj5PCu2gpYJoRVaCkSNCPmS6ONncyYZm+dUyglJUCziF4s4c0oaeNEoVsRFBQqs0Ht9UX0CpIVTY52UxbFCAVEwbh2LNxvMj6OfGTs8KUEhUPk8qpCDIDxRQit8P0CiCfJ5cn39pJ9+hvFHHiP97DasQoFEV7cJpDxMcq1qGD8RHXIBktG772HiRz8+bDS81honmcBpbDAvb4kQGI5AIYi2tjHxy18x8MCDdJxviJBU2qR4FRYdb7mMsW9fjz+dXrqisGbbIFwPr7sTVSyQeeghdv/qYSKnraf1isvovuoq7LJTmqjSoJlpdMK1V5N5+mnG7thKrLsz3GWNHg0tKBaKxDZuqLQnSq0aTG/bhi765URmIJA6QLou2b4Bsrt2EdlybqV8uCE1rFtP47pTyT3xBNayCJBGYrx27YYE6b372H/99zjl9z8a+v7oskjfeOYmms4/j+Gbf1jWda3EIloOhFJo20YnknOulfoUTE8hgiJCVBEES0I6g5qehvZQTpj1LmRzCzoeh1wR4VhLsHJqlO2gGoxKpFapYmaaYjqNtEoq6COTxY6+FSz08rQE9G79KYNf/waxZAq0mRyBChBo/FyewsQETE1hRRy8ZBNWYyOl9KNHMkm8pkYiPT04rfNbDqqxHOIzG8J2sH2fgZtupOP880y+FUoaE02ivZOmt7yF3n/7FiuVmkuXZH/LItLWAYFG7d7DwS9ex/Btd7D69z9K2/nnzzH5aq2RQrDqwx9g4uFH0bkceMZqhdZYxSJBPEFq8+a5z4mJjJ94/DdYIeteqVkgbJtiZpjJZ7bTVEWAqkNAnNNPZfLBB4nVyElTvl8f/pgjDUSScUbvuIPc26/Ga2xBa4VFZbfues+7GLrjDkSxFA0/O5vSsYHSCtuNEOuYG0xaesrC6JgJ/KVi9ZW2TX5ykvSBfuJrT6lJJZyWFuxkA366H5fooklE4Ps4yTixzjZgJnEu/S4Oj1FMTxO1l5oroDaOQUrWCvEIJiYo7Hqe4oGDFPr7KR7qRw0NEQyNYKUzxKIRYt1deC0dCNddUM59sUNrhdvWxvSvH2H4oYfMl0KEAYehLuiaqxAd7ajpqdp1CMpOi0uBEsYzRFoCq72VSHc3hWeeZccn/5T9txqvYU3FRa20sJNrTqDp5S83G4E2GiOBIJ9JkzjpRBrPPGtWB82vqV27yO/djx2Lzrwc5gl3PJeJ3zxR6Z82C7CU8bLxnLPR0QjUzP28yGRwYX+sVIL8/j4O3nAzAhO7Vi1yNm0+m+TLziM/ZCL1F39e3MqhJF7Z7W0kTzyx0vmq6wCFgUOoWW7uwrYIcjmmX9gbfiPnWC69hhROqgHlF5a0goJ8Hre9mURPKTfV3NLTe/aYmEbrt4AAlbpfGh7L87CbGrFSSaxkAiuZxEoksBJxRCwKjgth0OJKRu0cL2lfOA7CL9D/vRtn9cMMe2zNaprf+Dpyo2PzVLC8dmVYtrTwlJREu7rxbMme677C1J49MwSwam/Z5IbT8ZVRUoswmZyfzdG0+Sys2c6ZYSXZHTtR2SyWPVsrYdKbuLEE2V3PMX1wf7mYRcUjqOXss/FOXmvE0dk1hPRaLfLECCUkXirGyI9uIzs8FFpVKyKnANqveit+JFbVwDGGAH8yTWLLWTjJVBVnXEGgAjK7d2O5kVkcq8SxLfJ7ni9VNWeaSMvCOXENfnoJLiVCoLI5IieejBWNl10sZmNy2zZEoBByZTJavqhiwY4WjhcfpbXGbW1m8sGHGHzwgdlXAVj79rcRX3vS/JWIyr01L8/cIGsWF9rk/3Gam2F8kuFf3F11DaiOrWppoGjZYR5qiVY+wnNInHvOvG2kt+9CzMnaV+mX7bmosUnSu3aWLxjxzkJhYtsaN70EP5Oe50mX8Aa1xkmkKPQdou/mH1TVUPJOhc5LXkP7xRcd03lRVtcLgcpkUakYHZeZjIyiLJhXnnRi23amd+zCjSXwq16wxoxXbudO8tNzfYhKz9nyipcT2A5aHd7XXgMy0ORRxKvE5NnUq5DJkt25AzsWw1+hDAP/KQjQMcOcGa0QlocsFuj79vXlNCLmFAIzWZI9PTSdNA8BUqVTNWfucxoQKjxrQRkfo4UkiVKwtdQC13Eojo2b78ufqrpDvxSJ8bgW2Syyo4P4GWfUrLswPcXEtmdxo/MrkLVlQbFAdldl11ZU+XwByZdsIrAs8IPwdIaqZ9XmtJTS/zOGaNYqkdo4XUYbkwzc8h+kB4cq94aKdSeeoHEhon80oI05UQcBmcFB2i+/nKbTNgDaiKOzHmzi1w/C+Di49gwuTaCxoxGye/cz8Yjxr5pZ1NzbdsH5JDZtpDg8UtMkb96BKB9hXhgdJXbqejouuYhypbMOBpncvoPc3l6sWAShV0ZKqROgFUP1/mUgEGihibS2kHv4UUYeNn5BQUkpugj9w3zeC0oKbAXZ8VH80TGk0guKEyVDSVH7RDq6wn4wJ92rM53GUgG+kFhakZucpPG8c4k2NtYMa5x4+hny+/djRRNzp2NVvZbrMPnks6GSeaZIBJDctBHZ2orO59CoxWfb0zNJUCAFvgArGUUPDDD0ox+Fzxq2Wa1PWWQTS0WteqWQSBTZ/QeIbtnCSR//A9MvbY7hEeiyJKyKecbvvR87Fg/rm7lMlSORfpHhrT+t0V4YJ2C5rH7vO8n5Cp2ubWkV4blvgZ8nMz3Fqne/Cy8aDzMXhMdPC1XeOEfu+jkik0faDos8tOmwWFkCNMe8Uvrj2GMmOTCWtNmf0nlIs79D6fIhiXPyOM/TRngYzqx7pdmRHQ8hJAf//TsU0VgCBGrZ3r9CgFA+maEhkq+7mNgrX8H0gT7UxJQ50huM8r88/saC5I9PYMdTNL7yPMCoL0te2iXkh4ZwtEZLCUERXJvml5r7axGg9M7nsLNZtO0sKAs68RjTu3czUcp2OeveWFcXqbM3kZueCsetanBEyZpqUD3ucta4V85kl0Qbmhi85VYm+/uwqORoOjKYtkxdYtYV415SzpIZ9lYoTXFynOkX9uJtPovTr/sbnEg0HHcLGTqpqjAH2IEbb2Zq2zbcVIPxLVMzW9dKYjc2MPHQA0ztfK7cH0KDhQxP02i/6CJWffSDTB48RJBJm/zq2uibAsJxKuSY6t1P+7VX0vHGN4Q9VqF5X6AxubGn9u9j7Kc/J9LQMO+muBysnBlea1AKp6HB/F/uZIXGiXiifNb0UYWxHldMh2Pj5PoPoRbhyKiExlEWTnMLgWehwr0TQAcBMlI5Y6ws2wCOZSNsa2bqhPJL1LgtjaQffISx+39J+wUXoBZxfud8JmmhNZn9fcQveTUv+fznCYDeDd9i+KYbye7bj+NFkXEPyzFR6RR9cuMTFHyfE//s06ROqqRSLbVTWt9T27djeR4SjZ/N4Z50Mk2vugCoPVmmtu9ESMew5Auc9y4cFz06SmbXLhrXraeWB07LuZsZv/NutBJYUoeHCCqw7fKRSjP5JrAiMbQfUMpJXf1eRCpBcf9+Rm6+hdQn/tAEzc7fxYWhNWiF1WL8dmSNvVvaDvm+Q4hCHm05CC0QKsCXAqenm/Zrr+GE33sfXjxR7m0pXKsUb5o+1Ef/t64nlkqBbSFnWcE0xrNee3H04H72/du/s+FLX0Ag8DHPJ0Xl3I21v/9RAsti8BvfJD8yihuLmqT8gaaQyaCFoPN972PdZ/6kYiwK9TvViRIOfvt61Ng4VnenGYoVokArRoCEZSFcj/67fk5k71pUoZRKMgzEdD3Sjz+OG4stK/H70lAK/jQBom1veTOpDadjxWKzb6soQnQoMjkWQTHP8G0/g9EhiETKE9ZJJshv286hO+5E+YVQVyHBkfhBEXt8EhGdaYouw3ZwpWDghptpveACSsdGLwlCILUmc7CPyCvP54wv/Q/AkPi1v/deOl5/MYd+spXsM8+S6e01x2RriYhGib5kA2svfxMdF79ubrVhT0YeeYSpR58wnuCAEBInGmVo61ZEYNKplDxShOPgT02Sfm4XTipp0pnoBWL0hDnDLbPjOXgTqBpLOHLa6YjmJkQhh46YcZTRKP7YOH0/+jGWY6P8wFjnhIXwXDI7toWb3tyGNRBpauTQHXfQetWVJLu75j0Y4LCwbVwhGLv9dgonrYW8H7ZhiLdSikI6S8+n/hjHscKc1QovnsRa1UXT5nOIhn5ogVJIWZ0ZwLhnBH6R5z7/RdTIMF53d83DCjSgpUbqALe5jfGtP6P/olfQ/fo3mswdNR5v3Yc/RNPmlzK89Xbye1+gmM5iRzwSq1bRfPGr6bzwVaZu7SNEhSSUOJ2B++9j+Me3EmttrlKXrwxWjgOybaRtM/Sd61G+X1EihgrEwJK4EQc3lVq0SXXZCEWPkrt/52svgddesqTiA/f/Gtm3r8zxADgNKbKPP86e+3+FpVSYLsRE7gsEbmMzxGMzuKBKpRq3pZmxhx5l8L776bzwgiX1R2mQKiCfzRK/6EJO+9xfYUfiJnm4Am1J4t09nBxGg2f7+ikMDhrv7uZmEiesKddVzaiIcJsLgP1f/yZWIQdOA2iNlUygDvXT+9dfRisjWMxwBhTgpBqQsQiohY9q0QI812N623YK+TxOjRCE+Mnria9dQ/7Jp7CiUZNgLJGgODLCvi9fVzIjVctf2LEYblNT2L+5Y24lkhT37af/hhtI/skfszz2B7BtHNth7PqbGQoKIQsQrlClyQ0O0P2Hf8D6T//pgtWY4Q5Jj9aoMNeVAnZ+9gvkfv0Q7qraxAdK+6UJv7GcKG4iSu/f/X/E1p5C47p15fEppbIJ02nRes4mWs/ZRDFQqFwG23VDDtkg0BqJTSl1rg77ld63jxf+7qtEpI3wIrXn9hFgZUUwwI0nZpDhEr0UgJby6BMfoJIKdXnCqp/PI4LARP1WlVeBwvIiRN1QtJkNKRd8Qdpx8FAM3nQTHRdesOiuCUwq0aCYQwnBiZ/8I9yGRlMnPgh35smoQKy7i1h3V826ZjQcEpQXvvq/mH7sUeJdHeX3p7UGaeM1pubvm5TmvsNwtVKDFU+Q7u0ls3s3jbOsagpwHJuGczZz4NEnSIQxbiiFsCy8puZZNepQHpFoPb9orbQm0ZBi7Kd3kXnX24m1d85774IIA0CthhTWbDZDa/CLyCo/qPkkvZJfkgq9zyWQOXSI5677e6bvvpdoV+cigmVLvFOA29iMOjTArs98hvVfuY7GteuMCkIZ81Y58V8Ix5IQnxvrZZU89ZXR/0kge6iPHZ/+c1T/ALKza0mxmIvFylvBpDRekuFHV/9+EUQhLwYlJVxNL2QhTKJvKed+FqzTcDGR5ibGHnqYQ3f/fHF9ESVODrQTxZKCPV/4EsNPGBOsJdw5EexLZZB3f+0f6f/ut4m1tFDzBIlazxp+FtuWEhrt2OjxcaaeembO9dI4JzZvQaRSaH9W2ow5bYdzrJojqgGpQadS5Pv6OfCd7x22n4KSona+G0TtsajyDDYK6IVHRgpBQfsc/OEtPP2hP2D63nuId7WjLAeWoCcNVIDT0Q59gzz7sT+i/+d3mfqlRCIXaSqvYhik0R8NPvoQT3/kYxT37iba3mGIz5Gc4zYPjn4w6tFGeFSw2zx7h1w+XC+Ktly0DjiMdXtJkErjOzZRZTHw/R/S9ZqFxUIrFoViaH2yAmwshBUj/8yz7PrEpxm+9A10v+0qUiefMqNcZfc1mbVL1prZjzG2YzsHvvFNpn5xD4nWFpNs/ChMshKk0FhaM7Vz+5xrpb61btnMwfXryT/zFE7TSmQv1AhtEWtKMXLHT8i8593E2trmvdtJpQhQpWm1aA5aBcqIopTEpNoFFZrpPc8zev+DjN93L9O/+Q1eNE6ie7WJW9MKLRZ/6IIwTgu47R1YY6M8/98+y8QDD7LqA+8n0dNTNqBU51gXZRJpNpBql4jsyDAHvnMDwzfdjAwKRDo6zc65gIHhSPBbT4CEbRy1Dty5FbdnlclbcwTQtkWQyyKnM+BGynqkI+4ngDDmVqelgfzOXez5138jdtopBAXfHE9TDiQXCNdlYudu7ESCcoa8cF/12loJMhlGbryRiXvvJXX++TScdRbJTRtJrD2piq2d662RGxhg7JltTDz4EJP33EMwOkqsswNt2UvaeZf+/CZ1q5tMkd65m/0//Zk5AjuM/9LaLAThOUjPRVjOEas7BcYvSCiNHY/hj4yw93//E82vvxhdKBgiU7W7yIjH6LbtuK6HkBCEOaUW8/adWJzc83vo+9X96IIyXJTQWMUCejpDbnwMf2iQfO9+0nuexz80QsRziXS0IaWDKo39krUGAkuDJsBqbiKezTJ8yy1MPfwIzRddRPK8c2k6cxPOjKj7CokUQDGTZeLpp5l85GFG77mPwnN7cVsaseONoXh9dIgPgHj8TW/5InAtcMrhbn4xQoQR1LmJCaNfOsId3OQ3FsSSSbTjhKdWrkxfNYQKYyAIKI5NUJDG50XM9lIRAjsax4m5yMBEbM8wfWrMd9kMxckJAgR2ayuxdSfh9azCaW03uhvbojg1TX5oEP9QP9nn95A7eAhZ9HEbkoh47Ji5ainCU1nzPrnpKSPtldOshMGvWuI2xpGOs5QDHeZFea/XxhmwMDlBIQiMb42YKSppKbAsl1gigRLBwla9WRBS4mey5LJpZJgYquQHZPnKuDpohbQtnHgC4bkEUoT3lnQ1KwFpZtL0JMHkNH4kQvzkk4ifsh67vQ2vuQntuehikeLoKPn+foov9DK9ew8qkyGaiCNSSZSQoQvAinSqFv7m7Nt+/Je/9RxQyVcmmkwuiWWev8Jw57Rk6NuywutThmdTSQu3uQmvzN5CdedF6AyolZgTY1W6VaMQsQheLGKcKgt5Mo8+zvSDD4ebXKmcNoRUWljxKLHmJpDmzO9jRXwgPJhAg+VaJBobZrwvQRieAeZ5V4gZK+/1wlRpJ5M4SlGTsoTitgrPv5ZLePdKKSzPJRkmcyttFrrM0lSsZjOkO1np58pAYWlQiRRWMokbKIq9+xndscu0WtJVGo0zCIHleURTcWhqQId8tuSoEp8yfusJUAl6GWd5zVsXlbFfyfVZrrMsjAu0Vfst6xp/zVtfWJfwIjjVSb10FWGramYuuTt2KGkb9Kz4JD3r99GBDsd8/lQSep6/D4eyiL2INBVzx31l30Qpw2fJSminklA6kqpaQpjlXV7661jOi98ZAlRHDfyWWB3rOIZ4kc2JejBqHXXUcdxQJ0B11FHHcUOdANVRRx3HDXUCVEcddRw31AlQHXXUcdxQJ0B11FHHcUOdANVRRx3HDXUCVEcddRw31AlQHXXUcdxQJ0B11FHHcYOkULAJAuvF5qJdRx11/I5CCCgUbACbRALy+SjFAtjOUU1IVUcddfwnh5SQz0PCpIW1I297+3f9Z5+eLm7d+j9kS8tx7l0dddTxuwydzYNljUXe9vbvAtjelnOesjo6nsoOTowG05lG6XmHP0y6jjrqqGMZUJmMGzv7JXd7W855CkDMd/hdHXXUUcfRxv8PZuvrdOGxiisAAAAASUVORK5CYII=)](https://pensando.io)", - "openLinksInNewTab": true - }, - "title": "Logo [Filebeat Pensando]", - "type": "markdown" - } - }, - "id": "39e26d70-cc4d-11ea-918e-c778f7abe5d7", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-09-10T22:03:40.485Z", - "version": "WzI1MDIsMTFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Active Workload Count [Filebeat Pensando]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Active Workloads", - "field": "client.ip" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": false - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 36, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Active Workload Count [Filebeat Pensando]", - "type": "metric" - } - }, - "id": "bc6a36b0-cdba-11ea-a0ef-8f5241e594be", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-09-10T22:32:05.773Z", - "version": "WzI1NjIsMTFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "DFW Allowed Count [Filebeat Pensando]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "", - "exclude": "denied", - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": false - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 30, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "DFW Allowed Count [Filebeat Pensando]", - "type": "metric" - } - }, - "id": "fa745d10-cc88-11ea-918e-c778f7abe5d7", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-09-10T21:55:19.408Z", - "version": "WzI0ODQsMTFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "DFW Denied Count [Filebeat Pensando]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "packet count" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "", - "exclude": "allowed", - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": false - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 30, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "DFW Denied Count [Filebeat Pensando]", - "type": "metric" - } - }, - "id": "1d2d5f00-cc89-11ea-918e-c778f7abe5d7", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-09-10T22:21:26.142Z", - "version": "WzI1NDAsMTFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": "Denied Destination IPs", - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.action", - "negate": false, - "params": { - "query": "denied" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.action": "denied" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.action: \"denied\" " - } - } - }, - "title": "Denied Destination IPs [Filebeat Pensando]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "server.ip", - "json": "", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 25 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "maxFontSize": 36, - "minFontSize": 14, - "orientation": "single", - "scale": "linear", - "showLabel": false - }, - "title": "Denied Destination IPs [Filebeat Pensando]", - "type": "tagcloud" - } - }, - "id": "bf9d4650-cc8a-11ea-918e-c778f7abe5d7", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-09-10T21:57:10.267Z", - "version": "WzI0ODgsMTFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Traffic by Workload Pie [Filebeat Pensando]", - "uiStateJSON": { - "vis": { - "legendOpen": false - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "client.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 25 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Traffic by Workload Pie [Filebeat Pensando]", - "type": "pie" - } - }, - "id": "07983660-cd38-11ea-a0ef-8f5241e594be", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-09-10T21:57:31.753Z", - "version": "WzI0ODksMTFd" - }, - { - "attributes": { - "description": "Inner ring is client IP, middle ring is server IP and the outer ring is Allow vs Deny actions performed by the FW", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Client to Server FW Action [Filebeat Pensando]", - "uiStateJSON": { - "vis": { - "legendOpen": false - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "client.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "server.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": false - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Client to Server FW Action [Filebeat Pensando]", - "type": "pie" - } - }, - "id": "fd2202d0-cc86-11ea-918e-c778f7abe5d7", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-09-10T21:56:22.329Z", - "version": "WzI0ODYsMTFd" - }, - { - "attributes": { - "description": "Firewall denies and allows plotted against each other in time series", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "DFW Deny vs Allow [Filebeat Pensando]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "event.dataset:\"pensando.dfw\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "pensando.dfw.action : \"allow\" " - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "terms", - "stacked": "none", - "terms_field": "pensando.dfw.action" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(150,10,3,1)", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "pensando.dfw.action : \"deny\" " - }, - "formatter": "number", - "id": "b6c562c0-cc84-11ea-a4da-c770c13b4387", - "line_width": 1, - "metrics": [ - { - "id": "b6c562c1-cc84-11ea-a4da-c770c13b4387", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "pensando.dfw.action" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(188,186,0,1)", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "pensando.dfw.action :\"none\" " - }, - "formatter": "number", - "id": "2dd6bef0-cd1f-11ea-98bc-ef8e168e330d", - "line_width": 1, - "metrics": [ - { - "id": "2dd6bef1-cd1f-11ea-98bc-ef8e168e330d", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "pensando.dfw.action" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "DFW Deny vs Allow [Filebeat Pensando]", - "type": "metrics" - } - }, - "id": "2aa5d850-cc85-11ea-918e-c778f7abe5d7", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-09-10T21:54:41.152Z", - "version": "WzI0ODAsMTFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top Destination IPs [Filebeat Pensando]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "destination.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": true, - "otherBucketLabel": "Other", - "size": 25 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Top Destination IPs [Filebeat Pensando]", - "type": "pie" - } - }, - "id": "b8bfd3e0-e8b7-11ea-ba07-c1efedbf0bf9", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-09-10T21:59:43.129Z", - "version": "WzI0OTYsMTFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Destination Port by DSC Pie [Filebeat Pensando]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "destination.port", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": true, - "otherBucketLabel": "Other", - "size": 25 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "log.source.address", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Destination Port by DSC Pie [Filebeat Pensando]", - "type": "pie" - } - }, - "id": "c6188140-cdb9-11ea-a0ef-8f5241e594be", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-09-10T21:58:55.571Z", - "version": "WzI0OTQsMTFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top Destinations - table [Filebeat Pensando]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Network Packets" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Top Servers", - "field": "server.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 300 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": true, - "showPartialRows": true, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top Destinations - table [Filebeat Pensando]", - "type": "table" - } - }, - "id": "0583e120-cc8f-11ea-918e-c778f7abe5d7", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-09-10T22:27:54.232Z", - "version": "WzI1NTAsMTFd" - } - ], - "version": "7.8.0" -} diff --git a/filebeat/module/pensando/_meta/kibana/7/dashboard/pensando-dfw-overview.ndjson b/filebeat/module/pensando/_meta/kibana/7/dashboard/pensando-dfw-overview.ndjson new file mode 100644 index 00000000000..289793aa52c --- /dev/null +++ b/filebeat/module/pensando/_meta/kibana/7/dashboard/pensando-dfw-overview.ndjson @@ -0,0 +1,13 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Client/Server - input list [Filebeat Pensando]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"client.ip\",\"id\":\"1595471403191\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Client\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":500,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"server.ip\",\"id\":\"1595471807689\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Server\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":500,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"log.source.address\",\"id\":\"1595471848091\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"DSC\",\"options\":{\"dynamicOptions\":false,\"multiselect\":false,\"order\":\"desc\",\"size\":500,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":true,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"Client/Server - input list [Filebeat Pensando]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"a73c8dc0-cc8d-11ea-918e-c778f7abe5d7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": {\"match_all\": {}}}}"},"title":"Logo [Filebeat Pensando]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":8,\"markdown\":\"[![Pensando](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAASAAAABJCAYAAACdD/umAAAACXBIWXMAAA7EAAAOxAGVKw4bAAAF42lUWHRYTUw6Y29tLmFkb2JlLnhtcAAAAAAAPD94cGFja2V0IGJlZ2luPSLvu78iIGlkPSJXNU0wTXBDZWhpSHpyZVN6TlRjemtjOWQiPz4gPHg6eG1wbWV0YSB4bWxuczp4PSJhZG9iZTpuczptZXRhLyIgeDp4bXB0az0iQWRvYmUgWE1QIENvcmUgNS42LWMxNDggNzkuMTY0MDM2LCAyMDE5LzA4LzEzLTAxOjA2OjU3ICAgICAgICAiPiA8cmRmOlJERiB4bWxuczpyZGY9Imh0dHA6Ly93d3cudzMub3JnLzE5OTkvMDIvMjItcmRmLXN5bnRheC1ucyMiPiA8cmRmOkRlc2NyaXB0aW9uIHJkZjphYm91dD0iIiB4bWxuczp4bXA9Imh0dHA6Ly9ucy5hZG9iZS5jb20veGFwLzEuMC8iIHhtbG5zOmRjPSJodHRwOi8vcHVybC5vcmcvZGMvZWxlbWVudHMvMS4xLyIgeG1sbnM6cGhvdG9zaG9wPSJodHRwOi8vbnMuYWRvYmUuY29tL3Bob3Rvc2hvcC8xLjAvIiB4bWxuczp4bXBNTT0iaHR0cDovL25zLmFkb2JlLmNvbS94YXAvMS4wL21tLyIgeG1sbnM6c3RFdnQ9Imh0dHA6Ly9ucy5hZG9iZS5jb20veGFwLzEuMC9zVHlwZS9SZXNvdXJjZUV2ZW50IyIgeG1wOkNyZWF0b3JUb29sPSJBZG9iZSBQaG90b3Nob3AgMjEuMCAoV2luZG93cykiIHhtcDpDcmVhdGVEYXRlPSIyMDIwLTA3LTIyVDE0OjQ3OjMwLTA2OjAwIiB4bXA6TW9kaWZ5RGF0ZT0iMjAyMC0wNy0yMlQxNDo0OToyMi0wNjowMCIgeG1wOk1ldGFkYXRhRGF0ZT0iMjAyMC0wNy0yMlQxNDo0OToyMi0wNjowMCIgZGM6Zm9ybWF0PSJpbWFnZS9wbmciIHBob3Rvc2hvcDpDb2xvck1vZGU9IjMiIHBob3Rvc2hvcDpJQ0NQcm9maWxlPSJzUkdCIElFQzYxOTY2LTIuMSIgeG1wTU06SW5zdGFuY2VJRD0ieG1wLmlpZDpkMTUyMWZhMi0wZjgzLWMzNDItYmQzZC03ZGVkYmRiNThmNjQiIHhtcE1NOkRvY3VtZW50SUQ9InhtcC5kaWQ6ZTc4NjkzZWMtOGViNC03NTRlLWFiMzgtMTZmMGY3ZDRhNzg1IiB4bXBNTTpPcmlnaW5hbERvY3VtZW50SUQ9InhtcC5kaWQ6ZTc4NjkzZWMtOGViNC03NTRlLWFiMzgtMTZmMGY3ZDRhNzg1Ij4gPHhtcE1NOkhpc3Rvcnk+IDxyZGY6U2VxPiA8cmRmOmxpIHN0RXZ0OmFjdGlvbj0iY3JlYXRlZCIgc3RFdnQ6aW5zdGFuY2VJRD0ieG1wLmlpZDplNzg2OTNlYy04ZWI0LTc1NGUtYWIzOC0xNmYwZjdkNGE3ODUiIHN0RXZ0OndoZW49IjIwMjAtMDctMjJUMTQ6NDc6MzAtMDY6MDAiIHN0RXZ0OnNvZnR3YXJlQWdlbnQ9IkFkb2JlIFBob3Rvc2hvcCAyMS4wIChXaW5kb3dzKSIvPiA8cmRmOmxpIHN0RXZ0OmFjdGlvbj0ic2F2ZWQiIHN0RXZ0Omluc3RhbmNlSUQ9InhtcC5paWQ6ZDE1MjFmYTItMGY4My1jMzQyLWJkM2QtN2RlZGJkYjU4ZjY0IiBzdEV2dDp3aGVuPSIyMDIwLTA3LTIyVDE0OjQ5OjIyLTA2OjAwIiBzdEV2dDpzb2Z0d2FyZUFnZW50PSJBZG9iZSBQaG90b3Nob3AgMjEuMCAoV2luZG93cykiIHN0RXZ0OmNoYW5nZWQ9Ii8iLz4gPC9yZGY6U2VxPiA8L3htcE1NOkhpc3Rvcnk+IDwvcmRmOkRlc2NyaXB0aW9uPiA8L3JkZjpSREY+IDwveDp4bXBtZXRhPiA8P3hwYWNrZXQgZW5kPSJyIj8+LBGpEgAAMvVJREFUeJztvXecXkd97/+eOe3p27sk27Il27KQbVkGG7Ax2DRjMK70EmpCICSEy025N8ANhOAE8ruFFLi5JBSDCxjiggXYuADuNm5qlmWtyq6216efM/P7Y85TdvfZ1e5qJRnyfF6vZ8tzzpQzZ+Y73z5i11PPQi5H8amnzszfeecVemIiKlzXp4466qhjpaC10Pm8bZ911j7v4kv+j1zVw7qXbMAWnocaGyPYtu0KcrlrhGVFgOB497eOOur4nYIQtm2pgwf7gj17HrJOXvsIgO0/9dSm4pNPXZ7feudnrZ5V4Lqg9fHubB111PG7BCHAdVH79p2Uu+nGn8qO9lex/uSnrA/6wafUgf0fkslkAsc53t2so446flehNSIWQ0DE37lzqutt1/5cMj0NSmXrxKeOOuo46tAaPA+mpwGwMQrnoC521VFHHccEWhPSHeTx7ksdddTxnxd1AlRHHXUcN9QJUB111HHcUCdAddRRx3FDnQDVUUcdxw11AlRHHXUcN9QJUB111HHcUCdAddRRx3FDnQDVUUcdxw11AlRHHXUcNxx3AqTLP81fYgUiQkT4UUdeFWKe7/V8F44TBNWjOPsKoBQoFd4zt/OayrgdSR+OH2o//dFoZbGt6Vl/Cb0y83tp0OF7FabPWiOUQrxIQq/sla5Qq8qDmcFW5YlZulL+XwikMr+1AIQiEBKhwdIKLZdOH0uER2uQGrTUJgp30RRDh30RoM1LE1VFtQaURgiN0BotKsu2/OTCkAMhjs2SVISTG1BCIxX4hTxqagrtK7QELBs0iCBAobEsgYjFcSJRlAVCS0OwxfIJidIaLTRWoFFCoBHhDmfIm5CiMkYlirf4yuctpBAoIbDDLUcLcfSIoQrQaNACUV7WZRJDacHr8CoiJFZCmfmuZWXxH4vpoQWBJRHFAsHwCAECbVlorRBBgBQSy3Ox4gmUYx9zjmTlCJAwg+2Pj6OKRbQwE2GhbUJqAE2AmbRowJbYiQQqEkEKEcbILoNaCxBmqlAcn4RiYRGFzASX8SQyGUMEasZkFpaFmp6mODllJpmoTMDSpFNK4zYmsKIxtOKYTDKpBYEEUcihxqbIqgC7s43UxpfhrVmD09GGnWpEaE0wMUluYIBgYICpPXuYPtiHU1Q4DQlUIoYVCITQSx5xAQQW2D7kxyZRqoClwRcl4qyxGpuwIxFQCiUWx34LKVGFAsXREeYbTA04XhTV1IgIfCwNaqXHXQgEimBigqJvCK0oz7DyTVRzO1JrFDrkfDRKgOVFsONxhL3ie39taNC5LCoep/Hd7yTRsxod9fDTGfzhYYpDw6Sff4703r1Yg1mcRByrIRVuwEefS1qxUdC+j/Z9Ot7xNtwTTwSlsGyr6hkqL8f8K0ApgsBHBz46nSE/NkGh9wDpbdvI9PXhxKM4jQ1ILBSKxexrGkPYAsAPiiBdWt79TuKd7Sh/4UyzQgiwLMZ++RDpRx9BJGM4WpTFLX9yksg5m+l6+Xn4SiEViDJPLRDSQhUK9P3gBzA0gh1Poo4Sz60BoRVCWICmODiIlpKGC15JxyteTtO5Z5FcfcKCdeQGhxh78kkmHnyY8XvvITjQT6ytDeU5oLThIBe5kDUgs3l0soGOj78dJxZF+j5KGMKtfZ/+H96CGhhBxmLhuB2+8iCdxu3qouOD70dIiVazBGshEVIy9rN7mP7NYzgtraijIIoJv0g+0DS/6x2k1pwESqNcw8HPhhYCoTTaL+L7RWQhT2FsksLQMJm9e8k9vwc1NYWbTGAnUyEXfZQWuwAyWUR7F2s++Ud4NW4pZrJMbnuG9MOPMfSLX5DZ/TyxpmZEPI7WIVdZVd1KYuXIcBCgc3naL72U6EknLrsaBaT372P0rnsZ2nonmZ07ibe0IzyXxb4kLczuExQDlBvQc80VRFvbF92HwtQkk7+4Cy8eNyJNyOcUJ6do3HQG3VdeuXD5YpG+r/5PEok4R4MFMsQHwEIFAflDA3hnbGD1Rz5Ey4WvXDQbHWlvo+u1l9D12kuYuPoK+r7xTcYefghXJrEsq6znWPQTKMhls7S/4RJirR1zLqd3v8DwTT8kHo2EHIrkcO/UT6eJNzfTc801C97nnbGBHR/8ME4ug45EFrVZLQXaDyj6itY3XEbT2jXLrqeQLZDe9izD99/H5K8eIPvcCzgNSeyG5FziugLQQoOUaK1QU9OQTMy5x4lFadlyLi1bzqXtHdfQ993vM3jDDVhDaZzW1pCLOwLZfAGsnMgnBEhJcXx82VUozHRMrl7DCe9/Dxu/8XVa3/N+smPDkE0jlqoTCsWnYGxiaeWyWSNuzRpwYVnoTAZYeNmsuvpK3FNPxp+cnKlAWiEYHYQGpckO9pN6wxvZ+PV/pC0kPnoJrHOJyDScfjqnf/U6ej75cXJTU8iiXxYzFgvheqihQUbu+yUwN7F4dNNLKNoWaI1e5NQTUqIPw7lqoOXUU2l+/espDo8gj8ZKEQIhwB8fq2p18QSjdLcbdWk652zW/fEn2fCNf6bjDz5I0REUBg4ZDvwo6Q0FHJbAaSDa1MLJH/9DTvnKVwla2/D7B7C1UTAeDWb+6OucFtFpH6NjFAosXVkUkUSc0/7k43R+5r+QnpoiyOYoiXKzLTlaq/LHWHuCUHEZ4OtKVw73ATNRlABbydmC46xnq2EL0Ro3FqPlzW8iMzmF1PPoU0LdlkYglChXJao6I4KQzsx6VgkgBOnBA8QuuogNX/o8biyGQqO1Nv3XeoZBoHb3NVrNNBwU+vtwkBAS+8MuBwW+VqA0vqWxgoDMU8/U5JxaX/4y4qu7CTIZ09cVEjtK9Lbr2mvxkw2oXHah7objrVE6MCJU1biX3oNGLVsHMpc0mUbKlsqwkWhjI2s/+hE2/su/YG3cRPpgHwQKtQQipAnfX+CjgwB8hQ4qH+ErZOCjtJp3A9fazBuhK8/c9tItnPF//xm9fh35Q0MhcVzOaCyMo0qANKEy0Iz6vPfZgBQgJGUrjClm9tC1115D63vfTX54BKECZkil4csqjIyS6x8gPzBIbmCI7MAwfv8A6cFhrHjM3LqID4DtxRGBD0KjscplF/fMpl+rrngrsVPX449PlgWNuSNgbHaZ0WHyB/vJ9/eT7e8n199P/uABitlppHSQSs1YrAJBcXIcZ/UaTv/vf1num0QghLE8CVGxOk317mXw1w9w6J57GX78CfJTk+HQmcGW0tSw/UtfZuj/fRuvIUlgWzWUrFWQEq0C/MEhCv0D5Ib6Uf2D+LkM/T/9OelDh+ZMrmhzK8lNGymkM1hqsTzQ4VEa38ZT19H0+kvIjU7My0gIQNngT02TPzhApr+PXP8hM+4HD+KPjaClQCpr2eRRMHthyZJNzHxE9WyD5Mlr2fi1fyB+wXnk+w6FxplFQErwfYojI+TGxsiPjZMfG6M4OkpxdJTC6CjZ8VGCyTTSiyDjHr4KyIyOUqgi0qJsKJjJgaU6Oznj77+MXrOKwsgQUqw8uTjKqngdLjGBFND/6wcZ2roVL5Ew5kmlkK5NpKWN1Lnn0njaqTNKB0iE0lhSsPajH2XqVw9S7O1FNrUY9gDDngspab3qCpy2NlQuByUGP9D4rsvEI48y9eBDCOtwAygQjsP0tqexEo0EIjCTQSywEGc8ruE+JODFk7S95TJ6/+7vSaVSSDHTMqMFUAwILEHidRcRa+1EFYqmHSGwPIf0s9sp7HwOO+IhtFXmgQVQmE6z6qMfIdLYVG6z/BThJBq45xcM/+BHpHfvNuKg0uA4RHt6SGzZQve1VxNfvQqA5/7hfzH23RuJdHegpTy8n0ixSCAEDddeTqS1A/IFDOsQkCsE+MVizWLRDRsZvG0rEYzyfCWgMdYmC0nPtVcz8dO70NkcIhKZ04JQmiCXxjt7E43rTkXn0ggMsbE9l3TfQbKPP4kjQQt7SZv+xNPPMrD1DpxYCtvzwLERUQ9n1SqaNm/G9WqpgM0TeJEYZ/zt3/D4x/6I4tPbiXR1orRiPkOqQBBkMwS+pvPDH8Dr7oK8j5LhXAjnrRWLoqVm4K572f2Xn6M4PIY/MYEVc4muXkXq1RfT9ZqLEELMEd01EO/pZu2f/1d2fPJTeLkswousGOcKR5kACUR5UYJgatcuRr75LeLtbRXfHxTKV5BsoO2tb+aEj30U14sQaONHI0OTsOs4dFzxVvZd9xUSWoWWA9CFAngeJ374Q9iNjTX78cynPsPILbfgti9OEW0n4rgNKVTgs/jtyEBWme07L38zh275IcWBEazG1Cx9ikb4BYrS5dSPfYxUZ/ecunq/ewMHHngQq6eHKg8a/Ewad82JdLzh9WFVeo7u4MCdd/Lcn/034oDd0oSbaght5VDYf5DBZ55m9K5fsPpTnyA3OMDwt79NrLMdteCxTCXTrMYfm8DbtJFTPvNf53AyWisGH38cVq+uelrTfOOWc+lrbkYXchCZb0EuFZWRbVi/nqbXvoqxH96O192FEmoGDyu0pjg+Tc8bXkfXGy+dU1P/ju0898sHiERcfNdhKURyaucuDnztX4g3txgijkZpgXIdomvX0nrpa+l55zuwavB+AQonmuD0z3+WbR/4CIWpCUQyCYFAigA9g/tQaC3JjY7R/va3ccKHPrhgv164/jtkH3kcNTKK4zkIz8EPfCaefJah237C+FVXcupf/BnWbBFNawIBbS89l/Err2Dwe98j0tONCOVLyeKtpPPhqItg1Y3Y8RheVyduRztuRzuR9na89i5i3d1EbUHf1/6JPdf9gykjzL4kqhZ00/nnYnW1o7OZypOHC684UVvRrAE7ESXa1k6kteWwn2hrC3Y0ilbBHFb5sBBiBpHxkik6rriSXHrCmOxnvS0tBBKNSqdrV5fLIixpiG1V0UI6S3zT6URbW81YzSqXGRxk///+R+JRD3f1akQ0apzPpIVyLOyGBlInnIjITtH72b9m6J++TrS9DRWNsJBiVaBAgxKCYqFA83kvLbdttG2m7PB9v6TvezfVrCO59kTiG083HNkKKRWEYIbiueft70Sl4pDLIrUsb1YQ+qZZFjqbq1mXSmfK+gBrif2woxG8zk689na89lbcjg6inW0kGlL4e3bzwhe+zLZPfKosAlc9AcbLCFJrTqDj/e8hNz6BUD4WUJSzRkpDkJnG7uxh1e+9b+4zoMtvccd117H/r7+MDbjdHVgtjchECqehGWd1D9HWFka/9W12ffHLNUhtRXHQ8953YbW3o6emQczWSi4fxzUUQ4c/NUAsTnzNKka33snErp1VPqUVRHt6iK9ag8rl5lLe6l1bz7YEiXBSHf6jxdKHVlceZg7a33Qp3gknoyYmjUm0Vvl5rBPzWrOUJtLVWfl/VpenHvsNxcEBoqlGdBDMseZpNIEGN57ETsXxYkmQjvGO1fNPCQ0oqRDFIiIVJ37ulnJ9ukrtPPn8c0zedz/B8Gi5ZLXpIHXOZorKP7JwgAWKJtedQsNFF1IYGUeGHutzis87tpV3cWSCRkWvoiwLp7mZ5JoTmLj7bnb8xV+V33l5ieuKCLT62muInrEBf2IaJRVSixl9UcIiOzVJ00WvKG9C1ZDhp+/22xj6zvXEVq9GeA5CK1SoMdOYkAzpxYifeAKDN9xA/9ats55dlj3kYx0dtFz6RgoTU6EVU6+Is+dxjwUrQ2scN0KhkGd893PA3P3RljZWWwvFoLZK9zANrEQv5yAIa67Fimog1tRE+xWXk02nUSsQnSY0IMGy3KpWZiE9ia1LXsgzw1AkhhYH4VeOdNCOhZIaga5yrJzVLqB1aCXIZLE7O0mccnJ4TSARWOEby/f2IgYHGXn6mUoXdWXXTG7ciIgl0H5tPdHhoDHqrIXo16p3vQPVEMcv5I6FM/phIRBIRxI/YQ2Td9/L7n/858rFMLTHCjc/2/VouugCCtkMUtUIIyr6yGiC1te8Cpg5A8yYCIq5LH3fvZFoNIbleWYMaiiRBQq8CLFUkr5vX08+Mx12ybwvKSpEouXVr0KmolAMwrJHjhcPAQK0kLhKw9hsFrUCFfGWeXD9UfKv0EbhnZ2aZGx4eM41gK63vAlnzZqQfT2yfmgR6jFyRoTQiLnUr7k5tOAFaGHPUGNVi8XVhHNmZNM8bUuQWGTT06S2nIsTjc25p5ieIv98L9JxmNy5LaxcoETF6TC+/hT0qm7jVrGM4dCYeD0NTPQPEARzZ0Tj+lNpeOUFFAaHay68Y42yIdiyiXe0MXjjTUyGnL6qYeFufNn5yGQSZinzBYIgM0187VpSmzaZ73T1dYPhe+4nu30HsrkFdMU3vOZwa43b3ERu206G7robwFi8Zt3ccPppuGvXEUyl0YedLYvD8X8zVRAIAq3QdiWEcTa0X0Sij1z7tUIoDWBhcoLnv39DmbUuGc4VGq+pmdYrLyM3MY0VKMOWA0fClQVjY0DFK6q6pobNmxGrV5MfHApNv0c+UTTGu1wWi/gRh+aXn1/+vhqTu3eT238AryFFdseOKp5PgRYEgBeN03HeeeSn0yYYeYl2FQFYQiMF7L/1P5jctqPUQhizaghS97vfAakkKpcBBEKvxEgcIbRGxqPoyWkG77gTmGuWB2g4YyPx008ln5mesUg1oHN5vFNOwna88ndlhNWMPvQQFgrk4jRZWkgsC9KPPjGjrWpYtkNkwwYK+QysUMDLi4oABcUMMpGiMaTss6EARkYR9lHxdV0ewo5EWpqZuvc+hu65t+qaKA9w99VX4p64Bn9qHCMWLZ/82NEo2ed2U8gadlnrmbtgpLGRdX/xF4i2djL79hLkCyviYauBIJsj0dND4oxTa94z9diTqKkpZGOKyd17yO4/ABjCoBBlbqzlZS/D8lx8vwhqaV621YRE7e2l/z9undHHku6w6fTTaHzVheSHxsscSK3YrWMNrcGNRRh78imK+Ty1tlvLEkRPXkdQKM7YawWaoq+Ir+qplJr1av1Ckdz+fTjR+Lwi9dw+aZxIlPTeXorZDHNJokHzhg3maGWl5uhol4PjQIBE1af0lcDSgum+Q8TP3Uzj6Rtq+j8UhoYI9vdhux5LWb6F8XFyfX3kBwbm/xwaINd/iGBqCrmcNCBeBJHP0fe9G8KnNCZrrQ23E0k00HbppWQmMuXUGct9gXY8Rnrnbobv+7Vpa5aVTGtN65ZzeMm//l8a33o5+XyGbO9+dDoT3h/et/SnJJeZJnLqBqINTeE3FQTA5NNP4TgOwouiB4aYfPLJ8D5prCfCcCfeqadgdXWGXstiyb0paZQi8QQDt9xCdnQ4VL4aF40SnWm7+iqCeBRyOYIlulQcLWjAikVRfQNke3vD78SM6wBedzdCODMU40IpAkdCe0f57tmzKDc4iBoeRkRclhIuYnke/uAhsgcPzupJ5e/omh5IJBHByhCPo54TQAmF1IYNVIGPKuRRhXyYyiL0E8rnSQ8P4Z12Gif98ScA40uitDRbY8hJjD3+BNmDB4g0tyw4ZbXQhOErKDSJLVuQ0sJOJSs3icquq4VACIV2IhR791HcuxfhujXrng9aa7yWFqZ/9QDjv3mSxrPONES0ijZ0vuNqBm+/k+LoMLIhZdJVLKmVsC1p4diCwe/dTOfrXodxZDZ7vwqJu0ARX9XNGX/9OUaffCuDt9zK1IMPkT94kEgijpNMoaSs6UM0H6QOCLQmec7m8JkppT4CAYXRMfL7D6BjLiBwg4Cxp5+k67I3YZWJnuFeo41NRM94CVO33YqdSFUqWczzC102u4vGBMXefQzcejsnvu99xuCpK06fbWeeyeCrL2Ty9p/h9rQTyJXYt48MAhCWQ3E6zfSBg6TWr5/lIWbucVqawBIzJrryfbx4jHhPl/k/HNHq8mp0kGBqEtdy0Fos8vUKhGtRmJggs+8AqVPW1eg1WE3NePEETE6i3SMnH0fZERE0Vjn3iw4UfrFAEOYLUuHgyMZGmt58KSf93vuItbbhY5zHtDCGWwsIVMDBG25GWhIp5YL7ZZmwhKLJ2ve+G9777kX1ue/Ht/LC3/wt8daWJZvkhesgCjn2fed6UmediZxVPppsoPWy19P3f75GoiHJchXjSgjclmayv3mcnX97Haf/+WcAQaA0UqiQKlT2p+Yzz6L5zLOY2tfLyE/vYuC228nvO4CbjOEmUyb2aBEmcZ3L4nV10nz+y8zzhkul9H5zO3YQ9A3gJmOGSEQjZHe/QFDMYzke5SRdIZrO38LET36CDAKUbbNYLmjGqAlBpCHJ4A9+TMdllxJtaTNEqOqWrquvZvzue6BQAHulnB+PDEIKRFA0EerzwE3EEY5t5NdQlaODACueINLcMm+5wmQaP5fHS0SWLnr7GsZLRqC5ZZ1oBCfqURg3PkpHSsyPOgckMMoOhaDrNa+hZd16LMc0GyiF9myiXauItTQDhpOwkEZNW8U99P6/f6Pw+BNEuzrRZbpfG1oIE2QpFrfbzdh7i4XlDarWJtKhuZWp++5n7NFHadlS8ZMpLbzuK97K8G13osaGEW5kOS1haYUSEqeznbGbb2QXsPYzf4ptWWF7qio8I/T5QJJccwLJD32A9qsuZ+AnWxm88YdkevcS7ehAOy5CBwuKhcXpNLFzNhPv7AxrNj9Kc3zikcdQmQyi2XA0MhIj6D1ApreX5CnrmT1dmzafQ++qTorjE1jx1PJms9bIVILc3l4Gf3QrJ3zwA3N4qaazzqTxkouZvv0neB0dLCY13dGGFgIr8BHZzJxrJcIuIhGwrfC9hFKEUliRGE40Gt47F0HeRxQDY0NfNGNpMhRIpSmkQ91iraK2jbIthPotMcNXB+ElujppfukWGs4+i4azz6L5nM20bNxUJj6gKyKLEOWy/T+5g75//Xcirc1gWyDkwoRdl9qGUD453K1Ve69e3siGrL9wXSzlc/D7N1bVrcveqdHWVtoveyOZ8alFKwjn9tkocy3HI9bWzvCNN/H0xz/OyAMPhF0xxDnQRn1Qci4s2ZpiTS2c9M53csY/f43k5W9hemgEP2NSh+jZ3trhRwKFoiJ22hkhZ6vKFEhgNpOxHdtxIhGMX7IEz6E4PMTIQ4+VhmgGYp0dJE45BZXOHoFRU4CWxBpSDP7H7eTGxmaJM6Z/3W+7hqLnGS7oRQHjPhH4c3U0Zb8fKdFCzkxqpzXCsZB2iSUScxT4Ktz0BUs0FguB0IpimD20ZlFLoqV1JAbcGTg2SmixeDm0wvaYfaD3+u+z9wtfJOK6iFh8UaICQiOkyaDo64WVcLNV4jIaMyk9ljXAAqE1Tmsz4/f8kuEHHzR1aglalA2XXW++FHv1Kvzp6WVvI1pg/Dscl1h3F/nHnmDnn36a7X/1OYYfeyI0VYeR7qLcu7AHhhwmOjvY+Lm/oudPPkF+Mo0/nZnjMlMaG13IQ1MjTee91LQPJnVrWHdm/34K+/Zjxyu+QdqSKNtiIlRE10Jy40byQbBsYmz6IrFTCTK9L9B/8y0172k64wwaL3wl+ZGxY5areyFoQEmBdGqYyUvvyy+llJlVVi/suCAtkwlhyX3SGi3Bi0fLfazVcYFY9rydjaMqglVzFUvJqKaA0Uce48D132P6nl/gtbQgYzFQi3dBFGEqValh/y0/Ird9O1ZibjY4MItZoBFujOyOnUSSyaUPsK44lNm2iy0CDt30A9rOO8/Ur3RIhDWRzi7ar3gzh77yP7Ebm45sNwkT47vtHVAoMHn7nUz87C4ObDmb7rdcRtOFF+F4bunWcFesRPcL4KR3vwvpehz48t8Rd110KCKXdNtKgD85RdO559C04XRzTcswtMQw6ukdO1FDw9DaUtU1jROPo17YS25ygkiqoWq4jFja9IrzOPjd6xG5HNpbnkiK8AFJPNXE8B0/ofttV+OlUoZbEJic4whWvePtPHPPfVj5PCu2gpYJoRVaCkSNCPmS6ONncyYZm+dUyglJUCziF4s4c0oaeNEoVsRFBQqs0Ht9UX0CpIVTY52UxbFCAVEwbh2LNxvMj6OfGTs8KUEhUPk8qpCDIDxRQit8P0CiCfJ5cn39pJ9+hvFHHiP97DasQoFEV7cJpDxMcq1qGD8RHXIBktG772HiRz8+bDS81honmcBpbDAvb4kQGI5AIYi2tjHxy18x8MCDdJxviJBU2qR4FRYdb7mMsW9fjz+dXrqisGbbIFwPr7sTVSyQeeghdv/qYSKnraf1isvovuoq7LJTmqjSoJlpdMK1V5N5+mnG7thKrLsz3GWNHg0tKBaKxDZuqLQnSq0aTG/bhi765URmIJA6QLou2b4Bsrt2EdlybqV8uCE1rFtP47pTyT3xBNayCJBGYrx27YYE6b372H/99zjl9z8a+v7oskjfeOYmms4/j+Gbf1jWda3EIloOhFJo20YnknOulfoUTE8hgiJCVBEES0I6g5qehvZQTpj1LmRzCzoeh1wR4VhLsHJqlO2gGoxKpFapYmaaYjqNtEoq6COTxY6+FSz08rQE9G79KYNf/waxZAq0mRyBChBo/FyewsQETE1hRRy8ZBNWYyOl9KNHMkm8pkYiPT04rfNbDqqxHOIzG8J2sH2fgZtupOP880y+FUoaE02ivZOmt7yF3n/7FiuVmkuXZH/LItLWAYFG7d7DwS9ex/Btd7D69z9K2/nnzzH5aq2RQrDqwx9g4uFH0bkceMZqhdZYxSJBPEFq8+a5z4mJjJ94/DdYIeteqVkgbJtiZpjJZ7bTVEWAqkNAnNNPZfLBB4nVyElTvl8f/pgjDUSScUbvuIPc26/Ga2xBa4VFZbfues+7GLrjDkSxFA0/O5vSsYHSCtuNEOuYG0xaesrC6JgJ/KVi9ZW2TX5ykvSBfuJrT6lJJZyWFuxkA366H5fooklE4Ps4yTixzjZgJnEu/S4Oj1FMTxO1l5oroDaOQUrWCvEIJiYo7Hqe4oGDFPr7KR7qRw0NEQyNYKUzxKIRYt1deC0dCNddUM59sUNrhdvWxvSvH2H4oYfMl0KEAYehLuiaqxAd7ajpqdp1CMpOi0uBEsYzRFoCq72VSHc3hWeeZccn/5T9txqvYU3FRa20sJNrTqDp5S83G4E2GiOBIJ9JkzjpRBrPPGtWB82vqV27yO/djx2Lzrwc5gl3PJeJ3zxR6Z82C7CU8bLxnLPR0QjUzP28yGRwYX+sVIL8/j4O3nAzAhO7Vi1yNm0+m+TLziM/ZCL1F39e3MqhJF7Z7W0kTzyx0vmq6wCFgUOoWW7uwrYIcjmmX9gbfiPnWC69hhROqgHlF5a0goJ8Hre9mURPKTfV3NLTe/aYmEbrt4AAlbpfGh7L87CbGrFSSaxkAiuZxEoksBJxRCwKjgth0OJKRu0cL2lfOA7CL9D/vRtn9cMMe2zNaprf+Dpyo2PzVLC8dmVYtrTwlJREu7rxbMme677C1J49MwSwam/Z5IbT8ZVRUoswmZyfzdG0+Sys2c6ZYSXZHTtR2SyWPVsrYdKbuLEE2V3PMX1wf7mYRcUjqOXss/FOXmvE0dk1hPRaLfLECCUkXirGyI9uIzs8FFpVKyKnANqveit+JFbVwDGGAH8yTWLLWTjJVBVnXEGgAjK7d2O5kVkcq8SxLfJ7ni9VNWeaSMvCOXENfnoJLiVCoLI5IieejBWNl10sZmNy2zZEoBByZTJavqhiwY4WjhcfpbXGbW1m8sGHGHzwgdlXAVj79rcRX3vS/JWIyr01L8/cIGsWF9rk/3Gam2F8kuFf3F11DaiOrWppoGjZYR5qiVY+wnNInHvOvG2kt+9CzMnaV+mX7bmosUnSu3aWLxjxzkJhYtsaN70EP5Oe50mX8Aa1xkmkKPQdou/mH1TVUPJOhc5LXkP7xRcd03lRVtcLgcpkUakYHZeZjIyiLJhXnnRi23amd+zCjSXwq16wxoxXbudO8tNzfYhKz9nyipcT2A5aHd7XXgMy0ORRxKvE5NnUq5DJkt25AzsWw1+hDAP/KQjQMcOcGa0QlocsFuj79vXlNCLmFAIzWZI9PTSdNA8BUqVTNWfucxoQKjxrQRkfo4UkiVKwtdQC13Eojo2b78ufqrpDvxSJ8bgW2Syyo4P4GWfUrLswPcXEtmdxo/MrkLVlQbFAdldl11ZU+XwByZdsIrAs8IPwdIaqZ9XmtJTS/zOGaNYqkdo4XUYbkwzc8h+kB4cq94aKdSeeoHEhon80oI05UQcBmcFB2i+/nKbTNgDaiKOzHmzi1w/C+Di49gwuTaCxoxGye/cz8Yjxr5pZ1NzbdsH5JDZtpDg8UtMkb96BKB9hXhgdJXbqejouuYhypbMOBpncvoPc3l6sWAShV0ZKqROgFUP1/mUgEGihibS2kHv4UUYeNn5BQUkpugj9w3zeC0oKbAXZ8VH80TGk0guKEyVDSVH7RDq6wn4wJ92rM53GUgG+kFhakZucpPG8c4k2NtYMa5x4+hny+/djRRNzp2NVvZbrMPnks6GSeaZIBJDctBHZ2orO59CoxWfb0zNJUCAFvgArGUUPDDD0ox+Fzxq2Wa1PWWQTS0WteqWQSBTZ/QeIbtnCSR//A9MvbY7hEeiyJKyKecbvvR87Fg/rm7lMlSORfpHhrT+t0V4YJ2C5rH7vO8n5Cp2ubWkV4blvgZ8nMz3Fqne/Cy8aDzMXhMdPC1XeOEfu+jkik0faDos8tOmwWFkCNMe8Uvrj2GMmOTCWtNmf0nlIs79D6fIhiXPyOM/TRngYzqx7pdmRHQ8hJAf//TsU0VgCBGrZ3r9CgFA+maEhkq+7mNgrX8H0gT7UxJQ50huM8r88/saC5I9PYMdTNL7yPMCoL0te2iXkh4ZwtEZLCUERXJvml5r7axGg9M7nsLNZtO0sKAs68RjTu3czUcp2OeveWFcXqbM3kZueCsetanBEyZpqUD3ucta4V85kl0Qbmhi85VYm+/uwqORoOjKYtkxdYtYV415SzpIZ9lYoTXFynOkX9uJtPovTr/sbnEg0HHcLGTqpqjAH2IEbb2Zq2zbcVIPxLVMzW9dKYjc2MPHQA0ztfK7cH0KDhQxP02i/6CJWffSDTB48RJBJm/zq2uibAsJxKuSY6t1P+7VX0vHGN4Q9VqF5X6AxubGn9u9j7Kc/J9LQMO+muBysnBlea1AKp6HB/F/uZIXGiXiifNb0UYWxHldMh2Pj5PoPoRbhyKiExlEWTnMLgWehwr0TQAcBMlI5Y6ws2wCOZSNsa2bqhPJL1LgtjaQffISx+39J+wUXoBZxfud8JmmhNZn9fcQveTUv+fznCYDeDd9i+KYbye7bj+NFkXEPyzFR6RR9cuMTFHyfE//s06ROqqRSLbVTWt9T27djeR4SjZ/N4Z50Mk2vugCoPVmmtu9ESMew5Auc9y4cFz06SmbXLhrXraeWB07LuZsZv/NutBJYUoeHCCqw7fKRSjP5JrAiMbQfUMpJXf1eRCpBcf9+Rm6+hdQn/tAEzc7fxYWhNWiF1WL8dmSNvVvaDvm+Q4hCHm05CC0QKsCXAqenm/Zrr+GE33sfXjxR7m0pXKsUb5o+1Ef/t64nlkqBbSFnWcE0xrNee3H04H72/du/s+FLX0Ag8DHPJ0Xl3I21v/9RAsti8BvfJD8yihuLmqT8gaaQyaCFoPN972PdZ/6kYiwK9TvViRIOfvt61Ng4VnenGYoVokArRoCEZSFcj/67fk5k71pUoZRKMgzEdD3Sjz+OG4stK/H70lAK/jQBom1veTOpDadjxWKzb6soQnQoMjkWQTHP8G0/g9EhiETKE9ZJJshv286hO+5E+YVQVyHBkfhBEXt8EhGdaYouw3ZwpWDghptpveACSsdGLwlCILUmc7CPyCvP54wv/Q/AkPi1v/deOl5/MYd+spXsM8+S6e01x2RriYhGib5kA2svfxMdF79ubrVhT0YeeYSpR58wnuCAEBInGmVo61ZEYNKplDxShOPgT02Sfm4XTipp0pnoBWL0hDnDLbPjOXgTqBpLOHLa6YjmJkQhh46YcZTRKP7YOH0/+jGWY6P8wFjnhIXwXDI7toWb3tyGNRBpauTQHXfQetWVJLu75j0Y4LCwbVwhGLv9dgonrYW8H7ZhiLdSikI6S8+n/hjHscKc1QovnsRa1UXT5nOIhn5ogVJIWZ0ZwLhnBH6R5z7/RdTIMF53d83DCjSgpUbqALe5jfGtP6P/olfQ/fo3mswdNR5v3Yc/RNPmlzK89Xbye1+gmM5iRzwSq1bRfPGr6bzwVaZu7SNEhSSUOJ2B++9j+Me3EmttrlKXrwxWjgOybaRtM/Sd61G+X1EihgrEwJK4EQc3lVq0SXXZCEWPkrt/52svgddesqTiA/f/Gtm3r8zxADgNKbKPP86e+3+FpVSYLsRE7gsEbmMzxGMzuKBKpRq3pZmxhx5l8L776bzwgiX1R2mQKiCfzRK/6EJO+9xfYUfiJnm4Am1J4t09nBxGg2f7+ikMDhrv7uZmEiesKddVzaiIcJsLgP1f/yZWIQdOA2iNlUygDvXT+9dfRisjWMxwBhTgpBqQsQiohY9q0QI812N623YK+TxOjRCE+Mnria9dQ/7Jp7CiUZNgLJGgODLCvi9fVzIjVctf2LEYblNT2L+5Y24lkhT37af/hhtI/skfszz2B7BtHNth7PqbGQoKIQsQrlClyQ0O0P2Hf8D6T//pgtWY4Q5Jj9aoMNeVAnZ+9gvkfv0Q7qraxAdK+6UJv7GcKG4iSu/f/X/E1p5C47p15fEppbIJ02nRes4mWs/ZRDFQqFwG23VDDtkg0BqJTSl1rg77ld63jxf+7qtEpI3wIrXn9hFgZUUwwI0nZpDhEr0UgJby6BMfoJIKdXnCqp/PI4LARP1WlVeBwvIiRN1QtJkNKRd8Qdpx8FAM3nQTHRdesOiuCUwq0aCYQwnBiZ/8I9yGRlMnPgh35smoQKy7i1h3V826ZjQcEpQXvvq/mH7sUeJdHeX3p7UGaeM1pubvm5TmvsNwtVKDFU+Q7u0ls3s3jbOsagpwHJuGczZz4NEnSIQxbiiFsCy8puZZNepQHpFoPb9orbQm0ZBi7Kd3kXnX24m1d85774IIA0CthhTWbDZDa/CLyCo/qPkkvZJfkgq9zyWQOXSI5677e6bvvpdoV+cigmVLvFOA29iMOjTArs98hvVfuY7GteuMCkIZ81Y58V8Ix5IQnxvrZZU89ZXR/0kge6iPHZ/+c1T/ALKza0mxmIvFylvBpDRekuFHV/9+EUQhLwYlJVxNL2QhTKJvKed+FqzTcDGR5ibGHnqYQ3f/fHF9ESVODrQTxZKCPV/4EsNPGBOsJdw5EexLZZB3f+0f6f/ut4m1tFDzBIlazxp+FtuWEhrt2OjxcaaeembO9dI4JzZvQaRSaH9W2ow5bYdzrJojqgGpQadS5Pv6OfCd7x22n4KSona+G0TtsajyDDYK6IVHRgpBQfsc/OEtPP2hP2D63nuId7WjLAeWoCcNVIDT0Q59gzz7sT+i/+d3mfqlRCIXaSqvYhik0R8NPvoQT3/kYxT37iba3mGIz5Gc4zYPjn4w6tFGeFSw2zx7h1w+XC+Ktly0DjiMdXtJkErjOzZRZTHw/R/S9ZqFxUIrFoViaH2yAmwshBUj/8yz7PrEpxm+9A10v+0qUiefMqNcZfc1mbVL1prZjzG2YzsHvvFNpn5xD4nWFpNs/ChMshKk0FhaM7Vz+5xrpb61btnMwfXryT/zFE7TSmQv1AhtEWtKMXLHT8i8593E2trmvdtJpQhQpWm1aA5aBcqIopTEpNoFFZrpPc8zev+DjN93L9O/+Q1eNE6ie7WJW9MKLRZ/6IIwTgu47R1YY6M8/98+y8QDD7LqA+8n0dNTNqBU51gXZRJpNpBql4jsyDAHvnMDwzfdjAwKRDo6zc65gIHhSPBbT4CEbRy1Dty5FbdnlclbcwTQtkWQyyKnM+BGynqkI+4ngDDmVqelgfzOXez5138jdtopBAXfHE9TDiQXCNdlYudu7ESCcoa8cF/12loJMhlGbryRiXvvJXX++TScdRbJTRtJrD2piq2d662RGxhg7JltTDz4EJP33EMwOkqsswNt2UvaeZf+/CZ1q5tMkd65m/0//Zk5AjuM/9LaLAThOUjPRVjOEas7BcYvSCiNHY/hj4yw93//E82vvxhdKBgiU7W7yIjH6LbtuK6HkBCEOaUW8/adWJzc83vo+9X96IIyXJTQWMUCejpDbnwMf2iQfO9+0nuexz80QsRziXS0IaWDKo39krUGAkuDJsBqbiKezTJ8yy1MPfwIzRddRPK8c2k6cxPOjKj7CokUQDGTZeLpp5l85GFG77mPwnN7cVsaseONoXh9dIgPgHj8TW/5InAtcMrhbn4xQoQR1LmJCaNfOsId3OQ3FsSSSbTjhKdWrkxfNYQKYyAIKI5NUJDG50XM9lIRAjsax4m5yMBEbM8wfWrMd9kMxckJAgR2ayuxdSfh9azCaW03uhvbojg1TX5oEP9QP9nn95A7eAhZ9HEbkoh47Ji5ainCU1nzPrnpKSPtldOshMGvWuI2xpGOs5QDHeZFea/XxhmwMDlBIQiMb42YKSppKbAsl1gigRLBwla9WRBS4mey5LJpZJgYquQHZPnKuDpohbQtnHgC4bkEUoT3lnQ1KwFpZtL0JMHkNH4kQvzkk4ifsh67vQ2vuQntuehikeLoKPn+foov9DK9ew8qkyGaiCNSSZSQoQvAinSqFv7m7Nt+/Je/9RxQyVcmmkwuiWWev8Jw57Rk6NuywutThmdTSQu3uQmvzN5CdedF6AyolZgTY1W6VaMQsQheLGKcKgt5Mo8+zvSDD4ebXKmcNoRUWljxKLHmJpDmzO9jRXwgPJhAg+VaJBobZrwvQRieAeZ5V4gZK+/1wlRpJ5M4SlGTsoTitgrPv5ZLePdKKSzPJRkmcyttFrrM0lSsZjOkO1np58pAYWlQiRRWMokbKIq9+xndscu0WtJVGo0zCIHleURTcWhqQId8tuSoEp8yfusJUAl6GWd5zVsXlbFfyfVZrrMsjAu0Vfst6xp/zVtfWJfwIjjVSb10FWGramYuuTt2KGkb9Kz4JD3r99GBDsd8/lQSep6/D4eyiL2INBVzx31l30Qpw2fJSminklA6kqpaQpjlXV7661jOi98ZAlRHDfyWWB3rOIZ4kc2JejBqHXXUcdxQJ0B11FHHcUOdANVRRx3HDXUCVEcddRw31AlQHXXUcdxQJ0B11FHHcUOdANVRRx3HDXUCVEcddRw31AlQHXXUcdxQJ0B11FHHcYOkULAJAuvF5qJdRx11/I5CCCgUbACbRALy+SjFAtjOUU1IVUcddfwnh5SQz0PCpIW1I297+3f9Z5+eLm7d+j9kS8tx7l0dddTxuwydzYNljUXe9vbvAtjelnOesjo6nsoOTowG05lG6XmHP0y6jjrqqGMZUJmMGzv7JXd7W855CkDMd/hdHXXUUcfRxv8PZuvrdOGxiisAAAAASUVORK5CYII=)](https://pensando.io)\",\"openLinksInNewTab\":true},\"title\":\"Logo [Filebeat Pensando]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"39e26d70-cc4d-11ea-918e-c778f7abe5d7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Active Workload Count [Filebeat Pensando]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Active Workloads\",\"field\":\"client.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":false},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":36,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Active Workload Count [Filebeat Pensando]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"bc6a36b0-cdba-11ea-a0ef-8f5241e594be","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"DFW Allowed Count [Filebeat Pensando]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"\",\"exclude\":\"denied\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":false},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":30,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"DFW Allowed Count [Filebeat Pensando]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"fa745d10-cc88-11ea-918e-c778f7abe5d7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"DFW Denied Count [Filebeat Pensando]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"packet count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"\",\"exclude\":\"allowed\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":false},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":30,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"DFW Denied Count [Filebeat Pensando]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"1d2d5f00-cc89-11ea-918e-c778f7abe5d7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": \"Denied Destination IPs\", \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.action\", \"negate\": false, \"params\": {\"query\": \"denied\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.action\": \"denied\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.action: \\\"denied\\\" \"}}"},"title":"Denied Destination IPs [Filebeat Pensando]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"server.ip\",\"json\":\"\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":36,\"minFontSize\":14,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Denied Destination IPs [Filebeat Pensando]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"bf9d4650-cc8a-11ea-918e-c778f7abe5d7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Traffic by Workload Pie [Filebeat Pensando]","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"client.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Traffic by Workload Pie [Filebeat Pensando]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"07983660-cd38-11ea-a0ef-8f5241e594be","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDYsMV0="} +{"attributes":{"description":"Inner ring is client IP, middle ring is server IP and the outer ring is Allow vs Deny actions performed by the FW","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Client to Server FW Action [Filebeat Pensando]","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"client.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"server.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":false},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Client to Server FW Action [Filebeat Pensando]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"fd2202d0-cc86-11ea-918e-c778f7abe5d7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDcsMV0="} +{"attributes":{"description":"Firewall denies and allows plotted against each other in time series","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DFW Deny vs Allow [Filebeat Pensando]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset:\\\"pensando.dfw\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"pensando.dfw.action : \\\"allow\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"pensando.dfw.action\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(150,10,3,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"pensando.dfw.action : \\\"deny\\\" \"},\"formatter\":\"number\",\"id\":\"b6c562c0-cc84-11ea-a4da-c770c13b4387\",\"line_width\":1,\"metrics\":[{\"id\":\"b6c562c1-cc84-11ea-a4da-c770c13b4387\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"pensando.dfw.action\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(188,186,0,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"pensando.dfw.action :\\\"none\\\" \"},\"formatter\":\"number\",\"id\":\"2dd6bef0-cd1f-11ea-98bc-ef8e168e330d\",\"line_width\":1,\"metrics\":[{\"id\":\"2dd6bef1-cd1f-11ea-98bc-ef8e168e330d\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"pensando.dfw.action\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"DFW Deny vs Allow [Filebeat Pensando]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2aa5d850-cc85-11ea-918e-c778f7abe5d7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top Destination IPs [Filebeat Pensando]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"destination.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top Destination IPs [Filebeat Pensando]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"b8bfd3e0-e8b7-11ea-ba07-c1efedbf0bf9","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Destination Port by DSC Pie [Filebeat Pensando]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"destination.port\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"log.source.address\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destination Port by DSC Pie [Filebeat Pensando]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"c6188140-cdb9-11ea-a0ef-8f5241e594be","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top Destinations - table [Filebeat Pensando]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Network Packets\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Top Servers\",\"field\":\"server.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":300},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":true,\"showPartialRows\":true,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Destinations - table [Filebeat Pensando]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"0583e120-cc8f-11ea-918e-c778f7abe5d7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NTEsMV0="} +{"attributes":{"description":"Overview of events coming from Pensando DSC distributed firewall system.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"85119076-2756-4415-8917-14c9d46732a5\",\"w\":41,\"x\":0,\"y\":0},\"panelIndex\":\"85119076-2756-4415-8917-14c9d46732a5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_85119076-2756-4415-8917-14c9d46732a5\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"9215c2be-bca5-4b21-8042-0e0be99e38c0\",\"w\":7,\"x\":41,\"y\":0},\"panelIndex\":\"9215c2be-bca5-4b21-8042-0e0be99e38c0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_9215c2be-bca5-4b21-8042-0e0be99e38c0\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"81013c87-76c2-4ff0-9545-1295babad06e\",\"w\":8,\"x\":0,\"y\":5},\"panelIndex\":\"81013c87-76c2-4ff0-9545-1295babad06e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Active Workloads\",\"panelRefName\":\"panel_81013c87-76c2-4ff0-9545-1295babad06e\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"3ee01275-08dd-4d3f-9834-d844f5550365\",\"w\":8,\"x\":8,\"y\":5},\"panelIndex\":\"3ee01275-08dd-4d3f-9834-d844f5550365\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"DFW Allowed Count\",\"panelRefName\":\"panel_3ee01275-08dd-4d3f-9834-d844f5550365\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"9628e969-1f18-4659-a8d9-e9409f11f3a9\",\"w\":8,\"x\":16,\"y\":5},\"panelIndex\":\"9628e969-1f18-4659-a8d9-e9409f11f3a9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"DFW Denied Count\",\"panelRefName\":\"panel_9628e969-1f18-4659-a8d9-e9409f11f3a9\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"37787af1-b5ef-467e-8c5e-b0dfba56c9f9\",\"w\":24,\"x\":24,\"y\":5},\"panelIndex\":\"37787af1-b5ef-467e-8c5e-b0dfba56c9f9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Denied Destination IPs\",\"panelRefName\":\"panel_37787af1-b5ef-467e-8c5e-b0dfba56c9f9\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"efafcbff-a163-4475-8d12-59f716e5a3ef\",\"w\":12,\"x\":0,\"y\":14},\"panelIndex\":\"efafcbff-a163-4475-8d12-59f716e5a3ef\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Traffic by Workload\",\"panelRefName\":\"panel_efafcbff-a163-4475-8d12-59f716e5a3ef\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"52506949-eb15-4b23-b50c-2e5083df5e0f\",\"w\":12,\"x\":12,\"y\":14},\"panelIndex\":\"52506949-eb15-4b23-b50c-2e5083df5e0f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Client to Server FW Action\",\"panelRefName\":\"panel_52506949-eb15-4b23-b50c-2e5083df5e0f\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"077406bd-aa47-4dc9-b1f6-04cae0ae34b6\",\"w\":24,\"x\":24,\"y\":16},\"panelIndex\":\"077406bd-aa47-4dc9-b1f6-04cae0ae34b6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_077406bd-aa47-4dc9-b1f6-04cae0ae34b6\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"58e763b7-a23a-480a-a984-24dd115aba2c\",\"w\":12,\"x\":0,\"y\":28},\"panelIndex\":\"58e763b7-a23a-480a-a984-24dd115aba2c\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_58e763b7-a23a-480a-a984-24dd115aba2c\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"36fc48c8-0044-4af6-a8b2-da8023806f32\",\"w\":12,\"x\":12,\"y\":28},\"panelIndex\":\"36fc48c8-0044-4af6-a8b2-da8023806f32\",\"embeddableConfig\":{\"table\":null,\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Dest Port by DSC\",\"panelRefName\":\"panel_36fc48c8-0044-4af6-a8b2-da8023806f32\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"a1d34501-4d64-4213-b192-1b4ca2d88793\",\"w\":24,\"x\":24,\"y\":29},\"panelIndex\":\"a1d34501-4d64-4213-b192-1b4ca2d88793\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a1d34501-4d64-4213-b192-1b4ca2d88793\"}]","timeRestore":false,"title":"[Filebeat Pensando] DFW Overview","version":1},"coreMigrationVersion":"8.0.0","id":"2713ee40-f3b1-11ea-ba07-c1efedbf0bf9","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a73c8dc0-cc8d-11ea-918e-c778f7abe5d7","name":"85119076-2756-4415-8917-14c9d46732a5:panel_85119076-2756-4415-8917-14c9d46732a5","type":"visualization"},{"id":"39e26d70-cc4d-11ea-918e-c778f7abe5d7","name":"9215c2be-bca5-4b21-8042-0e0be99e38c0:panel_9215c2be-bca5-4b21-8042-0e0be99e38c0","type":"visualization"},{"id":"bc6a36b0-cdba-11ea-a0ef-8f5241e594be","name":"81013c87-76c2-4ff0-9545-1295babad06e:panel_81013c87-76c2-4ff0-9545-1295babad06e","type":"visualization"},{"id":"fa745d10-cc88-11ea-918e-c778f7abe5d7","name":"3ee01275-08dd-4d3f-9834-d844f5550365:panel_3ee01275-08dd-4d3f-9834-d844f5550365","type":"visualization"},{"id":"1d2d5f00-cc89-11ea-918e-c778f7abe5d7","name":"9628e969-1f18-4659-a8d9-e9409f11f3a9:panel_9628e969-1f18-4659-a8d9-e9409f11f3a9","type":"visualization"},{"id":"bf9d4650-cc8a-11ea-918e-c778f7abe5d7","name":"37787af1-b5ef-467e-8c5e-b0dfba56c9f9:panel_37787af1-b5ef-467e-8c5e-b0dfba56c9f9","type":"visualization"},{"id":"07983660-cd38-11ea-a0ef-8f5241e594be","name":"efafcbff-a163-4475-8d12-59f716e5a3ef:panel_efafcbff-a163-4475-8d12-59f716e5a3ef","type":"visualization"},{"id":"fd2202d0-cc86-11ea-918e-c778f7abe5d7","name":"52506949-eb15-4b23-b50c-2e5083df5e0f:panel_52506949-eb15-4b23-b50c-2e5083df5e0f","type":"visualization"},{"id":"2aa5d850-cc85-11ea-918e-c778f7abe5d7","name":"077406bd-aa47-4dc9-b1f6-04cae0ae34b6:panel_077406bd-aa47-4dc9-b1f6-04cae0ae34b6","type":"visualization"},{"id":"b8bfd3e0-e8b7-11ea-ba07-c1efedbf0bf9","name":"58e763b7-a23a-480a-a984-24dd115aba2c:panel_58e763b7-a23a-480a-a984-24dd115aba2c","type":"visualization"},{"id":"c6188140-cdb9-11ea-a0ef-8f5241e594be","name":"36fc48c8-0044-4af6-a8b2-da8023806f32:panel_36fc48c8-0044-4af6-a8b2-da8023806f32","type":"visualization"},{"id":"0583e120-cc8f-11ea-918e-c778f7abe5d7","name":"a1d34501-4d64-4213-b192-1b4ca2d88793:panel_a1d34501-4d64-4213-b192-1b4ca2d88793","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5MzksMV0="} diff --git a/filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-overview.json b/filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-overview.json deleted file mode 100644 index b43d4afef5c..00000000000 --- a/filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-overview.json +++ /dev/null @@ -1,496 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview dashboard for the Filebeat PostgreSQL module", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 12, - "i": "1", - "w": 12, - "x": 0, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "columns": [ - "user.name", - "postgresql.log.database", - "log.level", - "message", - "postgresql.log.query" - ], - "sort": [ - "@timestamp", - "desc" - ] - }, - "gridData": { - "h": 24, - "i": "2", - "w": 48, - "x": 0, - "y": 12 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "3", - "w": 36, - "x": 12, - "y": 0 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "version": "7.3.0" - } - ], - "timeRestore": false, - "title": "[Filebeat PostgreSQL] Overview ECS", - "version": 1 - }, - "id": "158be870-87f4-11e7-ad9c-db80de0bf8d3-ecs", - "migrationVersion": { - "dashboard": "7.9.3" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "PostgreSQL Log Level Count-ecs", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "PostgreSQL All Logs-ecs", - "name": "panel_1", - "type": "search" - }, - { - "id": "3dbd5370-87f3-11e7-ad9c-db80de0bf8d3-ecs", - "name": "panel_2", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2021-03-17T16:06:10.364Z", - "version": "WzIxLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "postgresql.log" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "postgresql.log" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Log Level Count [Filebeat PostgreSQL] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "log.level", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 12 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Log Level Count [Filebeat PostgreSQL] ECS", - "type": "table" - } - }, - "id": "PostgreSQL Log Level Count-ecs", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "PostgreSQL All Logs-ecs", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2021-03-17T16:31:15.326Z", - "version": "WzI5OSwxXQ==" - }, - { - "attributes": { - "columns": [ - "user.name", - "postgresql.log.database", - "log.level", - "message", - "postgresql.log.query" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "postgresql.log" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "postgresql.log" - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "All Logs [Filebeat PostgreSQL] ECS", - "version": 1 - }, - "id": "PostgreSQL All Logs-ecs", - "migrationVersion": { - "search": "7.9.3" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2021-03-17T16:32:17.646Z", - "version": "WzMxMSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "postgresql.log" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "postgresql.log" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Logs by level over time [Filebeat PostgreSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "now-15m", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "log.level", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "@timestamp per month" - }, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "labels": { - "show": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Logs by level over time [Filebeat PostgreSQL] ECS", - "type": "histogram" - } - }, - "id": "3dbd5370-87f3-11e7-ad9c-db80de0bf8d3-ecs", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "PostgreSQL All Logs-ecs", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2021-03-17T16:31:38.064Z", - "version": "WzMwNSwxXQ==" - } - ], - "version": "7.10.0" -} diff --git a/filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-overview.ndjson b/filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-overview.ndjson new file mode 100644 index 00000000000..7af28555142 --- /dev/null +++ b/filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-overview.ndjson @@ -0,0 +1,4 @@ +{"attributes":{"columns":["user.name","postgresql.log.database","log.level","message","postgresql.log.query"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"postgresql.log\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"postgresql.log\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"All Logs [Filebeat PostgreSQL] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"PostgreSQL All Logs-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:50.312Z","version":"WzQzMTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"postgresql.log\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"postgresql.log\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Log Level Count [Filebeat PostgreSQL] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"log.level\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":12},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Log Level Count [Filebeat PostgreSQL] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"PostgreSQL Log Level Count-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"PostgreSQL All Logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:50.312Z","version":"WzQzMTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"postgresql.log\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"postgresql.log\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Logs by level over time [Filebeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-15m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"log.level\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per month\"},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Logs by level over time [Filebeat PostgreSQL] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"3dbd5370-87f3-11e7-ad9c-db80de0bf8d3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"PostgreSQL All Logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:50.312Z","version":"WzQzMTUsMV0="} +{"attributes":{"description":"Overview dashboard for the Filebeat PostgreSQL module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"1\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":24,\"i\":\"2\",\"w\":48,\"x\":0,\"y\":12},\"panelIndex\":\"2\",\"embeddableConfig\":{\"columns\":[\"user.name\",\"postgresql.log.database\",\"log.level\",\"message\",\"postgresql.log.query\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"3\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"}]","timeRestore":false,"title":"[Filebeat PostgreSQL] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"158be870-87f4-11e7-ad9c-db80de0bf8d3-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"PostgreSQL Log Level Count-ecs","name":"1:panel_1","type":"visualization"},{"id":"PostgreSQL All Logs-ecs","name":"2:panel_2","type":"search"},{"id":"3dbd5370-87f3-11e7-ad9c-db80de0bf8d3-ecs","name":"3:panel_3","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:50.312Z","version":"WzQzMTIsMV0="} diff --git a/filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-slowlogs.json b/filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-slowlogs.json deleted file mode 100644 index 0e06097a5a3..00000000000 --- a/filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-slowlogs.json +++ /dev/null @@ -1,426 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Dashboard for analyzing the query durations of the Filebeat PostgreSQL module", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "1", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "columns": [ - "user.name", - "postgresql.log.database", - "event.duration", - "postgresql.log.query" - ], - "sort": [ - "@timestamp", - "desc" - ] - }, - "gridData": { - "h": 12, - "i": "2", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "columns": [ - "user.name", - "postgresql.log.database", - "event.duration", - "postgresql.log.query" - ], - "sort": [ - "@timestamp", - "desc" - ] - }, - "gridData": { - "h": 20, - "i": "3", - "w": 48, - "x": 0, - "y": 12 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "version": "7.10.0" - } - ], - "timeRestore": false, - "title": "[Filebeat PostgreSQL] Query Duration Overview ECS", - "version": 1 - }, - "id": "e4c5f230-87f3-11e7-ad9c-db80de0bf8d3-ecs", - "migrationVersion": { - "dashboard": "7.9.3" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "PostgreSQL Query Count and Duration-ecs", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "Slow PostgreSQL Queries-ecs", - "name": "panel_1", - "type": "search" - }, - { - "id": "PostgreSQL Query Durations-ecs", - "name": "panel_2", - "type": "search" - } - ], - "type": "dashboard", - "updated_at": "2021-03-17T16:18:35.298Z", - "version": "WzI1NywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "postgresql.log" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "postgresql.log" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Query count and cumulated duration [Filebeat PostgreSQL] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "Number of queries": "#0A437C", - "Sum of query duration": "#6ED0E0" - }, - "legendOpen": true - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "3", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "now-15m", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Number of queries" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Sum of query duration", - "field": "event.duration" - }, - "schema": "metric", - "type": "sum" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "@timestamp per 3 hours" - }, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "labels": { - "show": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "4", - "label": "Number of queries" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "lineWidth": 2, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "2", - "label": "Sum of query duration" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "lineWidth": 2, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "" - }, - "type": "value" - } - ] - }, - "title": "Query count and cumulated duration [Filebeat PostgreSQL] ECS", - "type": "histogram" - } - }, - "id": "PostgreSQL Query Count and Duration-ecs", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "PostgreSQL Query Durations-ecs", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2021-03-17T16:24:41.475Z", - "version": "WzI3MSwxXQ==" - }, - { - "attributes": { - "columns": [ - "user.name", - "postgresql.log.database", - "event.duration", - "postgresql.log.query" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.dataset:\"postgresql.log\" AND event.duration\u003e30000000" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Slow Queries [Filebeat PostgreSQL] ECS", - "version": 1 - }, - "id": "Slow PostgreSQL Queries-ecs", - "migrationVersion": { - "search": "7.9.3" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2021-03-17T16:25:43.870Z", - "version": "WzI4NSwxXQ==" - }, - { - "attributes": { - "columns": [ - "user.name", - "postgresql.log.database", - "event.duration", - "postgresql.log.query" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.dataset:\"postgresql.log\" AND event.duration:*" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Query Durations [Filebeat PostgreSQL] ECS", - "version": 1 - }, - "id": "PostgreSQL Query Durations-ecs", - "migrationVersion": { - "search": "7.9.3" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2021-03-17T16:23:19.900Z", - "version": "WzI2NCwxXQ==" - } - ], - "version": "7.10.0" -} diff --git a/filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-slowlogs.ndjson b/filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-slowlogs.ndjson new file mode 100644 index 00000000000..a07bfcc6061 --- /dev/null +++ b/filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-slowlogs.ndjson @@ -0,0 +1,4 @@ +{"attributes":{"columns":["user.name","postgresql.log.database","event.duration","postgresql.log.query"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset:\\\"postgresql.log\\\" AND event.duration:*\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Query Durations [Filebeat PostgreSQL] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"PostgreSQL Query Durations-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:51.290Z","version":"WzQzMTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"postgresql.log\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"postgresql.log\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Query count and cumulated duration [Filebeat PostgreSQL] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Number of queries\": \"#0A437C\", \"Sum of query duration\": \"#6ED0E0\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-15m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Number of queries\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Sum of query duration\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per 3 hours\"},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"4\",\"label\":\"Number of queries\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"2\",\"label\":\"Sum of query duration\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Query count and cumulated duration [Filebeat PostgreSQL] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"PostgreSQL Query Count and Duration-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"PostgreSQL Query Durations-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:51.290Z","version":"WzQzMTcsMV0="} +{"attributes":{"columns":["user.name","postgresql.log.database","event.duration","postgresql.log.query"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset:\\\"postgresql.log\\\" AND event.duration>30000000\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Slow Queries [Filebeat PostgreSQL] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Slow PostgreSQL Queries-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:51.290Z","version":"WzQzMTgsMV0="} +{"attributes":{"description":"Dashboard for analyzing the query durations of the Filebeat PostgreSQL module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.10.0\",\"type\":\"search\",\"gridData\":{\"h\":12,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"columns\":[\"user.name\",\"postgresql.log.database\",\"event.duration\",\"postgresql.log.query\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.10.0\",\"type\":\"search\",\"gridData\":{\"h\":20,\"i\":\"3\",\"w\":48,\"x\":0,\"y\":12},\"panelIndex\":\"3\",\"embeddableConfig\":{\"columns\":[\"user.name\",\"postgresql.log.database\",\"event.duration\",\"postgresql.log.query\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_3\"}]","timeRestore":false,"title":"[Filebeat PostgreSQL] Query Duration Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"e4c5f230-87f3-11e7-ad9c-db80de0bf8d3-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"PostgreSQL Query Count and Duration-ecs","name":"1:panel_1","type":"visualization"},{"id":"Slow PostgreSQL Queries-ecs","name":"2:panel_2","type":"search"},{"id":"PostgreSQL Query Durations-ecs","name":"3:panel_3","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:51.290Z","version":"WzQzMTYsMV0="} diff --git a/filebeat/module/postgresql/module.yml b/filebeat/module/postgresql/module.yml index 881ddf4b634..afb122072e5 100644 --- a/filebeat/module/postgresql/module.yml +++ b/filebeat/module/postgresql/module.yml @@ -1,5 +1,5 @@ dashboards: - id: 158be870-87f4-11e7-ad9c-db80de0bf8d3 - file: Filebeat-Postgresql-overview.json + file: Filebeat-Postgresql-overview.ndjson - id: e4c5f230-87f3-11e7-ad9c-db80de0bf8d3 - file: Filebeat-Postgresql-slowlogs.json + file: Filebeat-Postgresql-slowlogs.ndjson diff --git a/filebeat/module/redis/_meta/kibana/7/dashboard/Filebeat-redis.json b/filebeat/module/redis/_meta/kibana/7/dashboard/Filebeat-redis.json deleted file mode 100644 index 931f2cbf962..00000000000 --- a/filebeat/module/redis/_meta/kibana/7/dashboard/Filebeat-redis.json +++ /dev/null @@ -1,562 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "event.dataset:redis.log" - }, - "version": true - } - }, - "title": "Log levels and roles breakdown [Filebeat Redis] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "redis.log.role", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Log level", - "field": "log.level", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "legendPosition": "bottom", - "type": "pie" - }, - "title": "Log levels and roles breakdown [Filebeat Redis] ECS", - "type": "pie" - } - }, - "id": "78b9afe0-478f-11e7-b1f0-cb29bac6bf8b-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "event.dataset:redis.log" - }, - "version": true - } - }, - "title": "Logs over time [Filebeat Redis] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "notice": "#629E51", - "warning": "#EF843C" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "log.level", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "@timestamp per month" - }, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": 9, - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "showCircles": true, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Logs over time [Filebeat Redis] ECS", - "type": "histogram" - } - }, - "id": "d2864600-478f-11e7-be88-2ddb32f3df97-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "columns": [ - "host.name", - "log.level", - "redis.log.role", - "message" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "redis", - "type": "phrase" - }, - "type": "phrase", - "value": "redis" - }, - "query": { - "match": { - "event.module": { - "query": "redis", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "fileset.name", - "negate": false, - "params": { - "query": "log", - "type": "phrase" - }, - "type": "phrase", - "value": "log" - }, - "query": { - "match": { - "fileset.name": { - "query": "log", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Logs [Filebeat Redis] ECS", - "version": 1 - }, - "id": "73613570-4791-11e7-be88-2ddb32f3df97-ecs", - "type": "search", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "0ab87b80-478e-11e7-b1f0-cb29bac6bf8b-ecs", - "title": "Top slowest commands [Filebeat Redis] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Command", - "field": "redis.slowlog.duration.us" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Duration (microseconds)", - "field": "redis.slowlog.cmd", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 200 - }, - "position": "left", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Duration (microseconds)" - }, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": 9, - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Command" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "showCircles": true, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": true, - "rotate": 75, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "bottom", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Command" - }, - "type": "value" - } - ] - }, - "title": "Top slowest commands [Filebeat Redis] ECS", - "type": "histogram" - } - }, - "id": "dcccaa80-4791-11e7-be88-2ddb32f3df97-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "columns": [ - "host.name", - "message", - "redis.slowlog.duration.us", - "redis.slowlog.key" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "event.dataset:redis.slowlog" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Slow logs [Filebeat Redis] ECS", - "version": 1 - }, - "id": "0ab87b80-478e-11e7-b1f0-cb29bac6bf8b-ecs", - "type": "search", - "version": 2 - }, - { - "attributes": { - "description": "Overview dashboard for the FIlebeat Redis module", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "78b9afe0-478f-11e7-b1f0-cb29bac6bf8b-ecs", - "panelIndex": 2, - "row": 5, - "size_x": 3, - "size_y": 3, - "type": "visualization" - }, - { - "col": 4, - "id": "d2864600-478f-11e7-be88-2ddb32f3df97-ecs", - "panelIndex": 3, - "row": 5, - "size_x": 9, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "columns": [ - "host.name", - "log.level", - "redis.log.role", - "message" - ], - "id": "73613570-4791-11e7-be88-2ddb32f3df97-ecs", - "panelIndex": 4, - "row": 8, - "size_x": 12, - "size_y": 4, - "sort": [ - "@timestamp", - "desc" - ], - "type": "search" - }, - { - "col": 7, - "id": "dcccaa80-4791-11e7-be88-2ddb32f3df97-ecs", - "panelIndex": 5, - "row": 1, - "size_x": 6, - "size_y": 4, - "type": "visualization" - }, - { - "col": 1, - "columns": [ - "host.name", - "message", - "redis.slowlog.duration.us", - "redis.slowlog.key" - ], - "id": "0ab87b80-478e-11e7-b1f0-cb29bac6bf8b-ecs", - "panelIndex": 6, - "row": 1, - "size_x": 6, - "size_y": 4, - "sort": [ - "@timestamp", - "desc" - ], - "type": "search" - } - ], - "timeRestore": false, - "title": "[Filebeat Redis] Overview ECS", - "uiStateJSON": { - "P-5": { - "vis": { - "legendOpen": false - } - } - }, - "version": 1 - }, - "id": "7fea2930-478e-11e7-b1f0-cb29bac6bf8b-ecs", - "type": "dashboard", - "version": 4 - } - ], - "version": "6.0.0-beta1-SNAPSHOT" -} diff --git a/filebeat/module/redis/_meta/kibana/7/dashboard/Filebeat-redis.ndjson b/filebeat/module/redis/_meta/kibana/7/dashboard/Filebeat-redis.ndjson new file mode 100644 index 00000000000..23bbdf16e98 --- /dev/null +++ b/filebeat/module/redis/_meta/kibana/7/dashboard/Filebeat-redis.ndjson @@ -0,0 +1,6 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:redis.log\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Log levels and roles breakdown [Filebeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"redis.log.role\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Log level\",\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"bottom\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Log levels and roles breakdown [Filebeat Redis] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"78b9afe0-478f-11e7-b1f0-cb29bac6bf8b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:22.899Z","version":"WzQ1MzEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:redis.log\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Logs over time [Filebeat Redis] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"notice\": \"#629E51\", \"warning\": \"#EF843C\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per month\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Logs over time [Filebeat Redis] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"d2864600-478f-11e7-be88-2ddb32f3df97-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:22.899Z","version":"WzQ1MzIsMV0="} +{"attributes":{"columns":["host.name","log.level","redis.log.role","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"redis\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"redis\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"redis\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"log\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"log\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"log\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Logs [Filebeat Redis] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"73613570-4791-11e7-be88-2ddb32f3df97-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:22.899Z","version":"WzQ1MzMsMV0="} +{"attributes":{"columns":["host.name","message","redis.slowlog.duration.us","redis.slowlog.key"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:redis.slowlog\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Slow logs [Filebeat Redis] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"0ab87b80-478e-11e7-b1f0-cb29bac6bf8b-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:22.899Z","version":"WzQ1MzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Top slowest commands [Filebeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Command\",\"field\":\"redis.slowlog.duration.us\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Duration (microseconds)\",\"field\":\"redis.slowlog.cmd\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Duration (microseconds)\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Command\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Command\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Top slowest commands [Filebeat Redis] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"dcccaa80-4791-11e7-be88-2ddb32f3df97-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"0ab87b80-478e-11e7-b1f0-cb29bac6bf8b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:22.899Z","version":"WzQ1MzQsMV0="} +{"attributes":{"description":"Overview dashboard for the FIlebeat Redis module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":16,\"w\":12,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":12,\"y\":16,\"w\":36,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":28,\"w\":48,\"h\":16,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"columns\":[\"host.name\",\"log.level\",\"redis.log.role\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":0,\"w\":24,\"h\":16,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":0,\"w\":24,\"h\":16,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"columns\":[\"host.name\",\"message\",\"redis.slowlog.duration.us\",\"redis.slowlog.key\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Filebeat Redis] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"7fea2930-478e-11e7-b1f0-cb29bac6bf8b-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"78b9afe0-478f-11e7-b1f0-cb29bac6bf8b-ecs","name":"2:panel_2","type":"visualization"},{"id":"d2864600-478f-11e7-be88-2ddb32f3df97-ecs","name":"3:panel_3","type":"visualization"},{"id":"73613570-4791-11e7-be88-2ddb32f3df97-ecs","name":"4:panel_4","type":"search"},{"id":"dcccaa80-4791-11e7-be88-2ddb32f3df97-ecs","name":"5:panel_5","type":"visualization"},{"id":"0ab87b80-478e-11e7-b1f0-cb29bac6bf8b-ecs","name":"6:panel_6","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:22.899Z","version":"WzQ1MzYsMV0="} diff --git a/filebeat/module/redis/module.yml b/filebeat/module/redis/module.yml index 29c9a121d93..b8b0c95ed9e 100644 --- a/filebeat/module/redis/module.yml +++ b/filebeat/module/redis/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 7fea2930-478e-11e7-b1f0-cb29bac6bf8b - file: Filebeat-redis.json + file: Filebeat-redis.ndjson diff --git a/filebeat/module/santa/_meta/kibana/7/dashboard/filebeat-santa-log-overview.json b/filebeat/module/santa/_meta/kibana/7/dashboard/filebeat-santa-log-overview.json deleted file mode 100644 index 2dfc4107d49..00000000000 --- a/filebeat/module/santa/_meta/kibana/7/dashboard/filebeat-santa-log-overview.json +++ /dev/null @@ -1,589 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Description [Filebeat Santa] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "![Santa Icon](https://raw.githubusercontent.com/google/santa/master/Source/SantaGUI/Resources/Images.xcassets/AppIcon.appiconset/santa-hat-icon-128.png)\n\nGoogle Santa is a binary whitelisting/blacklisting system for macOS that monitors process executions.", - "openLinksInNewTab": false - }, - "title": "Description [Filebeat Santa] ECS", - "type": "markdown" - } - }, - "id": "dad521d0-ff69-11e8-93c5-d5ecd1b3e307-ecs", - "type": "visualization", - "updated_at": "2018-12-14T06:31:14.285Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Decisions [Filebeat Santa] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "filter": "event.module:santa AND event.dataset:log", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Decision", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "santa.decision" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Decisions [Filebeat Santa] ECS", - "type": "metrics" - } - }, - "id": "1579d690-ff6b-11e8-93c5-d5ecd1b3e307-ecs", - "type": "visualization", - "updated_at": "2018-12-14T06:40:02.169Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs", - "title": "Total Events [Filebeat Santa] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Total Events" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Total Events [Filebeat Santa] ECS", - "type": "metric" - } - }, - "id": "51677b80-ff6b-11e8-93c5-d5ecd1b3e307-ecs", - "type": "visualization", - "updated_at": "2018-12-14T06:41:42.712Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs", - "title": "Decision and Reason [Filebeat Santa] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "ALLOW": "#7EB26D" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Decision", - "field": "santa.decision", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Reason", - "field": "santa.reason", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Decision and Reason [Filebeat Santa] ECS", - "type": "pie" - } - }, - "id": "30962fe0-ff6c-11e8-93c5-d5ecd1b3e307-ecs", - "type": "visualization", - "updated_at": "2018-12-14T06:47:57.150Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs", - "title": "Num of Hosts Reporting [Filebeat Santa] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Hosts Reporting", - "field": "agent.hostname" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Num of Hosts Reporting [Filebeat Santa] ECS", - "type": "metric" - } - }, - "id": "b06c0460-ff6c-11e8-93c5-d5ecd1b3e307-ecs", - "type": "visualization", - "updated_at": "2018-12-14T06:51:31.622Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs", - "title": "Code Signers [Filebeat Santa] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "certificate.common_name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "maxFontSize": 39, - "minFontSize": 12, - "orientation": "single", - "scale": "linear", - "showLabel": true - }, - "title": "Code Signers [Filebeat Santa] ECS", - "type": "tagcloud" - } - }, - "id": "11858000-ff6d-11e8-93c5-d5ecd1b3e307-ecs", - "type": "visualization", - "updated_at": "2018-12-14T06:57:58.885Z", - "version": 2 - }, - { - "attributes": { - "columns": [ - "agent.hostname", - "process.executable", - "user.name", - "certificate.common_name" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "santa", - "type": "phrase" - }, - "type": "phrase", - "value": "santa" - }, - "query": { - "match": { - "event.module": { - "query": "santa", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "log", - "type": "phrase" - }, - "type": "phrase", - "value": "log" - }, - "query": { - "match": { - "event.dataset": { - "query": "log", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Santa Logs Search [Filebeat Santa] ECS", - "version": 1 - }, - "id": "6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs", - "type": "search", - "updated_at": "2018-12-14T06:57:11.037Z", - "version": 2 - }, - { - "attributes": { - "description": "Process executions on macOS monitored by Google Santa.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "1", - "w": 10, - "x": 0, - "y": 0 - }, - "id": "dad521d0-ff69-11e8-93c5-d5ecd1b3e307-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "7.0.0-alpha1-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "2", - "w": 38, - "x": 10, - "y": 0 - }, - "id": "1579d690-ff6b-11e8-93c5-d5ecd1b3e307-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "7.0.0-alpha1-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "3", - "w": 10, - "x": 8, - "y": 12 - }, - "id": "51677b80-ff6b-11e8-93c5-d5ecd1b3e307-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "7.0.0-alpha1-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "4", - "w": 12, - "x": 36, - "y": 12 - }, - "id": "30962fe0-ff6c-11e8-93c5-d5ecd1b3e307-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "7.0.0-alpha1-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "5", - "w": 8, - "x": 0, - "y": 12 - }, - "id": "b06c0460-ff6c-11e8-93c5-d5ecd1b3e307-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "7.0.0-alpha1-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "6", - "w": 18, - "x": 18, - "y": 12 - }, - "id": "11858000-ff6d-11e8-93c5-d5ecd1b3e307-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "7.0.0-alpha1-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "7", - "w": 48, - "x": 0, - "y": 22 - }, - "id": "6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs", - "panelIndex": "7", - "type": "search", - "version": "7.0.0-alpha1-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Filebeat Santa] Overview ECS", - "version": 1 - }, - "id": "161855f0-ff6a-11e8-93c5-d5ecd1b3e307-ecs", - "type": "dashboard", - "updated_at": "2018-12-14T06:58:23.367Z", - "version": 5 - } - ], - "version": "7.0.0-alpha1-SNAPSHOT" -} diff --git a/filebeat/module/santa/_meta/kibana/7/dashboard/filebeat-santa-log-overview.ndjson b/filebeat/module/santa/_meta/kibana/7/dashboard/filebeat-santa-log-overview.ndjson new file mode 100644 index 00000000000..8bccc293654 --- /dev/null +++ b/filebeat/module/santa/_meta/kibana/7/dashboard/filebeat-santa-log-overview.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Description [Filebeat Santa] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"![Santa Icon](https://raw.githubusercontent.com/google/santa/master/Source/SantaGUI/Resources/Images.xcassets/AppIcon.appiconset/santa-hat-icon-128.png)\\n\\nGoogle Santa is a binary whitelisting/blacklisting system for macOS that monitors process executions.\",\"openLinksInNewTab\":false},\"title\":\"Description [Filebeat Santa] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"dad521d0-ff69-11e8-93c5-d5ecd1b3e307-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:51.587Z","version":"WzQ4OTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Decisions [Filebeat Santa] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"query\":\"event.module:santa AND event.dataset:log\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Decision\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"santa.decision\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Decisions [Filebeat Santa] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1579d690-ff6b-11e8-93c5-d5ecd1b3e307-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:51.587Z","version":"WzQ4OTYsMV0="} +{"attributes":{"columns":["agent.name","process.executable","user.name","certificate.common_name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"santa\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"santa\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"santa\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"log\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"log\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"log\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Santa Logs Search [Filebeat Santa] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:51.587Z","version":"WzQ5MDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Total Events [Filebeat Santa] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total Events\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total Events [Filebeat Santa] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"51677b80-ff6b-11e8-93c5-d5ecd1b3e307-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:51.587Z","version":"WzQ4OTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Decision and Reason [Filebeat Santa] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"ALLOW\": \"#7EB26D\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Decision\",\"field\":\"santa.decision\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Reason\",\"field\":\"santa.reason\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Decision and Reason [Filebeat Santa] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"30962fe0-ff6c-11e8-93c5-d5ecd1b3e307-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:51.587Z","version":"WzQ4OTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Num of Hosts Reporting [Filebeat Santa] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Hosts Reporting\",\"field\":\"agent.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Num of Hosts Reporting [Filebeat Santa] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"b06c0460-ff6c-11e8-93c5-d5ecd1b3e307-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:51.587Z","version":"WzQ4OTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Code Signers [Filebeat Santa] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"certificate.common_name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":39,\"minFontSize\":12,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Code Signers [Filebeat Santa] ECS\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"11858000-ff6d-11e8-93c5-d5ecd1b3e307-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:51.587Z","version":"WzQ5MDAsMV0="} +{"attributes":{"description":"Process executions on macOS monitored by Google Santa.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.0.0-alpha1-SNAPSHOT\",\"gridData\":{\"h\":12,\"i\":\"1\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-alpha1-SNAPSHOT\",\"gridData\":{\"h\":12,\"i\":\"2\",\"w\":38,\"x\":10,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-alpha1-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"3\",\"w\":10,\"x\":8,\"y\":12},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-alpha1-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"4\",\"w\":12,\"x\":36,\"y\":12},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-alpha1-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"5\",\"w\":8,\"x\":0,\"y\":12},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-alpha1-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"6\",\"w\":18,\"x\":18,\"y\":12},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-alpha1-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"7\",\"w\":48,\"x\":0,\"y\":22},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Filebeat Santa] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"161855f0-ff6a-11e8-93c5-d5ecd1b3e307-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"dad521d0-ff69-11e8-93c5-d5ecd1b3e307-ecs","name":"panel_0","type":"visualization"},{"id":"1579d690-ff6b-11e8-93c5-d5ecd1b3e307-ecs","name":"panel_1","type":"visualization"},{"id":"51677b80-ff6b-11e8-93c5-d5ecd1b3e307-ecs","name":"panel_2","type":"visualization"},{"id":"30962fe0-ff6c-11e8-93c5-d5ecd1b3e307-ecs","name":"panel_3","type":"visualization"},{"id":"b06c0460-ff6c-11e8-93c5-d5ecd1b3e307-ecs","name":"panel_4","type":"visualization"},{"id":"11858000-ff6d-11e8-93c5-d5ecd1b3e307-ecs","name":"panel_5","type":"visualization"},{"id":"6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs","name":"panel_6","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:51.587Z","version":"WzQ5MDIsMV0="} diff --git a/filebeat/module/santa/module.yml b/filebeat/module/santa/module.yml index 6cc574b477c..5a93fe726f9 100644 --- a/filebeat/module/santa/module.yml +++ b/filebeat/module/santa/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Filebeat-santa-overview-dashboard - file: Filebeat-santa-overview.json + file: Filebeat-santa-overview.ndjson diff --git a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-auth-sudo-commands.json b/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-auth-sudo-commands.json deleted file mode 100644 index 6f7985f2e99..00000000000 --- a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-auth-sudo-commands.json +++ /dev/null @@ -1,350 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "b6f321e0-fa25-11e6-bbd3-29c986c96e5a-ecs", - "title": "Sudo commands by user [Filebeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "user.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "times": [] - }, - "title": "Sudo commands by user ECS", - "type": "histogram" - } - }, - "id": "5c7af030-fa2a-11e6-bbd3-29c986c96e5a-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "system.auth.sudo.error:*" - } - } - }, - "title": "Sudo errors [Filebeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "system.auth.sudo.error", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "times": [] - }, - "title": "Sudo errors ECS", - "type": "histogram" - } - }, - "id": "51164310-fa2b-11e6-bbd3-29c986c96e5a-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "b6f321e0-fa25-11e6-bbd3-29c986c96e5a-ecs", - "title": "Top sudo commands [Filebeat System] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "system.auth.sudo.command", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "user.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top sudo commands ECS", - "type": "table" - } - }, - "id": "dc589770-fa2b-11e6-bbd3-29c986c96e5a-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Dashboards [Filebeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Syslog](#/dashboard/Filebeat-syslog-dashboard-ecs) | [Sudo commands](#/dashboard/277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs) | [SSH logins](#/dashboard/5517a150-f9ce-11e6-8115-a7c18106d86a-ecs) | [New users and groups](#/dashboard/0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs)" - }, - "title": "Dashboards [Filebeat System] ECS", - "type": "markdown" - } - }, - "id": "327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "columns": [ - "user.name", - "system.auth.sudo.user", - "system.auth.sudo.pwd", - "system.auth.sudo.command" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "system.auth.sudo:*" - } - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Sudo commands [Filebeat System] ECS", - "version": 1 - }, - "id": "b6f321e0-fa25-11e6-bbd3-29c986c96e5a-ecs", - "type": "search", - "version": 2 - }, - { - "attributes": { - "description": "Sudo commands dashboard from the Filebeat System module", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "5c7af030-fa2a-11e6-bbd3-29c986c96e5a-ecs", - "panelIndex": 1, - "row": 6, - "size_x": 12, - "size_y": 4, - "type": "visualization" - }, - { - "col": 1, - "id": "51164310-fa2b-11e6-bbd3-29c986c96e5a-ecs", - "panelIndex": 2, - "row": 10, - "size_x": 12, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "dc589770-fa2b-11e6-bbd3-29c986c96e5a-ecs", - "panelIndex": 3, - "row": 2, - "size_x": 12, - "size_y": 4, - "type": "visualization" - }, - { - "col": 1, - "id": "327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs", - "panelIndex": 4, - "row": 1, - "size_x": 12, - "size_y": 1, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Filebeat System] Sudo commands ECS", - "uiStateJSON": { - "P-3": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - } - }, - "version": 1 - }, - "id": "277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs", - "type": "dashboard", - "version": 6 - } - ], - "version": "6.0.0-beta1-SNAPSHOT" -} diff --git a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-auth-sudo-commands.ndjson b/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-auth-sudo-commands.ndjson new file mode 100644 index 00000000000..32b15f2a769 --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-auth-sudo-commands.ndjson @@ -0,0 +1,6 @@ +{"attributes":{"columns":["user.name","system.auth.sudo.user","system.auth.sudo.pwd","system.auth.sudo.command"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"system.auth.sudo:*\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Sudo commands [Filebeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"b6f321e0-fa25-11e6-bbd3-29c986c96e5a-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:57.403Z","version":"WzQzNTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Sudo commands by user [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"Sudo commands by user ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"5c7af030-fa2a-11e6-bbd3-29c986c96e5a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b6f321e0-fa25-11e6-bbd3-29c986c96e5a-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:57.403Z","version":"WzQzNTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"system.auth.sudo.error:*\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Sudo errors [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"system.auth.sudo.error\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"Sudo errors ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"51164310-fa2b-11e6-bbd3-29c986c96e5a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:57.403Z","version":"WzQzNTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Top sudo commands [Filebeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"system.auth.sudo.command\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top sudo commands ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"dc589770-fa2b-11e6-bbd3-29c986c96e5a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b6f321e0-fa25-11e6-bbd3-29c986c96e5a-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:57.403Z","version":"WzQzNTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Dashboards [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Syslog](#/dashboard/Filebeat-syslog-dashboard-ecs) | [Sudo commands](#/dashboard/277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs) | [SSH logins](#/dashboard/5517a150-f9ce-11e6-8115-a7c18106d86a-ecs) | [New users and groups](#/dashboard/0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs)\"},\"title\":\"Dashboards [Filebeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:24.999Z","version":"WzQ1NDcsMV0="} +{"attributes":{"description":"Sudo commands dashboard from the Filebeat System module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":48,\"h\":16,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":36,\"w\":48,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":48,\"h\":16,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Filebeat System] Sudo commands ECS","version":1},"coreMigrationVersion":"8.0.0","id":"277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"5c7af030-fa2a-11e6-bbd3-29c986c96e5a-ecs","name":"1:panel_1","type":"visualization"},{"id":"51164310-fa2b-11e6-bbd3-29c986c96e5a-ecs","name":"2:panel_2","type":"visualization"},{"id":"dc589770-fa2b-11e6-bbd3-29c986c96e5a-ecs","name":"3:panel_3","type":"visualization"},{"id":"327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs","name":"4:panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:57.403Z","version":"WzQzNTgsMV0="} diff --git a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-new-users-and-groups.json b/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-new-users-and-groups.json deleted file mode 100644 index f3e41d12e14..00000000000 --- a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-new-users-and-groups.json +++ /dev/null @@ -1,683 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs", - "title": "New users [Filebeat System] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Host", - "field": "host.hostname", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "User", - "field": "user.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "UID", - "field": "user.id", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "GID", - "field": "group.id", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "Home", - "field": "system.auth.useradd.home", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "7", - "params": { - "customLabel": "Shell", - "field": "system.auth.useradd.shell", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "New users ECS", - "type": "table" - } - }, - "id": "f398d2f0-fa77-11e6-ae9b-81e5311e8cab-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs", - "title": "New users over time [Filebeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "user.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "legendPosition": "bottom", - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "times": [] - }, - "title": "New users over time ECS", - "type": "histogram" - } - }, - "id": "5dd15c00-fa78-11e6-ae9b-81e5311e8cab-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs", - "title": "New users by shell [Filebeat System] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "/bin/bash": "#E24D42", - "/bin/false": "#508642", - "/sbin/nologin": "#7EB26D" - }, - "legendOpen": true - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "system.auth.useradd.shell", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "user.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "legendPosition": "right" - }, - "title": "New users by shell ECS", - "type": "pie" - } - }, - "id": "e121b140-fa78-11e6-a1df-a78bd7504d38-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs", - "title": "New users by home directory [Filebeat System] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "/bin/bash": "#E24D42", - "/bin/false": "#508642", - "/nonexistent": "#629E51", - "/sbin/nologin": "#7EB26D" - }, - "legendOpen": true - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "system.auth.useradd.home", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "user.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "legendPosition": "right" - }, - "title": "New users by home directory ECS", - "type": "pie" - } - }, - "id": "d56ee420-fa79-11e6-a1df-a78bd7504d38-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "eb0039f0-fa7f-11e6-a1df-a78bd7504d38-ecs", - "title": "New groups [Filebeat System] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "group.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "group.id", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "New groups ECS", - "type": "table" - } - }, - "id": "12667040-fa80-11e6-a1df-a78bd7504d38-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "eb0039f0-fa7f-11e6-a1df-a78bd7504d38-ecs", - "title": "New groups over time [Filebeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "group.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "legendPosition": "bottom", - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "times": [] - }, - "title": "New groups over time ECS", - "type": "histogram" - } - }, - "id": "346bb290-fa80-11e6-a1df-a78bd7504d38-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Dashboards [Filebeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Syslog](#/dashboard/Filebeat-syslog-dashboard-ecs) | [Sudo commands](#/dashboard/277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs) | [SSH logins](#/dashboard/5517a150-f9ce-11e6-8115-a7c18106d86a-ecs) | [New users and groups](#/dashboard/0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs)" - }, - "title": "Dashboards [Filebeat System] ECS", - "type": "markdown" - } - }, - "id": "327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "columns": [ - "user.name", - "user.id", - "group.id", - "system.auth.useradd.home", - "system.auth.useradd.shell" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "system.auth.useradd:*" - } - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "useradd logs [Filebeat System] ECS", - "version": 1 - }, - "id": "8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs", - "type": "search", - "version": 2 - }, - { - "attributes": { - "columns": [ - "group.name", - "group.id" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "system.auth.groupadd:*" - } - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "groupadd logs [Filebeat System] ECS", - "version": 1 - }, - "id": "eb0039f0-fa7f-11e6-a1df-a78bd7504d38-ecs", - "type": "search", - "version": 2 - }, - { - "attributes": { - "description": "New users and groups dashboard for the System module in Filebeat", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "f398d2f0-fa77-11e6-ae9b-81e5311e8cab-ecs", - "panelIndex": 1, - "row": 2, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 7, - "id": "5dd15c00-fa78-11e6-ae9b-81e5311e8cab-ecs", - "panelIndex": 2, - "row": 2, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "e121b140-fa78-11e6-a1df-a78bd7504d38-ecs", - "panelIndex": 3, - "row": 5, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 7, - "id": "d56ee420-fa79-11e6-a1df-a78bd7504d38-ecs", - "panelIndex": 4, - "row": 5, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "12667040-fa80-11e6-a1df-a78bd7504d38-ecs", - "panelIndex": 5, - "row": 8, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 7, - "id": "346bb290-fa80-11e6-a1df-a78bd7504d38-ecs", - "panelIndex": 6, - "row": 8, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs", - "panelIndex": 7, - "row": 1, - "size_x": 12, - "size_y": 1, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Filebeat System] New users and groups ECS", - "uiStateJSON": { - "P-1": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-5": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - } - }, - "version": 1 - }, - "id": "0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs", - "type": "dashboard", - "version": 6 - } - ], - "version": "6.0.0-beta1-SNAPSHOT" -} diff --git a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-new-users-and-groups.ndjson b/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-new-users-and-groups.ndjson new file mode 100644 index 00000000000..600d760906f --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-new-users-and-groups.ndjson @@ -0,0 +1,10 @@ +{"attributes":{"columns":["user.name","user.id","group.id","system.auth.useradd.home","system.auth.useradd.shell"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"system.auth.useradd:*\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"useradd logs [Filebeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:15.759Z","version":"WzQ0NzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"New users [Filebeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Host\",\"field\":\"host.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"User\",\"field\":\"user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"UID\",\"field\":\"user.id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"GID\",\"field\":\"group.id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Home\",\"field\":\"system.auth.useradd.home\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"Shell\",\"field\":\"system.auth.useradd.shell\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"New users ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"f398d2f0-fa77-11e6-ae9b-81e5311e8cab-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:15.759Z","version":"WzQ0NzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"New users over time [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"bottom\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"New users over time ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"5dd15c00-fa78-11e6-ae9b-81e5311e8cab-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:15.759Z","version":"WzQ0NzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"New users by shell [Filebeat System] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"/bin/bash\": \"#E24D42\", \"/bin/false\": \"#508642\", \"/sbin/nologin\": \"#7EB26D\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"system.auth.useradd.shell\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"New users by shell ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"e121b140-fa78-11e6-a1df-a78bd7504d38-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:15.759Z","version":"WzQ0NzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"New users by home directory [Filebeat System] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"/bin/bash\": \"#E24D42\", \"/bin/false\": \"#508642\", \"/nonexistent\": \"#629E51\", \"/sbin/nologin\": \"#7EB26D\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"system.auth.useradd.home\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"New users by home directory ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"d56ee420-fa79-11e6-a1df-a78bd7504d38-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:15.759Z","version":"WzQ0NzUsMV0="} +{"attributes":{"columns":["group.name","group.id"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"system.auth.groupadd:*\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"groupadd logs [Filebeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"eb0039f0-fa7f-11e6-a1df-a78bd7504d38-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:15.759Z","version":"WzQ0ODAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"New groups [Filebeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"group.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"group.id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"New groups ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"12667040-fa80-11e6-a1df-a78bd7504d38-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"eb0039f0-fa7f-11e6-a1df-a78bd7504d38-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:15.759Z","version":"WzQ0NzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"New groups over time [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"group.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"bottom\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"New groups over time ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"346bb290-fa80-11e6-a1df-a78bd7504d38-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"eb0039f0-fa7f-11e6-a1df-a78bd7504d38-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:15.759Z","version":"WzQ0NzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Dashboards [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Syslog](#/dashboard/Filebeat-syslog-dashboard-ecs) | [Sudo commands](#/dashboard/277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs) | [SSH logins](#/dashboard/5517a150-f9ce-11e6-8115-a7c18106d86a-ecs) | [New users and groups](#/dashboard/0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs)\"},\"title\":\"Dashboards [Filebeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:24.999Z","version":"WzQ1NDcsMV0="} +{"attributes":{"description":"New users and groups dashboard for the System module in Filebeat","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":24,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":4,\"w\":24,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":16,\"w\":24,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":16,\"w\":24,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":28,\"w\":24,\"h\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":28,\"w\":24,\"h\":12,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Filebeat System] New users and groups ECS","version":1},"coreMigrationVersion":"8.0.0","id":"0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"f398d2f0-fa77-11e6-ae9b-81e5311e8cab-ecs","name":"1:panel_1","type":"visualization"},{"id":"5dd15c00-fa78-11e6-ae9b-81e5311e8cab-ecs","name":"2:panel_2","type":"visualization"},{"id":"e121b140-fa78-11e6-a1df-a78bd7504d38-ecs","name":"3:panel_3","type":"visualization"},{"id":"d56ee420-fa79-11e6-a1df-a78bd7504d38-ecs","name":"4:panel_4","type":"visualization"},{"id":"12667040-fa80-11e6-a1df-a78bd7504d38-ecs","name":"5:panel_5","type":"visualization"},{"id":"346bb290-fa80-11e6-a1df-a78bd7504d38-ecs","name":"6:panel_6","type":"visualization"},{"id":"327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:15.759Z","version":"WzQ0ODEsMV0="} diff --git a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-ssh-login-attempts.json b/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-ssh-login-attempts.json deleted file mode 100644 index e352593b3c0..00000000000 --- a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-ssh-login-attempts.json +++ /dev/null @@ -1,477 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "system.auth.ssh.event:Accepted" - } - } - }, - "title": "Successful SSH logins [Filebeat System] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "Accepted": "#3F6833", - "Failed": "#F9934E", - "Invalid": "#447EBC", - "password": "#BF1B00", - "publickey": "#629E51" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "system.auth.ssh.method", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "times": [] - }, - "title": "Successful SSH logins ECS", - "type": "histogram" - } - }, - "id": "d16bb400-f9cc-11e6-8115-a7c18106d86a-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*" - } - }, - "title": "SSH login attempts [Filebeat System] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "Accepted": "#3F6833", - "Failed": "#F9934E", - "Invalid": "#447EBC" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "system.auth.ssh.event", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "times": [] - }, - "title": "SSH login attempts ECS", - "type": "histogram" - } - }, - "id": "78b74f30-f9cd-11e6-8115-a7c18106d86a-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "system.auth.ssh.event:Failed OR system.auth.ssh.event:Invalid" - } - } - }, - "title": "SSH users of failed login attempts [Filebeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user.name", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "maxFontSize": 72, - "minFontSize": 18, - "orientation": "single", - "scale": "linear" - }, - "title": "SSH users of failed login attempts ECS", - "type": "tagcloud" - } - }, - "id": "341ffe70-f9ce-11e6-8115-a7c18106d86a-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "system.auth.ssh.event:Failed OR system.auth.ssh.event:Invalid" - } - } - }, - "title": "SSH failed login attempts source locations [Filebeat System] ECS", - "uiStateJSON": { - "mapCenter": [ - 17.602139123350838, - 69.697265625 - ], - "mapZoom": 2 - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "source.geo.location", - "precision": 2 - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "listeners": {}, - "params": { - "addTooltip": true, - "heatBlur": 15, - "heatMaxZoom": 16, - "heatMinOpacity": 0.1, - "heatNormalizeData": true, - "heatRadius": 25, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 15, - 5 - ], - "mapType": "Shaded Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "attribution": "Maps provided by USGS", - "format": "image/png", - "layers": "0", - "styles": "", - "transparent": true, - "version": "1.3.0" - }, - "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" - } - }, - "title": "SSH failed login attempts source locations ECS", - "type": "tile_map" - } - }, - "id": "3cec3eb0-f9d3-11e6-8a3e-2b904044ea1d-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "columns": [ - "system.auth.ssh.event", - "system.auth.ssh.method", - "user.name", - "source.ip", - "source.geo.country_iso_code" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "event.dataset:system.auth AND system.auth.ssh.event:*" - } - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "SSH login attempts [Filebeat System] ECS", - "version": 1 - }, - "id": "62439dc0-f9c9-11e6-a747-6121780e0414-ecs", - "type": "search", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Dashboards [Filebeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Syslog](#/dashboard/Filebeat-syslog-dashboard-ecs) | [Sudo commands](#/dashboard/277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs) | [SSH logins](#/dashboard/5517a150-f9ce-11e6-8115-a7c18106d86a-ecs) | [New users and groups](#/dashboard/0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs)" - }, - "title": "Dashboards [Filebeat System] ECS", - "type": "markdown" - } - }, - "id": "327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "SSH dashboard for the System module in Filebeat", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "d16bb400-f9cc-11e6-8115-a7c18106d86a-ecs", - "panelIndex": 1, - "row": 5, - "size_x": 12, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "78b74f30-f9cd-11e6-8115-a7c18106d86a-ecs", - "panelIndex": 2, - "row": 2, - "size_x": 12, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "341ffe70-f9ce-11e6-8115-a7c18106d86a-ecs", - "panelIndex": 3, - "row": 8, - "size_x": 6, - "size_y": 4, - "type": "visualization" - }, - { - "col": 7, - "id": "3cec3eb0-f9d3-11e6-8a3e-2b904044ea1d-ecs", - "panelIndex": 4, - "row": 8, - "size_x": 6, - "size_y": 4, - "type": "visualization" - }, - { - "col": 1, - "columns": [ - "system.auth.ssh.event", - "system.auth.ssh.method", - "user.name", - "source.ip", - "source.geo.country_iso_code" - ], - "id": "62439dc0-f9c9-11e6-a747-6121780e0414-ecs", - "panelIndex": 5, - "row": 12, - "size_x": 12, - "size_y": 3, - "sort": [ - "@timestamp", - "desc" - ], - "type": "search" - }, - { - "col": 1, - "id": "327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs", - "panelIndex": 6, - "row": 1, - "size_x": 12, - "size_y": 1, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Filebeat System] SSH login attempts ECS", - "uiStateJSON": { - "P-4": { - "mapBounds": { - "bottom_right": { - "lat": 10.31491928581316, - "lon": 74.53125 - }, - "top_left": { - "lat": 60.50052541051131, - "lon": -27.94921875 - } - }, - "mapCenter": [ - 39.774769485295465, - 23.203125 - ], - "mapCollar": { - "bottom_right": { - "lat": -14.777884999999998, - "lon": 125.771485 - }, - "top_left": { - "lat": 85.593335, - "lon": -79.189455 - }, - "zoom": 3 - }, - "mapZoom": 3 - } - }, - "version": 1 - }, - "id": "5517a150-f9ce-11e6-8115-a7c18106d86a-ecs", - "type": "dashboard", - "version": 7 - } - ], - "version": "6.0.0-beta1-SNAPSHOT" -} diff --git a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-ssh-login-attempts.ndjson b/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-ssh-login-attempts.ndjson new file mode 100644 index 00000000000..52160c10607 --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-ssh-login-attempts.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"system.auth.ssh.event:Accepted\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Successful SSH logins [Filebeat System] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Accepted\": \"#3F6833\", \"Failed\": \"#F9934E\", \"Invalid\": \"#447EBC\", \"password\": \"#BF1B00\", \"publickey\": \"#629E51\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"system.auth.ssh.method\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"Successful SSH logins ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"d16bb400-f9cc-11e6-8115-a7c18106d86a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:23.956Z","version":"WzQ1MzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"SSH login attempts [Filebeat System] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Accepted\": \"#3F6833\", \"Failed\": \"#F9934E\", \"Invalid\": \"#447EBC\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"system.auth.ssh.event\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"SSH login attempts ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"78b74f30-f9cd-11e6-8115-a7c18106d86a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:23.956Z","version":"WzQ1MzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"system.auth.ssh.event:Failed OR system.auth.ssh.event:Invalid\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"SSH users of failed login attempts [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"SSH users of failed login attempts ECS\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"341ffe70-f9ce-11e6-8115-a7c18106d86a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:23.956Z","version":"WzQ1MzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"system.auth.ssh.event:Failed OR system.auth.ssh.event:Invalid\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"SSH failed login attempts source locations [Filebeat System] ECS","uiStateJSON":"{\"mapCenter\": [17.602139123350838, 69.697265625], \"mapZoom\": 2}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"precision\":2},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":16,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[15,5],\"mapType\":\"Shaded Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"SSH failed login attempts source locations ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"3cec3eb0-f9d3-11e6-8a3e-2b904044ea1d-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:23.956Z","version":"WzQ1NDAsMV0="} +{"attributes":{"columns":["system.auth.ssh.event","system.auth.ssh.method","user.name","source.ip","source.geo.country_iso_code"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:system.auth AND system.auth.ssh.event:*\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"SSH login attempts [Filebeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"62439dc0-f9c9-11e6-a747-6121780e0414-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:23.956Z","version":"WzQ1NDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Dashboards [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Syslog](#/dashboard/Filebeat-syslog-dashboard-ecs) | [Sudo commands](#/dashboard/277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs) | [SSH logins](#/dashboard/5517a150-f9ce-11e6-8115-a7c18106d86a-ecs) | [New users and groups](#/dashboard/0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs)\"},\"title\":\"Dashboards [Filebeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:24.999Z","version":"WzQ1NDcsMV0="} +{"attributes":{"description":"SSH dashboard for the System module in Filebeat","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":16,\"w\":48,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":48,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":28,\"w\":24,\"h\":16,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":28,\"w\":24,\"h\":16,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"mapBounds\":{\"bottom_right\":{\"lat\":10.31491928581316,\"lon\":74.53125},\"top_left\":{\"lat\":60.50052541051131,\"lon\":-27.94921875}},\"mapCenter\":[39.774769485295465,23.203125],\"mapCollar\":{\"bottom_right\":{\"lat\":-14.777884999999998,\"lon\":125.771485},\"top_left\":{\"lat\":85.593335,\"lon\":-79.189455},\"zoom\":3},\"mapZoom\":3,\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":44,\"w\":48,\"h\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"columns\":[\"system.auth.ssh.event\",\"system.auth.ssh.method\",\"user.name\",\"source.ip\",\"source.geo.country_iso_code\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Filebeat System] SSH login attempts ECS","version":1},"coreMigrationVersion":"8.0.0","id":"5517a150-f9ce-11e6-8115-a7c18106d86a-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"d16bb400-f9cc-11e6-8115-a7c18106d86a-ecs","name":"1:panel_1","type":"visualization"},{"id":"78b74f30-f9cd-11e6-8115-a7c18106d86a-ecs","name":"2:panel_2","type":"visualization"},{"id":"341ffe70-f9ce-11e6-8115-a7c18106d86a-ecs","name":"3:panel_3","type":"visualization"},{"id":"3cec3eb0-f9d3-11e6-8a3e-2b904044ea1d-ecs","name":"4:panel_4","type":"visualization"},{"id":"62439dc0-f9c9-11e6-a747-6121780e0414-ecs","name":"5:panel_5","type":"search"},{"id":"327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs","name":"6:panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:23.956Z","version":"WzQ1NDMsMV0="} diff --git a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-syslog.json b/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-syslog.json deleted file mode 100644 index 2af4dc6453b..00000000000 --- a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-syslog.json +++ /dev/null @@ -1,277 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Syslog-system-logs-ecs", - "title": "Syslog events by hostname [Filebeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "host.hostname", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "shareYAxis": true, - "times": [], - "yAxis": {} - }, - "title": "Syslog events by hostname ECS", - "type": "histogram" - } - }, - "id": "Syslog-events-by-hostname-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Syslog-system-logs-ecs", - "title": "Syslog hostnames and processes [Filebeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "host.hostname", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "process.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "bottom", - "shareYAxis": true - }, - "title": "Syslog hostnames and processes ECS", - "type": "pie" - } - }, - "id": "Syslog-hostnames-and-processes-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "columns": [ - "host.hostname", - "process.name", - "message" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "event.dataset:system.syslog" - } - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Syslog logs [Filebeat System] ECS", - "version": 1 - }, - "id": "Syslog-system-logs-ecs", - "type": "search", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Dashboards [Filebeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Syslog](#/dashboard/Filebeat-syslog-dashboard-ecs) | [Sudo commands](#/dashboard/277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs) | [SSH logins](#/dashboard/5517a150-f9ce-11e6-8115-a7c18106d86a-ecs) | [New users and groups](#/dashboard/0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs)" - }, - "title": "Dashboards [Filebeat System] ECS", - "type": "markdown" - } - }, - "id": "327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "Syslog dashboard from the Filebeat System module", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "Syslog-events-by-hostname-ecs", - "panelIndex": 1, - "row": 2, - "size_x": 8, - "size_y": 4, - "type": "visualization" - }, - { - "col": 9, - "id": "Syslog-hostnames-and-processes-ecs", - "panelIndex": 2, - "row": 2, - "size_x": 4, - "size_y": 4, - "type": "visualization" - }, - { - "col": 1, - "columns": [ - "host.hostname", - "process.name", - "message" - ], - "id": "Syslog-system-logs-ecs", - "panelIndex": 3, - "row": 6, - "size_x": 12, - "size_y": 7, - "sort": [ - "@timestamp", - "desc" - ], - "type": "search" - }, - { - "col": 1, - "id": "327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs", - "panelIndex": 4, - "row": 1, - "size_x": 12, - "size_y": 1, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Filebeat System] Syslog dashboard ECS", - "uiStateJSON": {}, - "version": 1 - }, - "id": "Filebeat-syslog-dashboard-ecs", - "type": "dashboard", - "version": 6 - } - ], - "version": "6.0.0-beta1-SNAPSHOT" -} diff --git a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-syslog.ndjson b/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-syslog.ndjson new file mode 100644 index 00000000000..b37f6aa1d44 --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-syslog.ndjson @@ -0,0 +1,5 @@ +{"attributes":{"columns":["host.hostname","process.name","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:system.syslog\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Syslog logs [Filebeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Syslog-system-logs-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:24.999Z","version":"WzQ1NDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Syslog events by hostname [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"host.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Syslog events by hostname ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Syslog-events-by-hostname-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Syslog-system-logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:24.999Z","version":"WzQ1NDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Syslog hostnames and processes [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"host.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"process.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Syslog hostnames and processes ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Syslog-hostnames-and-processes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Syslog-system-logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:24.999Z","version":"WzQ1NDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Dashboards [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Syslog](#/dashboard/Filebeat-syslog-dashboard-ecs) | [Sudo commands](#/dashboard/277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs) | [SSH logins](#/dashboard/5517a150-f9ce-11e6-8115-a7c18106d86a-ecs) | [New users and groups](#/dashboard/0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs)\"},\"title\":\"Dashboards [Filebeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:24.999Z","version":"WzQ1NDcsMV0="} +{"attributes":{"description":"Syslog dashboard from the Filebeat System module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":32,\"h\":16,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":4,\"w\":16,\"h\":16,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":20,\"w\":48,\"h\":28,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"columns\":[\"host.hostname\",\"process.name\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Filebeat System] Syslog dashboard ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-syslog-dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Syslog-events-by-hostname-ecs","name":"1:panel_1","type":"visualization"},{"id":"Syslog-hostnames-and-processes-ecs","name":"2:panel_2","type":"visualization"},{"id":"Syslog-system-logs-ecs","name":"3:panel_3","type":"search"},{"id":"327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs","name":"4:panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:24.999Z","version":"WzQ1NDgsMV0="} diff --git a/filebeat/module/system/module.yml b/filebeat/module/system/module.yml index 624c7e31809..9e908d44365 100644 --- a/filebeat/module/system/module.yml +++ b/filebeat/module/system/module.yml @@ -1,12 +1,12 @@ dashboards: - id: 0d3f2380-fa78-11e6-ae9b-81e5311e8cab - file: Filebeat-new-users-and-groups.json + file: Filebeat-new-users-and-groups.ndjson - id: 277876d0-fa2c-11e6-bbd3-29c986c96e5a - file: Filebeat-auth-sudo-commands.json + file: Filebeat-auth-sudo-commands.ndjson - id: 5517a150-f9ce-11e6-8115-a7c18106d86a - file: Filebeat-ssh-login-attempts.json + file: Filebeat-ssh-login-attempts.ndjson - id: Filebeat-syslog-dashboard - file: Filebeat-syslog.json + file: Filebeat-syslog.ndjson diff --git a/filebeat/module/traefik/_meta/kibana/7/dashboard/Filebeat-traefik-overview.json b/filebeat/module/traefik/_meta/kibana/7/dashboard/Filebeat-traefik-overview.json deleted file mode 100644 index 22f944797fb..00000000000 --- a/filebeat/module/traefik/_meta/kibana/7/dashboard/Filebeat-traefik-overview.json +++ /dev/null @@ -1,583 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Browsers breakdown [Filebeat Traefik] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user_agent.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "user_agent.version", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "bottom", - "shareYAxis": true - }, - "title": "Traefik Access Browsers ECS", - "type": "pie" - } - }, - "id": "Traefik-Access-Browsers-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Operating systems breakdown [Filebeat Traefik] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user_agent.os.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "user_agent.os.version", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "bottom", - "shareYAxis": true - }, - "title": "Traefik Access OSes ECS", - "type": "pie" - } - }, - "id": "Traefik-Access-OSes-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Filebeat-Traefik-module-ecs", - "title": "Response codes over time [Filebeat Traefik] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "200": "#7EB26D", - "404": "#614D93" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "http.response.status_code", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "shareYAxis": true, - "times": [], - "yAxis": {} - }, - "title": "New Visualization ECS", - "type": "histogram" - } - }, - "id": "New-Visualization-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Response codes by top URLs [Filebeat Traefik] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "200": "#629E51", - "404": "#0A50A1" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "url.original", - "order": "desc", - "orderBy": "1", - "row": false, - "size": 5 - }, - "schema": "split", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "http.response.status_code", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "legendPosition": "right", - "shareYAxis": true - }, - "title": "Traefik Access Response codes by top URLs ECS", - "type": "pie" - } - }, - "id": "Traefik-Access-Response-codes-by-top-URLs-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "event.dataset:traefik.access" - } - } - }, - "title": "Sent Byte Size [Filebeat Traefik] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Data sent", - "field": "http.response.body.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": {}, - "schema": "radius", - "type": "count" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": "17", - "scale": "linear", - "setYExtents": false, - "shareYAxis": true, - "showCircles": true, - "smoothLines": true, - "times": [], - "yAxis": {} - }, - "title": "Sent sizes ECS", - "type": "line" - } - }, - "id": "Sent-sizes-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Filebeat-Traefik-module-ecs", - "title": "Access Map [Filebeat Traefik] ECS", - "uiStateJSON": { - "mapCenter": [ - 12.039320557540572, - -0.17578125 - ] - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "source.geo.location" - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "listeners": {}, - "params": { - "addTooltip": true, - "heatBlur": 15, - "heatMaxZoom": 16, - "heatMinOpacity": 0.1, - "heatNormalizeData": true, - "heatRadius": 25, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 15, - 5 - ], - "mapType": "Scaled Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "attribution": "Maps provided by USGS", - "format": "image/png", - "layers": "0", - "styles": "", - "transparent": true, - "version": "1.3.0" - }, - "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" - } - }, - "title": "Traefik Access Map ECS", - "type": "tile_map" - } - }, - "id": "Traefik-Access-Map-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "event.module:traefik" - } - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Traefik logs [Filebeat Traefik] ECS", - "version": 1 - }, - "id": "Filebeat-Traefik-module-ecs", - "type": "search", - "version": 2 - }, - { - "attributes": { - "description": "Dashboard for the Filebeat Traefik module", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "Traefik-Access-Browsers-ecs", - "panelIndex": 3, - "row": 10, - "size_x": 4, - "size_y": 4, - "type": "visualization" - }, - { - "col": 5, - "id": "Traefik-Access-OSes-ecs", - "panelIndex": 4, - "row": 10, - "size_x": 4, - "size_y": 4, - "type": "visualization" - }, - { - "col": 1, - "id": "New-Visualization-ecs", - "panelIndex": 5, - "row": 4, - "size_x": 12, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "Traefik-Access-Response-codes-by-top-URLs-ecs", - "panelIndex": 6, - "row": 7, - "size_x": 12, - "size_y": 3, - "type": "visualization" - }, - { - "col": 9, - "id": "Sent-sizes-ecs", - "panelIndex": 7, - "row": 10, - "size_x": 4, - "size_y": 4, - "type": "visualization" - }, - { - "col": 1, - "id": "Traefik-Access-Map-ecs", - "panelIndex": 8, - "row": 1, - "size_x": 12, - "size_y": 3, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Filebeat Traefik] Access logs ECS", - "uiStateJSON": { - "P-4": { - "vis": { - "legendOpen": true - } - }, - "P-8": { - "mapCenter": [ - 50.51342652633956, - -0.17578125 - ] - } - }, - "version": 1 - }, - "id": "Filebeat-Traefik-Dashboard-ecs", - "type": "dashboard", - "version": 3 - } - ], - "version": "6.0.0-beta1-SNAPSHOT" -} diff --git a/filebeat/module/traefik/_meta/kibana/7/dashboard/Filebeat-traefik-overview.ndjson b/filebeat/module/traefik/_meta/kibana/7/dashboard/Filebeat-traefik-overview.ndjson new file mode 100644 index 00000000000..af584872c7e --- /dev/null +++ b/filebeat/module/traefik/_meta/kibana/7/dashboard/Filebeat-traefik-overview.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Browsers breakdown [Filebeat Traefik] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Traefik Access Browsers ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Traefik-Access-Browsers-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:34.139Z","version":"WzQ2ODAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Operating systems breakdown [Filebeat Traefik] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.os.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.os.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Traefik Access OSes ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Traefik-Access-OSes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:34.139Z","version":"WzQ2ODEsMV0="} +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.module:traefik\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Traefik logs [Filebeat Traefik] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-Traefik-module-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:34.139Z","version":"WzQ2ODYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Response codes over time [Filebeat Traefik] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"200\": \"#7EB26D\", \"404\": \"#614D93\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"http.response.status_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"New Visualization ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"New-Visualization-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Filebeat-Traefik-module-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:34.139Z","version":"WzQ2ODIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Response codes by top URLs [Filebeat Traefik] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"200\": \"#629E51\", \"404\": \"#0A50A1\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"url.original\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"http.response.status_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"shareYAxis\":true,\"row\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Traefik Access Response codes by top URLs ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Traefik-Access-Response-codes-by-top-URLs-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:34.139Z","version":"WzQ2ODMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:traefik.access\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Sent Byte Size [Filebeat Traefik] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Data sent\",\"field\":\"http.response.body.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{},\"schema\":\"radius\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":\"17\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Sent sizes ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Sent-sizes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:34.139Z","version":"WzQ2ODQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Access Map [Filebeat Traefik] ECS","uiStateJSON":"{\"mapCenter\": [12.039320557540572, -0.17578125]}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\"},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":16,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[15,5],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Traefik Access Map ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"Traefik-Access-Map-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Filebeat-Traefik-module-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:34.139Z","version":"WzQ2ODUsMV0="} +{"attributes":{"description":"Dashboard for the Filebeat Traefik module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":36,\"w\":16,\"h\":16,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":36,\"w\":16,\"h\":16,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":24,\"w\":48,\"h\":12,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":36,\"w\":16,\"h\":16,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":12,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"mapCenter\":[50.51342652633956,-0.17578125],\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Filebeat Traefik] Access logs ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-Traefik-Dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Traefik-Access-Browsers-ecs","name":"3:panel_3","type":"visualization"},{"id":"Traefik-Access-OSes-ecs","name":"4:panel_4","type":"visualization"},{"id":"New-Visualization-ecs","name":"5:panel_5","type":"visualization"},{"id":"Traefik-Access-Response-codes-by-top-URLs-ecs","name":"6:panel_6","type":"visualization"},{"id":"Sent-sizes-ecs","name":"7:panel_7","type":"visualization"},{"id":"Traefik-Access-Map-ecs","name":"8:panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:34.139Z","version":"WzQ2ODcsMV0="} diff --git a/filebeat/module/traefik/module.yml b/filebeat/module/traefik/module.yml index 30161e18bdc..37e61c7c506 100644 --- a/filebeat/module/traefik/module.yml +++ b/filebeat/module/traefik/module.yml @@ -1,12 +1,12 @@ dashboards: - id: filebeat-traefik-overview - file: Filebeat-traefik-overview.json + file: Filebeat-traefik-overview.ndjson - id: filebeat-traefik-logs - file: Filebeat-traefik-logs.json + file: Filebeat-traefik-logs.ndjson - id: ML-Traefik-Access-Remote-IP-Count-Explorer - file: ml-traefik-access-remote-ip-count-explorer.json + file: ml-traefik-access-remote-ip-count-explorer.ndjson - id: ML-Traefik-Remote-IP-URL-Explorer - file: ml-traefik-remote-ip-url-explorer.json + file: ml-traefik-remote-ip-url-explorer.ndjson diff --git a/filebeat/tests/system/input/template-test-module/module.yml b/filebeat/tests/system/input/template-test-module/module.yml index 7516dc41d68..1d742019a41 100644 --- a/filebeat/tests/system/input/template-test-module/module.yml +++ b/filebeat/tests/system/input/template-test-module/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Filebeat-template-test-module-test-Dashboard - file: Filebeat-template-test-module-test.json + file: Filebeat-template-test-module-test.ndjson diff --git a/filebeat/tests/system/test_index_pattern.py b/filebeat/tests/system/test_index_pattern.py index cc3189f02c8..f00bddab418 100644 --- a/filebeat/tests/system/test_index_pattern.py +++ b/filebeat/tests/system/test_index_pattern.py @@ -15,7 +15,7 @@ def test_export_index_pattern(self): extra_args=["export", "index-pattern"]) assert exit_code == 0 - assert self.log_contains('"objects": [') + assert self.log_contains('"type": "index-pattern"') assert self.log_contains('beat.name') == False def test_export_index_pattern_migration(self): @@ -28,5 +28,5 @@ def test_export_index_pattern_migration(self): extra_args=["export", "index-pattern", "-E", "migration.6_to_7.enabled:true"]) assert exit_code == 0 - assert self.log_contains('"objects": [') + assert self.log_contains('"type": "index-pattern"') assert self.log_contains('beat.name') diff --git a/libbeat/cmd/export/dashboard.go b/libbeat/cmd/export/dashboard.go index 9cd63f03366..83778d512d9 100644 --- a/libbeat/cmd/export/dashboard.go +++ b/libbeat/cmd/export/dashboard.go @@ -84,7 +84,7 @@ func GenDashboardCmd(settings instance.Settings) *cobra.Command { if decode { result = dashboards.DecodeExported(result) } - fmt.Println(result.StringToPrint()) + fmt.Println(string(result)) } }, } diff --git a/libbeat/dashboards/decode.go b/libbeat/dashboards/decode.go index 8a0235e3894..6771559e5fe 100644 --- a/libbeat/dashboards/decode.go +++ b/libbeat/dashboards/decode.go @@ -18,8 +18,11 @@ package dashboards import ( + "bufio" + "bytes" "encoding/json" "fmt" + "io" "github.com/elastic/beats/v7/libbeat/common" "github.com/elastic/beats/v7/libbeat/logp" @@ -36,20 +39,42 @@ var ( ) // DecodeExported decodes an exported dashboard -func DecodeExported(result common.MapStr) common.MapStr { +func DecodeExported(exported []byte) []byte { // remove unsupported chars - objects := result["objects"].([]interface{}) - for _, obj := range objects { - o := obj.(common.MapStr) - for _, key := range responseToDecode { - // All fields are optional, so errors are not caught - err := decodeValue(o, key) - if err != nil { - logp.Debug("dashboards", "Error while decoding dashboard objects: %+v", err) + var result []byte + r := bufio.NewReader(bytes.NewReader(exported)) + for { + line, err := r.ReadBytes('\n') + if err != nil { + if err == io.EOF { + return append(result, decodeLine(line)...) } + return exported } + result = append(result, decodeLine(line)...) + } +} + +func decodeLine(line []byte) []byte { + if len(bytes.TrimSpace(line)) == 0 { + return line + } + + o := common.MapStr{} + err := json.Unmarshal(line, &o) + if err != nil { + return line + } + var result []byte + for _, key := range responseToDecode { + // All fields are optional, so errors are not caught + err := decodeValue(o, key) + if err != nil { + logger := logp.NewLogger("dashboards") + logger.Debugf("Error while decoding dashboard objects: %+v", err) + } + result = append(result, []byte(o.String())...) } - result["objects"] = objects return result } diff --git a/libbeat/dashboards/export.go b/libbeat/dashboards/export.go index 4bd6ed826f2..28245ba272e 100644 --- a/libbeat/dashboards/export.go +++ b/libbeat/dashboards/export.go @@ -50,12 +50,12 @@ type YMLElement struct { } // Export wraps GetDashboard call to provide a more descriptive API -func Export(client *kibana.Client, id string) (common.MapStr, error) { +func Export(client *kibana.Client, id string) ([]byte, error) { return client.GetDashboard(id) } // ExportAllFromYml exports all dashboards found in the YML file -func ExportAllFromYml(client *kibana.Client, ymlPath string) ([]common.MapStr, ListYML, error) { +func ExportAllFromYml(client *kibana.Client, ymlPath string) ([][]byte, ListYML, error) { b, err := ioutil.ReadFile(ymlPath) if err != nil { return nil, ListYML{}, errors.Wrap(err, "error opening the list of dashboards") @@ -75,8 +75,8 @@ func ExportAllFromYml(client *kibana.Client, ymlPath string) ([]common.MapStr, L } // ExportAll exports all dashboards from an opened and parsed dashboards YML. -func ExportAll(client *kibana.Client, list ListYML) ([]common.MapStr, error) { - var results []common.MapStr +func ExportAll(client *kibana.Client, list ListYML) ([][]byte, error) { + var results [][]byte for _, e := range list.Dashboards { result, err := Export(client, e.ID) if err != nil { @@ -88,7 +88,7 @@ func ExportAll(client *kibana.Client, list ListYML) ([]common.MapStr, error) { } // SaveToFile creates the required directories if needed and saves dashboard. -func SaveToFile(dashboard common.MapStr, filename, root string, version common.Version) error { +func SaveToFile(dashboard []byte, filename, root string, version common.Version) error { dashboardsPath := path.Join("_meta", "kibana", strconv.Itoa(version.Major), "dashboard") err := os.MkdirAll(path.Join(root, dashboardsPath), 0750) if err != nil { @@ -97,5 +97,5 @@ func SaveToFile(dashboard common.MapStr, filename, root string, version common.V out := filepath.Join(root, dashboardsPath, filename) - return ioutil.WriteFile(out, []byte(dashboard.StringToPrint()), OutputPermission) + return ioutil.WriteFile(out, dashboard, OutputPermission) } diff --git a/libbeat/dashboards/importer.go b/libbeat/dashboards/importer.go index ab05736cc19..139acbb1fac 100644 --- a/libbeat/dashboards/importer.go +++ b/libbeat/dashboards/importer.go @@ -113,7 +113,7 @@ func (imp Importer) ImportDir(dirType string, dir string) error { dir = path.Join(dir, dirType) var errors []string - files, err := filepath.Glob(path.Join(dir, "*.json")) + files, err := filepath.Glob(path.Join(dir, "*.ndjson")) if err != nil { return fmt.Errorf("Failed to read directory %s. Error: %s", dir, err) } diff --git a/libbeat/dashboards/kibana_loader.go b/libbeat/dashboards/kibana_loader.go index 1733f94750c..be3114e2c2b 100644 --- a/libbeat/dashboards/kibana_loader.go +++ b/libbeat/dashboards/kibana_loader.go @@ -23,6 +23,7 @@ import ( "fmt" "io/ioutil" "net/url" + "path/filepath" "time" "github.com/joeshaw/multierror" @@ -33,7 +34,7 @@ import ( "github.com/elastic/beats/v7/libbeat/logp" ) -var importAPI = "/api/kibana/dashboards/import" +var importAPI = "/api/saved_objects/_import" type KibanaLoader struct { client *kibana.Client @@ -87,6 +88,12 @@ func getKibanaClient(ctx context.Context, cfg *common.Config, retryCfg *Retry, r // ImportIndexFile imports an index pattern from a file func (loader KibanaLoader) ImportIndexFile(file string) error { + if loader.version.LessThan(kibana.MinimumRequiredVersionSavedObjects) { + return fmt.Errorf("Kibana version must be at least " + kibana.MinimumRequiredVersionSavedObjects.String()) + } + + loader.statusMsg("Importing index file from %s", file) + // read json file reader, err := ioutil.ReadFile(file) if err != nil { @@ -104,15 +111,20 @@ func (loader KibanaLoader) ImportIndexFile(file string) error { // ImportIndex imports the passed index pattern to Kibana func (loader KibanaLoader) ImportIndex(pattern common.MapStr) error { + if loader.version.LessThan(kibana.MinimumRequiredVersionSavedObjects) { + return fmt.Errorf("Kibana version must be at least " + kibana.MinimumRequiredVersionSavedObjects.String()) + } + var errs multierror.Errors params := url.Values{} - params.Set("force", "true") //overwrite the existing dashboards + params.Set("overwrite", "true") if err := ReplaceIndexInIndexPattern(loader.config.Index, pattern); err != nil { errs = append(errs, errors.Wrapf(err, "error setting index '%s' in index pattern", loader.config.Index)) } - if err := loader.client.ImportJSON(importAPI, params, pattern); err != nil { + + if err := loader.client.ImportMultiPartFormFile(importAPI, params, "index-template.ndjson", pattern.String()); err != nil { errs = append(errs, errors.Wrap(err, "error loading index pattern")) } return errs.Err() @@ -120,29 +132,29 @@ func (loader KibanaLoader) ImportIndex(pattern common.MapStr) error { // ImportDashboard imports the dashboard file func (loader KibanaLoader) ImportDashboard(file string) error { + if loader.version.LessThan(kibana.MinimumRequiredVersionSavedObjects) { + return fmt.Errorf("Kibana version must be at least " + kibana.MinimumRequiredVersionSavedObjects.String()) + } + + loader.statusMsg("Importing dashboard from %s", file) + params := url.Values{} - params.Set("force", "true") //overwrite the existing dashboards - params.Add("exclude", "index-pattern") //don't import the index pattern from the dashboards + params.Set("overwrite", "true") // read json file - reader, err := ioutil.ReadFile(file) + content, err := ioutil.ReadFile(file) if err != nil { return fmt.Errorf("fail to read dashboard from file %s: %v", file, err) } - var content common.MapStr - err = json.Unmarshal(reader, &content) - if err != nil { - return fmt.Errorf("fail to unmarshal the dashboard content from file %s: %v", file, err) - } content = ReplaceIndexInDashboardObject(loader.config.Index, content) - content, err = ReplaceStringInDashboard("CHANGEME_HOSTNAME", loader.hostname, content) - if err != nil { - return fmt.Errorf("fail to replace the hostname in dashboard %s: %v", file, err) - } + content = ReplaceStringInDashboard("CHANGEME_HOSTNAME", loader.hostname, content) - return loader.client.ImportJSON(importAPI, params, content) + if err := loader.client.ImportMultiPartFormFile(importAPI, params, filepath.Base(file), string(content)); err != nil { + return fmt.Errorf("error loading index pattern: %+v", err) + } + return nil } func (loader KibanaLoader) Close() error { diff --git a/libbeat/dashboards/modify_json.go b/libbeat/dashboards/modify_json.go index 2e0c48e38b0..dd1332e5873 100644 --- a/libbeat/dashboards/modify_json.go +++ b/libbeat/dashboards/modify_json.go @@ -18,9 +18,11 @@ package dashboards import ( + "bufio" "bytes" "encoding/json" "fmt" + "io" "github.com/pkg/errors" @@ -28,6 +30,11 @@ import ( "github.com/elastic/beats/v7/libbeat/logp" ) +var ( + newline = []byte("\n") +) + +// JSONObjectAttribute contains the attributes for a Kibana json object type JSONObjectAttribute struct { Description string `json:"description"` KibanaSavedObjectMeta map[string]interface{} `json:"kibanaSavedObjectMeta"` @@ -118,6 +125,10 @@ func ReplaceIndexInSavedObject(index string, kibanaSavedObject map[string]interf } kibanaSavedObject["searchSourceJSON"] = searchSourceJSON } + if visStateJSON, ok := kibanaSavedObject["visState"].(string); ok { + visStateJSON = ReplaceIndexInVisState(index, visStateJSON) + kibanaSavedObject["visState"] = visStateJSON + } return kibanaSavedObject } @@ -154,51 +165,63 @@ func ReplaceIndexInVisState(index string, visStateJSON string) string { } // ReplaceIndexInDashboardObject replaces references to the index pattern in dashboard objects -func ReplaceIndexInDashboardObject(index string, content common.MapStr) common.MapStr { +func ReplaceIndexInDashboardObject(index string, content []byte) []byte { if index == "" { return content } - objects, ok := content["objects"].([]interface{}) - if !ok { - return content - } - - for i, object := range objects { - objectMap, ok := object.(map[string]interface{}) - if !ok { - continue + var result []byte + r := bufio.NewReader(bytes.NewReader(content)) + for { + line, err := r.ReadBytes('\n') + if err != nil { + if err == io.EOF { + return append(result, replaceInNDJSON(index, line)...) + } + logp.Err("Error reading bytes from raw dashboard object: %+v", err) + return content } + result = append(result, replaceInNDJSON(index, line)...) + } +} - attributes, ok := objectMap["attributes"].(map[string]interface{}) - if !ok { - continue - } +func replaceInNDJSON(index string, line []byte) []byte { + if len(bytes.TrimSpace(line)) == 0 { + return line + } - if kibanaSavedObject, ok := attributes["kibanaSavedObjectMeta"].(map[string]interface{}); ok { - attributes["kibanaSavedObjectMeta"] = ReplaceIndexInSavedObject(index, kibanaSavedObject) - } + objectMap := make(map[string]interface{}, 0) + err := json.Unmarshal(line, &objectMap) + if err != nil { + logp.Err("Failed to convert bytes to map[string]interface: %+v", err) + return line + } - if visState, ok := attributes["visState"].(string); ok { - attributes["visState"] = ReplaceIndexInVisState(index, visState) - } + attributes, ok := objectMap["attributes"].(map[string]interface{}) + if !ok { + logp.Err("Object does not have attributes key") + return line + } - objects[i] = objectMap + if kibanaSavedObject, ok := attributes["kibanaSavedObjectMeta"].(map[string]interface{}); ok { + attributes["kibanaSavedObjectMeta"] = ReplaceIndexInSavedObject(index, kibanaSavedObject) } - content["objects"] = objects - return content -} + if visState, ok := attributes["visState"].(string); ok { + attributes["visState"] = ReplaceIndexInVisState(index, visState) + } -func ReplaceStringInDashboard(old, new string, content common.MapStr) (common.MapStr, error) { - marshaled, err := json.Marshal(content) + b, err := json.Marshal(objectMap) if err != nil { - return nil, fmt.Errorf("fail to marshal dashboard object: %v", content) + logp.Err("Error marshaling modified dashboard: %+v", err) + return line } - replaced := bytes.Replace(marshaled, []byte(old), []byte(new), -1) + return append(b, newline...) + +} - var result common.MapStr - err = json.Unmarshal(replaced, &result) - return result, nil +// ReplaceStringInDashboard replaces a string field in a dashboard +func ReplaceStringInDashboard(old, new string, content []byte) []byte { + return bytes.Replace(content, []byte(old), []byte(new), -1) } diff --git a/libbeat/dashboards/modify_json_test.go b/libbeat/dashboards/modify_json_test.go index a7424414b53..367b07f2b3d 100644 --- a/libbeat/dashboards/modify_json_test.go +++ b/libbeat/dashboards/modify_json_test.go @@ -27,88 +27,69 @@ import ( func TestReplaceStringInDashboard(t *testing.T) { tests := []struct { - content common.MapStr + content []byte old string new string - expected common.MapStr + expected []byte }{ { - content: common.MapStr{"test": "CHANGEME"}, + content: []byte(`{"test": "CHANGEME"}`), old: "CHANGEME", new: "hostname", - expected: common.MapStr{"test": "hostname"}, + expected: []byte(`{"test": "hostname"}`), }, { - content: common.MapStr{"test": "hello"}, + content: []byte(`{"test": "hello"}`), old: "CHANGEME", new: "hostname", - expected: common.MapStr{"test": "hello"}, + expected: []byte(`{"test": "hello"}`), }, { - content: common.MapStr{"test": map[string]interface{}{"key": "\"CHANGEME\""}}, + content: []byte(`{"test": {"key": "\"CHANGEME\""}}`), old: "CHANGEME", new: "hostname.local", - expected: common.MapStr{"test": map[string]interface{}{"key": "\"hostname.local\""}}, + expected: []byte(`{"test": {"key": "\"hostname.local\""}}`), }, { - content: common.MapStr{ - "kibanaSavedObjectMeta": map[string]interface{}{ - "searchSourceJSON": "{\"filter\":[],\"highlightAll\":true,\"version\":true,\"query\":{\"query\":\"beat.name:\\\"CHANGEME_HOSTNAME\\\"\",\"language\":\"kuery\"}}"}}, + content: []byte(`{"kibanaSavedObjectMeta": {"searchSourceJSON": "{\"filter\":[],\"highlightAll\":true,\"version\":true,\"query\":{\"query\":\"beat.name:\\\"CHANGEME_HOSTNAME\\\"\",\"language\":\"kuery\"}}}}`), - old: "CHANGEME_HOSTNAME", - new: "hostname.local", - expected: common.MapStr{ - "kibanaSavedObjectMeta": map[string]interface{}{ - "searchSourceJSON": "{\"filter\":[],\"highlightAll\":true,\"version\":true,\"query\":{\"query\":\"beat.name:\\\"hostname.local\\\"\",\"language\":\"kuery\"}}"}}, + old: "CHANGEME_HOSTNAME", + new: "hostname.local", + expected: []byte(`{"kibanaSavedObjectMeta": {"searchSourceJSON": "{\"filter\":[],\"highlightAll\":true,\"version\":true,\"query\":{\"query\":\"beat.name:\\\"hostname.local\\\"\",\"language\":\"kuery\"}}}}`), }, } for _, test := range tests { - result, err := ReplaceStringInDashboard(test.old, test.new, test.content) - assert.NoError(t, err) - assert.Equal(t, test.expected, result) + result := ReplaceStringInDashboard(test.old, test.new, test.content) + assert.Equal(t, string(test.expected), string(result)) } } func TestReplaceIndexInDashboardObject(t *testing.T) { tests := []struct { - dashboard common.MapStr + dashboard []byte pattern string - expected common.MapStr + expected []byte }{ { - common.MapStr{"objects": []interface{}{map[string]interface{}{ - "attributes": map[string]interface{}{ - "kibanaSavedObjectMeta": map[string]interface{}{ - "searchSourceJSON": "{\"index\":\"metricbeat-*\"}", - }, - }}}}, + []byte(`{"attributes":{"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"index\":\"metricbeat-*\"}"}}} +`), "otherindex-*", - common.MapStr{"objects": []interface{}{map[string]interface{}{ - "attributes": map[string]interface{}{ - "kibanaSavedObjectMeta": map[string]interface{}{ - "searchSourceJSON": "{\"index\":\"otherindex-*\"}", - }, - }}}}, + []byte(`{"attributes":{"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"index\":\"otherindex-*\"}"}}} +`), }, { - common.MapStr{"objects": []interface{}{map[string]interface{}{ - "attributes": map[string]interface{}{ - "kibanaSavedObjectMeta": map[string]interface{}{}, - "visState": "{\"params\":{\"index_pattern\":\"metricbeat-*\"}}", - }}}}, + []byte(`{"attributes":{"kibanaSavedObjectMeta":{"visState":"{\"params\":{\"index_pattern\":\"metricbeat-*\"}}"}}} +`), "otherindex-*", - common.MapStr{"objects": []interface{}{map[string]interface{}{ - "attributes": map[string]interface{}{ - "kibanaSavedObjectMeta": map[string]interface{}{}, - "visState": "{\"params\":{\"index_pattern\":\"otherindex-*\"}}", - }}}}, + []byte(`{"attributes":{"kibanaSavedObjectMeta":{"visState":"{\"params\":{\"index_pattern\":\"otherindex-*\"}}"}}} +`), }, } for _, test := range tests { result := ReplaceIndexInDashboardObject(test.pattern, test.dashboard) - assert.Equal(t, test.expected, result) + assert.Equal(t, string(test.expected), string(result)) } } diff --git a/libbeat/kibana/client.go b/libbeat/kibana/client.go index f14aaa346f3..402682fb537 100644 --- a/libbeat/kibana/client.go +++ b/libbeat/kibana/client.go @@ -24,17 +24,23 @@ import ( "fmt" "io" "io/ioutil" + "mime/multipart" "net/http" + "net/textproto" "net/url" "path" "strings" - "github.com/pkg/errors" + "github.com/joeshaw/multierror" "github.com/elastic/beats/v7/libbeat/common" "github.com/elastic/beats/v7/libbeat/logp" ) +var ( + MinimumRequiredVersionSavedObjects = common.MustNewVersion("7.15.0") +) + type Connection struct { URL string Username string @@ -59,19 +65,25 @@ func addToURL(_url, _path string, params url.Values) string { func extractError(result []byte) error { var kibanaResult struct { - Objects []struct { - Error struct { - Message string + Message string + Attributes struct { + Objects []struct { + Id string + Error struct { + Message string + } } } } if err := json.Unmarshal(result, &kibanaResult); err != nil { - return errors.Wrap(err, "parsing kibana response") + return err } - for _, o := range kibanaResult.Objects { - if o.Error.Message != "" { - return errors.New(kibanaResult.Objects[0].Error.Message) + var errs multierror.Errors + if kibanaResult.Message != "" { + for _, err := range kibanaResult.Attributes.Objects { + errs = append(errs, fmt.Errorf("id: %s, message: %s", err.Id, err.Error.Message)) } + return fmt.Errorf("%s: %+v", kibanaResult.Message, errs.Err()) } return nil } @@ -197,7 +209,11 @@ func (conn *Connection) SendWithContext(ctx context.Context, method, extraPath s addHeaders(req.Header, conn.Headers) addHeaders(req.Header, headers) - req.Header.Set("Content-Type", "application/json") + + contentType := req.Header.Get("Content-Type") + if contentType != "multipart/form-data" && contentType != "application/ndjson" { + req.Header.Set("Content-Type", "application/json") + } req.Header.Set("Accept", "application/json") req.Header.Set("kbn-xsrf", "1") @@ -266,33 +282,48 @@ func (client *Client) readVersion() error { // IgnoreVersion was set when creating the client. func (client *Client) GetVersion() common.Version { return client.Version } -func (client *Client) ImportJSON(url string, params url.Values, jsonBody map[string]interface{}) error { +func (client *Client) ImportMultiPartFormFile(url string, params url.Values, filename string, contents string) error { + buf := &bytes.Buffer{} + w := multipart.NewWriter(buf) + + pHeaders := textproto.MIMEHeader{} + pHeaders.Add("Content-Disposition", fmt.Sprintf(`form-data; name="file"; filename="%s"`, filename)) + pHeaders.Add("Content-Type", "application/ndjson") - body, err := json.Marshal(jsonBody) + p, err := w.CreatePart(pHeaders) if err != nil { - logp.Err("Failed to json encode body (%v): %#v", err, jsonBody) - return fmt.Errorf("fail to marshal the json content: %v", err) + return fmt.Errorf("failed to create multipart writer for payload: %+v", err) } - - statusCode, response, err := client.Connection.Request("POST", url, params, nil, bytes.NewBuffer(body)) + _, err = io.Copy(p, strings.NewReader(contents)) if err != nil { - return fmt.Errorf("%v. Response: %s", err, truncateString(response)) + return fmt.Errorf("failed to copy contents of the object: %+v", err) } - if statusCode >= 300 { + w.Close() + + headers := http.Header{} + headers.Add("Content-Type", w.FormDataContentType()) + + statusCode, response, err := client.Connection.Request("POST", url, params, headers, buf) + if err != nil || statusCode >= 300 { return fmt.Errorf("returned %d to import file: %v. Response: %s", statusCode, err, response) } + + logp.Debug("Imported multipart file to %s with params %v", url, params) return nil } func (client *Client) Close() error { return nil } // GetDashboard returns the dashboard with the given id with the index pattern removed -func (client *Client) GetDashboard(id string) (common.MapStr, error) { - params := url.Values{} - params.Add("dashboard", id) - _, response, err := client.Request("GET", "/api/kibana/dashboards/export", params, nil, nil) - if err != nil { - return nil, fmt.Errorf("error exporting dashboard: %+v", err) +func (client *Client) GetDashboard(id string) ([]byte, error) { + if client.Version.LessThan(MinimumRequiredVersionSavedObjects) { + return nil, fmt.Errorf("Kibana version must be at least " + MinimumRequiredVersionSavedObjects.String()) + } + + body := fmt.Sprintf(`{"objects": [{"type": "dashboard", "id": "%s" }], "includeReferencesDeep": true, "excludeExportDetails": true}`, id) + statusCode, response, err := client.Request("POST", "/api/saved_objects/_export", nil, nil, strings.NewReader(body)) + if err != nil || statusCode >= 300 { + return nil, fmt.Errorf("error exporting dashboard: %+v, code: %d", err, statusCode) } result, err := RemoveIndexPattern(response) diff --git a/libbeat/kibana/client_test.go b/libbeat/kibana/client_test.go index ac5b9cff7e2..24d8921bb04 100644 --- a/libbeat/kibana/client_test.go +++ b/libbeat/kibana/client_test.go @@ -33,7 +33,7 @@ import ( func TestErrorJson(t *testing.T) { // also common 200: {"objects":[{"id":"apm-*","type":"index-pattern","error":{"message":"[doc][index-pattern:test-*]: version conflict, document already exists (current version [1])"}}]} kibanaTs := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { - w.Write([]byte(`{"objects":[{"id":"test-*","type":"index-pattern","error":{"message":"action [indices:data/write/bulk[s]] is unauthorized for user [test]"}}]}`)) + w.Write([]byte(`{"message": "Cannot export dashboard", "attributes":{"objects":[{"id":"test-*","type":"index-pattern","error":{"message":"action [indices:data/write/bulk[s]] is unauthorized for user [test]"}}]}}`)) })) defer kibanaTs.Close() diff --git a/libbeat/kibana/dashboard.go b/libbeat/kibana/dashboard.go index d5174b5b1a5..1774fb1715f 100644 --- a/libbeat/kibana/dashboard.go +++ b/libbeat/kibana/dashboard.go @@ -18,47 +18,58 @@ package kibana import ( + "bufio" + "bytes" "encoding/json" "fmt" + "io" "github.com/elastic/beats/v7/libbeat/common" ) // RemoveIndexPattern removes the index pattern entry from a given dashboard export -func RemoveIndexPattern(data []byte) (common.MapStr, error) { +func RemoveIndexPattern(data []byte) ([]byte, error) { + var result []byte + r := bufio.NewReader(bytes.NewReader(data)) + for { + line, err := r.ReadBytes('\n') + if err != nil { + if err == io.EOF { + res, removeErr := removeLineIfIndexPattern(line) + if removeErr != nil { + return data, removeErr + } + return append(result, res...), nil + } + return data, err + } + + res, err := removeLineIfIndexPattern(line) + if err != nil { + return data, err + } + result = append(result, res...) + } +} - var kbResult struct { - // Has to be defined as interface instead of Type directly as it has to be assigned again - // and otherwise would not contain the full content. - Objects []common.MapStr +func removeLineIfIndexPattern(line []byte) ([]byte, error) { + if len(bytes.TrimSpace(line)) == 0 { + return line, nil } - var result common.MapStr + var r common.MapStr // Full struct need to not loose any data - err := json.Unmarshal(data, &result) + err := json.Unmarshal(line, &r) if err != nil { return nil, err } - - // For easier handling, unmarshal into predefined struct - err = json.Unmarshal(data, &kbResult) + v, err := r.GetValue("type") if err != nil { - return nil, err + return nil, fmt.Errorf("type key not found or not string") } - - var objs []interface{} - - for _, obj := range kbResult.Objects { - v, err := obj.GetValue("type") - if err != nil { - return nil, fmt.Errorf("type key not found or not string") - } - if v != "index-pattern" { - objs = append(objs, obj) - } + if v != "index-pattern" { + return line, nil } - result["objects"] = objs - - return result, nil + return nil, nil } diff --git a/libbeat/kibana/index_pattern_generator.go b/libbeat/kibana/index_pattern_generator.go index abe8634c862..6ec95d8b886 100644 --- a/libbeat/kibana/index_pattern_generator.go +++ b/libbeat/kibana/index_pattern_generator.go @@ -80,15 +80,10 @@ func (i *IndexPatternGenerator) generate() (common.MapStr, error) { func (i *IndexPatternGenerator) generatePattern(attrs common.MapStr) common.MapStr { out := common.MapStr{ - "version": i.beatVersion, - "objects": []common.MapStr{ - common.MapStr{ - "type": "index-pattern", - "id": i.indexName, - "version": "1", - "attributes": attrs, - }, - }, + "type": "index-pattern", + "id": i.indexName, + "version": i.beatVersion, + "attributes": attrs, } return out diff --git a/libbeat/kibana/index_pattern_generator_test.go b/libbeat/kibana/index_pattern_generator_test.go index f2a7c86784d..130580b9b74 100644 --- a/libbeat/kibana/index_pattern_generator_test.go +++ b/libbeat/kibana/index_pattern_generator_test.go @@ -18,6 +18,7 @@ package kibana import ( + "bytes" "encoding/json" "fmt" "io/ioutil" @@ -95,7 +96,7 @@ func TestGenerate(t *testing.T) { tests := []compare{ { - existing: "testdata/beat-6.json", + existing: "testdata/beat-6.ndjson", created: d, }, } @@ -134,7 +135,7 @@ func TestGenerateExtensive(t *testing.T) { tests := []compare{ { - existing: "testdata/extensive/metricbeat-6.json", + existing: "testdata/extensive/metricbeat-6.ndjson", created: d, }, } @@ -144,75 +145,72 @@ func TestGenerateExtensive(t *testing.T) { func testGenerate(t *testing.T, tests []compare, sourceFilters bool) { for _, test := range tests { // compare default - existing, err := readJson(test.existing) + existing, err := readNDJSON(test.existing) if err != nil { t.Fatal(err) } - var attrExisting, attrCreated common.MapStr + for _, ex := range existing { + var attrExisting, attrCreated common.MapStr - if strings.Contains(test.existing, "6") { - assert.Equal(t, existing["version"], test.created["version"]) + if strings.Contains(test.existing, "6") { + assert.Equal(t, ex["version"], test.created["version"]) + assert.Equal(t, ex["id"], test.created["id"]) + assert.Equal(t, ex["type"], test.created["type"]) - objExisting := existing["objects"].([]interface{})[0].(map[string]interface{}) - objCreated := test.created["objects"].([]common.MapStr)[0] - - assert.Equal(t, objExisting["version"], objCreated["version"]) - assert.Equal(t, objExisting["id"], objCreated["id"]) - assert.Equal(t, objExisting["type"], objCreated["type"]) - - attrExisting = objExisting["attributes"].(map[string]interface{}) - attrCreated = objCreated["attributes"].(common.MapStr) - } else { - attrExisting = existing - attrCreated = test.created - } - - // check fieldFormatMap - var ffmExisting, ffmCreated map[string]interface{} - err = json.Unmarshal([]byte(attrExisting["fieldFormatMap"].(string)), &ffmExisting) - if err != nil { - t.Fatal(err) - } - err = json.Unmarshal([]byte(attrCreated["fieldFormatMap"].(string)), &ffmCreated) - if err != nil { - t.Fatal(err) - } - assert.Equal(t, ffmExisting, ffmCreated) + attrExisting = ex["attributes"].(map[string]interface{}) + attrCreated = test.created["attributes"].(common.MapStr) + } else { + attrExisting = ex + attrCreated = test.created + } - // check fields - var fieldsExisting, fieldsCreated []map[string]interface{} - err = json.Unmarshal([]byte(attrExisting["fields"].(string)), &fieldsExisting) - if err != nil { - t.Fatal(err) - } - err = json.Unmarshal([]byte(attrCreated["fields"].(string)), &fieldsCreated) - if err != nil { - t.Fatal(err) - } - assert.Equal(t, len(fieldsExisting), len(fieldsCreated)) - for _, e := range fieldsExisting { - idx := find(fieldsCreated, "name", e["name"].(string)) - assert.NotEqual(t, -1, idx) - assert.Equal(t, e, fieldsCreated[idx]) - } + // check fieldFormatMap + var ffmExisting, ffmCreated map[string]interface{} + err = json.Unmarshal([]byte(attrExisting["fieldFormatMap"].(string)), &ffmExisting) + if err != nil { + t.Fatal(err) + } + err = json.Unmarshal([]byte(attrCreated["fieldFormatMap"].(string)), &ffmCreated) + if err != nil { + t.Fatal(err) + } + assert.Equal(t, ffmExisting, ffmCreated) - // check sourceFilters - if sourceFilters { - var sfExisting, sfCreated []map[string]interface{} - err = json.Unmarshal([]byte(attrExisting["sourceFilters"].(string)), &sfExisting) + // check fields + var fieldsExisting, fieldsCreated []map[string]interface{} + err = json.Unmarshal([]byte(attrExisting["fields"].(string)), &fieldsExisting) if err != nil { t.Fatal(err) } - err = json.Unmarshal([]byte(attrCreated["sourceFilters"].(string)), &sfCreated) + err = json.Unmarshal([]byte(attrCreated["fields"].(string)), &fieldsCreated) if err != nil { t.Fatal(err) } - assert.Equal(t, len(sfExisting), len(sfCreated)) - for _, e := range sfExisting { - idx := find(sfCreated, "value", e["value"].(string)) + assert.Equal(t, len(fieldsExisting), len(fieldsCreated)) + for _, e := range fieldsExisting { + idx := find(fieldsCreated, "name", e["name"].(string)) assert.NotEqual(t, -1, idx) - assert.Equal(t, e, sfCreated[idx]) + assert.Equal(t, e, fieldsCreated[idx]) + } + + // check sourceFilters + if sourceFilters { + var sfExisting, sfCreated []map[string]interface{} + err = json.Unmarshal([]byte(attrExisting["sourceFilters"].(string)), &sfExisting) + if err != nil { + t.Fatal(err) + } + err = json.Unmarshal([]byte(attrCreated["sourceFilters"].(string)), &sfCreated) + if err != nil { + t.Fatal(err) + } + assert.Equal(t, len(sfExisting), len(sfCreated)) + for _, e := range sfExisting { + idx := find(sfCreated, "value", e["value"].(string)) + assert.NotEqual(t, -1, idx) + assert.Equal(t, e, sfCreated[idx]) + } } } } @@ -227,16 +225,21 @@ func find(a []map[string]interface{}, key, val string) int { return -1 } -func readJson(path string) (map[string]interface{}, error) { +func readNDJSON(path string) ([]map[string]interface{}, error) { f, err := ioutil.ReadFile(path) if err != nil { return nil, err } - var data map[string]interface{} - err = json.Unmarshal(f, &data) - if err != nil { - return nil, err + data := make([]map[string]interface{}, 0) + d := json.NewDecoder(bytes.NewReader(f)) + for d.More() { + var dd map[string]interface{} + err = d.Decode(&dd) + if err != nil { + return nil, fmt.Errorf("error reading ndjson: %+v", err) + } + data = append(data, dd) } return data, nil } diff --git a/libbeat/kibana/testdata/beat-6.json b/libbeat/kibana/testdata/beat-6.json deleted file mode 100644 index 8fa5ad28cf1..00000000000 --- a/libbeat/kibana/testdata/beat-6.json +++ /dev/null @@ -1,17 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "fieldFormatMap": "{\"long\":{\"id\":\"url\",\"params\":{\"inputFormat\":\"string\",\"labelTemplate\":\"long template\",\"outputFormat\":\"float\",\"outputPrecision\":5,\"urlTemplate\":\"_a=(query:(language:kuery,query:'context.app.name:\\\"{{value}}\\\"'))\"}},\"alias\":{\"id\":\"url\",\"params\":{\"inputFormat\":\"string\",\"labelTemplate\":\"long template\",\"outputFormat\":\"float\",\"outputPrecision\":5,\"urlTemplate\":\"_a=(query:(language:kuery,query:'context.app.name:\\\"{{value}}\\\"'))\"}}}", - "fields": "[{\"aggregatable\":true,\"analyzed\":false,\"count\":0,\"doc_values\":true,\"indexed\":true,\"name\":\"long\",\"scripted\":false,\"searchable\":true,\"type\":\"number\"},{\"aggregatable\":false,\"analyzed\":false,\"count\":0,\"doc_values\":true,\"indexed\":true,\"name\":\"multifield_field\",\"scripted\":false,\"searchable\":true,\"type\":\"string\"},{\"aggregatable\":true,\"analyzed\":false,\"count\":0,\"doc_values\":true,\"indexed\":true,\"name\":\"multifield_field.keyword\",\"scripted\":false,\"searchable\":true,\"type\":\"string\"},{\"aggregatable\":false,\"analyzed\":false,\"count\":0,\"doc_values\":false,\"indexed\":false,\"name\":\"_id\",\"scripted\":false,\"searchable\":false,\"type\":\"string\"},{\"aggregatable\":true,\"analyzed\":false,\"count\":0,\"doc_values\":false,\"indexed\":false,\"name\":\"_type\",\"scripted\":false,\"searchable\":true,\"type\":\"string\"},{\"aggregatable\":false,\"analyzed\":false,\"count\":0,\"doc_values\":false,\"indexed\":false,\"name\":\"_index\",\"scripted\":false,\"searchable\":false,\"type\":\"string\"},{\"aggregatable\":false,\"analyzed\":false,\"count\":0,\"doc_values\":false,\"indexed\":false,\"name\":\"_score\",\"scripted\":false,\"searchable\":false,\"type\":\"number\"},{\"aggregatable\":false,\"analyzed\":false,\"count\":0,\"doc_values\":false,\"indexed\":false,\"name\":\"blob\",\"scripted\":false,\"searchable\":false,\"type\":\"binary\"},{\"aggregatable\":true,\"analyzed\":false,\"count\":0,\"doc_values\":true,\"indexed\":true,\"name\":\"alias\",\"scripted\":false,\"searchable\":true,\"type\":\"number\"}]", - "timeFieldName": "@timestamp", - "title": "beat-*", - "sourceFilters": "[{\"value\":\"user.email\"}, {\"value\": \"user.name\"},{\"value\": \"url.*\"}]" - }, - "id": "beat-*", - "type": "index-pattern", - "version": "1" - } - ], - "version": "7.0.0-alpha1" -} diff --git a/libbeat/kibana/testdata/beat-6.ndjson b/libbeat/kibana/testdata/beat-6.ndjson new file mode 100644 index 00000000000..2b69f698428 --- /dev/null +++ b/libbeat/kibana/testdata/beat-6.ndjson @@ -0,0 +1 @@ +{ "attributes": { "fieldFormatMap": "{\"long\":{\"id\":\"url\",\"params\":{\"inputFormat\":\"string\",\"labelTemplate\":\"long template\",\"outputFormat\":\"float\",\"outputPrecision\":5,\"urlTemplate\":\"_a=(query:(language:kuery,query:'context.app.name:\\\"{{value}}\\\"'))\"}},\"alias\":{\"id\":\"url\",\"params\":{\"inputFormat\":\"string\",\"labelTemplate\":\"long template\",\"outputFormat\":\"float\",\"outputPrecision\":5,\"urlTemplate\":\"_a=(query:(language:kuery,query:'context.app.name:\\\"{{value}}\\\"'))\"}}}", "fields": "[{\"aggregatable\":true,\"analyzed\":false,\"count\":0,\"doc_values\":true,\"indexed\":true,\"name\":\"long\",\"scripted\":false,\"searchable\":true,\"type\":\"number\"},{\"aggregatable\":false,\"analyzed\":false,\"count\":0,\"doc_values\":true,\"indexed\":true,\"name\":\"multifield_field\",\"scripted\":false,\"searchable\":true,\"type\":\"string\"},{\"aggregatable\":true,\"analyzed\":false,\"count\":0,\"doc_values\":true,\"indexed\":true,\"name\":\"multifield_field.keyword\",\"scripted\":false,\"searchable\":true,\"type\":\"string\"},{\"aggregatable\":false,\"analyzed\":false,\"count\":0,\"doc_values\":false,\"indexed\":false,\"name\":\"_id\",\"scripted\":false,\"searchable\":false,\"type\":\"string\"},{\"aggregatable\":true,\"analyzed\":false,\"count\":0,\"doc_values\":false,\"indexed\":false,\"name\":\"_type\",\"scripted\":false,\"searchable\":true,\"type\":\"string\"},{\"aggregatable\":false,\"analyzed\":false,\"count\":0,\"doc_values\":false,\"indexed\":false,\"name\":\"_index\",\"scripted\":false,\"searchable\":false,\"type\":\"string\"},{\"aggregatable\":false,\"analyzed\":false,\"count\":0,\"doc_values\":false,\"indexed\":false,\"name\":\"_score\",\"scripted\":false,\"searchable\":false,\"type\":\"number\"},{\"aggregatable\":false,\"analyzed\":false,\"count\":0,\"doc_values\":false,\"indexed\":false,\"name\":\"blob\",\"scripted\":false,\"searchable\":false,\"type\":\"binary\"},{\"aggregatable\":true,\"analyzed\":false,\"count\":0,\"doc_values\":true,\"indexed\":true,\"name\":\"alias\",\"scripted\":false,\"searchable\":true,\"type\":\"number\"}]", "timeFieldName": "@timestamp", "title": "beat-*", "sourceFilters": "[{\"value\":\"user.email\"}, {\"value\": \"user.name\"},{\"value\": \"url.*\"}]" }, "id": "beat-*", "type": "index-pattern", "version": "7.0.0-alpha1"} diff --git a/libbeat/kibana/testdata/extensive/metricbeat-6.json b/libbeat/kibana/testdata/extensive/metricbeat-6.ndjson similarity index 54% rename from libbeat/kibana/testdata/extensive/metricbeat-6.json rename to libbeat/kibana/testdata/extensive/metricbeat-6.ndjson index 193a0b63d85..73baec7c088 100644 --- a/libbeat/kibana/testdata/extensive/metricbeat-6.json +++ b/libbeat/kibana/testdata/extensive/metricbeat-6.ndjson @@ -1,16 +1,2 @@ -{ - "version": "7.0.0-alpha1", - "objects": [ - { - "attributes": { - "fields": "[{\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"beat.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"beat.hostname\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"beat.timezone\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"beat.version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"@timestamp\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"tags\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"fields\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": false, \"name\": \"error.message\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"error.code\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"error.type\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"meta.cloud.provider\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"meta.cloud.instance_id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"meta.cloud.instance_name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"meta.cloud.machine_type\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"meta.cloud.availability_zone\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"meta.cloud.project_id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"meta.cloud.region\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.image\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.labels\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.namespace\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.labels\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.annotations\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.image\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"metricset.module\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"metricset.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"metricset.host\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"metricset.rtt\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"metricset.namespace\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"type\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.delete.error\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.delete.not_found\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.delete.success\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.delete.timeout\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.read.error\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.read.not_found\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.read.success\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.read.timeout\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.write.error\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.write.success\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.write.timeout\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.device.available.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.device.free.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.device.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.device.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.hwm_breached\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.memory.free.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.memory.used.data.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.memory.used.index.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.memory.used.sindex.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.memory.used.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.node.host\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.node.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.objects.master\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.objects.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.stop_writes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.hostname\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.total_accesses\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.total_kbytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.requests_per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.bytes_per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.bytes_per_request\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.workers.busy\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.workers.idle\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.uptime.server_uptime\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.uptime.uptime\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.cpu.load\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.cpu.user\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.cpu.system\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.cpu.children_user\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.cpu.children_system\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.connections.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.connections.async.writing\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.connections.async.keep_alive\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.connections.async.closing\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.load.1\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.load.5\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.load.15\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.starting_up\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.reading_request\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.sending_reply\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.keepalive\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.dns_lookup\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.closing_connection\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.logging\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.gracefully_finishing\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.idle_cleanup\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.open_slot\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.waiting_for_connection\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_disk.available.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_disk.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_disk.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_health.overall_status\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_health.timechecks.epoch\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_health.timechecks.round.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_health.timechecks.round.status\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.traffic.read_bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.traffic.write_bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.traffic.read_op_per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.traffic.write_op_per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.misplace.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.misplace.objects\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.misplace.ratio\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.degraded.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.degraded.objects\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.degraded.ratio\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.pg.data_bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.pg.avail_bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.pg.total_bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.pg.used_bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.pg_state.state_name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.pg_state.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.pg_state.version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.osd.full\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.osd.nearfull\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.osd.num_osds\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.osd.num_up_osds\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.osd.num_in_osds\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.osd.num_in_osds\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.osd.epoch\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.available.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.health\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.available.kb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.total.kb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.used.kb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.last_updated\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.store_stats.log.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.store_stats.misc.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.store_stats.sst.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.store_stats.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.store_stats.last_updated\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.pool_disk.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.pool_disk.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.pool_disk.stats.available.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.pool_disk.stats.objects\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.pool_disk.stats.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.pool_disk.stats.used.kb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.type\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.data.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.disk.fetches\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.disk.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.memory.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.quota.ram.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.quota.use.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.ops_per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.item_count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.hdd.free.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.hdd.quota.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.hdd.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.hdd.used.value.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.hdd.used.by_data.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.max_bucket_count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.quota.index_memory.mb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.quota.memory.mb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.ram.quota.total.value.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.ram.quota.total.per_node.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.ram.quota.used.value.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.ram.quota.used.per_node.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.ram.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.ram.used.value.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.ram.used.by_data.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.cmd_get\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.couch.docs.disk_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.couch.docs.data_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.couch.spatial.data_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.couch.spatial.disk_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.couch.views.disk_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.couch.views.data_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.cpu_utilization_rate.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.current_items.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.current_items.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.ep_bg_fetched\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.get_hits\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.hostname\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.mcd_memory.allocated.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.mcd_memory.reserved.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.memory.free.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.memory.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.memory.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.ops\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.swap.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.swap.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.uptime.sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.vb_replica_curr_items\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.command\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.created\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.status\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.size.root_fs\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.size.rw\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.tags\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.cpu.kernel.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.cpu.kernel.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.cpu.system.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.cpu.system.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.cpu.user.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.cpu.user.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.cpu.total.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.diskio.reads\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.diskio.writes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.diskio.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.healthcheck.failingstreak\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.healthcheck.status\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.healthcheck.event.end_date\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.healthcheck.event.start_date\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.healthcheck.event.output\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.healthcheck.event.exit_code\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.image.id.current\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.image.id.parent\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.image.created\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.image.size.virtual\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.image.size.regular\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.image.labels\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.image.tags\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.info.containers.paused\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.info.containers.running\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.info.containers.stopped\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.info.containers.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.info.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.info.images\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.memory.fail.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.memory.limit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.memory.rss.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.memory.rss.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.memory.usage.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.memory.usage.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.memory.usage.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.network.interface\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.network.in.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.network.in.dropped\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.network.in.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.network.in.packets\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.network.out.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.network.out.dropped\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.network.out.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.network.out.packets\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.cluster.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.jvm.memory.heap_init.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.jvm.version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.indices.docs.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.indices.docs.deleted\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.indices.segments.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.indices.segments.memory.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.indices.store.size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.old.max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.old.peak.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.old.peak_max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.old.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.young.max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.young.peak.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.young.peak_max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.young.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.survivor.max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.survivor.peak.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.survivor.peak_max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.survivor.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.gc.collectors.old.collection.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.gc.collectors.old.collection.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.gc.collectors.young.collection.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.gc.collectors.young.collection.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.expvar.cmdline\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.cmdline\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.gc.total_pause.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.gc.total_count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.gc.next_gc_limit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.gc.cpu_fraction\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.gc.pause.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.gc.pause.sum.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.gc.pause.max.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.gc.pause.avg.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.system.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.system.obtained\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.system.stack\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.system.released\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.allocations.mallocs\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.allocations.frees\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.allocations.objects\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.allocations.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.allocations.allocated\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.allocations.idle\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.allocations.active\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"graphite.server.example\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.processes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.process_num\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.pid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.run_queue\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.tasks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.uptime.sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.memory.max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ulimit_n\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.compress.bps.in\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.compress.bps.out\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.compress.bps.rate_limit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.rate.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.rate.limit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.rate.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.current\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.ssl.current\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.ssl.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.ssl.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.hard_max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.requests.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.sockets.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.requests.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.pipes.used\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.pipes.free\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.pipes.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.session.rate.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.session.rate.limit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.session.rate.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.rate.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.rate.limit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.rate.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.frontend.key_rate.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.frontend.key_rate.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.frontend.session_reuse.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.backend.key_rate.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.backend.key_rate.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.cached_lookups\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.cache_misses\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.zlib_mem_usage.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.zlib_mem_usage.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.idle.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.status\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.weight\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.downtime\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.component_type\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.process_id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.service_name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.in.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.out.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.last_change\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.throttle.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.selected.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.tracked.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.connection.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.connection.retried\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.connection.time.avg\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.request.denied\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.request.queued.current\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.request.queued.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.request.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.request.redispatched\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.request.connection.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.request.rate.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.request.rate.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.request.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.response.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.response.time.avg\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.response.denied\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.response.http.1xx\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.response.http.2xx\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.response.http.3xx\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.response.http.4xx\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.response.http.5xx\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.response.http.other\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.session.current\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.session.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.session.limit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.session.rate.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.session.rate.limit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.session.rate.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.check.status\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.check.code\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.check.duration\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.check.health.last\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.check.health.fail\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.check.agent.last\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.check.failed\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.check.down\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.client.aborted\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.server.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.server.aborted\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.server.active\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.server.backup\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.compressor.in.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.compressor.out.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.compressor.bypassed.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.compressor.response.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.proxy.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.proxy.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.queue.limit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.queue.time.avg\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"http.request.header\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"http.request.method\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"http.request.body\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"http.response.header\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"http.response.status_code\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"http.response.body\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.broker.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.broker.address\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.topic\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.partition\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.offset\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": false, \"name\": \"kafka.consumergroup.meta\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.error.code\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.client.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.client.host\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.client.member_id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.offset.newest\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.offset.oldest\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.partition.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.partition.leader\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.partition.isr\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.partition.replica\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.partition.insync_replica\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.partition.error.code\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.topic.error.code\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.topic.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.broker.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.broker.address\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kibana.status.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kibana.status.uuid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kibana.status.version.number\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kibana.status.status.overall.state\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kibana.status.metrics.concurrent_connections\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kibana.status.metrics.requests.disconnects\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kibana.status.metrics.requests.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.start_time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.cpu.usage.core.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.cpu.usage.nanocores\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.logs.available.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.logs.capacity.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.logs.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.logs.inodes.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.logs.inodes.free\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.logs.inodes.used\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.memory.available.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.memory.usage.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.memory.rss.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.memory.workingset.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.memory.pagefaults\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.memory.majorpagefaults\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.rootfs.capacity.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.rootfs.available.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.rootfs.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.rootfs.inodes.used\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.message\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.reason\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.type\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.metadata.timestamp.created\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.metadata.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.metadata.namespace\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.metadata.resource_version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.metadata.uid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.metadata.self_link\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.involved_object.api_version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.involved_object.kind\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.involved_object.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.involved_object.resource_version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.involved_object.uid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.start_time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.cpu.usage.core.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.cpu.usage.nanocores\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.memory.available.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.memory.usage.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.memory.rss.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.memory.workingset.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.memory.pagefaults\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.memory.majorpagefaults\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.network.rx.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.network.rx.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.network.tx.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.network.tx.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.fs.capacity.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.fs.available.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.fs.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.fs.inodes.used\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.fs.inodes.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.fs.inodes.free\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.runtime.imagefs.capacity.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.runtime.imagefs.available.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.runtime.imagefs.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.start_time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.network.rx.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.network.rx.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.network.tx.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.network.tx.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.status.phase\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.status.ready\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.status.restarts\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.cpu.limit.nanocores\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.cpu.request.nanocores\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.memory.limit.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.memory.request.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.deployment.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.deployment.paused\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.deployment.replicas.desired\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.deployment.replicas.available\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.deployment.replicas.unavailable\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.deployment.replicas.updated\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.status.ready\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.status.unschedulable\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.cpu.allocatable.cores\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.cpu.capacity.cores\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.memory.allocatable.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.memory.capacity.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.pod.allocatable.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.pod.capacity.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.ip\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"ip\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.host_ip\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"ip\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.status.phase\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.status.ready\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.status.scheduled\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.replicaset.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.replicaset.replicas.available\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.replicaset.replicas.desired\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.replicaset.replicas.ready\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.replicaset.replicas.observed\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.replicaset.replicas.labeled\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.system.container\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.system.start_time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.system.cpu.usage.core.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.system.cpu.usage.nanocores\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.system.memory.usage.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.system.memory.rss.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.system.memory.workingset.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.system.memory.pagefaults\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.system.memory.majorpagefaults\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.volume.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.volume.fs.capacity.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.volume.fs.available.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.volume.fs.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.volume.fs.inodes.used\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.volume.fs.inodes.free\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.volume.fs.inodes.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.pid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.uptime.sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.threads\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.connections.current\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.connections.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.get.hits\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.get.misses\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.cmd.get\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.cmd.set\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.read.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.written.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.items.current\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.items.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.evictions\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.avg_obj_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.collections\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.data_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.db\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.file_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.index_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.indexes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.num_extents\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.objects\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.storage_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.ns_size_mb.mb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.data_file_version.major\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.data_file_version.minor\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.extent_free_list.num\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.extent_free_list.size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.uptime.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.local_time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.asserts.regular\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.asserts.warning\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.asserts.msg\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.asserts.user\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.asserts.rollovers\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.background_flushing.flushes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.background_flushing.total.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.background_flushing.average.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.background_flushing.last.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.background_flushing.last_finished\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.connections.current\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.connections.available\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.connections.total_created\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.commits\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.journaled.mb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.write_to_data_files.mb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.compression\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.commits_in_write_lock\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.early_commits\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.times.dt.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.times.prep_log_buffer.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.times.write_to_journal.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.times.write_to_data_files.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.times.remap_private_view.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.times.commits.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.times.commits_in_write_lock.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.extra_info.heap_usage.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.extra_info.page_faults\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.network.in.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.network.out.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.network.requests\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters.insert\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters.query\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters.update\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters.delete\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters.getmore\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters.command\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters_replicated.insert\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters_replicated.query\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters_replicated.update\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters_replicated.delete\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters_replicated.getmore\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters_replicated.command\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.memory.bits\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.memory.resident.mb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.memory.virtual.mb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.memory.mapped.mb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.memory.mapped_with_journal.mb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.write_backs_queued\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.storage_engine.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.concurrent_transactions.write.out\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.concurrent_transactions.write.available\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.concurrent_transactions.write.total_tickets\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.concurrent_transactions.read.out\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.concurrent_transactions.read.available\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.concurrent_transactions.read.total_tickets\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.cache.maximum.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.cache.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.cache.dirty.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.cache.pages.read\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.cache.pages.write\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.cache.pages.evicted\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.log.size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.log.write.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.log.max_file_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.log.flushes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.log.writes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.log.scans\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.log.syncs\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.aborted.clients\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.aborted.connects\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.binlog.cache.disk_use\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.binlog.cache.use\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.bytes.received\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.bytes.sent\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.threads.cached\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.threads.created\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.threads.connected\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.threads.running\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.connections\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.created.tmp.disk_tables\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.created.tmp.files\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.created.tmp.tables\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.delayed.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.delayed.insert_threads\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.delayed.writes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.flush_commands\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.max_used_connections\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.open.files\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.open.streams\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.open.tables\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.opened_tables\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.command.delete\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.command.insert\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.command.select\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.command.update\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.hostname\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.active\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.accepts\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.handled\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.dropped\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.requests\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.current\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.reading\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.writing\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.waiting\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"php_fpm.pool.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"php_fpm.pool.connections.accepted\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"php_fpm.pool.connections.queued\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"php_fpm.pool.processes.idle\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"php_fpm.pool.processes.active\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"php_fpm.pool.slow_requests\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.database.oid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.database.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.pid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.user.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.user.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.application_name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.client.address\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.client.hostname\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.client.port\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.backend_start\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.transaction_start\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.query_start\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.state_change\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.waiting\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.state\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.query\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.checkpoints.scheduled\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.checkpoints.requested\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.checkpoints.times.write.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.checkpoints.times.sync.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.buffers.checkpoints\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.buffers.clean\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.buffers.clean_full\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.buffers.backend\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.buffers.backend_fsync\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.buffers.allocated\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.stats_reset\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.oid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.number_of_backends\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.transactions.commit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.transactions.rollback\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.blocks.read\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.blocks.hit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.blocks.time.read.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.blocks.time.write.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.rows.returned\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.rows.fetched\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.rows.inserted\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.rows.updated\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.rows.deleted\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.conflicts\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.temporary.files\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.temporary.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.deadlocks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.stats_reset\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"prometheus.stats.notifications.queue_length\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"prometheus.stats.notifications.dropped\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"prometheus.stats.processes.open_fds\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"prometheus.stats.storage.chunks_to_persist\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.disk.free.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.disk.free.limit.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.fd.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.fd.used\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.gc.num.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.gc.reclaimed.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.file_handle.open_attempt.avg.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.file_handle.open_attempt.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.read.avg.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.read.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.read.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.reopen.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.seek.avg.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.seek.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.sync.avg.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.sync.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.write.avg.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.write.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.write.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.mem.limit.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.mem.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.mnesia.disk.tx.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.mnesia.ram.tx.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.msg.store_read.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.msg.store_write.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.proc.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.proc.used\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.processors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.queue.index.journal_write.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.queue.index.read.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.queue.index.write.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.run.queue\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.socket.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.socket.used\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.type\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.uptime\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.vhost\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.durable\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.auto_delete\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.exclusive\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.node\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.state\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.arguments.max_priority\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.consumers.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.consumers.utilisation.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.messages.total.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.messages.ready.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.messages.unacknowledged.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.messages.persistent.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.memory.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.disk.reads.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.disk.writes.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.clients.connected\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.clients.longest_output_list\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.clients.biggest_input_buf\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.clients.blocked\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.cluster.enabled\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.cpu.used.sys\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.cpu.used.sys_children\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.cpu.used.user\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.cpu.used.user_children\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.memory.used.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.memory.used.rss\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.memory.used.peak\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.memory.used.lua\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.memory.allocator\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.loading\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.rdb.last_save.changes_since\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.rdb.bgsave.in_progress\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.rdb.last_save.time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.rdb.bgsave.last_status\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.rdb.bgsave.last_time.sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.rdb.bgsave.current_time.sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.aof.enabled\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.aof.rewrite.in_progress\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.aof.rewrite.scheduled\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.aof.rewrite.last_time.sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.aof.rewrite.current_time.sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.aof.bgrewrite.last_status\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.aof.write.last_status\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.replication.role\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.replication.connected_slaves\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.replication.master_offset\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.replication.backlog.active\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.replication.backlog.size\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.replication.backlog.first_byte_offset\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.replication.backlog.histlen\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.git_sha1\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.git_dirty\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.build_id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.mode\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.os\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.arch_bits\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.multiplexing_api\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.gcc_version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.process_id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.run_id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.tcp_port\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.uptime\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.hz\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.lru_clock\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.config_file\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.connections.received\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.connections.rejected\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.commands_processed\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.net.input.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.net.output.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.instantaneous.ops_per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.instantaneous.input_kbps\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.instantaneous.output_kbps\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.sync.full\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.sync.partial.ok\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.sync.partial.err\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.keys.expired\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.keys.evicted\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.keyspace.hits\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.keyspace.misses\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.pubsub.channels\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.pubsub.patterns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.latest_fork_usec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.migrate_cached_sockets\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.keyspace.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.keyspace.avg_ttl\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.keyspace.keys\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.keyspace.expires\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.user.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.user.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.system.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.system.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.nice.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.nice.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.idle.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.idle.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.iowait.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.iowait.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.irq.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.irq.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.softirq.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.softirq.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.steal.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.steal.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.cores\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.user.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.system.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.nice.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.idle.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.iowait.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.irq.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.softirq.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.steal.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.total.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.user.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.system.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.nice.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.idle.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.iowait.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.irq.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.softirq.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.steal.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.total.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.user.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.system.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.nice.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.idle.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.iowait.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.irq.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.softirq.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.steal.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.serial_number\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.read.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.write.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.read.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.write.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.read.time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.write.time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.io.time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.read.request.merges_per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.write.request.merges_per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.read.request.per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.write.request.per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.read.per_sec.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.write.per_sec.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.request.avg_size\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.queue.avg_size\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.await\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.service_time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.busy\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.available\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.device_name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.type\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.mount_point\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.files\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.free\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.free_files\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.used.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.fsstat.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.fsstat.total_files\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.fsstat.total_size.free\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.fsstat.total_size.used\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.fsstat.total_size.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.load.1\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.load.5\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.load.15\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.load.norm.1\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.load.norm.5\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.load.norm.15\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.load.cores\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.free\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.used.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.actual.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.actual.free\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.actual.used.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.swap.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.swap.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.swap.free\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.swap.used.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.network.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.network.out.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.network.in.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.network.out.packets\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.network.in.packets\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.network.in.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.network.out.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.network.in.dropped\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.network.out.dropped\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.state\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.pid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.ppid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.pgid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cmdline\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.username\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cwd\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.env\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cpu.user\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cpu.total.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cpu.total.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cpu.system\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cpu.total.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cpu.start_time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.memory.size\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.memory.rss.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.memory.rss.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.memory.share\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.fd.open\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.fd.limit.soft\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.fd.limit.hard\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.path\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.path\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.cfs.period.us\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.cfs.quota.us\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.cfs.shares\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.rt.period.us\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.rt.runtime.us\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.stats.periods\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.stats.throttled.periods\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.stats.throttled.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpuacct.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpuacct.path\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpuacct.total.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpuacct.stats.user.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpuacct.stats.system.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpuacct.percpu\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.path\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.mem.usage.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.mem.usage.max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.mem.limit.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.mem.failures\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.memsw.usage.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.memsw.usage.max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.memsw.limit.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.memsw.failures\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.kmem.usage.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.kmem.usage.max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.kmem.limit.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.kmem.failures\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.kmem_tcp.usage.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.kmem_tcp.usage.max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.kmem_tcp.limit.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.kmem_tcp.failures\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.active_anon.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.active_file.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.cache.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.hierarchical_memory_limit.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.hierarchical_memsw_limit.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.inactive_anon.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.inactive_file.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.mapped_file.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.page_faults\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.major_page_faults\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.pages_in\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.pages_out\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.rss.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.rss_huge.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.swap.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.unevictable.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.blkio.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.blkio.path\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.blkio.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.blkio.total.ios\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.summary.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.summary.running\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.summary.idle\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.summary.sleeping\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.summary.stopped\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.summary.zombie\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.summary.unknown\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.direction\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.family\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.local.ip\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"ip\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.local.port\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.remote.ip\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"ip\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.remote.port\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.remote.host\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.remote.etld_plus_one\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.remote.host_error\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.process.pid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.process.command\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.process.cmdline\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.process.exe\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.user.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.user.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.uptime.duration.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.datastore.datacenter\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.datastore.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.datastore.fstype\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.datastore.capacity.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.datastore.capacity.free.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.datastore.capacity.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.datastore.capacity.used.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.host.datacenter\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.host.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.host.cpu.used.mhz\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.host.cpu.total.mhz\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.host.cpu.free.mhz\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.host.memory.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.host.memory.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.host.memory.free.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.virtualmachine.datacenter\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.virtualmachine.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.virtualmachine.cpu.used.mhz\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.virtualmachine.memory.used.guest.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.virtualmachine.memory.used.host.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.virtualmachine.memory.total.guest.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.virtualmachine.memory.free.guest.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.virtualmachine.custom_fields\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.hostname\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.approximate_data_size\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.latency.avg\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.ephemerals_count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.followers\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.max_file_descriptor_count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.latency.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.latency.min\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.num_alive_connections\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.open_file_descriptor_count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.outstanding_requests\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.packets.received\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.packets.sent\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.pending_syncs\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.server_state\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.synced_followers\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.watch_count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.znode_count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": false, \"name\": \"_id\", \"searchable\": false, \"indexed\": false, \"doc_values\": false, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"_type\", \"searchable\": true, \"indexed\": false, \"doc_values\": false, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": false, \"name\": \"_index\", \"searchable\": false, \"indexed\": false, \"doc_values\": false, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": false, \"name\": \"_score\", \"searchable\": false, \"indexed\": false, \"doc_values\": false, \"type\": \"number\", \"scripted\": false}]", - "fieldFormatMap": "{\"ceph.cluster_status.pg.data_bytes\": {\"id\": \"bytes\"}, \"system.filesystem.used.pct\": {\"id\": \"percent\"}, \"ceph.cluster_status.degraded.ratio\": {\"id\": \"percent\"}, \"system.cpu.nice.norm.pct\": {\"id\": \"percent\"}, \"system.process.cgroup.memory.stats.mapped_file.bytes\": {\"id\": \"bytes\"}, \"system.cpu.nice.pct\": {\"id\": \"percent\"}, \"system.process.memory.share\": {\"id\": \"bytes\"}, \"couchbase.node.couch.docs.disk_size.bytes\": {\"id\": \"bytes\"}, \"kubernetes.container.logs.used.bytes\": {\"id\": \"bytes\"}, \"kubernetes.node.memory.allocatable.bytes\": {\"id\": \"bytes\"}, \"kubernetes.container.rootfs.used.bytes\": {\"id\": \"bytes\"}, \"aerospike.namespace.device.used.bytes\": {\"id\": \"bytes\"}, \"system.core.nice.pct\": {\"id\": \"percent\"}, \"system.process.cgroup.memory.stats.cache.bytes\": {\"id\": \"bytes\"}, \"kubernetes.container.memory.usage.bytes\": {\"id\": \"bytes\"}, \"kubernetes.pod.network.tx.bytes\": {\"id\": \"bytes\"}, \"kubernetes.node.memory.rss.bytes\": {\"id\": \"bytes\"}, \"system.memory.used.pct\": {\"id\": \"percent\"}, \"ceph.cluster_disk.used.bytes\": {\"id\": \"bytes\"}, \"docker.cpu.user.pct\": {\"id\": \"percent\"}, \"ceph.cluster_disk.available.bytes\": {\"id\": \"bytes\"}, \"couchbase.node.mcd_memory.allocated.bytes\": {\"id\": \"bytes\"}, \"system.memory.actual.used.bytes\": {\"id\": \"bytes\"}, \"kubernetes.node.fs.used.bytes\": {\"id\": \"bytes\"}, \"kubernetes.container.rootfs.capacity.bytes\": {\"id\": \"bytes\"}, \"system.cpu.irq.pct\": {\"id\": \"percent\"}, \"kubernetes.container.logs.capacity.bytes\": {\"id\": \"bytes\"}, \"couchbase.bucket.quota.ram.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.old.used.bytes\": {\"id\": \"bytes\"}, \"vsphere.virtualmachine.memory.total.guest.bytes\": {\"id\": \"bytes\"}, \"system.process.cpu.total.pct\": {\"id\": \"percent\"}, \"kubernetes.node.fs.capacity.bytes\": {\"id\": \"bytes\"}, \"vsphere.host.memory.used.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.jvm.memory.heap_init.bytes\": {\"id\": \"bytes\"}, \"aerospike.namespace.memory.used.sindex.bytes\": {\"id\": \"bytes\"}, \"mongodb.dbstats.extent_free_list.size.bytes\": {\"id\": \"bytes\"}, \"mongodb.status.wired_tiger.cache.used.bytes\": {\"id\": \"bytes\"}, \"mongodb.status.wired_tiger.log.max_file_size.bytes\": {\"id\": \"bytes\"}, \"system.core.idle.pct\": {\"id\": \"percent\"}, \"system.process.cgroup.memory.stats.active_anon.bytes\": {\"id\": \"bytes\"}, \"system.core.user.pct\": {\"id\": \"percent\"}, \"kubernetes.volume.fs.available.bytes\": {\"id\": \"bytes\"}, \"system.network.out.bytes\": {\"id\": \"bytes\"}, \"mongodb.status.network.in.bytes\": {\"id\": \"bytes\"}, \"rabbitmq.node.io.read.bytes\": {\"id\": \"bytes\"}, \"system.process.cpu.total.norm.pct\": {\"id\": \"percent\"}, \"system.network.in.bytes\": {\"id\": \"bytes\"}, \"haproxy.stat.throttle.pct\": {\"id\": \"percent\"}, \"vsphere.datastore.capacity.used.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.indices.segments.memory.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.young.used.bytes\": {\"id\": \"bytes\"}, \"aerospike.namespace.device.free.pct\": {\"id\": \"percent\"}, \"system.cpu.system.norm.pct\": {\"id\": \"percent\"}, \"haproxy.stat.compressor.out.bytes\": {\"id\": \"bytes\"}, \"couchbase.cluster.hdd.quota.total.bytes\": {\"id\": \"bytes\"}, \"system.memory.total\": {\"id\": \"bytes\"}, \"system.memory.free\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.stats.active_file.bytes\": {\"id\": \"bytes\"}, \"mongodb.status.wired_tiger.log.write.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.kmem.limit.bytes\": {\"id\": \"bytes\"}, \"system.filesystem.total\": {\"id\": \"bytes\"}, \"redis.info.memory.used.lua\": {\"id\": \"bytes\"}, \"system.memory.swap.free\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.kmem.usage.max.bytes\": {\"id\": \"bytes\"}, \"aerospike.namespace.memory.used.index.bytes\": {\"id\": \"bytes\"}, \"mongodb.status.wired_tiger.cache.maximum.bytes\": {\"id\": \"bytes\"}, \"vsphere.host.memory.total.bytes\": {\"id\": \"bytes\"}, \"ceph.monitor_health.store_stats.misc.bytes\": {\"id\": \"bytes\"}, \"mongodb.dbstats.file_size.bytes\": {\"id\": \"bytes\"}, \"kubernetes.container.memory.workingset.bytes\": {\"id\": \"bytes\"}, \"system.fsstat.total_size.total\": {\"id\": \"bytes\"}, \"kubernetes.node.runtime.imagefs.used.bytes\": {\"id\": \"bytes\"}, \"couchbase.cluster.hdd.free.bytes\": {\"id\": \"bytes\"}, \"aerospike.namespace.device.available.pct\": {\"id\": \"percent\"}, \"vsphere.host.memory.free.bytes\": {\"id\": \"bytes\"}, \"ceph.monitor_health.store_stats.sst.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.stats.rss.bytes\": {\"id\": \"bytes\"}, \"golang.heap.allocations.total\": {\"id\": \"bytes\"}, \"golang.heap.system.stack\": {\"id\": \"bytes\"}, \"@timestamp\": {\"id\": \"date\"}, \"kubernetes.node.runtime.imagefs.available.bytes\": {\"id\": \"bytes\"}, \"ceph.cluster_status.misplace.ratio\": {\"id\": \"percent\"}, \"system.process.cgroup.memory.stats.inactive_anon.bytes\": {\"id\": \"bytes\"}, \"couchbase.cluster.ram.used.by_data.bytes\": {\"id\": \"bytes\"}, \"system.cpu.idle.pct\": {\"id\": \"percent\"}, \"kubernetes.node.memory.workingset.bytes\": {\"id\": \"bytes\"}, \"system.cpu.steal.pct\": {\"id\": \"percent\"}, \"system.process.cgroup.memory.stats.inactive_file.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.kmem.usage.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.old.peak.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.old.peak_max.bytes\": {\"id\": \"bytes\"}, \"kubernetes.container.memory.rss.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.memsw.limit.bytes\": {\"id\": \"bytes\"}, \"haproxy.stat.compressor.bypassed.bytes\": {\"id\": \"bytes\"}, \"kubernetes.node.memory.usage.bytes\": {\"id\": \"bytes\"}, \"couchbase.cluster.ram.quota.total.per_node.bytes\": {\"id\": \"bytes\"}, \"kubernetes.node.memory.available.bytes\": {\"id\": \"bytes\"}, \"haproxy.info.memory.max.bytes\": {\"id\": \"bytes\"}, \"rabbitmq.queue.memory.bytes\": {\"id\": \"bytes\"}, \"ceph.cluster_status.traffic.read_bytes\": {\"id\": \"bytes\"}, \"haproxy.stat.in.bytes\": {\"id\": \"bytes\"}, \"vsphere.virtualmachine.memory.free.guest.bytes\": {\"id\": \"bytes\"}, \"couchbase.bucket.memory.used.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.survivor.used.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.kmem_tcp.usage.bytes\": {\"id\": \"bytes\"}, \"golang.heap.allocations.active\": {\"id\": \"bytes\"}, \"system.cpu.steal.norm.pct\": {\"id\": \"percent\"}, \"kubernetes.node.fs.available.bytes\": {\"id\": \"bytes\"}, \"vsphere.datastore.capacity.free.bytes\": {\"id\": \"bytes\"}, \"system.core.iowait.pct\": {\"id\": \"percent\"}, \"system.process.cgroup.memory.stats.hierarchical_memory_limit.bytes\": {\"id\": \"bytes\"}, \"system.cpu.irq.norm.pct\": {\"id\": \"percent\"}, \"vsphere.datastore.capacity.total.bytes\": {\"id\": \"bytes\"}, \"system.memory.used.bytes\": {\"id\": \"bytes\"}, \"system.cpu.total.norm.pct\": {\"id\": \"percent\"}, \"couchbase.cluster.ram.quota.used.value.bytes\": {\"id\": \"bytes\"}, \"system.diskio.read.bytes\": {\"id\": \"bytes\"}, \"system.memory.swap.used.bytes\": {\"id\": \"bytes\"}, \"vsphere.datastore.capacity.used.pct\": {\"id\": \"percent\"}, \"vsphere.virtualmachine.memory.used.host.bytes\": {\"id\": \"bytes\"}, \"kubernetes.container.memory.limit.bytes\": {\"id\": \"bytes\"}, \"docker.memory.limit\": {\"id\": \"bytes\"}, \"kubernetes.container.memory.available.bytes\": {\"id\": \"bytes\"}, \"mongodb.dbstats.storage_size.bytes\": {\"id\": \"bytes\"}, \"couchbase.bucket.disk.used.bytes\": {\"id\": \"bytes\"}, \"system.cpu.softirq.norm.pct\": {\"id\": \"percent\"}, \"ceph.cluster_status.pg.total_bytes\": {\"id\": \"bytes\"}, \"rabbitmq.node.mem.limit.bytes\": {\"id\": \"bytes\"}, \"couchbase.cluster.hdd.total.bytes\": {\"id\": \"bytes\"}, \"docker.memory.rss.total\": {\"id\": \"bytes\"}, \"couchbase.cluster.ram.quota.total.value.bytes\": {\"id\": \"bytes\"}, \"mongodb.status.network.out.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.survivor.peak.bytes\": {\"id\": \"bytes\"}, \"haproxy.stat.compressor.in.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.old.max.bytes\": {\"id\": \"bytes\"}, \"couchbase.cluster.ram.used.value.bytes\": {\"id\": \"bytes\"}, \"system.cpu.user.pct\": {\"id\": \"percent\"}, \"golang.heap.system.released\": {\"id\": \"bytes\"}, \"ceph.cluster_disk.total.bytes\": {\"id\": \"bytes\"}, \"kubernetes.node.runtime.imagefs.capacity.bytes\": {\"id\": \"bytes\"}, \"system.uptime.duration.ms\": {\"params\": {\"inputFormat\": \"milliseconds\"}, \"id\": \"duration\"}, \"kubernetes.node.memory.capacity.bytes\": {\"id\": \"bytes\"}, \"rabbitmq.node.disk.free.limit.bytes\": {\"id\": \"bytes\"}, \"system.core.system.pct\": {\"id\": \"percent\"}, \"couchbase.cluster.hdd.used.by_data.bytes\": {\"id\": \"bytes\"}, \"system.cpu.iowait.norm.pct\": {\"id\": \"percent\"}, \"system.cpu.system.pct\": {\"id\": \"percent\"}, \"docker.network.in.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.stats.hierarchical_memsw_limit.bytes\": {\"id\": \"bytes\"}, \"system.filesystem.free\": {\"id\": \"bytes\"}, \"system.memory.swap.used.pct\": {\"id\": \"percent\"}, \"ceph.monitor_health.store_stats.total.bytes\": {\"id\": \"bytes\"}, \"system.core.irq.pct\": {\"id\": \"percent\"}, \"system.cpu.softirq.pct\": {\"id\": \"percent\"}, \"haproxy.stat.compressor.response.bytes\": {\"id\": \"bytes\"}, \"system.cpu.idle.norm.pct\": {\"id\": \"percent\"}, \"system.process.memory.rss.pct\": {\"id\": \"percent\"}, \"kubernetes.system.memory.workingset.bytes\": {\"id\": \"bytes\"}, \"kubernetes.container.memory.request.bytes\": {\"id\": \"bytes\"}, \"couchbase.cluster.hdd.used.value.bytes\": {\"id\": \"bytes\"}, \"kubernetes.system.memory.usage.bytes\": {\"id\": \"bytes\"}, \"ceph.monitor_health.store_stats.log.bytes\": {\"id\": \"bytes\"}, \"kubernetes.volume.fs.capacity.bytes\": {\"id\": \"bytes\"}, \"vsphere.virtualmachine.memory.used.guest.bytes\": {\"id\": \"bytes\"}, \"couchbase.node.couch.docs.data_size.bytes\": {\"id\": \"bytes\"}, \"mongodb.status.wired_tiger.log.size.bytes\": {\"id\": \"bytes\"}, \"rabbitmq.node.gc.reclaimed.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.mem.usage.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.survivor.max.bytes\": {\"id\": \"bytes\"}, \"couchbase.cluster.ram.quota.used.per_node.bytes\": {\"id\": \"bytes\"}, \"golang.heap.allocations.allocated\": {\"id\": \"bytes\"}, \"system.core.steal.pct\": {\"id\": \"percent\"}, \"golang.heap.gc.next_gc_limit\": {\"id\": \"bytes\"}, \"rabbitmq.queue.consumers.utilisation.pct\": {\"id\": \"percent\"}, \"docker.cpu.total.pct\": {\"id\": \"percent\"}, \"docker.memory.usage.pct\": {\"id\": \"percent\"}, \"mysql.status.bytes.received\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.kmem_tcp.usage.max.bytes\": {\"id\": \"bytes\"}, \"redis.info.memory.used.peak\": {\"id\": \"bytes\"}, \"aerospike.namespace.memory.free.pct\": {\"id\": \"percent\"}, \"kubernetes.volume.fs.used.bytes\": {\"id\": \"bytes\"}, \"system.cpu.iowait.pct\": {\"id\": \"percent\"}, \"couchbase.bucket.data.used.bytes\": {\"id\": \"bytes\"}, \"mongodb.status.wired_tiger.cache.dirty.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.stats.rss_huge.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.memsw.usage.bytes\": {\"id\": \"bytes\"}, \"kubernetes.pod.network.rx.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.blkio.total.bytes\": {\"id\": \"bytes\"}, \"rabbitmq.node.disk.free.bytes\": {\"id\": \"bytes\"}, \"system.filesystem.used.bytes\": {\"id\": \"bytes\"}, \"kubernetes.node.network.rx.bytes\": {\"id\": \"bytes\"}, \"system.diskio.iostat.read.per_sec.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.mem.usage.max.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.young.peak_max.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.memsw.usage.max.bytes\": {\"id\": \"bytes\"}, \"system.diskio.write.bytes\": {\"id\": \"bytes\"}, \"ceph.cluster_status.pg.used_bytes\": {\"id\": \"bytes\"}, \"haproxy.info.idle.pct\": {\"id\": \"percent\"}, \"system.process.memory.size\": {\"id\": \"bytes\"}, \"kubernetes.system.memory.rss.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.kmem_tcp.limit.bytes\": {\"id\": \"bytes\"}, \"golang.heap.allocations.idle\": {\"id\": \"bytes\"}, \"docker.network.out.bytes\": {\"id\": \"bytes\"}, \"mongodb.status.extra_info.heap_usage.bytes\": {\"id\": \"bytes\"}, \"system.cpu.total.pct\": {\"id\": \"percent\"}, \"system.process.cgroup.memory.stats.swap.bytes\": {\"id\": \"bytes\"}, \"golang.heap.system.total\": {\"id\": \"bytes\"}, \"system.fsstat.total_size.free\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.young.max.bytes\": {\"id\": \"bytes\"}, \"docker.memory.usage.total\": {\"id\": \"bytes\"}, \"mongodb.dbstats.avg_obj_size.bytes\": {\"id\": \"bytes\"}, \"couchbase.cluster.ram.total.bytes\": {\"id\": \"bytes\"}, \"kubernetes.container.logs.available.bytes\": {\"id\": \"bytes\"}, \"system.diskio.iostat.write.per_sec.bytes\": {\"id\": \"bytes\"}, \"system.filesystem.available\": {\"id\": \"bytes\"}, \"aerospike.namespace.memory.used.data.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.stats.unevictable.bytes\": {\"id\": \"bytes\"}, \"kubernetes.node.network.tx.bytes\": {\"id\": \"bytes\"}, \"ceph.pool_disk.stats.used.bytes\": {\"id\": \"bytes\"}, \"haproxy.stat.out.bytes\": {\"id\": \"bytes\"}, \"system.memory.actual.free\": {\"id\": \"bytes\"}, \"system.cpu.user.norm.pct\": {\"id\": \"percent\"}, \"system.process.memory.rss.bytes\": {\"id\": \"bytes\"}, \"ceph.pool_disk.stats.available.bytes\": {\"id\": \"bytes\"}, \"system.fsstat.total_size.used\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.mem.limit.bytes\": {\"id\": \"bytes\"}, \"docker.cpu.kernel.pct\": {\"id\": \"percent\"}, \"system.memory.swap.total\": {\"id\": \"bytes\"}, \"ceph.cluster_status.traffic.write_bytes\": {\"id\": \"bytes\"}, \"rabbitmq.node.io.write.bytes\": {\"id\": \"bytes\"}, \"system.memory.actual.used.pct\": {\"id\": \"percent\"}, \"mongodb.dbstats.data_size.bytes\": {\"id\": \"bytes\"}, \"couchbase.bucket.quota.use.pct\": {\"id\": \"percent\"}, \"haproxy.info.ssl.frontend.session_reuse.pct\": {\"id\": \"percent\"}, \"mysql.status.bytes.sent\": {\"id\": \"bytes\"}, \"docker.memory.rss.pct\": {\"id\": \"percent\"}, \"aerospike.namespace.memory.used.total.bytes\": {\"id\": \"bytes\"}, \"ceph.cluster_status.pg.avail_bytes\": {\"id\": \"bytes\"}, \"redis.info.memory.used.value\": {\"id\": \"bytes\"}, \"system.core.softirq.pct\": {\"id\": \"percent\"}, \"redis.info.memory.used.rss\": {\"id\": \"bytes\"}, \"kubernetes.container.rootfs.available.bytes\": {\"id\": \"bytes\"}, \"docker.cpu.system.pct\": {\"id\": \"percent\"}, \"elasticsearch.node.stats.jvm.mem.pools.young.peak.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.survivor.peak_max.bytes\": {\"id\": \"bytes\"}, \"aerospike.namespace.device.total.bytes\": {\"id\": \"bytes\"}, \"docker.memory.usage.max\": {\"id\": \"bytes\"}, \"mongodb.dbstats.index_size.bytes\": {\"id\": \"bytes\"}, \"golang.heap.system.obtained\": {\"id\": \"bytes\"}}", - "timeFieldName": "@timestamp", - "title": "metricbeat-*" - }, - "version": "1", - "type": "index-pattern", - "id": "metricbeat-*" - } - ] -} +{ "attributes": { "fields": "[{\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"beat.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"beat.hostname\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"beat.timezone\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"beat.version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"@timestamp\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"tags\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"fields\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": false, \"name\": \"error.message\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"error.code\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"error.type\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"meta.cloud.provider\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"meta.cloud.instance_id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"meta.cloud.instance_name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"meta.cloud.machine_type\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"meta.cloud.availability_zone\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"meta.cloud.project_id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"meta.cloud.region\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.image\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.labels\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.namespace\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.labels\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.annotations\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.image\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"metricset.module\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"metricset.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"metricset.host\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"metricset.rtt\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"metricset.namespace\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"type\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.delete.error\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.delete.not_found\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.delete.success\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.delete.timeout\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.read.error\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.read.not_found\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.read.success\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.read.timeout\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.write.error\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.write.success\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.client.write.timeout\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.device.available.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.device.free.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.device.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.device.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.hwm_breached\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.memory.free.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.memory.used.data.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.memory.used.index.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.memory.used.sindex.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.memory.used.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.node.host\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.node.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.objects.master\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.objects.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"aerospike.namespace.stop_writes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.hostname\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.total_accesses\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.total_kbytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.requests_per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.bytes_per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.bytes_per_request\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.workers.busy\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.workers.idle\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.uptime.server_uptime\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.uptime.uptime\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.cpu.load\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.cpu.user\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.cpu.system\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.cpu.children_user\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.cpu.children_system\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.connections.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.connections.async.writing\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.connections.async.keep_alive\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.connections.async.closing\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.load.1\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.load.5\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.load.15\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.starting_up\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.reading_request\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.sending_reply\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.keepalive\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.dns_lookup\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.closing_connection\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.logging\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.gracefully_finishing\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.idle_cleanup\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.open_slot\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.waiting_for_connection\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"apache.status.scoreboard.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_disk.available.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_disk.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_disk.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_health.overall_status\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_health.timechecks.epoch\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_health.timechecks.round.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_health.timechecks.round.status\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.traffic.read_bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.traffic.write_bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.traffic.read_op_per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.traffic.write_op_per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.misplace.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.misplace.objects\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.misplace.ratio\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.degraded.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.degraded.objects\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.degraded.ratio\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.pg.data_bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.pg.avail_bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.pg.total_bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.pg.used_bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.pg_state.state_name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.pg_state.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.pg_state.version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.osd.full\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.osd.nearfull\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.osd.num_osds\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.osd.num_up_osds\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.osd.num_in_osds\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.osd.num_in_osds\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.cluster_status.osd.epoch\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.available.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.health\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.available.kb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.total.kb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.used.kb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.last_updated\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.store_stats.log.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.store_stats.misc.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.store_stats.sst.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.store_stats.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.monitor_health.store_stats.last_updated\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.pool_disk.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.pool_disk.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.pool_disk.stats.available.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.pool_disk.stats.objects\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.pool_disk.stats.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"ceph.pool_disk.stats.used.kb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.type\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.data.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.disk.fetches\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.disk.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.memory.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.quota.ram.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.quota.use.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.ops_per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.bucket.item_count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.hdd.free.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.hdd.quota.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.hdd.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.hdd.used.value.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.hdd.used.by_data.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.max_bucket_count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.quota.index_memory.mb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.quota.memory.mb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.ram.quota.total.value.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.ram.quota.total.per_node.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.ram.quota.used.value.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.ram.quota.used.per_node.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.ram.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.ram.used.value.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.cluster.ram.used.by_data.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.cmd_get\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.couch.docs.disk_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.couch.docs.data_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.couch.spatial.data_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.couch.spatial.disk_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.couch.views.disk_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.couch.views.data_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.cpu_utilization_rate.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.current_items.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.current_items.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.ep_bg_fetched\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.get_hits\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.hostname\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.mcd_memory.allocated.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.mcd_memory.reserved.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.memory.free.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.memory.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.memory.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.ops\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.swap.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.swap.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.uptime.sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"couchbase.node.vb_replica_curr_items\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.command\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.created\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.status\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.size.root_fs\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.size.rw\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.container.tags\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.cpu.kernel.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.cpu.kernel.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.cpu.system.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.cpu.system.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.cpu.user.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.cpu.user.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.cpu.total.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.diskio.reads\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.diskio.writes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.diskio.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.healthcheck.failingstreak\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.healthcheck.status\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.healthcheck.event.end_date\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.healthcheck.event.start_date\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.healthcheck.event.output\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.healthcheck.event.exit_code\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.image.id.current\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.image.id.parent\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.image.created\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.image.size.virtual\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.image.size.regular\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.image.labels\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.image.tags\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.info.containers.paused\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.info.containers.running\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.info.containers.stopped\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.info.containers.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.info.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.info.images\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.memory.fail.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.memory.limit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.memory.rss.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.memory.rss.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.memory.usage.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.memory.usage.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.memory.usage.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.network.interface\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.network.in.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.network.in.dropped\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.network.in.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.network.in.packets\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.network.out.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.network.out.dropped\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.network.out.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"docker.network.out.packets\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.cluster.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.jvm.memory.heap_init.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.jvm.version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.indices.docs.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.indices.docs.deleted\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.indices.segments.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.indices.segments.memory.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.indices.store.size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.old.max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.old.peak.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.old.peak_max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.old.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.young.max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.young.peak.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.young.peak_max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.young.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.survivor.max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.survivor.peak.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.survivor.peak_max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.mem.pools.survivor.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.gc.collectors.old.collection.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.gc.collectors.old.collection.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.gc.collectors.young.collection.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"elasticsearch.node.stats.jvm.gc.collectors.young.collection.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.expvar.cmdline\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.cmdline\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.gc.total_pause.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.gc.total_count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.gc.next_gc_limit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.gc.cpu_fraction\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.gc.pause.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.gc.pause.sum.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.gc.pause.max.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.gc.pause.avg.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.system.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.system.obtained\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.system.stack\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.system.released\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.allocations.mallocs\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.allocations.frees\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.allocations.objects\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.allocations.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.allocations.allocated\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.allocations.idle\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"golang.heap.allocations.active\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"graphite.server.example\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.processes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.process_num\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.pid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.run_queue\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.tasks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.uptime.sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.memory.max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ulimit_n\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.compress.bps.in\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.compress.bps.out\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.compress.bps.rate_limit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.rate.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.rate.limit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.rate.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.current\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.ssl.current\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.ssl.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.ssl.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.connection.hard_max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.requests.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.sockets.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.requests.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.pipes.used\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.pipes.free\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.pipes.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.session.rate.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.session.rate.limit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.session.rate.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.rate.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.rate.limit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.rate.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.frontend.key_rate.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.frontend.key_rate.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.frontend.session_reuse.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.backend.key_rate.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.backend.key_rate.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.cached_lookups\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.ssl.cache_misses\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.zlib_mem_usage.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.zlib_mem_usage.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.info.idle.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.status\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.weight\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.downtime\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.component_type\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.process_id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.service_name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.in.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.out.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.last_change\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.throttle.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.selected.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.tracked.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.connection.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.connection.retried\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.connection.time.avg\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.request.denied\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.request.queued.current\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.request.queued.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.request.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.request.redispatched\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.request.connection.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.request.rate.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.request.rate.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.request.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.response.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.response.time.avg\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.response.denied\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.response.http.1xx\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.response.http.2xx\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.response.http.3xx\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.response.http.4xx\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.response.http.5xx\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.response.http.other\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.session.current\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.session.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.session.limit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.session.rate.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.session.rate.limit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.session.rate.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.check.status\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.check.code\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.check.duration\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.check.health.last\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.check.health.fail\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.check.agent.last\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.check.failed\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.check.down\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.client.aborted\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.server.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.server.aborted\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.server.active\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.server.backup\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.compressor.in.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.compressor.out.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.compressor.bypassed.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.compressor.response.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.proxy.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.proxy.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.queue.limit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"haproxy.stat.queue.time.avg\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"http.request.header\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"http.request.method\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"http.request.body\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"http.response.header\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"http.response.status_code\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"http.response.body\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.broker.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.broker.address\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.topic\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.partition\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.offset\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": false, \"name\": \"kafka.consumergroup.meta\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.error.code\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.client.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.client.host\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.consumergroup.client.member_id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.offset.newest\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.offset.oldest\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.partition.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.partition.leader\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.partition.isr\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.partition.replica\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.partition.insync_replica\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.partition.error.code\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.topic.error.code\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.topic.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.broker.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kafka.partition.broker.address\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kibana.status.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kibana.status.uuid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kibana.status.version.number\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kibana.status.status.overall.state\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kibana.status.metrics.concurrent_connections\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kibana.status.metrics.requests.disconnects\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kibana.status.metrics.requests.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.start_time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.cpu.usage.core.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.cpu.usage.nanocores\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.logs.available.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.logs.capacity.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.logs.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.logs.inodes.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.logs.inodes.free\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.logs.inodes.used\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.memory.available.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.memory.usage.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.memory.rss.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.memory.workingset.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.memory.pagefaults\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.memory.majorpagefaults\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.rootfs.capacity.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.rootfs.available.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.rootfs.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.rootfs.inodes.used\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.message\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.reason\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.type\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.metadata.timestamp.created\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.metadata.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.metadata.namespace\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.metadata.resource_version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.metadata.uid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.metadata.self_link\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.involved_object.api_version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.involved_object.kind\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.involved_object.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.involved_object.resource_version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.event.involved_object.uid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.start_time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.cpu.usage.core.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.cpu.usage.nanocores\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.memory.available.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.memory.usage.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.memory.rss.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.memory.workingset.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.memory.pagefaults\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.memory.majorpagefaults\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.network.rx.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.network.rx.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.network.tx.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.network.tx.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.fs.capacity.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.fs.available.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.fs.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.fs.inodes.used\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.fs.inodes.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.fs.inodes.free\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.runtime.imagefs.capacity.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.runtime.imagefs.available.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.runtime.imagefs.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.start_time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.network.rx.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.network.rx.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.network.tx.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.network.tx.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.status.phase\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.status.ready\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.status.restarts\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.cpu.limit.nanocores\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.cpu.request.nanocores\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.memory.limit.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.container.memory.request.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.deployment.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.deployment.paused\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.deployment.replicas.desired\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.deployment.replicas.available\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.deployment.replicas.unavailable\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.deployment.replicas.updated\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.status.ready\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.status.unschedulable\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.cpu.allocatable.cores\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.cpu.capacity.cores\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.memory.allocatable.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.memory.capacity.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.pod.allocatable.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.node.pod.capacity.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.ip\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"ip\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.host_ip\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"ip\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.status.phase\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.status.ready\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.pod.status.scheduled\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.replicaset.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.replicaset.replicas.available\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.replicaset.replicas.desired\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.replicaset.replicas.ready\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.replicaset.replicas.observed\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.replicaset.replicas.labeled\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.system.container\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.system.start_time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.system.cpu.usage.core.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.system.cpu.usage.nanocores\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.system.memory.usage.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.system.memory.rss.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.system.memory.workingset.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.system.memory.pagefaults\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.system.memory.majorpagefaults\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.volume.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.volume.fs.capacity.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.volume.fs.available.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.volume.fs.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.volume.fs.inodes.used\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.volume.fs.inodes.free\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"kubernetes.volume.fs.inodes.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.pid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.uptime.sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.threads\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.connections.current\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.connections.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.get.hits\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.get.misses\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.cmd.get\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.cmd.set\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.read.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.written.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.items.current\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.items.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"memcached.stats.evictions\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.avg_obj_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.collections\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.data_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.db\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.file_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.index_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.indexes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.num_extents\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.objects\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.storage_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.ns_size_mb.mb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.data_file_version.major\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.data_file_version.minor\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.extent_free_list.num\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.dbstats.extent_free_list.size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.uptime.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.local_time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.asserts.regular\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.asserts.warning\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.asserts.msg\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.asserts.user\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.asserts.rollovers\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.background_flushing.flushes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.background_flushing.total.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.background_flushing.average.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.background_flushing.last.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.background_flushing.last_finished\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.connections.current\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.connections.available\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.connections.total_created\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.commits\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.journaled.mb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.write_to_data_files.mb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.compression\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.commits_in_write_lock\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.early_commits\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.times.dt.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.times.prep_log_buffer.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.times.write_to_journal.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.times.write_to_data_files.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.times.remap_private_view.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.times.commits.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.journaling.times.commits_in_write_lock.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.extra_info.heap_usage.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.extra_info.page_faults\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.network.in.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.network.out.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.network.requests\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters.insert\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters.query\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters.update\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters.delete\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters.getmore\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters.command\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters_replicated.insert\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters_replicated.query\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters_replicated.update\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters_replicated.delete\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters_replicated.getmore\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.opcounters_replicated.command\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.memory.bits\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.memory.resident.mb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.memory.virtual.mb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.memory.mapped.mb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.memory.mapped_with_journal.mb\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.write_backs_queued\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.storage_engine.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.concurrent_transactions.write.out\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.concurrent_transactions.write.available\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.concurrent_transactions.write.total_tickets\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.concurrent_transactions.read.out\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.concurrent_transactions.read.available\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.concurrent_transactions.read.total_tickets\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.cache.maximum.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.cache.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.cache.dirty.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.cache.pages.read\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.cache.pages.write\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.cache.pages.evicted\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.log.size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.log.write.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.log.max_file_size.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.log.flushes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.log.writes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.log.scans\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mongodb.status.wired_tiger.log.syncs\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.aborted.clients\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.aborted.connects\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.binlog.cache.disk_use\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.binlog.cache.use\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.bytes.received\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.bytes.sent\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.threads.cached\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.threads.created\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.threads.connected\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.threads.running\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.connections\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.created.tmp.disk_tables\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.created.tmp.files\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.created.tmp.tables\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.delayed.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.delayed.insert_threads\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.delayed.writes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.flush_commands\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.max_used_connections\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.open.files\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.open.streams\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.open.tables\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.opened_tables\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.command.delete\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.command.insert\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.command.select\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"mysql.status.command.update\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.hostname\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.active\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.accepts\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.handled\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.dropped\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.requests\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.current\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.reading\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.writing\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"nginx.stubstatus.waiting\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"php_fpm.pool.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"php_fpm.pool.connections.accepted\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"php_fpm.pool.connections.queued\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"php_fpm.pool.processes.idle\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"php_fpm.pool.processes.active\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"php_fpm.pool.slow_requests\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.database.oid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.database.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.pid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.user.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.user.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.application_name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.client.address\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.client.hostname\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.client.port\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.backend_start\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.transaction_start\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.query_start\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.state_change\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.waiting\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.state\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.activity.query\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.checkpoints.scheduled\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.checkpoints.requested\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.checkpoints.times.write.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.checkpoints.times.sync.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.buffers.checkpoints\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.buffers.clean\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.buffers.clean_full\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.buffers.backend\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.buffers.backend_fsync\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.buffers.allocated\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.bgwriter.stats_reset\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.oid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.number_of_backends\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.transactions.commit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.transactions.rollback\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.blocks.read\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.blocks.hit\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.blocks.time.read.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.blocks.time.write.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.rows.returned\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.rows.fetched\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.rows.inserted\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.rows.updated\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.rows.deleted\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.conflicts\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.temporary.files\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.temporary.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.deadlocks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"postgresql.database.stats_reset\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"prometheus.stats.notifications.queue_length\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"prometheus.stats.notifications.dropped\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"prometheus.stats.processes.open_fds\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"prometheus.stats.storage.chunks_to_persist\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.disk.free.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.disk.free.limit.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.fd.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.fd.used\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.gc.num.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.gc.reclaimed.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.file_handle.open_attempt.avg.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.file_handle.open_attempt.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.read.avg.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.read.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.read.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.reopen.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.seek.avg.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.seek.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.sync.avg.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.sync.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.write.avg.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.write.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.io.write.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.mem.limit.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.mem.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.mnesia.disk.tx.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.mnesia.ram.tx.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.msg.store_read.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.msg.store_write.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.proc.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.proc.used\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.processors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.queue.index.journal_write.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.queue.index.read.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.queue.index.write.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.run.queue\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.socket.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.socket.used\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.type\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.node.uptime\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.vhost\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.durable\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.auto_delete\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.exclusive\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.node\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.state\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.arguments.max_priority\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.consumers.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.consumers.utilisation.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.messages.total.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.messages.ready.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.messages.unacknowledged.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.messages.persistent.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.memory.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.disk.reads.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"rabbitmq.queue.disk.writes.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.clients.connected\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.clients.longest_output_list\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.clients.biggest_input_buf\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.clients.blocked\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.cluster.enabled\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.cpu.used.sys\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.cpu.used.sys_children\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.cpu.used.user\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.cpu.used.user_children\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.memory.used.value\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.memory.used.rss\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.memory.used.peak\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.memory.used.lua\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.memory.allocator\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.loading\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.rdb.last_save.changes_since\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.rdb.bgsave.in_progress\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.rdb.last_save.time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.rdb.bgsave.last_status\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.rdb.bgsave.last_time.sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.rdb.bgsave.current_time.sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.aof.enabled\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.aof.rewrite.in_progress\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.aof.rewrite.scheduled\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"boolean\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.aof.rewrite.last_time.sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.aof.rewrite.current_time.sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.aof.bgrewrite.last_status\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.persistence.aof.write.last_status\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.replication.role\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.replication.connected_slaves\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.replication.master_offset\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.replication.backlog.active\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.replication.backlog.size\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.replication.backlog.first_byte_offset\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.replication.backlog.histlen\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.git_sha1\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.git_dirty\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.build_id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.mode\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.os\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.arch_bits\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.multiplexing_api\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.gcc_version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.process_id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.run_id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.tcp_port\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.uptime\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.hz\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.lru_clock\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.server.config_file\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.connections.received\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.connections.rejected\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.commands_processed\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.net.input.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.net.output.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.instantaneous.ops_per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.instantaneous.input_kbps\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.instantaneous.output_kbps\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.sync.full\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.sync.partial.ok\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.sync.partial.err\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.keys.expired\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.keys.evicted\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.keyspace.hits\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.keyspace.misses\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.pubsub.channels\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.pubsub.patterns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.latest_fork_usec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.info.stats.migrate_cached_sockets\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.keyspace.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.keyspace.avg_ttl\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.keyspace.keys\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"redis.keyspace.expires\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.user.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.user.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.system.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.system.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.nice.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.nice.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.idle.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.idle.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.iowait.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.iowait.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.irq.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.irq.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.softirq.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.softirq.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.steal.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.core.steal.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.cores\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.user.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.system.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.nice.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.idle.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.iowait.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.irq.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.softirq.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.steal.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.total.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.user.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.system.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.nice.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.idle.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.iowait.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.irq.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.softirq.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.steal.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.total.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.user.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.system.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.nice.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.idle.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.iowait.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.irq.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.softirq.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.cpu.steal.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.serial_number\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.read.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.write.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.read.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.write.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.read.time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.write.time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.io.time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.read.request.merges_per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.write.request.merges_per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.read.request.per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.write.request.per_sec\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.read.per_sec.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.write.per_sec.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.request.avg_size\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.queue.avg_size\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.await\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.service_time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.diskio.iostat.busy\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.available\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.device_name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.type\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.mount_point\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.files\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.free\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.free_files\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.filesystem.used.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.fsstat.count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.fsstat.total_files\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.fsstat.total_size.free\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.fsstat.total_size.used\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.fsstat.total_size.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.load.1\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.load.5\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.load.15\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.load.norm.1\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.load.norm.5\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.load.norm.15\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.load.cores\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.free\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.used.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.actual.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.actual.free\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.actual.used.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.swap.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.swap.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.swap.free\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.memory.swap.used.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.network.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.network.out.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.network.in.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.network.out.packets\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.network.in.packets\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.network.in.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.network.out.errors\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.network.in.dropped\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.network.out.dropped\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.state\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.pid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.ppid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.pgid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cmdline\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.username\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cwd\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.env\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cpu.user\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cpu.total.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cpu.total.norm.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cpu.system\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cpu.total.ticks\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cpu.start_time\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"date\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.memory.size\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.memory.rss.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.memory.rss.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.memory.share\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.fd.open\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.fd.limit.soft\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.fd.limit.hard\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.path\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.path\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.cfs.period.us\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.cfs.quota.us\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.cfs.shares\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.rt.period.us\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.rt.runtime.us\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.stats.periods\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.stats.throttled.periods\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpu.stats.throttled.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpuacct.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpuacct.path\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpuacct.total.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpuacct.stats.user.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpuacct.stats.system.ns\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.cpuacct.percpu\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.path\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.mem.usage.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.mem.usage.max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.mem.limit.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.mem.failures\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.memsw.usage.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.memsw.usage.max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.memsw.limit.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.memsw.failures\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.kmem.usage.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.kmem.usage.max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.kmem.limit.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.kmem.failures\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.kmem_tcp.usage.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.kmem_tcp.usage.max.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.kmem_tcp.limit.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.kmem_tcp.failures\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.active_anon.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.active_file.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.cache.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.hierarchical_memory_limit.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.hierarchical_memsw_limit.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.inactive_anon.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.inactive_file.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.mapped_file.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.page_faults\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.major_page_faults\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.pages_in\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.pages_out\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.rss.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.rss_huge.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.swap.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.memory.stats.unevictable.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.blkio.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.blkio.path\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.blkio.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.cgroup.blkio.total.ios\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.summary.total\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.summary.running\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.summary.idle\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.summary.sleeping\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.summary.stopped\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.summary.zombie\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.process.summary.unknown\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.direction\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.family\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.local.ip\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"ip\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.local.port\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.remote.ip\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"ip\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.remote.port\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.remote.host\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.remote.etld_plus_one\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.remote.host_error\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.process.pid\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.process.command\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.process.cmdline\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.process.exe\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.user.id\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.socket.user.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"system.uptime.duration.ms\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.datastore.datacenter\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.datastore.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.datastore.fstype\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.datastore.capacity.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.datastore.capacity.free.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.datastore.capacity.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.datastore.capacity.used.pct\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.host.datacenter\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.host.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.host.cpu.used.mhz\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.host.cpu.total.mhz\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.host.cpu.free.mhz\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.host.memory.used.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.host.memory.total.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.host.memory.free.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.virtualmachine.datacenter\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.virtualmachine.name\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.virtualmachine.cpu.used.mhz\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.virtualmachine.memory.used.guest.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.virtualmachine.memory.used.host.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.virtualmachine.memory.total.guest.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.virtualmachine.memory.free.guest.bytes\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"vsphere.virtualmachine.custom_fields\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.hostname\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.approximate_data_size\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.latency.avg\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.ephemerals_count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.followers\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.max_file_descriptor_count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.latency.max\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.latency.min\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.num_alive_connections\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.open_file_descriptor_count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.outstanding_requests\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.packets.received\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.packets.sent\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.pending_syncs\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.server_state\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.synced_followers\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.version\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.watch_count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"zookeeper.mntr.znode_count\", \"searchable\": true, \"indexed\": true, \"doc_values\": true, \"type\": \"number\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": false, \"name\": \"_id\", \"searchable\": false, \"indexed\": false, \"doc_values\": false, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": true, \"name\": \"_type\", \"searchable\": true, \"indexed\": false, \"doc_values\": false, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": false, \"name\": \"_index\", \"searchable\": false, \"indexed\": false, \"doc_values\": false, \"type\": \"string\", \"scripted\": false}, {\"count\": 0, \"analyzed\": false, \"aggregatable\": false, \"name\": \"_score\", \"searchable\": false, \"indexed\": false, \"doc_values\": false, \"type\": \"number\", \"scripted\": false}]", + "fieldFormatMap": "{\"ceph.cluster_status.pg.data_bytes\": {\"id\": \"bytes\"}, \"system.filesystem.used.pct\": {\"id\": \"percent\"}, \"ceph.cluster_status.degraded.ratio\": {\"id\": \"percent\"}, \"system.cpu.nice.norm.pct\": {\"id\": \"percent\"}, \"system.process.cgroup.memory.stats.mapped_file.bytes\": {\"id\": \"bytes\"}, \"system.cpu.nice.pct\": {\"id\": \"percent\"}, \"system.process.memory.share\": {\"id\": \"bytes\"}, \"couchbase.node.couch.docs.disk_size.bytes\": {\"id\": \"bytes\"}, \"kubernetes.container.logs.used.bytes\": {\"id\": \"bytes\"}, \"kubernetes.node.memory.allocatable.bytes\": {\"id\": \"bytes\"}, \"kubernetes.container.rootfs.used.bytes\": {\"id\": \"bytes\"}, \"aerospike.namespace.device.used.bytes\": {\"id\": \"bytes\"}, \"system.core.nice.pct\": {\"id\": \"percent\"}, \"system.process.cgroup.memory.stats.cache.bytes\": {\"id\": \"bytes\"}, \"kubernetes.container.memory.usage.bytes\": {\"id\": \"bytes\"}, \"kubernetes.pod.network.tx.bytes\": {\"id\": \"bytes\"}, \"kubernetes.node.memory.rss.bytes\": {\"id\": \"bytes\"}, \"system.memory.used.pct\": {\"id\": \"percent\"}, \"ceph.cluster_disk.used.bytes\": {\"id\": \"bytes\"}, \"docker.cpu.user.pct\": {\"id\": \"percent\"}, \"ceph.cluster_disk.available.bytes\": {\"id\": \"bytes\"}, \"couchbase.node.mcd_memory.allocated.bytes\": {\"id\": \"bytes\"}, \"system.memory.actual.used.bytes\": {\"id\": \"bytes\"}, \"kubernetes.node.fs.used.bytes\": {\"id\": \"bytes\"}, \"kubernetes.container.rootfs.capacity.bytes\": {\"id\": \"bytes\"}, \"system.cpu.irq.pct\": {\"id\": \"percent\"}, \"kubernetes.container.logs.capacity.bytes\": {\"id\": \"bytes\"}, \"couchbase.bucket.quota.ram.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.old.used.bytes\": {\"id\": \"bytes\"}, \"vsphere.virtualmachine.memory.total.guest.bytes\": {\"id\": \"bytes\"}, \"system.process.cpu.total.pct\": {\"id\": \"percent\"}, \"kubernetes.node.fs.capacity.bytes\": {\"id\": \"bytes\"}, \"vsphere.host.memory.used.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.jvm.memory.heap_init.bytes\": {\"id\": \"bytes\"}, \"aerospike.namespace.memory.used.sindex.bytes\": {\"id\": \"bytes\"}, \"mongodb.dbstats.extent_free_list.size.bytes\": {\"id\": \"bytes\"}, \"mongodb.status.wired_tiger.cache.used.bytes\": {\"id\": \"bytes\"}, \"mongodb.status.wired_tiger.log.max_file_size.bytes\": {\"id\": \"bytes\"}, \"system.core.idle.pct\": {\"id\": \"percent\"}, \"system.process.cgroup.memory.stats.active_anon.bytes\": {\"id\": \"bytes\"}, \"system.core.user.pct\": {\"id\": \"percent\"}, \"kubernetes.volume.fs.available.bytes\": {\"id\": \"bytes\"}, \"system.network.out.bytes\": {\"id\": \"bytes\"}, \"mongodb.status.network.in.bytes\": {\"id\": \"bytes\"}, \"rabbitmq.node.io.read.bytes\": {\"id\": \"bytes\"}, \"system.process.cpu.total.norm.pct\": {\"id\": \"percent\"}, \"system.network.in.bytes\": {\"id\": \"bytes\"}, \"haproxy.stat.throttle.pct\": {\"id\": \"percent\"}, \"vsphere.datastore.capacity.used.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.indices.segments.memory.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.young.used.bytes\": {\"id\": \"bytes\"}, \"aerospike.namespace.device.free.pct\": {\"id\": \"percent\"}, \"system.cpu.system.norm.pct\": {\"id\": \"percent\"}, \"haproxy.stat.compressor.out.bytes\": {\"id\": \"bytes\"}, \"couchbase.cluster.hdd.quota.total.bytes\": {\"id\": \"bytes\"}, \"system.memory.total\": {\"id\": \"bytes\"}, \"system.memory.free\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.stats.active_file.bytes\": {\"id\": \"bytes\"}, \"mongodb.status.wired_tiger.log.write.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.kmem.limit.bytes\": {\"id\": \"bytes\"}, \"system.filesystem.total\": {\"id\": \"bytes\"}, \"redis.info.memory.used.lua\": {\"id\": \"bytes\"}, \"system.memory.swap.free\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.kmem.usage.max.bytes\": {\"id\": \"bytes\"}, \"aerospike.namespace.memory.used.index.bytes\": {\"id\": \"bytes\"}, \"mongodb.status.wired_tiger.cache.maximum.bytes\": {\"id\": \"bytes\"}, \"vsphere.host.memory.total.bytes\": {\"id\": \"bytes\"}, \"ceph.monitor_health.store_stats.misc.bytes\": {\"id\": \"bytes\"}, \"mongodb.dbstats.file_size.bytes\": {\"id\": \"bytes\"}, \"kubernetes.container.memory.workingset.bytes\": {\"id\": \"bytes\"}, \"system.fsstat.total_size.total\": {\"id\": \"bytes\"}, \"kubernetes.node.runtime.imagefs.used.bytes\": {\"id\": \"bytes\"}, \"couchbase.cluster.hdd.free.bytes\": {\"id\": \"bytes\"}, \"aerospike.namespace.device.available.pct\": {\"id\": \"percent\"}, \"vsphere.host.memory.free.bytes\": {\"id\": \"bytes\"}, \"ceph.monitor_health.store_stats.sst.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.stats.rss.bytes\": {\"id\": \"bytes\"}, \"golang.heap.allocations.total\": {\"id\": \"bytes\"}, \"golang.heap.system.stack\": {\"id\": \"bytes\"}, \"@timestamp\": {\"id\": \"date\"}, \"kubernetes.node.runtime.imagefs.available.bytes\": {\"id\": \"bytes\"}, \"ceph.cluster_status.misplace.ratio\": {\"id\": \"percent\"}, \"system.process.cgroup.memory.stats.inactive_anon.bytes\": {\"id\": \"bytes\"}, \"couchbase.cluster.ram.used.by_data.bytes\": {\"id\": \"bytes\"}, \"system.cpu.idle.pct\": {\"id\": \"percent\"}, \"kubernetes.node.memory.workingset.bytes\": {\"id\": \"bytes\"}, \"system.cpu.steal.pct\": {\"id\": \"percent\"}, \"system.process.cgroup.memory.stats.inactive_file.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.kmem.usage.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.old.peak.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.old.peak_max.bytes\": {\"id\": \"bytes\"}, \"kubernetes.container.memory.rss.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.memsw.limit.bytes\": {\"id\": \"bytes\"}, \"haproxy.stat.compressor.bypassed.bytes\": {\"id\": \"bytes\"}, \"kubernetes.node.memory.usage.bytes\": {\"id\": \"bytes\"}, \"couchbase.cluster.ram.quota.total.per_node.bytes\": {\"id\": \"bytes\"}, \"kubernetes.node.memory.available.bytes\": {\"id\": \"bytes\"}, \"haproxy.info.memory.max.bytes\": {\"id\": \"bytes\"}, \"rabbitmq.queue.memory.bytes\": {\"id\": \"bytes\"}, \"ceph.cluster_status.traffic.read_bytes\": {\"id\": \"bytes\"}, \"haproxy.stat.in.bytes\": {\"id\": \"bytes\"}, \"vsphere.virtualmachine.memory.free.guest.bytes\": {\"id\": \"bytes\"}, \"couchbase.bucket.memory.used.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.survivor.used.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.kmem_tcp.usage.bytes\": {\"id\": \"bytes\"}, \"golang.heap.allocations.active\": {\"id\": \"bytes\"}, \"system.cpu.steal.norm.pct\": {\"id\": \"percent\"}, \"kubernetes.node.fs.available.bytes\": {\"id\": \"bytes\"}, \"vsphere.datastore.capacity.free.bytes\": {\"id\": \"bytes\"}, \"system.core.iowait.pct\": {\"id\": \"percent\"}, \"system.process.cgroup.memory.stats.hierarchical_memory_limit.bytes\": {\"id\": \"bytes\"}, \"system.cpu.irq.norm.pct\": {\"id\": \"percent\"}, \"vsphere.datastore.capacity.total.bytes\": {\"id\": \"bytes\"}, \"system.memory.used.bytes\": {\"id\": \"bytes\"}, \"system.cpu.total.norm.pct\": {\"id\": \"percent\"}, \"couchbase.cluster.ram.quota.used.value.bytes\": {\"id\": \"bytes\"}, \"system.diskio.read.bytes\": {\"id\": \"bytes\"}, \"system.memory.swap.used.bytes\": {\"id\": \"bytes\"}, \"vsphere.datastore.capacity.used.pct\": {\"id\": \"percent\"}, \"vsphere.virtualmachine.memory.used.host.bytes\": {\"id\": \"bytes\"}, \"kubernetes.container.memory.limit.bytes\": {\"id\": \"bytes\"}, \"docker.memory.limit\": {\"id\": \"bytes\"}, \"kubernetes.container.memory.available.bytes\": {\"id\": \"bytes\"}, \"mongodb.dbstats.storage_size.bytes\": {\"id\": \"bytes\"}, \"couchbase.bucket.disk.used.bytes\": {\"id\": \"bytes\"}, \"system.cpu.softirq.norm.pct\": {\"id\": \"percent\"}, \"ceph.cluster_status.pg.total_bytes\": {\"id\": \"bytes\"}, \"rabbitmq.node.mem.limit.bytes\": {\"id\": \"bytes\"}, \"couchbase.cluster.hdd.total.bytes\": {\"id\": \"bytes\"}, \"docker.memory.rss.total\": {\"id\": \"bytes\"}, \"couchbase.cluster.ram.quota.total.value.bytes\": {\"id\": \"bytes\"}, \"mongodb.status.network.out.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.survivor.peak.bytes\": {\"id\": \"bytes\"}, \"haproxy.stat.compressor.in.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.old.max.bytes\": {\"id\": \"bytes\"}, \"couchbase.cluster.ram.used.value.bytes\": {\"id\": \"bytes\"}, \"system.cpu.user.pct\": {\"id\": \"percent\"}, \"golang.heap.system.released\": {\"id\": \"bytes\"}, \"ceph.cluster_disk.total.bytes\": {\"id\": \"bytes\"}, \"kubernetes.node.runtime.imagefs.capacity.bytes\": {\"id\": \"bytes\"}, \"system.uptime.duration.ms\": {\"params\": {\"inputFormat\": \"milliseconds\"}, \"id\": \"duration\"}, \"kubernetes.node.memory.capacity.bytes\": {\"id\": \"bytes\"}, \"rabbitmq.node.disk.free.limit.bytes\": {\"id\": \"bytes\"}, \"system.core.system.pct\": {\"id\": \"percent\"}, \"couchbase.cluster.hdd.used.by_data.bytes\": {\"id\": \"bytes\"}, \"system.cpu.iowait.norm.pct\": {\"id\": \"percent\"}, \"system.cpu.system.pct\": {\"id\": \"percent\"}, \"docker.network.in.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.stats.hierarchical_memsw_limit.bytes\": {\"id\": \"bytes\"}, \"system.filesystem.free\": {\"id\": \"bytes\"}, \"system.memory.swap.used.pct\": {\"id\": \"percent\"}, \"ceph.monitor_health.store_stats.total.bytes\": {\"id\": \"bytes\"}, \"system.core.irq.pct\": {\"id\": \"percent\"}, \"system.cpu.softirq.pct\": {\"id\": \"percent\"}, \"haproxy.stat.compressor.response.bytes\": {\"id\": \"bytes\"}, \"system.cpu.idle.norm.pct\": {\"id\": \"percent\"}, \"system.process.memory.rss.pct\": {\"id\": \"percent\"}, \"kubernetes.system.memory.workingset.bytes\": {\"id\": \"bytes\"}, \"kubernetes.container.memory.request.bytes\": {\"id\": \"bytes\"}, \"couchbase.cluster.hdd.used.value.bytes\": {\"id\": \"bytes\"}, \"kubernetes.system.memory.usage.bytes\": {\"id\": \"bytes\"}, \"ceph.monitor_health.store_stats.log.bytes\": {\"id\": \"bytes\"}, \"kubernetes.volume.fs.capacity.bytes\": {\"id\": \"bytes\"}, \"vsphere.virtualmachine.memory.used.guest.bytes\": {\"id\": \"bytes\"}, \"couchbase.node.couch.docs.data_size.bytes\": {\"id\": \"bytes\"}, \"mongodb.status.wired_tiger.log.size.bytes\": {\"id\": \"bytes\"}, \"rabbitmq.node.gc.reclaimed.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.mem.usage.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.survivor.max.bytes\": {\"id\": \"bytes\"}, \"couchbase.cluster.ram.quota.used.per_node.bytes\": {\"id\": \"bytes\"}, \"golang.heap.allocations.allocated\": {\"id\": \"bytes\"}, \"system.core.steal.pct\": {\"id\": \"percent\"}, \"golang.heap.gc.next_gc_limit\": {\"id\": \"bytes\"}, \"rabbitmq.queue.consumers.utilisation.pct\": {\"id\": \"percent\"}, \"docker.cpu.total.pct\": {\"id\": \"percent\"}, \"docker.memory.usage.pct\": {\"id\": \"percent\"}, \"mysql.status.bytes.received\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.kmem_tcp.usage.max.bytes\": {\"id\": \"bytes\"}, \"redis.info.memory.used.peak\": {\"id\": \"bytes\"}, \"aerospike.namespace.memory.free.pct\": {\"id\": \"percent\"}, \"kubernetes.volume.fs.used.bytes\": {\"id\": \"bytes\"}, \"system.cpu.iowait.pct\": {\"id\": \"percent\"}, \"couchbase.bucket.data.used.bytes\": {\"id\": \"bytes\"}, \"mongodb.status.wired_tiger.cache.dirty.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.stats.rss_huge.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.memsw.usage.bytes\": {\"id\": \"bytes\"}, \"kubernetes.pod.network.rx.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.blkio.total.bytes\": {\"id\": \"bytes\"}, \"rabbitmq.node.disk.free.bytes\": {\"id\": \"bytes\"}, \"system.filesystem.used.bytes\": {\"id\": \"bytes\"}, \"kubernetes.node.network.rx.bytes\": {\"id\": \"bytes\"}, \"system.diskio.iostat.read.per_sec.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.mem.usage.max.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.young.peak_max.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.memsw.usage.max.bytes\": {\"id\": \"bytes\"}, \"system.diskio.write.bytes\": {\"id\": \"bytes\"}, \"ceph.cluster_status.pg.used_bytes\": {\"id\": \"bytes\"}, \"haproxy.info.idle.pct\": {\"id\": \"percent\"}, \"system.process.memory.size\": {\"id\": \"bytes\"}, \"kubernetes.system.memory.rss.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.kmem_tcp.limit.bytes\": {\"id\": \"bytes\"}, \"golang.heap.allocations.idle\": {\"id\": \"bytes\"}, \"docker.network.out.bytes\": {\"id\": \"bytes\"}, \"mongodb.status.extra_info.heap_usage.bytes\": {\"id\": \"bytes\"}, \"system.cpu.total.pct\": {\"id\": \"percent\"}, \"system.process.cgroup.memory.stats.swap.bytes\": {\"id\": \"bytes\"}, \"golang.heap.system.total\": {\"id\": \"bytes\"}, \"system.fsstat.total_size.free\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.young.max.bytes\": {\"id\": \"bytes\"}, \"docker.memory.usage.total\": {\"id\": \"bytes\"}, \"mongodb.dbstats.avg_obj_size.bytes\": {\"id\": \"bytes\"}, \"couchbase.cluster.ram.total.bytes\": {\"id\": \"bytes\"}, \"kubernetes.container.logs.available.bytes\": {\"id\": \"bytes\"}, \"system.diskio.iostat.write.per_sec.bytes\": {\"id\": \"bytes\"}, \"system.filesystem.available\": {\"id\": \"bytes\"}, \"aerospike.namespace.memory.used.data.bytes\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.stats.unevictable.bytes\": {\"id\": \"bytes\"}, \"kubernetes.node.network.tx.bytes\": {\"id\": \"bytes\"}, \"ceph.pool_disk.stats.used.bytes\": {\"id\": \"bytes\"}, \"haproxy.stat.out.bytes\": {\"id\": \"bytes\"}, \"system.memory.actual.free\": {\"id\": \"bytes\"}, \"system.cpu.user.norm.pct\": {\"id\": \"percent\"}, \"system.process.memory.rss.bytes\": {\"id\": \"bytes\"}, \"ceph.pool_disk.stats.available.bytes\": {\"id\": \"bytes\"}, \"system.fsstat.total_size.used\": {\"id\": \"bytes\"}, \"system.process.cgroup.memory.mem.limit.bytes\": {\"id\": \"bytes\"}, \"docker.cpu.kernel.pct\": {\"id\": \"percent\"}, \"system.memory.swap.total\": {\"id\": \"bytes\"}, \"ceph.cluster_status.traffic.write_bytes\": {\"id\": \"bytes\"}, \"rabbitmq.node.io.write.bytes\": {\"id\": \"bytes\"}, \"system.memory.actual.used.pct\": {\"id\": \"percent\"}, \"mongodb.dbstats.data_size.bytes\": {\"id\": \"bytes\"}, \"couchbase.bucket.quota.use.pct\": {\"id\": \"percent\"}, \"haproxy.info.ssl.frontend.session_reuse.pct\": {\"id\": \"percent\"}, \"mysql.status.bytes.sent\": {\"id\": \"bytes\"}, \"docker.memory.rss.pct\": {\"id\": \"percent\"}, \"aerospike.namespace.memory.used.total.bytes\": {\"id\": \"bytes\"}, \"ceph.cluster_status.pg.avail_bytes\": {\"id\": \"bytes\"}, \"redis.info.memory.used.value\": {\"id\": \"bytes\"}, \"system.core.softirq.pct\": {\"id\": \"percent\"}, \"redis.info.memory.used.rss\": {\"id\": \"bytes\"}, \"kubernetes.container.rootfs.available.bytes\": {\"id\": \"bytes\"}, \"docker.cpu.system.pct\": {\"id\": \"percent\"}, \"elasticsearch.node.stats.jvm.mem.pools.young.peak.bytes\": {\"id\": \"bytes\"}, \"elasticsearch.node.stats.jvm.mem.pools.survivor.peak_max.bytes\": {\"id\": \"bytes\"}, \"aerospike.namespace.device.total.bytes\": {\"id\": \"bytes\"}, \"docker.memory.usage.max\": {\"id\": \"bytes\"}, \"mongodb.dbstats.index_size.bytes\": {\"id\": \"bytes\"}, \"golang.heap.system.obtained\": {\"id\": \"bytes\"}}", "timeFieldName": "@timestamp", "title": "metricbeat-*" }, "version": "7.0.0-alpha1", "type": "index-pattern", "id": "metricbeat-*" } diff --git a/libbeat/tests/files/dashboards.yml b/libbeat/tests/files/dashboards.yml index 8278dd7b319..86650236323 100644 --- a/libbeat/tests/files/dashboards.yml +++ b/libbeat/tests/files/dashboards.yml @@ -1,3 +1,3 @@ dashboards: - id: Metricbeat-system-overview - file: Metricbeat-system-test-overview.json + file: Metricbeat-system-test-overview.ndjson diff --git a/libbeat/tests/system/beat/common_tests.py b/libbeat/tests/system/beat/common_tests.py index 920ee35e72e..321a8461bf0 100644 --- a/libbeat/tests/system/beat/common_tests.py +++ b/libbeat/tests/system/beat/common_tests.py @@ -60,7 +60,8 @@ def test_export_index_pattern(self): """ output = self.run_export_cmd("index-pattern") js = json.loads(output) - assert "objects" in js + assert "attributes" in js + assert "index-pattern" == js["type"] size = len(output.encode('utf-8')) assert size < index_pattern_size_limit, "Kibana index pattern must be less than 10MiB " \ "to keep the Beat setup request size below " \ @@ -72,7 +73,8 @@ def test_export_index_pattern_migration(self): """ output = self.run_export_cmd("index-pattern", extra=['-E', 'migration.6_to_7.enabled=true']) js = json.loads(output) - assert "objects" in js + assert "attributes" in js + assert "index-pattern" == js["type"] size = len(output.encode('utf-8')) assert size < index_pattern_size_limit, "Kibana index pattern must be less than 10MiB " \ "to keep the Beat setup request size below " \ diff --git a/libbeat/tests/system/test_dashboard.py b/libbeat/tests/system/test_dashboard.py index a7b3145c1e7..96fc8685b35 100644 --- a/libbeat/tests/system/test_dashboard.py +++ b/libbeat/tests/system/test_dashboard.py @@ -217,7 +217,7 @@ def test_export_dashboard_cmd_export_dashboard_from_yml(self): version = self.get_version() kibana_semver = semver.VersionInfo.parse(version) exported_dashboard_path = os.path.join(self.beat_path, "tests", "files", "_meta", - "kibana", str(kibana_semver.major), "dashboard", "Metricbeat-system-test-overview.json") + "kibana", str(kibana_semver.major), "dashboard", "Metricbeat-system-test-overview.ndjson") with open(exported_dashboard_path) as f: content = f.read() @@ -260,18 +260,19 @@ def test_dev_tool_export_dashboard_by_id(self): command = path + " -kibana http://" + self.get_kibana_host() + ":" + self.get_kibana_port() command = "go run " + command + " -dashboard Metricbeat-system-overview" + print(command) p = subprocess.Popen(command, shell=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE) content, err = p.communicate() assert p.returncode == 0 - assert os.path.isfile("output.json") is True + assert os.path.isfile("output.ndjson") is True - with open('output.json') as f: + with open('output.ndjson') as f: content = f.read() assert "Metricbeat-system-overview" in content - os.remove("output.json") + os.remove("output.ndjson") @unittest.skipUnless(INTEGRATION_TESTS, "integration test") @pytest.mark.tag('integration') @@ -312,13 +313,13 @@ def test_dev_tool_export_dashboard_by_id_from_space(self): assert p.returncode == 0 - assert os.path.isfile("output.json") is True + assert os.path.isfile("output.ndjson") is True - with open('output.json') as f: + with open('output.ndjson') as f: content = f.read() assert "Metricbeat-system-overview" in content - os.remove("output.json") + os.remove("output.ndjson") @unittest.skipUnless(INTEGRATION_TESTS, "integration test") @pytest.mark.tag('integration') @@ -333,6 +334,7 @@ def test_dev_tool_export_dashboard_from_yml(self): path = os.path.normpath(self.beat_path + "/../dev-tools/cmd/dashboards/export_dashboards.go") command = path + " -kibana http://" + self.get_kibana_host() + ":" + self.get_kibana_port() command = "go run " + command + " -yml " + os.path.join(self.beat_path, "tests", "files", "dashboards.yml") + print(command) p = subprocess.Popen(command, shell=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE) content, err = p.communicate() @@ -342,7 +344,7 @@ def test_dev_tool_export_dashboard_from_yml(self): version = self.get_version() kibana_semver = semver.VersionInfo.parse(version) exported_dashboard_path = os.path.join(self.beat_path, "tests", "files", "_meta", - "kibana", str(kibana_semver.major), "dashboard", "Metricbeat-system-test-overview.json") + "kibana", str(kibana_semver.major), "dashboard", "Metricbeat-system-test-overview.ndjson") with open(exported_dashboard_path) as f: content = f.read() diff --git a/libbeat/tests/system/test_index_pattern.py b/libbeat/tests/system/test_index_pattern.py index 85f86684e7b..e0ecdeca77e 100644 --- a/libbeat/tests/system/test_index_pattern.py +++ b/libbeat/tests/system/test_index_pattern.py @@ -18,4 +18,4 @@ def test_export_index_pattern(self): config="mockbeat.yml") assert exit_code == 0 - assert self.log_contains('"objects": [') + assert self.log_contains('"type": "index-pattern"') diff --git a/metricbeat/module/aerospike/_meta/kibana/7/dashboard/Metricbeat-aerospike-overview.json b/metricbeat/module/aerospike/_meta/kibana/7/dashboard/Metricbeat-aerospike-overview.json deleted file mode 100644 index 25df51ae241..00000000000 --- a/metricbeat/module/aerospike/_meta/kibana/7/dashboard/Metricbeat-aerospike-overview.json +++ /dev/null @@ -1,1316 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This Aerospike dashboard visualizes the most important metrics for Aerospike namespaces.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "controlledBy": "1565367993423", - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "aerospike.namespace.name", - "negate": false, - "params": { - "query": "metricbeat" - }, - "type": "phrase", - "value": "metricbeat" - }, - "query": { - "match": { - "aerospike.namespace.name": { - "query": "metricbeat", - "type": "phrase" - } - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 6, - "i": "1", - "w": 9, - "x": 0, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "Namespace Filter", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 6, - "i": "2", - "w": 9, - "x": 0, - "y": 6 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "Node Filter", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "3", - "w": 25, - "x": 23, - "y": 12 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "Client Error Rates", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "4", - "w": 25, - "x": 23, - "y": 0 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "title": "Client Success Rates", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "5", - "w": 25, - "x": 23, - "y": 25 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "title": "Client Timeout Rates", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "6", - "w": 23, - "x": 0, - "y": 25 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "title": "Disk Space", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "7", - "w": 14, - "x": 9, - "y": 0 - }, - "panelIndex": "7", - "panelRefName": "panel_6", - "title": "Number of Objects", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "8", - "w": 12, - "x": 0, - "y": 12 - }, - "panelIndex": "8", - "panelRefName": "panel_7", - "title": "Writes per second", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "9", - "w": 11, - "x": 12, - "y": 12 - }, - "panelIndex": "9", - "panelRefName": "panel_8", - "title": "Reads per second", - "version": "7.3.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Aerospike] Database Overview ", - "version": 1 - }, - "id": "b15668d0-bac3-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "72523510-bac3-11e9-a579-f5c0a5d81340", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "8c173130-bac3-11e9-a579-f5c0a5d81340", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "b5121f00-bac8-11e9-a579-f5c0a5d81340", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "5b9bf0d0-bac9-11e9-a579-f5c0a5d81340", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "23758d10-bac9-11e9-a579-f5c0a5d81340", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "bd767280-bac9-11e9-a579-f5c0a5d81340", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "9ce7ae20-baca-11e9-a579-f5c0a5d81340", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "3586e810-bac8-11e9-a579-f5c0a5d81340", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "eae846a0-bac7-11e9-a579-f5c0a5d81340", - "name": "panel_8", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-08-19T14:43:04.899Z", - "version": "WzE1NTUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Namespace Filter [Metricbeat Aerospike] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "aerospike.namespace.name", - "id": "1565367993423", - "indexPatternRefName": "control_0_index_pattern", - "label": "namespace", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": true - }, - "title": "Namespace Filter [Metricbeat Aerospike] ECS", - "type": "input_control_vis" - } - }, - "id": "72523510-bac3-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-08-09T16:36:43.172Z", - "version": "WzEzNzIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Node Filter [Metricbeat Aerospike] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "aerospike.namespace.node.host", - "id": "1565367993423", - "indexPatternRefName": "control_0_index_pattern", - "label": "node", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": true - }, - "title": "Node Filter [Metricbeat Aerospike] ECS", - "type": "input_control_vis" - } - }, - "id": "8c173130-bac3-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-08-09T16:37:05.074Z", - "version": "WzEzNzUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Client Error Rates [Metricbeat Aerospike] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "8674fc30-bac8-11e9-986e-1d8d9532a1f1", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": "0.2", - "formatter": "number", - "id": "8674fc31-bac8-11e9-986e-1d8d9532a1f1", - "label": "read", - "line_width": "1", - "metrics": [ - { - "field": "aerospike.namespace.client.read.error", - "id": "8674fc32-bac8-11e9-986e-1d8d9532a1f1", - "type": "max" - }, - { - "field": "8674fc32-bac8-11e9-986e-1d8d9532a1f1", - "id": "8674fc34-bac8-11e9-986e-1d8d9532a1f1", - "type": "derivative", - "unit": "1s" - }, - { - "field": "8674fc34-bac8-11e9-986e-1d8d9532a1f1", - "id": "8674fc33-bac8-11e9-986e-1d8d9532a1f1", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#DB1374", - "fill": "0.2", - "formatter": "number", - "id": "86752340-bac8-11e9-986e-1d8d9532a1f1", - "label": "write", - "line_width": "1", - "metrics": [ - { - "field": "aerospike.namespace.client.write.error", - "id": "86752341-bac8-11e9-986e-1d8d9532a1f1", - "type": "max" - }, - { - "field": "86752341-bac8-11e9-986e-1d8d9532a1f1", - "id": "86752343-bac8-11e9-986e-1d8d9532a1f1", - "type": "derivative", - "unit": "1s" - }, - { - "field": "86752343-bac8-11e9-986e-1d8d9532a1f1", - "id": "86752342-bac8-11e9-986e-1d8d9532a1f1", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#00B3A4", - "fill": "0.2", - "formatter": "number", - "id": "86752344-bac8-11e9-986e-1d8d9532a1f1", - "label": "delete", - "line_width": "1", - "metrics": [ - { - "field": "aerospike.namespace.client.delete.error", - "id": "86752345-bac8-11e9-986e-1d8d9532a1f1", - "type": "max" - }, - { - "field": "86752345-bac8-11e9-986e-1d8d9532a1f1", - "id": "86752347-bac8-11e9-986e-1d8d9532a1f1", - "type": "derivative", - "unit": "1s" - }, - { - "field": "86752347-bac8-11e9-986e-1d8d9532a1f1", - "id": "86752346-bac8-11e9-986e-1d8d9532a1f1", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Client Error Rates [Metricbeat Aerospike] ECS", - "type": "metrics" - } - }, - "id": "b5121f00-bac8-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T17:11:20.560Z", - "version": "WzEzODIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Client Success Rates [Metricbeat Aerospike] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "3b633120-bac9-11e9-9a9a-2f5e8f21d503", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": "0.2", - "formatter": "number", - "id": "3b633121-bac9-11e9-9a9a-2f5e8f21d503", - "label": "read", - "line_width": "1", - "metrics": [ - { - "field": "aerospike.namespace.client.read.success", - "id": "3b633122-bac9-11e9-9a9a-2f5e8f21d503", - "type": "max" - }, - { - "field": "3b633122-bac9-11e9-9a9a-2f5e8f21d503", - "id": "3b633124-bac9-11e9-9a9a-2f5e8f21d503", - "type": "derivative", - "unit": "1s" - }, - { - "field": "3b633124-bac9-11e9-9a9a-2f5e8f21d503", - "id": "3b633123-bac9-11e9-9a9a-2f5e8f21d503", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#DB1374", - "fill": "0.2", - "formatter": "number", - "id": "3b633125-bac9-11e9-9a9a-2f5e8f21d503", - "label": "write", - "line_width": "1", - "metrics": [ - { - "field": "aerospike.namespace.client.write.success", - "id": "3b633126-bac9-11e9-9a9a-2f5e8f21d503", - "type": "max" - }, - { - "field": "3b633126-bac9-11e9-9a9a-2f5e8f21d503", - "id": "3b633128-bac9-11e9-9a9a-2f5e8f21d503", - "type": "derivative", - "unit": "1s" - }, - { - "field": "3b633128-bac9-11e9-9a9a-2f5e8f21d503", - "id": "3b633127-bac9-11e9-9a9a-2f5e8f21d503", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#00B3A4", - "fill": "0.2", - "formatter": "number", - "id": "3b633129-bac9-11e9-9a9a-2f5e8f21d503", - "label": "delete", - "line_width": "1", - "metrics": [ - { - "field": "aerospike.namespace.client.delete.success", - "id": "3b63312a-bac9-11e9-9a9a-2f5e8f21d503", - "type": "max" - }, - { - "field": "3b63312a-bac9-11e9-9a9a-2f5e8f21d503", - "id": "3b63312c-bac9-11e9-9a9a-2f5e8f21d503", - "type": "derivative", - "unit": "1s" - }, - { - "field": "3b63312c-bac9-11e9-9a9a-2f5e8f21d503", - "id": "3b63312b-bac9-11e9-9a9a-2f5e8f21d503", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Client Success Rates [Metricbeat Aerospike] ECS", - "type": "metrics" - } - }, - "id": "5b9bf0d0-bac9-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T17:15:59.965Z", - "version": "WzEzODQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Client Timeout Rates [Metricbeat Aerospike] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "ec962840-bac8-11e9-8c31-ed10485dacc9", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": "0.2", - "formatter": "number", - "id": "ec962841-bac8-11e9-8c31-ed10485dacc9", - "label": "read", - "line_width": "1", - "metrics": [ - { - "field": "aerospike.namespace.client.read.timeout", - "id": "ec962842-bac8-11e9-8c31-ed10485dacc9", - "type": "max" - }, - { - "field": "ec962842-bac8-11e9-8c31-ed10485dacc9", - "id": "ec962844-bac8-11e9-8c31-ed10485dacc9", - "type": "derivative", - "unit": "1s" - }, - { - "field": "ec962844-bac8-11e9-8c31-ed10485dacc9", - "id": "ec962843-bac8-11e9-8c31-ed10485dacc9", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#DB1374", - "fill": "0.2", - "formatter": "number", - "id": "ec962845-bac8-11e9-8c31-ed10485dacc9", - "label": "write", - "line_width": "1", - "metrics": [ - { - "field": "aerospike.namespace.client.write.timeout", - "id": "ec964f50-bac8-11e9-8c31-ed10485dacc9", - "type": "max" - }, - { - "field": "ec964f50-bac8-11e9-8c31-ed10485dacc9", - "id": "ec964f52-bac8-11e9-8c31-ed10485dacc9", - "type": "derivative", - "unit": "1s" - }, - { - "field": "ec964f52-bac8-11e9-8c31-ed10485dacc9", - "id": "ec964f51-bac8-11e9-8c31-ed10485dacc9", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#00B3A4", - "fill": "0.2", - "formatter": "number", - "id": "ec964f53-bac8-11e9-8c31-ed10485dacc9", - "label": "delete", - "line_width": "1", - "metrics": [ - { - "field": "aerospike.namespace.client.delete.timeout", - "id": "ec964f54-bac8-11e9-8c31-ed10485dacc9", - "type": "max" - }, - { - "field": "ec964f54-bac8-11e9-8c31-ed10485dacc9", - "id": "ec964f56-bac8-11e9-8c31-ed10485dacc9", - "type": "derivative", - "unit": "1s" - }, - { - "field": "ec964f56-bac8-11e9-8c31-ed10485dacc9", - "id": "ec964f55-bac8-11e9-8c31-ed10485dacc9", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Client Timeout Rates [Metricbeat Aerospike] ECS", - "type": "metrics" - } - }, - "id": "23758d10-bac9-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T17:14:25.761Z", - "version": "WzEzODMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Disk Space [Metricbeat Aerospike] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "8f321e10-bac9-11e9-a715-c7f36757ae84", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": 0, - "formatter": "bytes", - "id": "8f321e11-bac9-11e9-a715-c7f36757ae84", - "label": "Total", - "line_width": 2, - "metrics": [ - { - "field": "aerospike.namespace.device.total.bytes", - "id": "8f321e12-bac9-11e9-a715-c7f36757ae84", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(22,165,165,1)", - "fill": "0.2", - "formatter": "bytes", - "id": "8f321e13-bac9-11e9-a715-c7f36757ae84", - "label": "Used", - "line_width": "1", - "metrics": [ - { - "field": "aerospike.namespace.device.used.bytes", - "id": "8f321e14-bac9-11e9-a715-c7f36757ae84", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Disk Space [Metricbeat Aerospike] ECS", - "type": "metrics" - } - }, - "id": "bd767280-bac9-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T17:18:44.136Z", - "version": "WzEzODUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Number of Objects [Metricbeat Aerospike] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": null, - "id": "689053c0-baca-11e9-a6e8-09b17988a9ca", - "value": 0 - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "6a3d4070-baca-11e9-a6e8-09b17988a9ca" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "63159630-baca-11e9-b44b-b5d06880c15a", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "formatter": "number", - "id": "63159631-baca-11e9-b44b-b5d06880c15a", - "label": "objects", - "line_width": 2, - "metrics": [ - { - "field": "aerospike.namespace.objects.total", - "id": "63159632-baca-11e9-b44b-b5d06880c15a", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric" - }, - "title": "Number of Objects [Metricbeat Aerospike] ECS", - "type": "metrics" - } - }, - "id": "9ce7ae20-baca-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T19:13:27.933Z", - "version": "WzE0MTMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Client Write Rates [Metricbeat Aerospike] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "0316eb50-bac8-11e9-a2f5-271fa90cc176", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": "0.2", - "formatter": "number", - "id": "0316eb51-bac8-11e9-a2f5-271fa90cc176", - "label": "success", - "line_width": "1", - "metrics": [ - { - "field": "aerospike.namespace.client.write.success", - "id": "0316eb52-bac8-11e9-a2f5-271fa90cc176", - "type": "max" - }, - { - "field": "0316eb52-bac8-11e9-a2f5-271fa90cc176", - "id": "0316eb54-bac8-11e9-a2f5-271fa90cc176", - "type": "derivative", - "unit": "1s" - }, - { - "field": "0316eb54-bac8-11e9-a2f5-271fa90cc176", - "id": "0316eb53-bac8-11e9-a2f5-271fa90cc176", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#DB1374", - "fill": "0.2", - "formatter": "number", - "id": "0316eb55-bac8-11e9-a2f5-271fa90cc176", - "label": "error", - "line_width": "1", - "metrics": [ - { - "field": "aerospike.namespace.client.write.error", - "id": "0316eb56-bac8-11e9-a2f5-271fa90cc176", - "type": "max" - }, - { - "field": "0316eb56-bac8-11e9-a2f5-271fa90cc176", - "id": "0316eb58-bac8-11e9-a2f5-271fa90cc176", - "type": "derivative", - "unit": "1s" - }, - { - "field": "0316eb58-bac8-11e9-a2f5-271fa90cc176", - "id": "0316eb57-bac8-11e9-a2f5-271fa90cc176", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#00B3A4", - "fill": "0.2", - "formatter": "number", - "id": "0316eb59-bac8-11e9-a2f5-271fa90cc176", - "label": "timeout", - "line_width": "1", - "metrics": [ - { - "field": "aerospike.namespace.client.write.timeout", - "id": "0316eb5a-bac8-11e9-a2f5-271fa90cc176", - "type": "max" - }, - { - "field": "0316eb5a-bac8-11e9-a2f5-271fa90cc176", - "id": "0316eb5c-bac8-11e9-a2f5-271fa90cc176", - "type": "derivative", - "unit": "1s" - }, - { - "field": "0316eb5c-bac8-11e9-a2f5-271fa90cc176", - "id": "0316eb5b-bac8-11e9-a2f5-271fa90cc176", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Client Write Rates [Metricbeat Aerospike] ECS", - "type": "metrics" - } - }, - "id": "3586e810-bac8-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T17:07:46.577Z", - "version": "WzEzODAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Client Read Rates [Metricbeat Aerospike] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "98667320-bac7-11e9-9324-49d4f7fb9626", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": "0.2", - "formatter": "number", - "id": "98667321-bac7-11e9-9324-49d4f7fb9626", - "label": "success", - "line_width": "1", - "metrics": [ - { - "field": "aerospike.namespace.client.read.success", - "id": "98667322-bac7-11e9-9324-49d4f7fb9626", - "type": "max" - }, - { - "field": "98667322-bac7-11e9-9324-49d4f7fb9626", - "id": "98667324-bac7-11e9-9324-49d4f7fb9626", - "type": "derivative", - "unit": "1s" - }, - { - "field": "98667324-bac7-11e9-9324-49d4f7fb9626", - "id": "98667323-bac7-11e9-9324-49d4f7fb9626", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#DB1374", - "fill": "0.2", - "formatter": "number", - "id": "98667325-bac7-11e9-9324-49d4f7fb9626", - "label": "error", - "line_width": "1", - "metrics": [ - { - "field": "aerospike.namespace.client.read.error", - "id": "98667326-bac7-11e9-9324-49d4f7fb9626", - "type": "max" - }, - { - "field": "98667326-bac7-11e9-9324-49d4f7fb9626", - "id": "98667328-bac7-11e9-9324-49d4f7fb9626", - "type": "derivative", - "unit": "1s" - }, - { - "field": "98667328-bac7-11e9-9324-49d4f7fb9626", - "id": "98667327-bac7-11e9-9324-49d4f7fb9626", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#00B3A4", - "fill": "0.2", - "formatter": "number", - "id": "98667329-bac7-11e9-9324-49d4f7fb9626", - "label": "not_found", - "line_width": "1", - "metrics": [ - { - "field": "aerospike.namespace.client.read.not_found", - "id": "9866732a-bac7-11e9-9324-49d4f7fb9626", - "type": "max" - }, - { - "field": "9866732a-bac7-11e9-9324-49d4f7fb9626", - "id": "9866732c-bac7-11e9-9324-49d4f7fb9626", - "type": "derivative", - "unit": "1s" - }, - { - "field": "9866732c-bac7-11e9-9324-49d4f7fb9626", - "id": "9866732b-bac7-11e9-9324-49d4f7fb9626", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#490092", - "fill": "0.2", - "formatter": "number", - "id": "9866732d-bac7-11e9-9324-49d4f7fb9626", - "label": "timeout", - "line_width": "1", - "metrics": [ - { - "field": "aerospike.namespace.client.read.timeout", - "id": "9866732e-bac7-11e9-9324-49d4f7fb9626", - "type": "max" - }, - { - "field": "9866732e-bac7-11e9-9324-49d4f7fb9626", - "id": "98667330-bac7-11e9-9324-49d4f7fb9626", - "type": "derivative", - "unit": "1s" - }, - { - "field": "98667330-bac7-11e9-9324-49d4f7fb9626", - "id": "9866732f-bac7-11e9-9324-49d4f7fb9626", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Client Read Rates [Metricbeat Aerospike] ECS", - "type": "metrics" - } - }, - "id": "eae846a0-bac7-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T17:05:41.386Z", - "version": "WzEzNzksMV0=" - } - ], - "version": "7.3.0" -} diff --git a/metricbeat/module/aerospike/_meta/kibana/7/dashboard/Metricbeat-aerospike-overview.ndjson b/metricbeat/module/aerospike/_meta/kibana/7/dashboard/Metricbeat-aerospike-overview.ndjson new file mode 100644 index 00000000000..be8d8567b06 --- /dev/null +++ b/metricbeat/module/aerospike/_meta/kibana/7/dashboard/Metricbeat-aerospike-overview.ndjson @@ -0,0 +1,10 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Namespace Filter [Metricbeat Aerospike] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"aerospike.namespace.name\",\"id\":\"1565367993423\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"namespace\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"Namespace Filter [Metricbeat Aerospike] ECS\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"72523510-bac3-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMyOTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Node Filter [Metricbeat Aerospike] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"aerospike.namespace.node.host\",\"id\":\"1565367993423\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"node\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"Node Filter [Metricbeat Aerospike] ECS\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"8c173130-bac3-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMyOTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Client Error Rates [Metricbeat Aerospike] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"8674fc30-bac8-11e9-986e-1d8d9532a1f1\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"8674fc31-bac8-11e9-986e-1d8d9532a1f1\",\"label\":\"read\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.read.error\",\"id\":\"8674fc32-bac8-11e9-986e-1d8d9532a1f1\",\"type\":\"max\"},{\"field\":\"8674fc32-bac8-11e9-986e-1d8d9532a1f1\",\"id\":\"8674fc34-bac8-11e9-986e-1d8d9532a1f1\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"8674fc34-bac8-11e9-986e-1d8d9532a1f1\",\"id\":\"8674fc33-bac8-11e9-986e-1d8d9532a1f1\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"86752340-bac8-11e9-986e-1d8d9532a1f1\",\"label\":\"write\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.write.error\",\"id\":\"86752341-bac8-11e9-986e-1d8d9532a1f1\",\"type\":\"max\"},{\"field\":\"86752341-bac8-11e9-986e-1d8d9532a1f1\",\"id\":\"86752343-bac8-11e9-986e-1d8d9532a1f1\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"86752343-bac8-11e9-986e-1d8d9532a1f1\",\"id\":\"86752342-bac8-11e9-986e-1d8d9532a1f1\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"86752344-bac8-11e9-986e-1d8d9532a1f1\",\"label\":\"delete\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.delete.error\",\"id\":\"86752345-bac8-11e9-986e-1d8d9532a1f1\",\"type\":\"max\"},{\"field\":\"86752345-bac8-11e9-986e-1d8d9532a1f1\",\"id\":\"86752347-bac8-11e9-986e-1d8d9532a1f1\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"86752347-bac8-11e9-986e-1d8d9532a1f1\",\"id\":\"86752346-bac8-11e9-986e-1d8d9532a1f1\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Client Error Rates [Metricbeat Aerospike] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b5121f00-bac8-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMyOTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Client Success Rates [Metricbeat Aerospike] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"3b633120-bac9-11e9-9a9a-2f5e8f21d503\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"3b633121-bac9-11e9-9a9a-2f5e8f21d503\",\"label\":\"read\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.read.success\",\"id\":\"3b633122-bac9-11e9-9a9a-2f5e8f21d503\",\"type\":\"max\"},{\"field\":\"3b633122-bac9-11e9-9a9a-2f5e8f21d503\",\"id\":\"3b633124-bac9-11e9-9a9a-2f5e8f21d503\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"3b633124-bac9-11e9-9a9a-2f5e8f21d503\",\"id\":\"3b633123-bac9-11e9-9a9a-2f5e8f21d503\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"3b633125-bac9-11e9-9a9a-2f5e8f21d503\",\"label\":\"write\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.write.success\",\"id\":\"3b633126-bac9-11e9-9a9a-2f5e8f21d503\",\"type\":\"max\"},{\"field\":\"3b633126-bac9-11e9-9a9a-2f5e8f21d503\",\"id\":\"3b633128-bac9-11e9-9a9a-2f5e8f21d503\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"3b633128-bac9-11e9-9a9a-2f5e8f21d503\",\"id\":\"3b633127-bac9-11e9-9a9a-2f5e8f21d503\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"3b633129-bac9-11e9-9a9a-2f5e8f21d503\",\"label\":\"delete\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.delete.success\",\"id\":\"3b63312a-bac9-11e9-9a9a-2f5e8f21d503\",\"type\":\"max\"},{\"field\":\"3b63312a-bac9-11e9-9a9a-2f5e8f21d503\",\"id\":\"3b63312c-bac9-11e9-9a9a-2f5e8f21d503\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"3b63312c-bac9-11e9-9a9a-2f5e8f21d503\",\"id\":\"3b63312b-bac9-11e9-9a9a-2f5e8f21d503\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Client Success Rates [Metricbeat Aerospike] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5b9bf0d0-bac9-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMyOTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Client Timeout Rates [Metricbeat Aerospike] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"ec962840-bac8-11e9-8c31-ed10485dacc9\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"ec962841-bac8-11e9-8c31-ed10485dacc9\",\"label\":\"read\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.read.timeout\",\"id\":\"ec962842-bac8-11e9-8c31-ed10485dacc9\",\"type\":\"max\"},{\"field\":\"ec962842-bac8-11e9-8c31-ed10485dacc9\",\"id\":\"ec962844-bac8-11e9-8c31-ed10485dacc9\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"ec962844-bac8-11e9-8c31-ed10485dacc9\",\"id\":\"ec962843-bac8-11e9-8c31-ed10485dacc9\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"ec962845-bac8-11e9-8c31-ed10485dacc9\",\"label\":\"write\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.write.timeout\",\"id\":\"ec964f50-bac8-11e9-8c31-ed10485dacc9\",\"type\":\"max\"},{\"field\":\"ec964f50-bac8-11e9-8c31-ed10485dacc9\",\"id\":\"ec964f52-bac8-11e9-8c31-ed10485dacc9\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"ec964f52-bac8-11e9-8c31-ed10485dacc9\",\"id\":\"ec964f51-bac8-11e9-8c31-ed10485dacc9\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"ec964f53-bac8-11e9-8c31-ed10485dacc9\",\"label\":\"delete\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.delete.timeout\",\"id\":\"ec964f54-bac8-11e9-8c31-ed10485dacc9\",\"type\":\"max\"},{\"field\":\"ec964f54-bac8-11e9-8c31-ed10485dacc9\",\"id\":\"ec964f56-bac8-11e9-8c31-ed10485dacc9\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"ec964f56-bac8-11e9-8c31-ed10485dacc9\",\"id\":\"ec964f55-bac8-11e9-8c31-ed10485dacc9\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Client Timeout Rates [Metricbeat Aerospike] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"23758d10-bac9-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMyOTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Disk Space [Metricbeat Aerospike] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"8f321e10-bac9-11e9-a715-c7f36757ae84\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"8f321e11-bac9-11e9-a715-c7f36757ae84\",\"label\":\"Total\",\"line_width\":2,\"metrics\":[{\"field\":\"aerospike.namespace.device.total.bytes\",\"id\":\"8f321e12-bac9-11e9-a715-c7f36757ae84\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0.2\",\"formatter\":\"bytes\",\"id\":\"8f321e13-bac9-11e9-a715-c7f36757ae84\",\"label\":\"Used\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.device.used.bytes\",\"id\":\"8f321e14-bac9-11e9-a715-c7f36757ae84\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Disk Space [Metricbeat Aerospike] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bd767280-bac9-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMzMDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of Objects [Metricbeat Aerospike] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":null,\"id\":\"689053c0-baca-11e9-a6e8-09b17988a9ca\",\"value\":0}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"6a3d4070-baca-11e9-a6e8-09b17988a9ca\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"63159630-baca-11e9-b44b-b5d06880c15a\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"63159631-baca-11e9-b44b-b5d06880c15a\",\"label\":\"objects\",\"line_width\":2,\"metrics\":[{\"field\":\"aerospike.namespace.objects.total\",\"id\":\"63159632-baca-11e9-b44b-b5d06880c15a\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Number of Objects [Metricbeat Aerospike] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9ce7ae20-baca-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMzMDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Client Write Rates [Metricbeat Aerospike] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"0316eb50-bac8-11e9-a2f5-271fa90cc176\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"0316eb51-bac8-11e9-a2f5-271fa90cc176\",\"label\":\"success\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.write.success\",\"id\":\"0316eb52-bac8-11e9-a2f5-271fa90cc176\",\"type\":\"max\"},{\"field\":\"0316eb52-bac8-11e9-a2f5-271fa90cc176\",\"id\":\"0316eb54-bac8-11e9-a2f5-271fa90cc176\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"0316eb54-bac8-11e9-a2f5-271fa90cc176\",\"id\":\"0316eb53-bac8-11e9-a2f5-271fa90cc176\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"0316eb55-bac8-11e9-a2f5-271fa90cc176\",\"label\":\"error\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.write.error\",\"id\":\"0316eb56-bac8-11e9-a2f5-271fa90cc176\",\"type\":\"max\"},{\"field\":\"0316eb56-bac8-11e9-a2f5-271fa90cc176\",\"id\":\"0316eb58-bac8-11e9-a2f5-271fa90cc176\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"0316eb58-bac8-11e9-a2f5-271fa90cc176\",\"id\":\"0316eb57-bac8-11e9-a2f5-271fa90cc176\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"0316eb59-bac8-11e9-a2f5-271fa90cc176\",\"label\":\"timeout\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.write.timeout\",\"id\":\"0316eb5a-bac8-11e9-a2f5-271fa90cc176\",\"type\":\"max\"},{\"field\":\"0316eb5a-bac8-11e9-a2f5-271fa90cc176\",\"id\":\"0316eb5c-bac8-11e9-a2f5-271fa90cc176\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"0316eb5c-bac8-11e9-a2f5-271fa90cc176\",\"id\":\"0316eb5b-bac8-11e9-a2f5-271fa90cc176\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Client Write Rates [Metricbeat Aerospike] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3586e810-bac8-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMzMDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Client Read Rates [Metricbeat Aerospike] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"98667320-bac7-11e9-9324-49d4f7fb9626\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"98667321-bac7-11e9-9324-49d4f7fb9626\",\"label\":\"success\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.read.success\",\"id\":\"98667322-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"max\"},{\"field\":\"98667322-bac7-11e9-9324-49d4f7fb9626\",\"id\":\"98667324-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"98667324-bac7-11e9-9324-49d4f7fb9626\",\"id\":\"98667323-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"98667325-bac7-11e9-9324-49d4f7fb9626\",\"label\":\"error\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.read.error\",\"id\":\"98667326-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"max\"},{\"field\":\"98667326-bac7-11e9-9324-49d4f7fb9626\",\"id\":\"98667328-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"98667328-bac7-11e9-9324-49d4f7fb9626\",\"id\":\"98667327-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"98667329-bac7-11e9-9324-49d4f7fb9626\",\"label\":\"not_found\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.read.not_found\",\"id\":\"9866732a-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"max\"},{\"field\":\"9866732a-bac7-11e9-9324-49d4f7fb9626\",\"id\":\"9866732c-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"9866732c-bac7-11e9-9324-49d4f7fb9626\",\"id\":\"9866732b-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#490092\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"9866732d-bac7-11e9-9324-49d4f7fb9626\",\"label\":\"timeout\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.read.timeout\",\"id\":\"9866732e-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"max\"},{\"field\":\"9866732e-bac7-11e9-9324-49d4f7fb9626\",\"id\":\"98667330-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"98667330-bac7-11e9-9324-49d4f7fb9626\",\"id\":\"9866732f-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Client Read Rates [Metricbeat Aerospike] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"eae846a0-bac7-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMzMDMsMV0="} +{"attributes":{"description":"This Aerospike dashboard visualizes the most important metrics for Aerospike namespaces.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"controlledBy\": \"1565367993423\", \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"aerospike.namespace.name\", \"negate\": false, \"params\": {\"query\": \"metricbeat\"}, \"type\": \"phrase\", \"value\": \"metricbeat\"}, \"query\": {\"match\": {\"aerospike.namespace.name\": {\"query\": \"metricbeat\", \"type\": \"phrase\"}}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"1\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Namespace Filter\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"2\",\"w\":9,\"x\":0,\"y\":6},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Node Filter\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"3\",\"w\":25,\"x\":23,\"y\":12},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Client Error Rates\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"4\",\"w\":25,\"x\":23,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Client Success Rates\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"5\",\"w\":25,\"x\":23,\"y\":25},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Client Timeout Rates\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"6\",\"w\":23,\"x\":0,\"y\":25},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Disk Space\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"7\",\"w\":14,\"x\":9,\"y\":0},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Number of Objects\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"8\",\"w\":12,\"x\":0,\"y\":12},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Writes per second\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"9\",\"w\":11,\"x\":12,\"y\":12},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Reads per second\",\"panelRefName\":\"panel_9\"}]","timeRestore":false,"title":"[Metricbeat Aerospike] Database Overview ","version":1},"coreMigrationVersion":"8.0.0","id":"b15668d0-bac3-11e9-a579-f5c0a5d81340","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"72523510-bac3-11e9-a579-f5c0a5d81340","name":"1:panel_1","type":"visualization"},{"id":"8c173130-bac3-11e9-a579-f5c0a5d81340","name":"2:panel_2","type":"visualization"},{"id":"b5121f00-bac8-11e9-a579-f5c0a5d81340","name":"3:panel_3","type":"visualization"},{"id":"5b9bf0d0-bac9-11e9-a579-f5c0a5d81340","name":"4:panel_4","type":"visualization"},{"id":"23758d10-bac9-11e9-a579-f5c0a5d81340","name":"5:panel_5","type":"visualization"},{"id":"bd767280-bac9-11e9-a579-f5c0a5d81340","name":"6:panel_6","type":"visualization"},{"id":"9ce7ae20-baca-11e9-a579-f5c0a5d81340","name":"7:panel_7","type":"visualization"},{"id":"3586e810-bac8-11e9-a579-f5c0a5d81340","name":"8:panel_8","type":"visualization"},{"id":"eae846a0-bac7-11e9-a579-f5c0a5d81340","name":"9:panel_9","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMyOTQsMV0="} diff --git a/metricbeat/module/apache/_meta/kibana/7/dashboard/Metricbeat-apache-overview.json b/metricbeat/module/apache/_meta/kibana/7/dashboard/Metricbeat-apache-overview.json deleted file mode 100644 index 70bc6f01dcd..00000000000 --- a/metricbeat/module/apache/_meta/kibana/7/dashboard/Metricbeat-apache-overview.json +++ /dev/null @@ -1,774 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Apache-HTTPD-ecs", - "title": "CPU usage [Metricbeat Apache] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "id": "1", - "params": { - "customLabel": "CPU load", - "field": "apache.status.cpu.load" - }, - "schema": "metric", - "type": "avg" - }, - { - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "id": "3", - "params": { - "field": "apache.status.hostname", - "order": "desc", - "orderBy": "1", - "row": true, - "size": 5 - }, - "schema": "split", - "type": "terms" - }, - { - "id": "4", - "params": { - "customLabel": "CPU user", - "field": "apache.status.cpu.user" - }, - "schema": "metric", - "type": "avg" - }, - { - "id": "5", - "params": { - "customLabel": "CPU system", - "field": "apache.status.cpu.system" - }, - "schema": "metric", - "type": "avg" - }, - { - "id": "6", - "params": { - "customLabel": "CPU children user", - "field": "apache.status.cpu.children_user" - }, - "schema": "metric", - "type": "avg" - }, - { - "id": "7", - "params": { - "customLabel": "CPU children system", - "field": "apache.status.cpu.children_system" - }, - "schema": "metric", - "type": "avg" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "radiusRatio": 9, - "scale": "linear", - "setYExtents": false, - "shareYAxis": true, - "showCircles": true, - "smoothLines": false, - "times": [], - "yAxis": {} - }, - "title": "Apache HTTPD - CPU ECS", - "type": "line" - } - }, - "id": "Apache-HTTPD-CPU-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Apache-HTTPD-ecs", - "title": "Hostname list [Metricbeat Apache] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "id": "1", - "params": { - "customLabel": "Events count" - }, - "schema": "metric", - "type": "count" - }, - { - "id": "2", - "params": { - "customLabel": "Apache HTTD Hostname", - "field": "apache.status.hostname", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "sort": { - "columnIndex": null, - "direction": null - } - }, - "title": "Apache HTTPD - Hostname list ECS", - "type": "table" - } - }, - "id": "Apache-HTTPD-Hostname-list-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Apache-HTTPD-ecs", - "title": "Load1/5/15 [Metricbeat Apache] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "id": "1", - "params": { - "customLabel": "Load 5", - "field": "apache.status.load.5" - }, - "schema": "metric", - "type": "avg" - }, - { - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "id": "3", - "params": { - "customLabel": "Load 1", - "field": "apache.status.load.1" - }, - "schema": "metric", - "type": "avg" - }, - { - "id": "4", - "params": { - "customLabel": "Load 15", - "field": "apache.status.load.15" - }, - "schema": "metric", - "type": "avg" - }, - { - "id": "5", - "params": { - "customLabel": "Hostname", - "field": "apache.status.hostname", - "order": "desc", - "orderBy": "1", - "row": true, - "size": 5 - }, - "schema": "split", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "radiusRatio": 9, - "scale": "linear", - "setYExtents": false, - "shareYAxis": true, - "showCircles": true, - "smoothLines": false, - "times": [], - "yAxis": {} - }, - "title": "Apache HTTPD - Load1/5/15 ECS", - "type": "line" - } - }, - "id": "Apache-HTTPD-Load1-slash-5-slash-15-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Apache-HTTPD-ecs", - "title": "Scoreboard [Metricbeat Apache] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "id": "1", - "params": { - "customLabel": "Closing connection", - "field": "apache.status.scoreboard.closing_connection" - }, - "schema": "metric", - "type": "avg" - }, - { - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "id": "3", - "params": { - "customLabel": "Hostname", - "field": "apache.status.hostname", - "order": "desc", - "orderBy": "1", - "row": true, - "size": 5 - }, - "schema": "split", - "type": "terms" - }, - { - "id": "4", - "params": { - "customLabel": "DNS lookup", - "field": "apache.status.scoreboard.dns_lookup" - }, - "schema": "metric", - "type": "avg" - }, - { - "id": "5", - "params": { - "customLabel": "Gracefully finishing", - "field": "apache.status.scoreboard.gracefully_finishing" - }, - "schema": "metric", - "type": "avg" - }, - { - "id": "6", - "params": { - "customLabel": "Idle cleanup", - "field": "apache.status.scoreboard.idle_cleanup" - }, - "schema": "metric", - "type": "avg" - }, - { - "id": "7", - "params": { - "customLabel": "Keepalive", - "field": "apache.status.scoreboard.keepalive" - }, - "schema": "metric", - "type": "avg" - }, - { - "id": "8", - "params": { - "customLabel": "Logging", - "field": "apache.status.scoreboard.logging" - }, - "schema": "metric", - "type": "avg" - }, - { - "id": "9", - "params": { - "customLabel": "Open slot", - "field": "apache.status.scoreboard.open_slot" - }, - "schema": "metric", - "type": "avg" - }, - { - "id": "10", - "params": { - "customLabel": "Reading request", - "field": "apache.status.scoreboard.reading_request" - }, - "schema": "metric", - "type": "avg" - }, - { - "id": "11", - "params": { - "customLabel": "Sending reply", - "field": "apache.status.scoreboard.sending_reply" - }, - "schema": "metric", - "type": "avg" - }, - { - "id": "12", - "params": { - "customLabel": "Starting up", - "field": "apache.status.scoreboard.starting_up" - }, - "schema": "metric", - "type": "avg" - }, - { - "id": "13", - "params": { - "customLabel": "Total", - "field": "apache.status.scoreboard.total" - }, - "schema": "metric", - "type": "avg" - }, - { - "id": "14", - "params": { - "customLabel": "Waiting for connection", - "field": "apache.status.scoreboard.waiting_for_connection" - }, - "schema": "metric", - "type": "avg" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "radiusRatio": 9, - "scale": "linear", - "setYExtents": false, - "shareYAxis": true, - "showCircles": true, - "smoothLines": false, - "times": [], - "yAxis": {} - }, - "title": "Apache HTTPD - Scoreboard ECS", - "type": "line" - } - }, - "id": "Apache-HTTPD-Scoreboard-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Apache-HTTPD-ecs", - "title": "Total accesses and kbytes [Metricbeat Apache] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "id": "1", - "params": { - "customLabel": "Total kbytes", - "field": "apache.status.total_kbytes" - }, - "schema": "metric", - "type": "max" - }, - { - "id": "2", - "params": { - "customLabel": "Total accesses", - "field": "apache.status.total_accesses" - }, - "schema": "metric", - "type": "max" - } - ], - "listeners": {}, - "params": { - "fontSize": 60, - "handleNoResults": true - }, - "title": "Apache HTTPD - Total accesses and kbytes ECS", - "type": "metric" - } - }, - "id": "Apache-HTTPD-Total-accesses-and-kbytes-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Apache-HTTPD-ecs", - "title": "Uptime [Metricbeat Apache] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "id": "1", - "params": { - "customLabel": "Uptime", - "field": "apache.status.uptime.uptime" - }, - "schema": "metric", - "type": "max" - }, - { - "id": "2", - "params": { - "customLabel": "Server uptime", - "field": "apache.status.uptime.server_uptime" - }, - "schema": "metric", - "type": "max" - } - ], - "listeners": {}, - "params": { - "fontSize": 60, - "handleNoResults": true - }, - "title": "Apache HTTPD - Uptime ECS", - "type": "metric" - } - }, - "id": "Apache-HTTPD-Uptime-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Apache-HTTPD-ecs", - "title": "Workers [Metricbeat Apache] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "id": "1", - "params": { - "customLabel": "Busy workers", - "field": "apache.status.workers.busy" - }, - "schema": "metric", - "type": "avg" - }, - { - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "id": "3", - "params": { - "customLabel": "Hostname", - "field": "apache.status.hostname", - "order": "desc", - "orderBy": "1", - "row": true, - "size": 5 - }, - "schema": "split", - "type": "terms" - }, - { - "id": "4", - "params": { - "customLabel": "Idle workers", - "field": "apache.status.workers.idle" - }, - "schema": "metric", - "type": "avg" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "radiusRatio": 9, - "scale": "linear", - "setYExtents": false, - "shareYAxis": true, - "showCircles": true, - "smoothLines": false, - "times": [], - "yAxis": {} - }, - "title": "Apache HTTPD - Workers ECS", - "type": "line" - } - }, - "id": "Apache-HTTPD-Workers-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "event.module: apache" - } - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Apache HTTPD ECS", - "version": 1 - }, - "id": "Apache-HTTPD-ecs", - "type": "search", - "version": 1 - }, - { - "attributes": { - "description": "Overview of Apache server status", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 7, - "id": "Apache-HTTPD-CPU-ecs", - "panelIndex": 1, - "row": 10, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "Apache-HTTPD-Hostname-list-ecs", - "panelIndex": 2, - "row": 1, - "size_x": 3, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "Apache-HTTPD-Load1-slash-5-slash-15-ecs", - "panelIndex": 3, - "row": 10, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "Apache-HTTPD-Scoreboard-ecs", - "panelIndex": 4, - "row": 7, - "size_x": 12, - "size_y": 3, - "type": "visualization" - }, - { - "col": 7, - "id": "Apache-HTTPD-Total-accesses-and-kbytes-ecs", - "panelIndex": 5, - "row": 1, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 4, - "id": "Apache-HTTPD-Uptime-ecs", - "panelIndex": 6, - "row": 1, - "size_x": 3, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "Apache-HTTPD-Workers-ecs", - "panelIndex": 7, - "row": 4, - "size_x": 12, - "size_y": 3, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Metricbeat Apache] Overview ECS", - "uiStateJSON": { - "P-2": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-5": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "P-6": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - } - }, - "version": 1 - }, - "id": "Metricbeat-Apache-HTTPD-server-status-ecs", - "type": "dashboard", - "version": 3 - } - ], - "version": "6.0.0-beta1-SNAPSHOT" -} diff --git a/metricbeat/module/apache/_meta/kibana/7/dashboard/Metricbeat-apache-overview.ndjson b/metricbeat/module/apache/_meta/kibana/7/dashboard/Metricbeat-apache-overview.ndjson new file mode 100644 index 00000000000..30682dfe90f --- /dev/null +++ b/metricbeat/module/apache/_meta/kibana/7/dashboard/Metricbeat-apache-overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.module: apache\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Apache HTTPD ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Apache-HTTPD-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:30:24.484Z","version":"WzMzMTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"CPU usage [Metricbeat Apache] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{\"customLabel\":\"CPU load\",\"field\":\"apache.status.cpu.load\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"id\":\"3\",\"params\":{\"field\":\"apache.status.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"id\":\"4\",\"params\":{\"customLabel\":\"CPU user\",\"field\":\"apache.status.cpu.user\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"5\",\"params\":{\"customLabel\":\"CPU system\",\"field\":\"apache.status.cpu.system\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"6\",\"params\":{\"customLabel\":\"CPU children user\",\"field\":\"apache.status.cpu.children_user\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"7\",\"params\":{\"customLabel\":\"CPU children system\",\"field\":\"apache.status.cpu.children_system\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"radiusRatio\":9,\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"yAxis\":{},\"row\":true},\"title\":\"Apache HTTPD - CPU ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-HTTPD-CPU-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-HTTPD-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:30:24.484Z","version":"WzMzMDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Hostname list [Metricbeat Apache] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{\"customLabel\":\"Events count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"customLabel\":\"Apache HTTD Hostname\",\"field\":\"apache.status.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"showToolbar\":true},\"title\":\"Apache HTTPD - Hostname list ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-HTTPD-Hostname-list-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-HTTPD-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:30:24.484Z","version":"WzMzMDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Load1/5/15 [Metricbeat Apache] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{\"customLabel\":\"Load 5\",\"field\":\"apache.status.load.5\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"id\":\"3\",\"params\":{\"customLabel\":\"Load 1\",\"field\":\"apache.status.load.1\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"4\",\"params\":{\"customLabel\":\"Load 15\",\"field\":\"apache.status.load.15\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"5\",\"params\":{\"customLabel\":\"Hostname\",\"field\":\"apache.status.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"radiusRatio\":9,\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"yAxis\":{},\"row\":true},\"title\":\"Apache HTTPD - Load1/5/15 ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-HTTPD-Load1-slash-5-slash-15-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-HTTPD-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:30:24.484Z","version":"WzMzMDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Scoreboard [Metricbeat Apache] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{\"customLabel\":\"Closing connection\",\"field\":\"apache.status.scoreboard.closing_connection\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"id\":\"3\",\"params\":{\"customLabel\":\"Hostname\",\"field\":\"apache.status.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"id\":\"4\",\"params\":{\"customLabel\":\"DNS lookup\",\"field\":\"apache.status.scoreboard.dns_lookup\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"5\",\"params\":{\"customLabel\":\"Gracefully finishing\",\"field\":\"apache.status.scoreboard.gracefully_finishing\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"6\",\"params\":{\"customLabel\":\"Idle cleanup\",\"field\":\"apache.status.scoreboard.idle_cleanup\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"7\",\"params\":{\"customLabel\":\"Keepalive\",\"field\":\"apache.status.scoreboard.keepalive\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"8\",\"params\":{\"customLabel\":\"Logging\",\"field\":\"apache.status.scoreboard.logging\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"9\",\"params\":{\"customLabel\":\"Open slot\",\"field\":\"apache.status.scoreboard.open_slot\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"10\",\"params\":{\"customLabel\":\"Reading request\",\"field\":\"apache.status.scoreboard.reading_request\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"11\",\"params\":{\"customLabel\":\"Sending reply\",\"field\":\"apache.status.scoreboard.sending_reply\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"12\",\"params\":{\"customLabel\":\"Starting up\",\"field\":\"apache.status.scoreboard.starting_up\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"13\",\"params\":{\"customLabel\":\"Total\",\"field\":\"apache.status.scoreboard.total\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"14\",\"params\":{\"customLabel\":\"Waiting for connection\",\"field\":\"apache.status.scoreboard.waiting_for_connection\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"radiusRatio\":9,\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"yAxis\":{},\"row\":true},\"title\":\"Apache HTTPD - Scoreboard ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-HTTPD-Scoreboard-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-HTTPD-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:30:24.484Z","version":"WzMzMDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Total accesses and kbytes [Metricbeat Apache] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{\"customLabel\":\"Total kbytes\",\"field\":\"apache.status.total_kbytes\"},\"schema\":\"metric\",\"type\":\"max\"},{\"id\":\"2\",\"params\":{\"customLabel\":\"Total accesses\",\"field\":\"apache.status.total_accesses\"},\"schema\":\"metric\",\"type\":\"max\"}],\"listeners\":{},\"params\":{\"fontSize\":60,\"handleNoResults\":true},\"title\":\"Apache HTTPD - Total accesses and kbytes ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-HTTPD-Total-accesses-and-kbytes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-HTTPD-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:30:24.484Z","version":"WzMzMDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Uptime [Metricbeat Apache] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{\"customLabel\":\"Uptime\",\"field\":\"apache.status.uptime.uptime\"},\"schema\":\"metric\",\"type\":\"max\"},{\"id\":\"2\",\"params\":{\"customLabel\":\"Server uptime\",\"field\":\"apache.status.uptime.server_uptime\"},\"schema\":\"metric\",\"type\":\"max\"}],\"listeners\":{},\"params\":{\"fontSize\":60,\"handleNoResults\":true},\"title\":\"Apache HTTPD - Uptime ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-HTTPD-Uptime-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-HTTPD-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:30:24.484Z","version":"WzMzMDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Workers [Metricbeat Apache] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{\"customLabel\":\"Busy workers\",\"field\":\"apache.status.workers.busy\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"id\":\"3\",\"params\":{\"customLabel\":\"Hostname\",\"field\":\"apache.status.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"id\":\"4\",\"params\":{\"customLabel\":\"Idle workers\",\"field\":\"apache.status.workers.idle\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"radiusRatio\":9,\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"yAxis\":{},\"row\":true},\"title\":\"Apache HTTPD - Workers ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-HTTPD-Workers-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-HTTPD-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:30:24.484Z","version":"WzMzMTAsMV0="} +{"attributes":{"description":"Overview of Apache server status","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":36,\"w\":24,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":12,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":36,\"w\":24,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":24,\"w\":48,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":0,\"w\":24,\"h\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":12,\"y\":0,\"w\":12,\"h\":12,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":12,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Metricbeat Apache] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Metricbeat-Apache-HTTPD-server-status-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Apache-HTTPD-CPU-ecs","name":"1:panel_1","type":"visualization"},{"id":"Apache-HTTPD-Hostname-list-ecs","name":"2:panel_2","type":"visualization"},{"id":"Apache-HTTPD-Load1-slash-5-slash-15-ecs","name":"3:panel_3","type":"visualization"},{"id":"Apache-HTTPD-Scoreboard-ecs","name":"4:panel_4","type":"visualization"},{"id":"Apache-HTTPD-Total-accesses-and-kbytes-ecs","name":"5:panel_5","type":"visualization"},{"id":"Apache-HTTPD-Uptime-ecs","name":"6:panel_6","type":"visualization"},{"id":"Apache-HTTPD-Workers-ecs","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:24.484Z","version":"WzMzMTIsMV0="} diff --git a/metricbeat/module/apache/module.yml b/metricbeat/module/apache/module.yml index 6d77cafd6ce..5c9170d94cd 100644 --- a/metricbeat/module/apache/module.yml +++ b/metricbeat/module/apache/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Metricbeat-Apache-HTTPD-server-status - file: Metricbeat-apache-overview.json + file: Metricbeat-apache-overview.ndjson diff --git a/metricbeat/module/ceph/_meta/kibana/7/dashboard/Metricbeat-ceph-overview.json b/metricbeat/module/ceph/_meta/kibana/7/dashboard/Metricbeat-ceph-overview.json deleted file mode 100644 index 109c6fa5c79..00000000000 --- a/metricbeat/module/ceph/_meta/kibana/7/dashboard/Metricbeat-ceph-overview.json +++ /dev/null @@ -1,723 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This Ceph dashboard that shows the most important cluster metrics.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "1", - "w": 18, - "x": 30, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "Cluster Disk Stats", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "2", - "w": 24, - "x": 24, - "y": 12 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "Throughput", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "3", - "w": 24, - "x": 0, - "y": 12 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "IOPS", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "4", - "w": 6, - "x": 24, - "y": 0 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "title": "OSD Disk Usage", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "5", - "w": 5, - "x": 0, - "y": 0 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "title": "Pools", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "6", - "w": 19, - "x": 5, - "y": 0 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "title": "Pool Objects", - "version": "7.3.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Ceph] Cluster Overview", - "version": 1 - }, - "id": "c93f2c30-b473-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "054a0900-b467-11e9-a579-f5c0a5d81340", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "88d48440-b46b-11e9-a579-f5c0a5d81340", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "346d00d0-b46b-11e9-a579-f5c0a5d81340", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "13efa190-b46c-11e9-a579-f5c0a5d81340", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "393df790-b470-11e9-a579-f5c0a5d81340", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "aa9c2f10-b470-11e9-a579-f5c0a5d81340", - "name": "panel_5", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-08-19T15:00:55.571Z", - "version": "WzE1NzEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Cluster Disk Stats [Metricbeat Ceph] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "bd70f9c0-b472-11e9-ba7f-f52449624592" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "7b71f300-b466-11e9-841e-0ddf9a697c96", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(159,5,0,1)", - "fill": "0", - "formatter": "bytes", - "hide_in_legend": 0, - "id": "7b71f301-b466-11e9-841e-0ddf9a697c96", - "label": "total", - "line_width": "1", - "metrics": [ - { - "field": "ceph.cluster_disk.total.bytes", - "id": "7b71f302-b466-11e9-841e-0ddf9a697c96", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0.2", - "formatter": "bytes", - "id": "7b71f303-b466-11e9-841e-0ddf9a697c96", - "label": "available", - "line_width": "1", - "metrics": [ - { - "field": "ceph.cluster_disk.available.bytes", - "id": "7b71f304-b466-11e9-841e-0ddf9a697c96", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "64f99360-b472-11e9-ba7f-f52449624592", - "label": "used", - "line_width": 1, - "metrics": [ - { - "field": "ceph.cluster_disk.used.bytes", - "id": "64f99361-b472-11e9-ba7f-f52449624592", - "type": "max" - } - ], - "point_size": "0", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Cluster Disk Stats [Metricbeat Ceph] ECS", - "type": "metrics" - } - }, - "id": "054a0900-b467-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-02T10:56:16.795Z", - "version": "WzYwMCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Throughput [Metricbeat Ceph] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "57f0f3e0-b46b-11e9-88d3-b1e3cace09ae", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": 0, - "formatter": "number", - "id": "57f11af0-b46b-11e9-88d3-b1e3cace09ae", - "label": "read", - "line_width": 2, - "metrics": [ - { - "field": "ceph.cluster_status.traffic.read_bytes", - "id": "57f11af1-b46b-11e9-88d3-b1e3cace09ae", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(176,188,0,1)", - "fill": 0, - "formatter": "number", - "id": "57f11af2-b46b-11e9-88d3-b1e3cace09ae", - "label": "write", - "line_width": 2, - "metrics": [ - { - "field": "ceph.cluster_status.traffic.write_bytes", - "id": "57f11af3-b46b-11e9-88d3-b1e3cace09ae", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Throughput [Metricbeat Ceph] ECS", - "type": "metrics" - } - }, - "id": "88d48440-b46b-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-02T10:54:20.715Z", - "version": "WzU5NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "IOPS [Metricbeat Ceph] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "0fc1f2e0-b46b-11e9-9488-8bde5ab143f4", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "formatter": "number", - "id": "0fc1f2e1-b46b-11e9-9488-8bde5ab143f4", - "label": "read", - "line_width": 2, - "metrics": [ - { - "field": "ceph.cluster_status.traffic.read_op_per_sec", - "id": "0fc1f2e2-b46b-11e9-9488-8bde5ab143f4", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#DB1374", - "fill": 0, - "formatter": "number", - "id": "0fc1f2e3-b46b-11e9-9488-8bde5ab143f4", - "label": "write", - "line_width": 2, - "metrics": [ - { - "field": "ceph.cluster_status.traffic.write_op_per_sec", - "id": "0fc1f2e4-b46b-11e9-9488-8bde5ab143f4", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "IOPS [Metricbeat Ceph] ECS", - "type": "metrics" - } - }, - "id": "346d00d0-b46b-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-02T10:54:00.152Z", - "version": "WzU5MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "OSD Disk Usage [Metricbeat Ceph] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "gauge": "rgba(226,115,0,1)", - "id": "e681d700-b46b-11e9-9bdc-15c69a730d82", - "operator": "gte", - "value": 70 - }, - { - "gauge": "rgba(247,58,26,1)", - "id": "61b552b0-b513-11e9-81ce-0379c4621e40", - "value": 90 - } - ], - "gauge_inner_width": 10, - "gauge_max": "", - "gauge_style": "half", - "gauge_width": 10, - "id": "e17a9bc0-b46b-11e9-9a02-5de45d117640", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(164,221,0,1)", - "fill": 0, - "formatter": "percent", - "id": "e17a9bc1-b46b-11e9-9a02-5de45d117640", - "label": "OSD disk usage", - "line_width": 2, - "metrics": [ - { - "field": "ceph.osd_df.used.pct", - "id": "e17a9bc2-b46b-11e9-9a02-5de45d117640", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "OSD Disk Usage [Metricbeat Ceph] ECS", - "type": "metrics" - } - }, - "id": "13efa190-b46c-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-02T10:52:20.880Z", - "version": "WzU3NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Pools [Metricbeat Ceph] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "e96942b0-b46f-11e9-aefa-c791377b99c3" - } - ], - "bar_color_rules": [ - { - "id": "21aaa880-b470-11e9-aefa-c791377b99c3" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "20eadaf0-b470-11e9-aefa-c791377b99c3" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "b859c050-b46f-11e9-9f8f-97f5e69abdab", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "formatter": "number", - "id": "b859e760-b46f-11e9-9f8f-97f5e69abdab", - "label": "Pools", - "line_width": 2, - "metrics": [ - { - "field": "ceph.pool_disk.id", - "id": "b859e761-b46f-11e9-9f8f-97f5e69abdab", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric" - }, - "title": "Pools [Metricbeat Ceph] ECS", - "type": "metrics" - } - }, - "id": "393df790-b470-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-02T10:53:11.179Z", - "version": "WzU4MSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Pool Objects [Metricbeat Ceph] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6ac91290-b470-11e9-a4bb-473d6710f872" - } - ], - "bar_color_rules": [ - { - "id": "6b864810-b470-11e9-a4bb-473d6710f872" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "4ce78950-b470-11e9-87e8-53bd102d292b", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": 0, - "formatter": "number", - "id": "4ce78951-b470-11e9-87e8-53bd102d292b", - "label": "Objects", - "line_width": 2, - "metrics": [ - { - "field": "ceph.pool_disk.stats.objects", - "id": "4ce78952-b470-11e9-87e8-53bd102d292b", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "ceph.pool_disk.name", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Pool Objects [Metricbeat Ceph] ECS", - "type": "metrics" - } - }, - "id": "aa9c2f10-b470-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-02T10:53:35.220Z", - "version": "WzU4NiwxXQ==" - } - ], - "version": "7.3.0" -} diff --git a/metricbeat/module/ceph/_meta/kibana/7/dashboard/Metricbeat-ceph-overview.ndjson b/metricbeat/module/ceph/_meta/kibana/7/dashboard/Metricbeat-ceph-overview.ndjson new file mode 100644 index 00000000000..31fee78b70d --- /dev/null +++ b/metricbeat/module/ceph/_meta/kibana/7/dashboard/Metricbeat-ceph-overview.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cluster Disk Stats [Metricbeat Ceph] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"bd70f9c0-b472-11e9-ba7f-f52449624592\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7b71f300-b466-11e9-841e-0ddf9a697c96\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(159,5,0,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"hide_in_legend\":0,\"id\":\"7b71f301-b466-11e9-841e-0ddf9a697c96\",\"label\":\"total\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"ceph.cluster_disk.total.bytes\",\"id\":\"7b71f302-b466-11e9-841e-0ddf9a697c96\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0.2\",\"formatter\":\"bytes\",\"id\":\"7b71f303-b466-11e9-841e-0ddf9a697c96\",\"label\":\"available\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"ceph.cluster_disk.available.bytes\",\"id\":\"7b71f304-b466-11e9-841e-0ddf9a697c96\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"64f99360-b472-11e9-ba7f-f52449624592\",\"label\":\"used\",\"line_width\":1,\"metrics\":[{\"field\":\"ceph.cluster_disk.used.bytes\",\"id\":\"64f99361-b472-11e9-ba7f-f52449624592\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Cluster Disk Stats [Metricbeat Ceph] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"054a0900-b467-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:57.280Z","version":"WzM2MzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Throughput [Metricbeat Ceph] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"57f0f3e0-b46b-11e9-88d3-b1e3cace09ae\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"57f11af0-b46b-11e9-88d3-b1e3cace09ae\",\"label\":\"read\",\"line_width\":2,\"metrics\":[{\"field\":\"ceph.cluster_status.traffic.read_bytes\",\"id\":\"57f11af1-b46b-11e9-88d3-b1e3cace09ae\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"57f11af2-b46b-11e9-88d3-b1e3cace09ae\",\"label\":\"write\",\"line_width\":2,\"metrics\":[{\"field\":\"ceph.cluster_status.traffic.write_bytes\",\"id\":\"57f11af3-b46b-11e9-88d3-b1e3cace09ae\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Throughput [Metricbeat Ceph] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"88d48440-b46b-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:57.280Z","version":"WzM2MzEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"IOPS [Metricbeat Ceph] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"0fc1f2e0-b46b-11e9-9488-8bde5ab143f4\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"0fc1f2e1-b46b-11e9-9488-8bde5ab143f4\",\"label\":\"read\",\"line_width\":2,\"metrics\":[{\"field\":\"ceph.cluster_status.traffic.read_op_per_sec\",\"id\":\"0fc1f2e2-b46b-11e9-9488-8bde5ab143f4\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":0,\"formatter\":\"number\",\"id\":\"0fc1f2e3-b46b-11e9-9488-8bde5ab143f4\",\"label\":\"write\",\"line_width\":2,\"metrics\":[{\"field\":\"ceph.cluster_status.traffic.write_op_per_sec\",\"id\":\"0fc1f2e4-b46b-11e9-9488-8bde5ab143f4\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"IOPS [Metricbeat Ceph] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"346d00d0-b46b-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:57.280Z","version":"WzM2MzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"OSD Disk Usage [Metricbeat Ceph] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"gauge\":\"rgba(226,115,0,1)\",\"id\":\"e681d700-b46b-11e9-9bdc-15c69a730d82\",\"operator\":\"gte\",\"value\":70},{\"gauge\":\"rgba(247,58,26,1)\",\"id\":\"61b552b0-b513-11e9-81ce-0379c4621e40\",\"value\":90}],\"gauge_inner_width\":10,\"gauge_max\":\"\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"e17a9bc0-b46b-11e9-9a02-5de45d117640\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":0,\"formatter\":\"percent\",\"id\":\"e17a9bc1-b46b-11e9-9a02-5de45d117640\",\"label\":\"OSD disk usage\",\"line_width\":2,\"metrics\":[{\"field\":\"ceph.osd_df.used.pct\",\"id\":\"e17a9bc2-b46b-11e9-9a02-5de45d117640\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"OSD Disk Usage [Metricbeat Ceph] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"13efa190-b46c-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:57.280Z","version":"WzM2MzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pools [Metricbeat Ceph] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"e96942b0-b46f-11e9-aefa-c791377b99c3\"}],\"bar_color_rules\":[{\"id\":\"21aaa880-b470-11e9-aefa-c791377b99c3\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"20eadaf0-b470-11e9-aefa-c791377b99c3\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"b859c050-b46f-11e9-9f8f-97f5e69abdab\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"b859e760-b46f-11e9-9f8f-97f5e69abdab\",\"label\":\"Pools\",\"line_width\":2,\"metrics\":[{\"field\":\"ceph.pool_disk.id\",\"id\":\"b859e761-b46f-11e9-9f8f-97f5e69abdab\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Pools [Metricbeat Ceph] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"393df790-b470-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:57.280Z","version":"WzM2MzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pool Objects [Metricbeat Ceph] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6ac91290-b470-11e9-a4bb-473d6710f872\"}],\"bar_color_rules\":[{\"id\":\"6b864810-b470-11e9-a4bb-473d6710f872\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"4ce78950-b470-11e9-87e8-53bd102d292b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"4ce78951-b470-11e9-87e8-53bd102d292b\",\"label\":\"Objects\",\"line_width\":2,\"metrics\":[{\"field\":\"ceph.pool_disk.stats.objects\",\"id\":\"4ce78952-b470-11e9-87e8-53bd102d292b\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"ceph.pool_disk.name\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Pool Objects [Metricbeat Ceph] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"aa9c2f10-b470-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:57.280Z","version":"WzM2MzUsMV0="} +{"attributes":{"description":"This Ceph dashboard that shows the most important cluster metrics.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"1\",\"w\":18,\"x\":30,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cluster Disk Stats\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":12},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Throughput\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":12},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"IOPS\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"4\",\"w\":6,\"x\":24,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"OSD Disk Usage\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"5\",\"w\":5,\"x\":0,\"y\":0},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Pools\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6\",\"w\":19,\"x\":5,\"y\":0},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Pool Objects\",\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Metricbeat Ceph] Cluster Overview","version":1},"coreMigrationVersion":"8.0.0","id":"c93f2c30-b473-11e9-a579-f5c0a5d81340","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"054a0900-b467-11e9-a579-f5c0a5d81340","name":"1:panel_1","type":"visualization"},{"id":"88d48440-b46b-11e9-a579-f5c0a5d81340","name":"2:panel_2","type":"visualization"},{"id":"346d00d0-b46b-11e9-a579-f5c0a5d81340","name":"3:panel_3","type":"visualization"},{"id":"13efa190-b46c-11e9-a579-f5c0a5d81340","name":"4:panel_4","type":"visualization"},{"id":"393df790-b470-11e9-a579-f5c0a5d81340","name":"5:panel_5","type":"visualization"},{"id":"aa9c2f10-b470-11e9-a579-f5c0a5d81340","name":"6:panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:57.280Z","version":"WzM2MjksMV0="} diff --git a/metricbeat/module/consul/_meta/kibana/7/dashboard/Metricbeat-consul-overview.json b/metricbeat/module/consul/_meta/kibana/7/dashboard/Metricbeat-consul-overview.json deleted file mode 100644 index 823f7beca89..00000000000 --- a/metricbeat/module/consul/_meta/kibana/7/dashboard/Metricbeat-consul-overview.json +++ /dev/null @@ -1,760 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of Consul", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "1", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "Garbage Collector stats", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "2", - "w": 16, - "x": 15, - "y": 15 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "Goroutines", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "3", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "Bytes Allocated", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "4", - "w": 17, - "x": 31, - "y": 15 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "title": "Heap Objects", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "5", - "w": 15, - "x": 0, - "y": 15 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "title": "Bytes of memory obtained from the OS", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "6", - "w": 16, - "x": 31, - "y": 30 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "title": "Malloc count", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "7", - "w": 14, - "x": 0, - "y": 30 - }, - "panelIndex": "7", - "panelRefName": "panel_6", - "title": "Garbage Collector pause ms", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "8", - "w": 17, - "x": 14, - "y": 30 - }, - "panelIndex": "8", - "panelRefName": "panel_7", - "title": "Garbage Collector Runs", - "version": "7.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Metricbeat Consul] Overview", - "version": 1 - }, - "id": "6d0cf140-2deb-11e9-bf7e-f35bf5d2e71b", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "dda0c950-2dea-11e9-bf7e-f35bf5d2e71b", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "ea842730-2de9-11e9-bf7e-f35bf5d2e71b", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "6c39d4b0-2de9-11e9-bf7e-f35bf5d2e71b", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "37c75bc0-2dea-11e9-bf7e-f35bf5d2e71b", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "69b29820-2dea-11e9-bf7e-f35bf5d2e71b", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "8ab67000-2dea-11e9-bf7e-f35bf5d2e71b", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "d275dbc0-2de9-11e9-bf7e-f35bf5d2e71b", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "1e97c1d0-2dea-11e9-bf7e-f35bf5d2e71b", - "name": "panel_7", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-02-11T10:55:39.323Z", - "version": "WzU5NywzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Garbage Collector stats [Metricbeat Consul]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "ns,ms,2", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Pause time", - "line_width": "1", - "metrics": [ - { - "field": "consul.agent.runtime.garbage_collector.pause.current.ns", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}} ms" - }, - { - "axis_position": "right", - "chart_type": "bar", - "color": "rgba(115,216,255,1)", - "fill": "0.5", - "formatter": "number", - "id": "9728a010-2dea-11e9-83ed-b7c793d35de5", - "label": "Runs", - "line_width": 1, - "metrics": [ - { - "field": "consul.agent.runtime.garbage_collector.runs", - "id": "9728a011-2dea-11e9-83ed-b7c793d35de5", - "type": "sum" - }, - { - "field": "9728a011-2dea-11e9-83ed-b7c793d35de5", - "id": "9ed22480-2dea-11e9-83ed-b7c793d35de5", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 1, - "split_mode": "everything", - "stacked": "none", - "steps": 1 - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Garbage Collector stats [Metricbeat Consul]", - "type": "metrics" - } - }, - "id": "dda0c950-2dea-11e9-bf7e-f35bf5d2e71b", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-02-11T10:55:03.187Z", - "version": "WzU5NSwzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Goroutines [Metricbeat Consul]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Goroutines", - "line_width": 1, - "metrics": [ - { - "field": "consul.agent.runtime.goroutines", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Goroutines [Metricbeat Consul]", - "type": "metrics" - } - }, - "id": "ea842730-2de9-11e9-bf7e-f35bf5d2e71b", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-02-11T10:43:49.667Z", - "version": "WzU4NywzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Bytes Allocated [Metricbeat Consul]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Bytes allocated", - "line_width": 1, - "metrics": [ - { - "field": "consul.agent.runtime.alloc.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Bytes Allocated [Metricbeat Consul]", - "type": "metrics" - } - }, - "id": "6c39d4b0-2de9-11e9-bf7e-f35bf5d2e71b", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-02-11T10:40:41.790Z", - "version": "WzU4NSwzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Heap Objects [Metricbeat Consul]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Heap Objects", - "line_width": 1, - "metrics": [ - { - "field": "consul.agent.runtime.heap_objects", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Heap Objects [Metricbeat Consul]", - "type": "metrics" - } - }, - "id": "37c75bc0-2dea-11e9-bf7e-f35bf5d2e71b", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-02-11T10:45:59.292Z", - "version": "WzU4OSwzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Bytes of memory obtained from the OS [Metricbeat Consul]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Bytes of memory obtained from the OS", - "line_width": 1, - "metrics": [ - { - "field": "consul.agent.runtime.sys.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Bytes of memory obtained from the OS [Metricbeat Consul]", - "type": "metrics" - } - }, - "id": "69b29820-2dea-11e9-bf7e-f35bf5d2e71b", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-02-11T10:47:23.042Z", - "version": "WzU5MCwzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Malloc count [Metricbeat Consul]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Malloc Count", - "line_width": 1, - "metrics": [ - { - "field": "consul.agent.runtime.malloc_count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "7a6e0aa0-2dea-11e9-83ed-b7c793d35de5", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Malloc count [Metricbeat Consul]", - "type": "metrics" - } - }, - "id": "8ab67000-2dea-11e9-bf7e-f35bf5d2e71b", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-02-11T10:48:18.432Z", - "version": "WzU5MSwzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Garbage Collector pause ms [Metricbeat Consul]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "ns,ms,4", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Garbage Collector pause", - "line_width": 1, - "metrics": [ - { - "field": "consul.agent.runtime.garbage_collector.pause.current.ns", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}} ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Garbage Collector pause ms [Metricbeat Consul]", - "type": "metrics" - } - }, - "id": "d275dbc0-2de9-11e9-bf7e-f35bf5d2e71b", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-02-11T10:43:09.308Z", - "version": "WzU4NiwzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Garbage Collector Runs [Metricbeat Consul]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Garbage Collector Runs", - "line_width": 1, - "metrics": [ - { - "field": "consul.agent.runtime.garbage_collector.runs", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "ffaa1fc0-2de9-11e9-83ed-b7c793d35de5", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "steps": 1 - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Garbage Collector Runs [Metricbeat Consul]", - "type": "metrics" - } - }, - "id": "1e97c1d0-2dea-11e9-bf7e-f35bf5d2e71b", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-02-11T10:51:44.187Z", - "version": "WzU5MywzXQ==" - } - ], - "version": "7.0.0-SNAPSHOT" -} diff --git a/metricbeat/module/consul/_meta/kibana/7/dashboard/Metricbeat-consul-overview.ndjson b/metricbeat/module/consul/_meta/kibana/7/dashboard/Metricbeat-consul-overview.ndjson new file mode 100644 index 00000000000..34df729eb67 --- /dev/null +++ b/metricbeat/module/consul/_meta/kibana/7/dashboard/Metricbeat-consul-overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Garbage Collector stats [Metricbeat Consul]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"ns,ms,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Pause time\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"consul.agent.runtime.garbage_collector.pause.current.ns\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} ms\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"9728a010-2dea-11e9-83ed-b7c793d35de5\",\"label\":\"Runs\",\"line_width\":1,\"metrics\":[{\"field\":\"consul.agent.runtime.garbage_collector.runs\",\"id\":\"9728a011-2dea-11e9-83ed-b7c793d35de5\",\"type\":\"sum\"},{\"field\":\"9728a011-2dea-11e9-83ed-b7c793d35de5\",\"id\":\"9ed22480-2dea-11e9-83ed-b7c793d35de5\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":1,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":1,\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Garbage Collector stats [Metricbeat Consul]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"dda0c950-2dea-11e9-bf7e-f35bf5d2e71b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:02.457Z","version":"WzM3MTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Goroutines [Metricbeat Consul]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Goroutines\",\"line_width\":1,\"metrics\":[{\"field\":\"consul.agent.runtime.goroutines\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Goroutines [Metricbeat Consul]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ea842730-2de9-11e9-bf7e-f35bf5d2e71b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:02.457Z","version":"WzM3MTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Bytes Allocated [Metricbeat Consul]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Bytes allocated\",\"line_width\":1,\"metrics\":[{\"field\":\"consul.agent.runtime.alloc.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Bytes Allocated [Metricbeat Consul]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6c39d4b0-2de9-11e9-bf7e-f35bf5d2e71b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:02.457Z","version":"WzM3MTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Heap Objects [Metricbeat Consul]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Heap Objects\",\"line_width\":1,\"metrics\":[{\"field\":\"consul.agent.runtime.heap_objects\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Heap Objects [Metricbeat Consul]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"37c75bc0-2dea-11e9-bf7e-f35bf5d2e71b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:02.457Z","version":"WzM3MTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Bytes of memory obtained from the OS [Metricbeat Consul]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Bytes of memory obtained from the OS\",\"line_width\":1,\"metrics\":[{\"field\":\"consul.agent.runtime.sys.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Bytes of memory obtained from the OS [Metricbeat Consul]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"69b29820-2dea-11e9-bf7e-f35bf5d2e71b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:02.457Z","version":"WzM3MjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Malloc count [Metricbeat Consul]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Malloc Count\",\"line_width\":1,\"metrics\":[{\"field\":\"consul.agent.runtime.malloc_count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"7a6e0aa0-2dea-11e9-83ed-b7c793d35de5\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Malloc count [Metricbeat Consul]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8ab67000-2dea-11e9-bf7e-f35bf5d2e71b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:02.457Z","version":"WzM3MjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Garbage Collector pause ms [Metricbeat Consul]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"ns,ms,4\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Garbage Collector pause\",\"line_width\":1,\"metrics\":[{\"field\":\"consul.agent.runtime.garbage_collector.pause.current.ns\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} ms\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Garbage Collector pause ms [Metricbeat Consul]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d275dbc0-2de9-11e9-bf7e-f35bf5d2e71b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:02.457Z","version":"WzM3MjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Garbage Collector Runs [Metricbeat Consul]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Garbage Collector Runs\",\"line_width\":1,\"metrics\":[{\"field\":\"consul.agent.runtime.garbage_collector.runs\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"ffaa1fc0-2de9-11e9-83ed-b7c793d35de5\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":1,\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Garbage Collector Runs [Metricbeat Consul]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1e97c1d0-2dea-11e9-bf7e-f35bf5d2e71b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:02.457Z","version":"WzM3MjMsMV0="} +{"attributes":{"description":"Overview of Consul","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"lucene\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Garbage Collector stats\",\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":16,\"x\":15,\"y\":15},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Goroutines\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes Allocated\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":17,\"x\":31,\"y\":15},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Heap Objects\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":15,\"x\":0,\"y\":15},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes of memory obtained from the OS\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":16,\"x\":31,\"y\":30},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Malloc count\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":14,\"x\":0,\"y\":30},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Garbage Collector pause ms\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":17,\"x\":14,\"y\":30},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Garbage Collector Runs\",\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Metricbeat Consul] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"6d0cf140-2deb-11e9-bf7e-f35bf5d2e71b","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"dda0c950-2dea-11e9-bf7e-f35bf5d2e71b","name":"panel_0","type":"visualization"},{"id":"ea842730-2de9-11e9-bf7e-f35bf5d2e71b","name":"panel_1","type":"visualization"},{"id":"6c39d4b0-2de9-11e9-bf7e-f35bf5d2e71b","name":"panel_2","type":"visualization"},{"id":"37c75bc0-2dea-11e9-bf7e-f35bf5d2e71b","name":"panel_3","type":"visualization"},{"id":"69b29820-2dea-11e9-bf7e-f35bf5d2e71b","name":"panel_4","type":"visualization"},{"id":"8ab67000-2dea-11e9-bf7e-f35bf5d2e71b","name":"panel_5","type":"visualization"},{"id":"d275dbc0-2de9-11e9-bf7e-f35bf5d2e71b","name":"panel_6","type":"visualization"},{"id":"1e97c1d0-2dea-11e9-bf7e-f35bf5d2e71b","name":"panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:02.457Z","version":"WzM3MTUsMV0="} diff --git a/metricbeat/module/couchbase/_meta/kibana/7/dashboard/Metricbeat-couchbase-overview.json b/metricbeat/module/couchbase/_meta/kibana/7/dashboard/Metricbeat-couchbase-overview.json deleted file mode 100644 index 240fe8a9649..00000000000 --- a/metricbeat/module/couchbase/_meta/kibana/7/dashboard/Metricbeat-couchbase-overview.json +++ /dev/null @@ -1,1179 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This Couchbase dashboard visualizes the most relevant metrics for cluster, nodes and buckets. ", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "1", - "w": 12, - "x": 0, - "y": 11 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "Buckets RAM Used", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "2", - "w": 12, - "x": 12, - "y": 11 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "Buckets Disk Used", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "3", - "w": 24, - "x": 24, - "y": 11 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "Node CPU Utilization", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "4", - "w": 12, - "x": 0, - "y": 22 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "title": "Buckets Operations Per Second", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "5", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "title": "Operations per Node", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "6", - "w": 12, - "x": 0, - "y": 0 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "title": "Cluster HDD Usage", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "7", - "w": 12, - "x": 12, - "y": 0 - }, - "panelIndex": "7", - "panelRefName": "panel_6", - "title": "Cluster RAM", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "8", - "w": 12, - "x": 12, - "y": 22 - }, - "panelIndex": "8", - "panelRefName": "panel_7", - "title": "Bucket Item Count", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "9", - "w": 24, - "x": 24, - "y": 33 - }, - "panelIndex": "9", - "panelRefName": "panel_8", - "title": "Document Replicas", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "10", - "w": 24, - "x": 24, - "y": 22 - }, - "panelIndex": "10", - "panelRefName": "panel_9", - "title": "Disk space used by docs", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "11", - "w": 24, - "x": 0, - "y": 33 - }, - "panelIndex": "11", - "panelRefName": "panel_10", - "title": "Disk Fetches", - "version": "7.3.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Couchbase] Cluster Overview", - "version": 1 - }, - "id": "46d21220-b9f1-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "e781add0-b9dc-11e9-a579-f5c0a5d81340", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "c4c81a30-b9dd-11e9-a579-f5c0a5d81340", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "467c99c0-b9de-11e9-a579-f5c0a5d81340", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "e23a9fe0-b9db-11e9-a579-f5c0a5d81340", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "17a01210-b9e0-11e9-a579-f5c0a5d81340", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "f515f2e0-b9e0-11e9-a579-f5c0a5d81340", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "7cc8def0-b9e1-11e9-a579-f5c0a5d81340", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "97ee1ea0-b9f2-11e9-a579-f5c0a5d81340", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "63efced0-b9f4-11e9-a579-f5c0a5d81340", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "99980c90-ba8b-11e9-a579-f5c0a5d81340", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "19eed0e0-ba8c-11e9-a579-f5c0a5d81340", - "name": "panel_10", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-08-19T14:28:56.796Z", - "version": "WzE1NDYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Buckets RAM Used [Metricbeat Couchbase] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "1ad80860-b9dc-11e9-a74b-270ba78f4926", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(164,221,0,1)", - "fill": "0.1", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "id": "1ad80861-b9dc-11e9-a74b-270ba78f4926", - "label": " RAM used", - "line_width": "1", - "metrics": [ - { - "field": "couchbase.bucket.memory.used.bytes", - "id": "1ad80862-b9dc-11e9-a74b-270ba78f4926", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "couchbase.bucket.name", - "terms_order_by": "1ad80862-b9dc-11e9-a74b-270ba78f4926", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Buckets RAM Used [Metricbeat Couchbase] ECS", - "type": "metrics" - } - }, - "id": "e781add0-b9dc-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-19T14:26:15.240Z", - "version": "WzE0NzgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Buckets Disk Used [Metricbeat Couchbase] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "a126b410-b9dd-11e9-aa9d-55aa18f46863" - } - ], - "bar_color_rules": [ - { - "id": "9bcf0ee0-b9dd-11e9-aa9d-55aa18f46863" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "97d88050-b9dd-11e9-aa9d-55aa18f46863" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "04f7a400-b9dd-11e9-b988-d77f6106a7f0", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,98,177,1)", - "fill": "0.1", - "formatter": "bytes", - "id": "04f7a401-b9dd-11e9-b988-d77f6106a7f0", - "label": "Disk Used", - "line_width": "1", - "metrics": [ - { - "field": "couchbase.bucket.disk.used.bytes", - "id": "04f7a402-b9dd-11e9-b988-d77f6106a7f0", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "couchbase.bucket.name", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Buckets Disk Used [Metricbeat Couchbase] ECS", - "type": "metrics" - } - }, - "id": "c4c81a30-b9dd-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T09:59:37.672Z", - "version": "Wzk5NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Node CPU Utilization [Metricbeat Couchbase] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "f6ae4d80-b9dd-11e9-a864-6f6fa2fda75a", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "formatter": "'0.'", - "id": "f6ae7490-b9dd-11e9-a864-6f6fa2fda75a", - "label": "CPU Utilization", - "line_width": 2, - "metrics": [ - { - "field": "couchbase.node.cpu_utilization_rate.pct", - "id": "f6ae7491-b9dd-11e9-a864-6f6fa2fda75a", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "couchbase.node.hostname", - "value_template": "{{value}}%" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Node CPU Utilization [Metricbeat Couchbase] ECS", - "type": "metrics" - } - }, - "id": "467c99c0-b9de-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T10:01:08.255Z", - "version": "WzEwMzEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Buckets Operations Per Second [Metricbeat Couchbase] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "b8a49140-b9db-11e9-bc93-69919d73c9bb", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "formatter": "number", - "id": "b8a49141-b9db-11e9-bc93-69919d73c9bb", - "label": "ops_per_sec", - "line_width": 2, - "metrics": [ - { - "field": "couchbase.bucket.ops_per_sec", - "id": "b8a49142-b9db-11e9-bc93-69919d73c9bb", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "couchbase.bucket.name", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Buckets Operations Per Second [Metricbeat Couchbase] ECS", - "type": "metrics" - } - }, - "id": "e23a9fe0-b9db-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T09:58:23.524Z", - "version": "Wzk3MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Operations per Node [Metricbeat Couchbase] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "ec9c42a0-b9df-11e9-8634-0fd532c4482a", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(84,141,162,1)", - "fill": "0.1", - "formatter": "number", - "id": "ec9c42a1-b9df-11e9-8634-0fd532c4482a", - "label": "max(couchbase.node.ops)", - "line_width": "1", - "metrics": [ - { - "field": "couchbase.node.ops", - "id": "ec9c42a2-b9df-11e9-8634-0fd532c4482a", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "couchbase.node.hostname", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Operations per Node [Metricbeat Couchbase] ECS", - "type": "metrics" - } - }, - "id": "17a01210-b9e0-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T10:00:47.340Z", - "version": "WzEwMjQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Cluster HDD Usage [Metricbeat Couchbase] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "c7abd1d0-b9e0-11e9-8604-efdef550e653" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "c82f80c0-b9e0-11e9-8604-efdef550e653" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "c34f7c90-b9e0-11e9-ab08-bf43409c5a0d", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(67,191,147,1)", - "fill": "0.2", - "formatter": "bytes", - "id": "c34f7c91-b9e0-11e9-ab08-bf43409c5a0d", - "label": "Free", - "line_width": "1", - "metrics": [ - { - "field": "couchbase.cluster.hdd.free.bytes", - "id": "c34f7c92-b9e0-11e9-ab08-bf43409c5a0d", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "8949ecc0-ba89-11e9-8d4d-f510918c2882", - "label": "Data", - "line_width": 1, - "metrics": [ - { - "field": "couchbase.cluster.hdd.used.by_data.bytes", - "id": "8949ecc1-ba89-11e9-8d4d-f510918c2882", - "type": "max" - } - ], - "point_size": "0", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "ce3d98e0-ba89-11e9-8d4d-f510918c2882", - "label": "Cluster", - "line_width": 1, - "metrics": [ - { - "field": "couchbase.cluster.hdd.used.value.bytes", - "id": "ce3d98e1-ba89-11e9-8d4d-f510918c2882", - "type": "max" - } - ], - "point_size": "0", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(159,5,0,1)", - "fill": "0", - "formatter": "bytes", - "id": "2f4dbb20-ba89-11e9-8d4d-f510918c2882", - "label": "Total", - "line_width": 1, - "metrics": [ - { - "field": "couchbase.cluster.hdd.total.bytes", - "id": "2f4dbb21-ba89-11e9-8d4d-f510918c2882", - "type": "max" - } - ], - "point_size": "0", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Cluster HDD Usage [Metricbeat Couchbase] ECS", - "type": "metrics" - } - }, - "id": "f515f2e0-b9e0-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T10:00:12.389Z", - "version": "WzEwMTUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Cluster RAM [Metricbeat Couchbase] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "3afe8650-b9e1-11e9-861c-7f7211bffe38" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "24242700-b9e1-11e9-ab98-51a45917a19d", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(159,5,0,1)", - "fill": 0, - "formatter": "bytes", - "id": "24242701-b9e1-11e9-ab98-51a45917a19d", - "label": "Total", - "line_width": 2, - "metrics": [ - { - "field": "couchbase.cluster.ram.total.bytes", - "id": "24242702-b9e1-11e9-ab98-51a45917a19d", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(226,115,0,1)", - "fill": "0.2", - "formatter": "bytes", - "id": "24242703-b9e1-11e9-ab98-51a45917a19d", - "label": "Used", - "line_width": "1", - "metrics": [ - { - "field": "couchbase.cluster.ram.used.value.bytes", - "id": "24242704-b9e1-11e9-ab98-51a45917a19d", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Cluster RAM [Metricbeat Couchbase] ECS", - "type": "metrics" - } - }, - "id": "7cc8def0-b9e1-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T09:59:56.912Z", - "version": "WzEwMDUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Bucket Item Count [Metricbeat Couchbase] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "5b94e6a0-b9f2-11e9-9c08-535482acfc9e", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": "0.1", - "formatter": "number", - "id": "5b94e6a1-b9f2-11e9-9c08-535482acfc9e", - "label": "items", - "line_width": "1", - "metrics": [ - { - "field": "couchbase.bucket.item_count", - "id": "5b94e6a2-b9f2-11e9-9c08-535482acfc9e", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "couchbase.bucket.name", - "terms_order_by": "5b94e6a2-b9f2-11e9-9c08-535482acfc9e", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Bucket Item Count [Metricbeat Couchbase] ECS", - "type": "metrics" - } - }, - "id": "97ee1ea0-b9f2-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T09:58:47.462Z", - "version": "Wzk4MCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Document Replicas [Metricbeat Couchbase] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "2658bfa0-b9f4-11e9-ac89-cd269ee83e5f", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": "0.2", - "formatter": "number", - "id": "2658bfa1-b9f4-11e9-ac89-cd269ee83e5f", - "label": "replicas", - "line_width": "1", - "metrics": [ - { - "field": "couchbase.node.vb_replica_curr_items", - "id": "2658bfa2-b9f4-11e9-ac89-cd269ee83e5f", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "couchbase.node.hostname", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Document Replicas [Metricbeat Couchbase] ECS", - "type": "metrics" - } - }, - "id": "63efced0-b9f4-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T10:01:57.445Z", - "version": "WzEwNDgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Disk space used by docs [Metricbeat Couchbase] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "46d25240-ba8b-11e9-a06c-c5fca4bfd53b", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(83,167,131,1)", - "fill": "0.1", - "formatter": "bytes", - "id": "46d25241-ba8b-11e9-a06c-c5fca4bfd53b", - "label": "Docs ", - "line_width": "1", - "metrics": [ - { - "field": "couchbase.node.couch.docs.disk_size.bytes", - "id": "46d25242-ba8b-11e9-a06c-c5fca4bfd53b", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "couchbase.node.hostname", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Disk space used by docs [Metricbeat Couchbase] ECS", - "type": "metrics" - } - }, - "id": "99980c90-ba8b-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T10:15:08.388Z", - "version": "WzEwNzMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Disk Fetches [Metricbeat Couchbase] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "ead970d0-ba8b-11e9-8d1e-992a5619d7be", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(176,188,0,1)", - "fill": 0, - "formatter": "number", - "id": "ead970d1-ba8b-11e9-8d1e-992a5619d7be", - "label": "Disk Fetches", - "line_width": 2, - "metrics": [ - { - "field": "couchbase.bucket.disk.fetches", - "id": "ead970d2-ba8b-11e9-8d1e-992a5619d7be", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "couchbase.bucket.name", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Disk Fetches [Metricbeat Couchbase] ECS", - "type": "metrics" - } - }, - "id": "19eed0e0-ba8c-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T09:57:30.478Z", - "version": "Wzk2NSwxXQ==" - } - ], - "version": "7.3.0" -} diff --git a/metricbeat/module/couchbase/_meta/kibana/7/dashboard/Metricbeat-couchbase-overview.ndjson b/metricbeat/module/couchbase/_meta/kibana/7/dashboard/Metricbeat-couchbase-overview.ndjson new file mode 100644 index 00000000000..e6c29493d4e --- /dev/null +++ b/metricbeat/module/couchbase/_meta/kibana/7/dashboard/Metricbeat-couchbase-overview.ndjson @@ -0,0 +1,12 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Buckets RAM Used [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"1ad80860-b9dc-11e9-a74b-270ba78f4926\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"0.1\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"1ad80861-b9dc-11e9-a74b-270ba78f4926\",\"label\":\" RAM used\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchbase.bucket.memory.used.bytes\",\"id\":\"1ad80862-b9dc-11e9-a74b-270ba78f4926\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"couchbase.bucket.name\",\"terms_order_by\":\"1ad80862-b9dc-11e9-a74b-270ba78f4926\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Buckets RAM Used [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e781add0-b9dc-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3MzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Buckets Disk Used [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"a126b410-b9dd-11e9-aa9d-55aa18f46863\"}],\"bar_color_rules\":[{\"id\":\"9bcf0ee0-b9dd-11e9-aa9d-55aa18f46863\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"97d88050-b9dd-11e9-aa9d-55aa18f46863\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"04f7a400-b9dd-11e9-b988-d77f6106a7f0\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,98,177,1)\",\"fill\":\"0.1\",\"formatter\":\"bytes\",\"id\":\"04f7a401-b9dd-11e9-b988-d77f6106a7f0\",\"label\":\"Disk Used\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchbase.bucket.disk.used.bytes\",\"id\":\"04f7a402-b9dd-11e9-b988-d77f6106a7f0\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"couchbase.bucket.name\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Buckets Disk Used [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c4c81a30-b9dd-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Node CPU Utilization [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"f6ae4d80-b9dd-11e9-a864-6f6fa2fda75a\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"'0.'\",\"id\":\"f6ae7490-b9dd-11e9-a864-6f6fa2fda75a\",\"label\":\"CPU Utilization\",\"line_width\":2,\"metrics\":[{\"field\":\"couchbase.node.cpu_utilization_rate.pct\",\"id\":\"f6ae7491-b9dd-11e9-a864-6f6fa2fda75a\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"couchbase.node.hostname\",\"value_template\":\"{{value}}%\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Node CPU Utilization [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"467c99c0-b9de-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Buckets Operations Per Second [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"b8a49140-b9db-11e9-bc93-69919d73c9bb\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"b8a49141-b9db-11e9-bc93-69919d73c9bb\",\"label\":\"ops_per_sec\",\"line_width\":2,\"metrics\":[{\"field\":\"couchbase.bucket.ops_per_sec\",\"id\":\"b8a49142-b9db-11e9-bc93-69919d73c9bb\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"couchbase.bucket.name\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Buckets Operations Per Second [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e23a9fe0-b9db-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Operations per Node [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"ec9c42a0-b9df-11e9-8634-0fd532c4482a\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(84,141,162,1)\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"ec9c42a1-b9df-11e9-8634-0fd532c4482a\",\"label\":\"max(couchbase.node.ops)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchbase.node.ops\",\"id\":\"ec9c42a2-b9df-11e9-8634-0fd532c4482a\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"couchbase.node.hostname\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Operations per Node [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"17a01210-b9e0-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cluster HDD Usage [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"c7abd1d0-b9e0-11e9-8604-efdef550e653\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"c82f80c0-b9e0-11e9-8604-efdef550e653\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"c34f7c90-b9e0-11e9-ab08-bf43409c5a0d\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(67,191,147,1)\",\"fill\":\"0.2\",\"formatter\":\"bytes\",\"id\":\"c34f7c91-b9e0-11e9-ab08-bf43409c5a0d\",\"label\":\"Free\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchbase.cluster.hdd.free.bytes\",\"id\":\"c34f7c92-b9e0-11e9-ab08-bf43409c5a0d\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"8949ecc0-ba89-11e9-8d4d-f510918c2882\",\"label\":\"Data\",\"line_width\":1,\"metrics\":[{\"field\":\"couchbase.cluster.hdd.used.by_data.bytes\",\"id\":\"8949ecc1-ba89-11e9-8d4d-f510918c2882\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"ce3d98e0-ba89-11e9-8d4d-f510918c2882\",\"label\":\"Cluster\",\"line_width\":1,\"metrics\":[{\"field\":\"couchbase.cluster.hdd.used.value.bytes\",\"id\":\"ce3d98e1-ba89-11e9-8d4d-f510918c2882\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(159,5,0,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"2f4dbb20-ba89-11e9-8d4d-f510918c2882\",\"label\":\"Total\",\"line_width\":1,\"metrics\":[{\"field\":\"couchbase.cluster.hdd.total.bytes\",\"id\":\"2f4dbb21-ba89-11e9-8d4d-f510918c2882\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Cluster HDD Usage [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f515f2e0-b9e0-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cluster RAM [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"3afe8650-b9e1-11e9-861c-7f7211bffe38\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"24242700-b9e1-11e9-ab98-51a45917a19d\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(159,5,0,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"24242701-b9e1-11e9-ab98-51a45917a19d\",\"label\":\"Total\",\"line_width\":2,\"metrics\":[{\"field\":\"couchbase.cluster.ram.total.bytes\",\"id\":\"24242702-b9e1-11e9-ab98-51a45917a19d\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":\"0.2\",\"formatter\":\"bytes\",\"id\":\"24242703-b9e1-11e9-ab98-51a45917a19d\",\"label\":\"Used\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchbase.cluster.ram.used.value.bytes\",\"id\":\"24242704-b9e1-11e9-ab98-51a45917a19d\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Cluster RAM [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7cc8def0-b9e1-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Bucket Item Count [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"5b94e6a0-b9f2-11e9-9c08-535482acfc9e\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"5b94e6a1-b9f2-11e9-9c08-535482acfc9e\",\"label\":\"items\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchbase.bucket.item_count\",\"id\":\"5b94e6a2-b9f2-11e9-9c08-535482acfc9e\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"couchbase.bucket.name\",\"terms_order_by\":\"5b94e6a2-b9f2-11e9-9c08-535482acfc9e\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Bucket Item Count [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"97ee1ea0-b9f2-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Document Replicas [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"2658bfa0-b9f4-11e9-ac89-cd269ee83e5f\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"2658bfa1-b9f4-11e9-ac89-cd269ee83e5f\",\"label\":\"replicas\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchbase.node.vb_replica_curr_items\",\"id\":\"2658bfa2-b9f4-11e9-ac89-cd269ee83e5f\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"couchbase.node.hostname\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Document Replicas [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"63efced0-b9f4-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Disk space used by docs [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"46d25240-ba8b-11e9-a06c-c5fca4bfd53b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(83,167,131,1)\",\"fill\":\"0.1\",\"formatter\":\"bytes\",\"id\":\"46d25241-ba8b-11e9-a06c-c5fca4bfd53b\",\"label\":\"Docs \",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchbase.node.couch.docs.disk_size.bytes\",\"id\":\"46d25242-ba8b-11e9-a06c-c5fca4bfd53b\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"couchbase.node.hostname\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Disk space used by docs [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"99980c90-ba8b-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Disk Fetches [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"ead970d0-ba8b-11e9-8d1e-992a5619d7be\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"ead970d1-ba8b-11e9-8d1e-992a5619d7be\",\"label\":\"Disk Fetches\",\"line_width\":2,\"metrics\":[{\"field\":\"couchbase.bucket.disk.fetches\",\"id\":\"ead970d2-ba8b-11e9-8d1e-992a5619d7be\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"couchbase.bucket.name\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Disk Fetches [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"19eed0e0-ba8c-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDksMV0="} +{"attributes":{"description":"This Couchbase dashboard visualizes the most relevant metrics for cluster, nodes and buckets. ","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"1\",\"w\":12,\"x\":0,\"y\":11},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Buckets RAM Used\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"2\",\"w\":12,\"x\":12,\"y\":11},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Buckets Disk Used\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"3\",\"w\":24,\"x\":24,\"y\":11},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Node CPU Utilization\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"4\",\"w\":12,\"x\":0,\"y\":22},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Buckets Operations Per Second\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Operations per Node\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"6\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cluster HDD Usage\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"7\",\"w\":12,\"x\":12,\"y\":0},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cluster RAM\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"8\",\"w\":12,\"x\":12,\"y\":22},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bucket Item Count\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"9\",\"w\":24,\"x\":24,\"y\":33},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Document Replicas\",\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"10\",\"w\":24,\"x\":24,\"y\":22},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Disk space used by docs\",\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"11\",\"w\":24,\"x\":0,\"y\":33},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Disk Fetches\",\"panelRefName\":\"panel_11\"}]","timeRestore":false,"title":"[Metricbeat Couchbase] Cluster Overview","version":1},"coreMigrationVersion":"8.0.0","id":"46d21220-b9f1-11e9-a579-f5c0a5d81340","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"e781add0-b9dc-11e9-a579-f5c0a5d81340","name":"1:panel_1","type":"visualization"},{"id":"c4c81a30-b9dd-11e9-a579-f5c0a5d81340","name":"2:panel_2","type":"visualization"},{"id":"467c99c0-b9de-11e9-a579-f5c0a5d81340","name":"3:panel_3","type":"visualization"},{"id":"e23a9fe0-b9db-11e9-a579-f5c0a5d81340","name":"4:panel_4","type":"visualization"},{"id":"17a01210-b9e0-11e9-a579-f5c0a5d81340","name":"5:panel_5","type":"visualization"},{"id":"f515f2e0-b9e0-11e9-a579-f5c0a5d81340","name":"6:panel_6","type":"visualization"},{"id":"7cc8def0-b9e1-11e9-a579-f5c0a5d81340","name":"7:panel_7","type":"visualization"},{"id":"97ee1ea0-b9f2-11e9-a579-f5c0a5d81340","name":"8:panel_8","type":"visualization"},{"id":"63efced0-b9f4-11e9-a579-f5c0a5d81340","name":"9:panel_9","type":"visualization"},{"id":"99980c90-ba8b-11e9-a579-f5c0a5d81340","name":"10:panel_10","type":"visualization"},{"id":"19eed0e0-ba8c-11e9-a579-f5c0a5d81340","name":"11:panel_11","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3MzgsMV0="} diff --git a/metricbeat/module/couchdb/_meta/kibana/7/dashboard/Metricbeat-couchdb-overview.json b/metricbeat/module/couchdb/_meta/kibana/7/dashboard/Metricbeat-couchdb-overview.json deleted file mode 100644 index 474dfa0c363..00000000000 --- a/metricbeat/module/couchdb/_meta/kibana/7/dashboard/Metricbeat-couchdb-overview.json +++ /dev/null @@ -1,1347 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This CouchDB dashboard visualizes the most important CouchDB server metrics.\n\n", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "1", - "w": 24, - "x": 0, - "y": 10 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "HTTP Status Codes", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "2", - "w": 24, - "x": 24, - "y": 10 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "HTTP Request Methods", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "3", - "w": 10, - "x": 0, - "y": 0 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "Open Databases", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "4", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "title": "Database Read/Writes", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "5", - "w": 24, - "x": 24, - "y": 25 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "title": "Auth Cache Hit/Miss", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "6", - "w": 14, - "x": 10, - "y": 0 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "title": "Number of HTTP Requests", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "7", - "w": 24, - "x": 0, - "y": 25 - }, - "panelIndex": "7", - "panelRefName": "panel_6", - "title": "Number of View Reads", - "version": "7.3.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat CouchDB] Database Overview", - "version": 1 - }, - "id": "a3ab9a60-b952-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "8e15ece0-b94e-11e9-a579-f5c0a5d81340", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "1b60bb70-b94f-11e9-a579-f5c0a5d81340", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "f8c29f10-b94f-11e9-a579-f5c0a5d81340", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "702584a0-b950-11e9-a579-f5c0a5d81340", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "abfaf130-b951-11e9-a579-f5c0a5d81340", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "06018310-b952-11e9-a579-f5c0a5d81340", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "496910f0-b952-11e9-a579-f5c0a5d81340", - "name": "panel_6", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-08-19T15:05:11.218Z", - "version": "WzE1NzksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "HTTP Status Codes [Metricbeat CouchDB] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c8c0f520-b94d-11e9-8899-f736e404b0e7", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": "0.2", - "formatter": "number", - "id": "c8c0f521-b94d-11e9-8899-f736e404b0e7", - "label": "200 OK", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.httpd_status_codes.200", - "id": "c8c0f522-b94d-11e9-8899-f736e404b0e7", - "type": "max" - }, - { - "field": "c8c0f522-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f524-b94d-11e9-8899-f736e404b0e7", - "type": "derivative", - "unit": "1s" - }, - { - "field": "c8c0f524-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f523-b94d-11e9-8899-f736e404b0e7", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#00B3A4", - "fill": "0.2", - "formatter": "number", - "id": "c8c0f529-b94d-11e9-8899-f736e404b0e7", - "label": "400 Bad Request", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.httpd_status_codes.400", - "id": "c8c0f52a-b94d-11e9-8899-f736e404b0e7", - "type": "max" - }, - { - "field": "c8c0f52a-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f52c-b94d-11e9-8899-f736e404b0e7", - "type": "derivative", - "unit": "1s" - }, - { - "field": "c8c0f52c-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f52b-b94d-11e9-8899-f736e404b0e7", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#490092", - "fill": "0.2", - "formatter": "number", - "id": "c8c0f52d-b94d-11e9-8899-f736e404b0e7", - "label": "401 Unauthorized", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.httpd_status_codes.401", - "id": "c8c0f52e-b94d-11e9-8899-f736e404b0e7", - "type": "max" - }, - { - "field": "c8c0f52e-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f530-b94d-11e9-8899-f736e404b0e7", - "type": "derivative", - "unit": "1s" - }, - { - "field": "c8c0f530-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f52f-b94d-11e9-8899-f736e404b0e7", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#461A0A", - "fill": "0.2", - "formatter": "number", - "id": "c8c0f541-b94d-11e9-8899-f736e404b0e7", - "label": "500 Internal Server Error", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.httpd_status_codes.500", - "id": "c8c0f542-b94d-11e9-8899-f736e404b0e7", - "type": "max" - }, - { - "field": "c8c0f542-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f544-b94d-11e9-8899-f736e404b0e7", - "type": "derivative", - "unit": "1s" - }, - { - "field": "c8c0f544-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f543-b94d-11e9-8899-f736e404b0e7", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#FEB6DB", - "fill": "0.2", - "formatter": "number", - "id": "c8c0f531-b94d-11e9-8899-f736e404b0e7", - "label": "403 Forbidden", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.httpd_status_codes.403", - "id": "c8c0f532-b94d-11e9-8899-f736e404b0e7", - "type": "max" - }, - { - "field": "c8c0f532-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f534-b94d-11e9-8899-f736e404b0e7", - "type": "derivative", - "unit": "1s" - }, - { - "field": "c8c0f534-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f533-b94d-11e9-8899-f736e404b0e7", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#E6C220", - "fill": "0.2", - "formatter": "number", - "id": "c8c0f535-b94d-11e9-8899-f736e404b0e7", - "label": "404 Not Found", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.httpd_status_codes.404", - "id": "c8c0f536-b94d-11e9-8899-f736e404b0e7", - "type": "max" - }, - { - "field": "c8c0f536-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f538-b94d-11e9-8899-f736e404b0e7", - "type": "derivative", - "unit": "1s" - }, - { - "field": "c8c0f538-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f537-b94d-11e9-8899-f736e404b0e7", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#DB1374", - "fill": "0.2", - "formatter": "number", - "id": "c8c0f525-b94d-11e9-8899-f736e404b0e7", - "label": "202 Accepted", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.httpd_status_codes.202", - "id": "c8c0f526-b94d-11e9-8899-f736e404b0e7", - "type": "max" - }, - { - "field": "c8c0f526-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f528-b94d-11e9-8899-f736e404b0e7", - "type": "derivative", - "unit": "1s" - }, - { - "field": "c8c0f528-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f527-b94d-11e9-8899-f736e404b0e7", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#BFA180", - "fill": "0.2", - "formatter": "number", - "id": "c8c0f539-b94d-11e9-8899-f736e404b0e7", - "label": "405 Method Not Allowed", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.httpd_status_codes.405", - "id": "c8c0f53a-b94d-11e9-8899-f736e404b0e7", - "type": "max" - }, - { - "field": "c8c0f53a-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f53c-b94d-11e9-8899-f736e404b0e7", - "type": "derivative", - "unit": "1s" - }, - { - "field": "c8c0f53c-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f53b-b94d-11e9-8899-f736e404b0e7", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#F98510", - "fill": "0.2", - "formatter": "number", - "id": "c8c0f53d-b94d-11e9-8899-f736e404b0e7", - "label": "409 Conflict", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.httpd_status_codes.409", - "id": "c8c0f53e-b94d-11e9-8899-f736e404b0e7", - "type": "max" - }, - { - "field": "c8c0f53e-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f540-b94d-11e9-8899-f736e404b0e7", - "type": "derivative", - "unit": "1s" - }, - { - "field": "c8c0f540-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f53f-b94d-11e9-8899-f736e404b0e7", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#920000", - "fill": "0.2", - "formatter": "number", - "id": "c8c0f545-b94d-11e9-8899-f736e404b0e7", - "label": "201 Created", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.httpd_status_codes.201", - "id": "c8c0f546-b94d-11e9-8899-f736e404b0e7", - "type": "max" - }, - { - "field": "c8c0f546-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f548-b94d-11e9-8899-f736e404b0e7", - "type": "derivative", - "unit": "1s" - }, - { - "field": "c8c0f548-b94d-11e9-8899-f736e404b0e7", - "id": "c8c0f547-b94d-11e9-8899-f736e404b0e7", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "HTTP Status Codes [Metricbeat CouchDB] ECS", - "type": "metrics" - } - }, - "id": "8e15ece0-b94e-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T10:30:56.854Z", - "version": "WzExMTksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "HTTP Request Methods [Metricbeat CouchDB] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "bb936ee0-b94e-11e9-86ee-f5b628c75be4", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(164,221,0,1)", - "fill": "0.2", - "formatter": "number", - "id": "bb936ee1-b94e-11e9-86ee-f5b628c75be4", - "label": "GET", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.httpd_request_methods.GET", - "id": "bb936ee2-b94e-11e9-86ee-f5b628c75be4", - "type": "max" - }, - { - "field": "bb936ee2-b94e-11e9-86ee-f5b628c75be4", - "id": "bb936ee4-b94e-11e9-86ee-f5b628c75be4", - "type": "derivative", - "unit": "1s" - }, - { - "field": "bb936ee4-b94e-11e9-86ee-f5b628c75be4", - "id": "bb936ee3-b94e-11e9-86ee-f5b628c75be4", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#DB1374", - "fill": "0.2", - "formatter": "number", - "id": "bb936ee5-b94e-11e9-86ee-f5b628c75be4", - "label": "POST", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.httpd_request_methods.POST", - "id": "bb936ee6-b94e-11e9-86ee-f5b628c75be4", - "type": "max" - }, - { - "field": "bb936ee6-b94e-11e9-86ee-f5b628c75be4", - "id": "bb936ee8-b94e-11e9-86ee-f5b628c75be4", - "type": "derivative", - "unit": "1s" - }, - { - "field": "bb936ee8-b94e-11e9-86ee-f5b628c75be4", - "id": "bb936ee7-b94e-11e9-86ee-f5b628c75be4", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#00B3A4", - "fill": "0.2", - "formatter": "number", - "id": "bb936ee9-b94e-11e9-86ee-f5b628c75be4", - "label": "PUT", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.httpd_request_methods.PUT", - "id": "bb936eea-b94e-11e9-86ee-f5b628c75be4", - "type": "max" - }, - { - "field": "bb936eea-b94e-11e9-86ee-f5b628c75be4", - "id": "bb936eec-b94e-11e9-86ee-f5b628c75be4", - "type": "derivative", - "unit": "1s" - }, - { - "field": "bb936eec-b94e-11e9-86ee-f5b628c75be4", - "id": "bb936eeb-b94e-11e9-86ee-f5b628c75be4", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#490092", - "fill": "0.2", - "formatter": "number", - "id": "bb936eed-b94e-11e9-86ee-f5b628c75be4", - "label": "DELETE", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.httpd_request_methods.DELETE", - "id": "bb936eee-b94e-11e9-86ee-f5b628c75be4", - "type": "max" - }, - { - "field": "bb936eee-b94e-11e9-86ee-f5b628c75be4", - "id": "bb936ef0-b94e-11e9-86ee-f5b628c75be4", - "type": "derivative", - "unit": "1s" - }, - { - "field": "bb936ef0-b94e-11e9-86ee-f5b628c75be4", - "id": "bb936eef-b94e-11e9-86ee-f5b628c75be4", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#FEB6DB", - "fill": "0.2", - "formatter": "number", - "id": "bb936ef1-b94e-11e9-86ee-f5b628c75be4", - "label": "HEAD", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.httpd_request_methods.HEAD", - "id": "bb936ef2-b94e-11e9-86ee-f5b628c75be4", - "type": "max" - }, - { - "field": "bb936ef2-b94e-11e9-86ee-f5b628c75be4", - "id": "bb936ef4-b94e-11e9-86ee-f5b628c75be4", - "type": "derivative", - "unit": "1s" - }, - { - "field": "bb936ef4-b94e-11e9-86ee-f5b628c75be4", - "id": "bb936ef3-b94e-11e9-86ee-f5b628c75be4", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#E6C220", - "fill": "0.2", - "formatter": "number", - "id": "bb936ef5-b94e-11e9-86ee-f5b628c75be4", - "label": "COPY", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.httpd_request_methods.COPY", - "id": "bb936ef6-b94e-11e9-86ee-f5b628c75be4", - "type": "max" - }, - { - "field": "bb936ef6-b94e-11e9-86ee-f5b628c75be4", - "id": "bb936ef8-b94e-11e9-86ee-f5b628c75be4", - "type": "derivative", - "unit": "1s" - }, - { - "field": "bb936ef8-b94e-11e9-86ee-f5b628c75be4", - "id": "bb936ef7-b94e-11e9-86ee-f5b628c75be4", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "HTTP Request Methods [Metricbeat CouchDB] ECS", - "type": "metrics" - } - }, - "id": "1b60bb70-b94f-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T10:31:20.866Z", - "version": "WzExMjQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Open Databases [Metricbeat CouchDB] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "couchdb" - }, - "gauge_color_rules": [ - { - "id": "ef4c9800-b94f-11e9-bce6-47447dde021d" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "71dd6340-b94f-11e9-9f6f-832b64f4a79f", - "index_pattern": "metricbeat-*", - "interval": "auto", - "legend_position": "right", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(12,121,125,1)", - "fill": "0.1", - "formatter": "number", - "id": "71dd8a50-b94f-11e9-9f6f-832b64f4a79f", - "label": "Open Databases", - "line_width": 2, - "metrics": [ - { - "field": "couchdb.server.couchdb.open_databases", - "id": "71dd8a51-b94f-11e9-9f6f-832b64f4a79f", - "type": "max" - } - ], - "point_size": "0", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Open Databases [Metricbeat CouchDB] ECS", - "type": "metrics" - } - }, - "id": "f8c29f10-b94f-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T10:26:58.696Z", - "version": "WzExMDUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Database Read/Writes [Metricbeat CouchDB] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "couchdb" - }, - "id": "48918790-b950-11e9-84ff-97e538653deb", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(226,115,0,1)", - "fill": "0.2", - "formatter": "number", - "id": "48918791-b950-11e9-84ff-97e538653deb", - "label": "database_writes", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.couchdb.database_writes", - "id": "48918792-b950-11e9-84ff-97e538653deb", - "type": "max" - }, - { - "field": "48918792-b950-11e9-84ff-97e538653deb", - "id": "48918794-b950-11e9-84ff-97e538653deb", - "type": "derivative", - "unit": "1s" - }, - { - "field": "48918794-b950-11e9-84ff-97e538653deb", - "id": "48918793-b950-11e9-84ff-97e538653deb", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(160,203,38,1)", - "fill": "0.2", - "formatter": "number", - "id": "7c71dd30-b950-11e9-bd31-d98b40ea3379", - "label": "database_reads", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.couchdb.database_reads", - "id": "7c71dd31-b950-11e9-bd31-d98b40ea3379", - "type": "max" - }, - { - "field": "7c71dd31-b950-11e9-bd31-d98b40ea3379", - "id": "7c71dd32-b950-11e9-bd31-d98b40ea3379", - "type": "derivative", - "unit": "1s" - }, - { - "field": "7c71dd32-b950-11e9-bd31-d98b40ea3379", - "id": "7c71dd33-b950-11e9-bd31-d98b40ea3379", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Database Read/Writes [Metricbeat CouchDB] ECS", - "type": "metrics" - } - }, - "id": "702584a0-b950-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T10:30:34.762Z", - "version": "WzExMTUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Auth Cache Hit/Miss [Metricbeat CouchDB] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "couchdb" - }, - "id": "7ccd9c50-b951-11e9-8e1d-17d2519ede48", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(179,101,87,1)", - "fill": 0, - "formatter": "number", - "id": "7ccd9c51-b951-11e9-8e1d-17d2519ede48", - "label": "auth_cache_misses", - "line_width": 2, - "metrics": [ - { - "field": "couchdb.server.couchdb.auth_cache_misses", - "id": "7ccd9c52-b951-11e9-8e1d-17d2519ede48", - "type": "max" - }, - { - "field": "7ccd9c52-b951-11e9-8e1d-17d2519ede48", - "id": "7ccd9c54-b951-11e9-8e1d-17d2519ede48", - "type": "derivative", - "unit": "1s" - }, - { - "field": "7ccd9c54-b951-11e9-8e1d-17d2519ede48", - "id": "7ccd9c53-b951-11e9-8e1d-17d2519ede48", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(129,169,80,1)", - "fill": 0, - "formatter": "number", - "id": "7ccd9c55-b951-11e9-8e1d-17d2519ede48", - "label": "auth_cache_hits", - "line_width": 2, - "metrics": [ - { - "field": "couchdb.server.couchdb.auth_cache_hits", - "id": "7ccd9c56-b951-11e9-8e1d-17d2519ede48", - "type": "max" - }, - { - "field": "7ccd9c56-b951-11e9-8e1d-17d2519ede48", - "id": "7ccd9c58-b951-11e9-8e1d-17d2519ede48", - "type": "derivative", - "unit": "1s" - }, - { - "field": "7ccd9c58-b951-11e9-8e1d-17d2519ede48", - "id": "7ccd9c57-b951-11e9-8e1d-17d2519ede48", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Auth Cache Hit/Miss [Metricbeat CouchDB] ECS", - "type": "metrics" - } - }, - "id": "abfaf130-b951-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T10:32:05.471Z", - "version": "WzExMzYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Number of HTTP Requests [Metricbeat CouchDB] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "couchdb" - }, - "id": "caae9780-b951-11e9-8945-b5f393c4775d", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(82,174,177,1)", - "fill": "0.2", - "formatter": "number", - "id": "caae9781-b951-11e9-8945-b5f393c4775d", - "label": "requests", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.httpd.requests", - "id": "caae9782-b951-11e9-8945-b5f393c4775d", - "type": "max" - }, - { - "field": "caae9782-b951-11e9-8945-b5f393c4775d", - "id": "caae9784-b951-11e9-8945-b5f393c4775d", - "type": "derivative", - "unit": "1s" - }, - { - "field": "caae9784-b951-11e9-8945-b5f393c4775d", - "id": "caae9783-b951-11e9-8945-b5f393c4775d", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(237,193,119,1)", - "fill": "0.2", - "formatter": "number", - "id": "caae9785-b951-11e9-8945-b5f393c4775d", - "label": "bulk_requests", - "line_width": "1", - "metrics": [ - { - "field": "couchdb.server.httpd.bulk_requests", - "id": "caae9786-b951-11e9-8945-b5f393c4775d", - "type": "max" - }, - { - "field": "caae9786-b951-11e9-8945-b5f393c4775d", - "id": "caae9788-b951-11e9-8945-b5f393c4775d", - "type": "derivative", - "unit": "1s" - }, - { - "field": "caae9788-b951-11e9-8945-b5f393c4775d", - "id": "caae9787-b951-11e9-8945-b5f393c4775d", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Number of HTTP Requests [Metricbeat CouchDB] ECS", - "type": "metrics" - } - }, - "id": "06018310-b952-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T10:30:13.765Z", - "version": "WzExMTAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Number of View Reads [Metricbeat CouchDB] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "couchdb" - }, - "id": "1d4e0520-b952-11e9-b9f3-4d741a808166", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": 0, - "formatter": "number", - "id": "1d4e0521-b952-11e9-b9f3-4d741a808166", - "label": "view_reads", - "line_width": 2, - "metrics": [ - { - "field": "couchdb.server.httpd.view_reads", - "id": "1d4e0522-b952-11e9-b9f3-4d741a808166", - "type": "max" - }, - { - "field": "1d4e0522-b952-11e9-b9f3-4d741a808166", - "id": "1d4e0524-b952-11e9-b9f3-4d741a808166", - "type": "derivative", - "unit": "1s" - }, - { - "field": "1d4e0524-b952-11e9-b9f3-4d741a808166", - "id": "1d4e0523-b952-11e9-b9f3-4d741a808166", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(247,61,231,1)", - "fill": 0, - "formatter": "number", - "id": "1d4e0525-b952-11e9-b9f3-4d741a808166", - "label": "temporary_view_reads", - "line_width": 2, - "metrics": [ - { - "field": "couchdb.server.httpd.temporary_view_reads", - "id": "1d4e0526-b952-11e9-b9f3-4d741a808166", - "type": "max" - }, - { - "field": "1d4e0526-b952-11e9-b9f3-4d741a808166", - "id": "1d4e0528-b952-11e9-b9f3-4d741a808166", - "type": "derivative", - "unit": "1s" - }, - { - "field": "1d4e0528-b952-11e9-b9f3-4d741a808166", - "id": "1d4e0527-b952-11e9-b9f3-4d741a808166", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Number of View Reads [Metricbeat CouchDB] ECS", - "type": "metrics" - } - }, - "id": "496910f0-b952-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-09T10:31:41.262Z", - "version": "WzExMzEsMV0=" - } - ], - "version": "7.3.0" -} diff --git a/metricbeat/module/couchdb/_meta/kibana/7/dashboard/Metricbeat-couchdb-overview.ndjson b/metricbeat/module/couchdb/_meta/kibana/7/dashboard/Metricbeat-couchdb-overview.ndjson new file mode 100644 index 00000000000..d9e5058b004 --- /dev/null +++ b/metricbeat/module/couchdb/_meta/kibana/7/dashboard/Metricbeat-couchdb-overview.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"HTTP Status Codes [Metricbeat CouchDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c8c0f520-b94d-11e9-8899-f736e404b0e7\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f521-b94d-11e9-8899-f736e404b0e7\",\"label\":\"200 OK\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.200\",\"id\":\"c8c0f522-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f522-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f524-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f524-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f523-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f529-b94d-11e9-8899-f736e404b0e7\",\"label\":\"400 Bad Request\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.400\",\"id\":\"c8c0f52a-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f52a-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f52c-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f52c-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f52b-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#490092\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f52d-b94d-11e9-8899-f736e404b0e7\",\"label\":\"401 Unauthorized\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.401\",\"id\":\"c8c0f52e-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f52e-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f530-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f530-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f52f-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#461A0A\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f541-b94d-11e9-8899-f736e404b0e7\",\"label\":\"500 Internal Server Error\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.500\",\"id\":\"c8c0f542-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f542-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f544-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f544-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f543-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#FEB6DB\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f531-b94d-11e9-8899-f736e404b0e7\",\"label\":\"403 Forbidden\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.403\",\"id\":\"c8c0f532-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f532-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f534-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f534-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f533-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#E6C220\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f535-b94d-11e9-8899-f736e404b0e7\",\"label\":\"404 Not Found\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.404\",\"id\":\"c8c0f536-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f536-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f538-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f538-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f537-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f525-b94d-11e9-8899-f736e404b0e7\",\"label\":\"202 Accepted\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.202\",\"id\":\"c8c0f526-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f526-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f528-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f528-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f527-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#BFA180\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f539-b94d-11e9-8899-f736e404b0e7\",\"label\":\"405 Method Not Allowed\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.405\",\"id\":\"c8c0f53a-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f53a-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f53c-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f53c-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f53b-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#F98510\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f53d-b94d-11e9-8899-f736e404b0e7\",\"label\":\"409 Conflict\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.409\",\"id\":\"c8c0f53e-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f53e-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f540-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f540-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f53f-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#920000\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f545-b94d-11e9-8899-f736e404b0e7\",\"label\":\"201 Created\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.201\",\"id\":\"c8c0f546-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f546-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f548-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f548-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f547-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HTTP Status Codes [Metricbeat CouchDB] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8e15ece0-b94e-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:06.496Z","version":"WzM3NTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"HTTP Request Methods [Metricbeat CouchDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"bb936ee0-b94e-11e9-86ee-f5b628c75be4\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"bb936ee1-b94e-11e9-86ee-f5b628c75be4\",\"label\":\"GET\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_request_methods.GET\",\"id\":\"bb936ee2-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"max\"},{\"field\":\"bb936ee2-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936ee4-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"bb936ee4-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936ee3-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"bb936ee5-b94e-11e9-86ee-f5b628c75be4\",\"label\":\"POST\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_request_methods.POST\",\"id\":\"bb936ee6-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"max\"},{\"field\":\"bb936ee6-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936ee8-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"bb936ee8-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936ee7-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"bb936ee9-b94e-11e9-86ee-f5b628c75be4\",\"label\":\"PUT\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_request_methods.PUT\",\"id\":\"bb936eea-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"max\"},{\"field\":\"bb936eea-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936eec-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"bb936eec-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936eeb-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#490092\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"bb936eed-b94e-11e9-86ee-f5b628c75be4\",\"label\":\"DELETE\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_request_methods.DELETE\",\"id\":\"bb936eee-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"max\"},{\"field\":\"bb936eee-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936ef0-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"bb936ef0-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936eef-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#FEB6DB\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"bb936ef1-b94e-11e9-86ee-f5b628c75be4\",\"label\":\"HEAD\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_request_methods.HEAD\",\"id\":\"bb936ef2-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"max\"},{\"field\":\"bb936ef2-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936ef4-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"bb936ef4-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936ef3-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#E6C220\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"bb936ef5-b94e-11e9-86ee-f5b628c75be4\",\"label\":\"COPY\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_request_methods.COPY\",\"id\":\"bb936ef6-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"max\"},{\"field\":\"bb936ef6-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936ef8-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"bb936ef8-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936ef7-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HTTP Request Methods [Metricbeat CouchDB] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1b60bb70-b94f-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:06.496Z","version":"WzM3NTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Open Databases [Metricbeat CouchDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"filter\":{\"language\":\"kuery\",\"query\":\"couchdb\"},\"gauge_color_rules\":[{\"id\":\"ef4c9800-b94f-11e9-bce6-47447dde021d\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"71dd6340-b94f-11e9-9f6f-832b64f4a79f\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"right\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(12,121,125,1)\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"71dd8a50-b94f-11e9-9f6f-832b64f4a79f\",\"label\":\"Open Databases\",\"line_width\":2,\"metrics\":[{\"field\":\"couchdb.server.couchdb.open_databases\",\"id\":\"71dd8a51-b94f-11e9-9f6f-832b64f4a79f\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Open Databases [Metricbeat CouchDB] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f8c29f10-b94f-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:06.496Z","version":"WzM3NTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Database Read/Writes [Metricbeat CouchDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"couchdb\"},\"id\":\"48918790-b950-11e9-84ff-97e538653deb\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"48918791-b950-11e9-84ff-97e538653deb\",\"label\":\"database_writes\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.couchdb.database_writes\",\"id\":\"48918792-b950-11e9-84ff-97e538653deb\",\"type\":\"max\"},{\"field\":\"48918792-b950-11e9-84ff-97e538653deb\",\"id\":\"48918794-b950-11e9-84ff-97e538653deb\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"48918794-b950-11e9-84ff-97e538653deb\",\"id\":\"48918793-b950-11e9-84ff-97e538653deb\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(160,203,38,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"7c71dd30-b950-11e9-bd31-d98b40ea3379\",\"label\":\"database_reads\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.couchdb.database_reads\",\"id\":\"7c71dd31-b950-11e9-bd31-d98b40ea3379\",\"type\":\"max\"},{\"field\":\"7c71dd31-b950-11e9-bd31-d98b40ea3379\",\"id\":\"7c71dd32-b950-11e9-bd31-d98b40ea3379\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"7c71dd32-b950-11e9-bd31-d98b40ea3379\",\"id\":\"7c71dd33-b950-11e9-bd31-d98b40ea3379\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Database Read/Writes [Metricbeat CouchDB] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"702584a0-b950-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:06.496Z","version":"WzM3NTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Auth Cache Hit/Miss [Metricbeat CouchDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"couchdb\"},\"id\":\"7ccd9c50-b951-11e9-8e1d-17d2519ede48\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(179,101,87,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7ccd9c51-b951-11e9-8e1d-17d2519ede48\",\"label\":\"auth_cache_misses\",\"line_width\":2,\"metrics\":[{\"field\":\"couchdb.server.couchdb.auth_cache_misses\",\"id\":\"7ccd9c52-b951-11e9-8e1d-17d2519ede48\",\"type\":\"max\"},{\"field\":\"7ccd9c52-b951-11e9-8e1d-17d2519ede48\",\"id\":\"7ccd9c54-b951-11e9-8e1d-17d2519ede48\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"7ccd9c54-b951-11e9-8e1d-17d2519ede48\",\"id\":\"7ccd9c53-b951-11e9-8e1d-17d2519ede48\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(129,169,80,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7ccd9c55-b951-11e9-8e1d-17d2519ede48\",\"label\":\"auth_cache_hits\",\"line_width\":2,\"metrics\":[{\"field\":\"couchdb.server.couchdb.auth_cache_hits\",\"id\":\"7ccd9c56-b951-11e9-8e1d-17d2519ede48\",\"type\":\"max\"},{\"field\":\"7ccd9c56-b951-11e9-8e1d-17d2519ede48\",\"id\":\"7ccd9c58-b951-11e9-8e1d-17d2519ede48\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"7ccd9c58-b951-11e9-8e1d-17d2519ede48\",\"id\":\"7ccd9c57-b951-11e9-8e1d-17d2519ede48\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Auth Cache Hit/Miss [Metricbeat CouchDB] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"abfaf130-b951-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:06.496Z","version":"WzM3NTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of HTTP Requests [Metricbeat CouchDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"couchdb\"},\"id\":\"caae9780-b951-11e9-8945-b5f393c4775d\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(82,174,177,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"caae9781-b951-11e9-8945-b5f393c4775d\",\"label\":\"requests\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd.requests\",\"id\":\"caae9782-b951-11e9-8945-b5f393c4775d\",\"type\":\"max\"},{\"field\":\"caae9782-b951-11e9-8945-b5f393c4775d\",\"id\":\"caae9784-b951-11e9-8945-b5f393c4775d\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"caae9784-b951-11e9-8945-b5f393c4775d\",\"id\":\"caae9783-b951-11e9-8945-b5f393c4775d\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(237,193,119,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"caae9785-b951-11e9-8945-b5f393c4775d\",\"label\":\"bulk_requests\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd.bulk_requests\",\"id\":\"caae9786-b951-11e9-8945-b5f393c4775d\",\"type\":\"max\"},{\"field\":\"caae9786-b951-11e9-8945-b5f393c4775d\",\"id\":\"caae9788-b951-11e9-8945-b5f393c4775d\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"caae9788-b951-11e9-8945-b5f393c4775d\",\"id\":\"caae9787-b951-11e9-8945-b5f393c4775d\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Number of HTTP Requests [Metricbeat CouchDB] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"06018310-b952-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:06.496Z","version":"WzM3NTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of View Reads [Metricbeat CouchDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"couchdb\"},\"id\":\"1d4e0520-b952-11e9-b9f3-4d741a808166\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"1d4e0521-b952-11e9-b9f3-4d741a808166\",\"label\":\"view_reads\",\"line_width\":2,\"metrics\":[{\"field\":\"couchdb.server.httpd.view_reads\",\"id\":\"1d4e0522-b952-11e9-b9f3-4d741a808166\",\"type\":\"max\"},{\"field\":\"1d4e0522-b952-11e9-b9f3-4d741a808166\",\"id\":\"1d4e0524-b952-11e9-b9f3-4d741a808166\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"1d4e0524-b952-11e9-b9f3-4d741a808166\",\"id\":\"1d4e0523-b952-11e9-b9f3-4d741a808166\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(247,61,231,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"1d4e0525-b952-11e9-b9f3-4d741a808166\",\"label\":\"temporary_view_reads\",\"line_width\":2,\"metrics\":[{\"field\":\"couchdb.server.httpd.temporary_view_reads\",\"id\":\"1d4e0526-b952-11e9-b9f3-4d741a808166\",\"type\":\"max\"},{\"field\":\"1d4e0526-b952-11e9-b9f3-4d741a808166\",\"id\":\"1d4e0528-b952-11e9-b9f3-4d741a808166\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"1d4e0528-b952-11e9-b9f3-4d741a808166\",\"id\":\"1d4e0527-b952-11e9-b9f3-4d741a808166\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Number of View Reads [Metricbeat CouchDB] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"496910f0-b952-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:06.496Z","version":"WzM3NTcsMV0="} +{"attributes":{"description":"This CouchDB dashboard visualizes the most important CouchDB server metrics.\n\n","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":10},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"HTTP Status Codes\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":10},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"HTTP Request Methods\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Open Databases\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Database Read/Writes\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":25},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Auth Cache Hit/Miss\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"6\",\"w\":14,\"x\":10,\"y\":0},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Number of HTTP Requests\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"7\",\"w\":24,\"x\":0,\"y\":25},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Number of View Reads\",\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Metricbeat CouchDB] Database Overview","version":1},"coreMigrationVersion":"8.0.0","id":"a3ab9a60-b952-11e9-a579-f5c0a5d81340","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"8e15ece0-b94e-11e9-a579-f5c0a5d81340","name":"1:panel_1","type":"visualization"},{"id":"1b60bb70-b94f-11e9-a579-f5c0a5d81340","name":"2:panel_2","type":"visualization"},{"id":"f8c29f10-b94f-11e9-a579-f5c0a5d81340","name":"3:panel_3","type":"visualization"},{"id":"702584a0-b950-11e9-a579-f5c0a5d81340","name":"4:panel_4","type":"visualization"},{"id":"abfaf130-b951-11e9-a579-f5c0a5d81340","name":"5:panel_5","type":"visualization"},{"id":"06018310-b952-11e9-a579-f5c0a5d81340","name":"6:panel_6","type":"visualization"},{"id":"496910f0-b952-11e9-a579-f5c0a5d81340","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:06.496Z","version":"WzM3NTAsMV0="} diff --git a/metricbeat/module/docker/_meta/kibana/7/dashboard/Metricbeat-docker-overview.json b/metricbeat/module/docker/_meta/kibana/7/dashboard/Metricbeat-docker-overview.json deleted file mode 100644 index 45857eabff5..00000000000 --- a/metricbeat/module/docker/_meta/kibana/7/dashboard/Metricbeat-docker-overview.json +++ /dev/null @@ -1,1004 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Metricbeat-Docker-ecs", - "title": "Docker containers [Metricbeat Docker] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": 1, - "direction": "asc" - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Name", - "field": "container.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "CPU usage (%)", - "field": "docker.cpu.total.pct" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "DiskIO", - "field": "docker.diskio.total" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Mem (%)", - "field": "docker.memory.usage.pct" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "Mem RSS", - "field": "docker.memory.rss.total" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Number of Containers", - "field": "container.id" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "perPage": 8, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": true, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Docker containers [Metricbeat Docker] ECS", - "type": "table" - } - }, - "col": 1, - "id": "Docker-containers-ecs", - "panelIndex": 1, - "row": 1, - "size_x": 7, - "size_y": 5, - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Metricbeat-Docker-ecs", - "title": "Number of Containers [Metricbeat Docker] ECS", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Running", - "field": "docker.info.containers.running" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Paused", - "field": "docker.info.containers.paused" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Stopped", - "field": "docker.info.containers.stopped" - }, - "schema": "metric", - "type": "max" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "fontSize": "36", - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "handleNoResults": true, - "type": "gauge" - }, - "title": "Number of Containers [Metricbeat Docker] ECS", - "type": "metric" - } - }, - "col": 8, - "id": "Docker-Number-of-Containers-ecs", - "panelIndex": 2, - "row": 1, - "size_x": 5, - "size_y": 2, - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Metricbeat-Docker-ecs", - "title": "Docker containers per host [Metricbeat Docker] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Number of containers", - "field": "container.id" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Hosts", - "field": "agent.hostname", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "bottom", - "shareYAxis": true - }, - "title": "Docker containers per host [Metricbeat Docker] ECS", - "type": "pie" - } - }, - "col": 8, - "id": "Docker-containers-per-host-ecs", - "panelIndex": 3, - "row": 3, - "size_x": 2, - "size_y": 3, - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Metricbeat-Docker-ecs", - "title": "Docker images and names [Metricbeat Docker] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "container.image.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "container.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "bottom", - "shareYAxis": true - }, - "title": "Docker images and names [Metricbeat Docker] ECS", - "type": "pie" - } - }, - "col": 10, - "id": "Docker-images-and-names-ecs", - "panelIndex": 7, - "row": 3, - "size_x": 3, - "size_y": 3, - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "event.module:docker AND metricset.name:cpu" - } - } - }, - "title": "CPU usage [Metricbeat Docker] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Total CPU time", - "field": "docker.cpu.total.pct", - "percents": [ - 75 - ] - }, - "schema": "metric", - "type": "percentiles" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Container name", - "field": "container.name", - "order": "desc", - "orderBy": "1.75", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "top", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": true, - "times": [], - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "CPU usage [Metricbeat Docker] ECS", - "type": "area" - } - }, - "col": 1, - "id": "Docker-CPU-usage-ecs", - "panelIndex": 4, - "row": 6, - "size_x": 6, - "size_y": 3, - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "event.module:docker AND metricset.name:memory" - } - } - }, - "title": "Memory usage [Metricbeat Docker] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Memory", - "field": "docker.memory.usage.total" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Container name", - "field": "container.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "top", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": false, - "times": [], - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Memory usage [Metricbeat Docker] ECS", - "type": "area" - } - }, - "col": 7, - "id": "Docker-memory-usage-ecs", - "panelIndex": 5, - "row": 6, - "size_x": 6, - "size_y": 3, - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "event.module:docker AND metricset.name:network" - } - } - }, - "title": "Network IO [Metricbeat Docker] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "IN bytes", - "field": "docker.network.in.bytes" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Container name", - "field": "container.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "OUT bytes", - "field": "docker.network.out.bytes" - }, - "schema": "metric", - "type": "max" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "top", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": true, - "times": [], - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Network IO [Metricbeat Docker] ECS", - "type": "area" - } - }, - "col": 1, - "id": "Docker-Network-IO-ecs", - "panelIndex": 6, - "row": 9, - "size_x": 12, - "size_y": 3, - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "event.module:docker" - } - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Metricbeat Docker ECS", - "version": 1 - }, - "id": "Metricbeat-Docker-ecs", - "type": "search", - "version": 4 - }, - { - "attributes": { - "description": "Overview of docker containers", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - }, - "highlightAll": true, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "Docker-containers-ecs", - "panelIndex": 1, - "row": 1, - "size_x": 7, - "size_y": 5, - "type": "visualization" - }, - { - "col": 8, - "id": "Docker-Number-of-Containers-ecs", - "panelIndex": 2, - "row": 1, - "size_x": 5, - "size_y": 2, - "type": "visualization" - }, - { - "col": 8, - "id": "Docker-containers-per-host-ecs", - "panelIndex": 3, - "row": 3, - "size_x": 2, - "size_y": 3, - "type": "visualization" - }, - { - "col": 10, - "id": "Docker-images-and-names-ecs", - "panelIndex": 7, - "row": 3, - "size_x": 3, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "Docker-CPU-usage-ecs", - "panelIndex": 4, - "row": 6, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 7, - "id": "Docker-memory-usage-ecs", - "panelIndex": 5, - "row": 6, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "Docker-Network-IO-ecs", - "panelIndex": 6, - "row": 9, - "size_x": 12, - "size_y": 3, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Metricbeat Docker] Overview ECS", - "uiStateJSON": { - "P-1": { - "vis": { - "params": { - "sort": { - "columnIndex": 1, - "direction": "asc" - } - } - } - }, - "P-2": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "P-3": { - "vis": { - "legendOpen": true - } - }, - "P-5": { - "vis": { - "legendOpen": true - } - }, - "P-7": { - "vis": { - "legendOpen": true - } - } - }, - "version": 1 - }, - "id": "AV4REOpp5NkDleZmzKkE-ecs", - "type": "dashboard", - "version": 3 - } - ], - "version": "5.6.0-SNAPSHOT" -} diff --git a/metricbeat/module/docker/_meta/kibana/7/dashboard/Metricbeat-docker-overview.ndjson b/metricbeat/module/docker/_meta/kibana/7/dashboard/Metricbeat-docker-overview.ndjson new file mode 100644 index 00000000000..95abc75f1d6 --- /dev/null +++ b/metricbeat/module/docker/_meta/kibana/7/dashboard/Metricbeat-docker-overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.module:docker\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Metricbeat Docker ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Metricbeat-Docker-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:31:07.529Z","version":"WzM3NjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Docker containers [Metricbeat Docker] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 1, \"direction\": \"asc\"}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Name\",\"field\":\"container.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"CPU usage (%)\",\"field\":\"docker.cpu.total.pct\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"DiskIO\",\"field\":\"docker.diskio.total\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Mem (%)\",\"field\":\"docker.memory.usage.pct\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Mem RSS\",\"field\":\"docker.memory.rss.total\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Number of Containers\",\"field\":\"container.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"perPage\":8,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Docker containers [Metricbeat Docker] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Docker-containers-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Docker-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:07.529Z","version":"WzM3NTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Number of Containers [Metricbeat Docker] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Running\",\"field\":\"docker.info.containers.running\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Paused\",\"field\":\"docker.info.containers.paused\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Stopped\",\"field\":\"docker.info.containers.stopped\"},\"schema\":\"metric\",\"type\":\"max\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"36\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Number of Containers [Metricbeat Docker] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"Docker-Number-of-Containers-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Docker-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:07.529Z","version":"WzM3NTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Docker containers per host [Metricbeat Docker] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Number of containers\",\"field\":\"container.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Hosts\",\"field\":\"agent.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Docker containers per host [Metricbeat Docker] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Docker-containers-per-host-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Docker-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:07.529Z","version":"WzM3NjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.module:docker AND metricset.name:cpu\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"CPU usage [Metricbeat Docker] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total CPU time\",\"field\":\"docker.cpu.total.pct\",\"percents\":[75]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Container name\",\"field\":\"container.name\",\"order\":\"desc\",\"orderBy\":\"1.75\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"top\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{}},\"title\":\"CPU usage [Metricbeat Docker] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"Docker-CPU-usage-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:07.529Z","version":"WzM3NjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.module:docker AND metricset.name:memory\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Memory usage [Metricbeat Docker] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Memory\",\"field\":\"docker.memory.usage.total\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Container name\",\"field\":\"container.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"top\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{}},\"title\":\"Memory usage [Metricbeat Docker] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"Docker-memory-usage-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:07.529Z","version":"WzM3NjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.module:docker AND metricset.name:network\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Network IO [Metricbeat Docker] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"IN bytes\",\"field\":\"docker.network.in.bytes\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Container name\",\"field\":\"container.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"OUT bytes\",\"field\":\"docker.network.out.bytes\"},\"schema\":\"metric\",\"type\":\"max\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"top\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{}},\"title\":\"Network IO [Metricbeat Docker] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"Docker-Network-IO-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:07.529Z","version":"WzM3NjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Docker images and names [Metricbeat Docker] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"container.image.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"container.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Docker images and names [Metricbeat Docker] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Docker-images-and-names-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Docker-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:07.529Z","version":"WzM3NjEsMV0="} +{"attributes":{"description":"Overview of docker containers","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"highlightAll\":true,\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":28,\"h\":20,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":1,\"direction\":\"asc\"}}},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":28,\"y\":0,\"w\":20,\"h\":8,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":28,\"y\":8,\"w\":8,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":24,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":20,\"w\":24,\"h\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":32,\"w\":48,\"h\":12,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":36,\"y\":8,\"w\":12,\"h\":12,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Metricbeat Docker] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"AV4REOpp5NkDleZmzKkE-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Docker-containers-ecs","name":"1:panel_1","type":"visualization"},{"id":"Docker-Number-of-Containers-ecs","name":"2:panel_2","type":"visualization"},{"id":"Docker-containers-per-host-ecs","name":"3:panel_3","type":"visualization"},{"id":"Docker-CPU-usage-ecs","name":"4:panel_4","type":"visualization"},{"id":"Docker-memory-usage-ecs","name":"5:panel_5","type":"visualization"},{"id":"Docker-Network-IO-ecs","name":"6:panel_6","type":"visualization"},{"id":"Docker-images-and-names-ecs","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:07.529Z","version":"WzM3NjYsMV0="} diff --git a/metricbeat/module/docker/module.yml b/metricbeat/module/docker/module.yml index 74288253750..59298dfa38f 100644 --- a/metricbeat/module/docker/module.yml +++ b/metricbeat/module/docker/module.yml @@ -1,3 +1,3 @@ dashboards: - id: AV4REOpp5NkDleZmzKkE - file: Metricbeat-docker-overview.json + file: Metricbeat-docker-overview.ndjson diff --git a/metricbeat/module/golang/_meta/kibana/7/dashboard/Metricbeat-golang-overview.json b/metricbeat/module/golang/_meta/kibana/7/dashboard/Metricbeat-golang-overview.json deleted file mode 100644 index df7a3fcb1dd..00000000000 --- a/metricbeat/module/golang/_meta/kibana/7/dashboard/Metricbeat-golang-overview.json +++ /dev/null @@ -1,262 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Heap Summary [Metricbeat Golang] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "expression": ".es(index=\"metricbeat*\",metric=\"avg:golang.heap.system.total\").label(\"System Total Memory\").yaxis(label=\"Bytes\",units=bytes),.es(index=\"metricbeat*\",metric=\"min:golang.heap.allocations.allocated\").label(\"Bytes Allocated(min)\").movingaverage(30),.es(index=\"metricbeat*\",metric=\"max:golang.heap.allocations.allocated\").label(\"Bytes Allocated(max)\").movingaverage(30),.es(index=\"metricbeat*\",metric=\"avg:golang.heap.gc.next_gc_limit\").label(\"GC Limit\"),.es(index=\"metricbeat*\",metric=\"avg:golang.heap.gc.pause.count\").condition(lt,1, null).points().label(\"GC Cycles(count)\").yaxis(2,label=\"Count\")", - "interval": "10s" - }, - "title": "Heap Summary [Metricbeat Golang] ECS", - "type": "timelion" - } - }, - "id": "58000780-f529-11e6-844d-b170e2f0a07e-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Heap [Metricbeat Golang] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "expression": ".es(index=\"metricbeat*\",metric=\"avg:golang.heap.allocations.total\").label(\"Heap Total\").derivative().movingaverage(30).yaxis(label=\"Bytes\",units=bytes),.es(index=\"metricbeat*\",metric=\"avg:golang.heap.allocations.active\").label(\"Heap Inuse\").movingaverage(30),.es(index=\"metricbeat*\",metric=\"avg:golang.heap.allocations.allocated\").label(\"Heap Allocated\").movingaverage(30),.es(index=\"metricbeat*\",metric=\"avg:golang.heap.allocations.idle\").label(\"Heap Idle\").movingaverage(30)", - "interval": "10s" - }, - "title": "Heap [Metricbeat Golang] ECS", - "type": "timelion" - } - }, - "id": "95388680-f52a-11e6-969c-518c48c913e4-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Objects [Metricbeat Golang] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "expression": ".es(index=\"metricbeat*\",metric=\"max:golang.heap.allocations.objects\").label(\"Object Count(avg)\").yaxis(1,label=\"Count\").movingaverage(30),.es(index=\"metricbeat*\",metric=\"max:golang.heap.allocations.total\").derivative().label(\"Allocation Rate\").yaxis(2,label=\"Rate\").movingaverage(30)", - "interval": "10s" - }, - "title": "Objects [Metricbeat Golang] ECS", - "type": "timelion" - } - }, - "id": "b59a5200-f52a-11e6-969c-518c48c913e4-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "System [Metricbeat Golang] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "expression": ".es(index=\"metricbeat*\",metric=\"avg:golang.heap.system.total\").label(\"System Total\").yaxis(label=\"Bytes\",units=bytes),.es(index=\"metricbeat*\",metric=\"avg:golang.heap.system.obtained\").label(\"System Obtained\"),.es(index=\"metricbeat*\",metric=\"avg:golang.heap.system.stack\").label(\"System Stack\"),.es(index=\"metricbeat*\",metric=\"avg:golang.heap.system.released\").label(\"System Released\")", - "interval": "10s" - }, - "title": "System [Metricbeat Golang] ECS", - "type": "timelion" - } - }, - "id": "9a9a8bf0-f52a-11e6-969c-518c48c913e4-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "GC count [Metricbeat Golang] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "expression": ".es(index=\"metricbeat*\",metric=\"max:golang.heap.gc.pause.count\").label(\"GC Count\").bars().yaxis(label=\"Count\"),.es(index=\"metricbeat*\",metric=\"max:golang.heap.gc.total_count\").label(\"GC Rate\").derivative().movingaverage(30),.es(index=\"metricbeat*\",metric=\"max:golang.heap.gc.cpu_fraction\").label(\"CPU Fraction\").yaxis(2,label=\"Fraction\")", - "interval": "10s" - }, - "title": "GC count [Metricbeat Golang] ECS", - "type": "timelion" - } - }, - "id": "b046cb80-f52a-11e6-969c-518c48c913e4-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "GC durations [Metricbeat Golang] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "expression": ".es(index=\"metricbeat*\",metric=\"max:golang.heap.gc.pause.sum.ns\").bars().label(\"sum of GC Pause durations(ns)\").yaxis(label=\"Durations(ns)\"),.es(index=\"metricbeat*\",metric=\"max:golang.heap.gc.total_pause.ns\").derivative().movingaverage(30).label(\"Total GC Pause(ns) Rate\"),.es(index=\"metricbeat*\",metric=\"max:golang.heap.gc.pause.max.ns\").label(\"Max GC Pause(ns)\").movingaverage(30),.es(index=\"metricbeat*\",metric=\"avg:golang.heap.gc.pause.avg.ns\").label(\"Avg GC Pause(ns)\").movingaverage(30),.es(index=\"metricbeat*\",metric=\"max:golang.heap.gc.pause.count\").condition(lt,1, null).label(\"GC Pause count\").points().yaxis(2,label=\"Count\")", - "interval": "10s" - }, - "title": "GC durations [Metricbeat Golang] ECS", - "type": "timelion" - } - }, - "id": "ab226b50-f52a-11e6-969c-518c48c913e4-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "Overview of Go profiling information", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "58000780-f529-11e6-844d-b170e2f0a07e-ecs", - "panelIndex": 8, - "row": 1, - "size_x": 12, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "95388680-f52a-11e6-969c-518c48c913e4-ecs", - "panelIndex": 9, - "row": 4, - "size_x": 4, - "size_y": 4, - "type": "visualization" - }, - { - "col": 9, - "id": "b59a5200-f52a-11e6-969c-518c48c913e4-ecs", - "panelIndex": 10, - "row": 4, - "size_x": 4, - "size_y": 4, - "type": "visualization" - }, - { - "col": 5, - "id": "9a9a8bf0-f52a-11e6-969c-518c48c913e4-ecs", - "panelIndex": 11, - "row": 4, - "size_x": 4, - "size_y": 4, - "type": "visualization" - }, - { - "col": 7, - "id": "b046cb80-f52a-11e6-969c-518c48c913e4-ecs", - "panelIndex": 12, - "row": 8, - "size_x": 6, - "size_y": 4, - "type": "visualization" - }, - { - "col": 1, - "id": "ab226b50-f52a-11e6-969c-518c48c913e4-ecs", - "panelIndex": 13, - "row": 8, - "size_x": 6, - "size_y": 4, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Metricbeat Golang] Overview ECS", - "uiStateJSON": {}, - "version": 1 - }, - "id": "f2dc7320-f519-11e6-a3c9-9d1f7c42b045-ecs", - "type": "dashboard", - "version": 3 - } - ], - "version": "6.0.0-beta1-SNAPSHOT" -} diff --git a/metricbeat/module/golang/_meta/kibana/7/dashboard/Metricbeat-golang-overview.ndjson b/metricbeat/module/golang/_meta/kibana/7/dashboard/Metricbeat-golang-overview.ndjson new file mode 100644 index 00000000000..27dfc588ee9 --- /dev/null +++ b/metricbeat/module/golang/_meta/kibana/7/dashboard/Metricbeat-golang-overview.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Heap Summary [Metricbeat Golang] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"expression\":\".es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.system.total\\\").label(\\\"System Total Memory\\\").yaxis(label=\\\"Bytes\\\",units=bytes),.es(index=\\\"metricbeat*\\\",metric=\\\"min:golang.heap.allocations.allocated\\\").label(\\\"Bytes Allocated(min)\\\").movingaverage(30),.es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.allocations.allocated\\\").label(\\\"Bytes Allocated(max)\\\").movingaverage(30),.es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.gc.next_gc_limit\\\").label(\\\"GC Limit\\\"),.es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.gc.pause.count\\\").condition(lt,1, null).points().label(\\\"GC Cycles(count)\\\").yaxis(2,label=\\\"Count\\\")\",\"interval\":\"10s\"},\"title\":\"Heap Summary [Metricbeat Golang] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"58000780-f529-11e6-844d-b170e2f0a07e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:15.764Z","version":"WzM4MjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Heap [Metricbeat Golang] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"expression\":\".es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.allocations.total\\\").label(\\\"Heap Total\\\").derivative().movingaverage(30).yaxis(label=\\\"Bytes\\\",units=bytes),.es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.allocations.active\\\").label(\\\"Heap Inuse\\\").movingaverage(30),.es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.allocations.allocated\\\").label(\\\"Heap Allocated\\\").movingaverage(30),.es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.allocations.idle\\\").label(\\\"Heap Idle\\\").movingaverage(30)\",\"interval\":\"10s\"},\"title\":\"Heap [Metricbeat Golang] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"95388680-f52a-11e6-969c-518c48c913e4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:15.764Z","version":"WzM4MjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Objects [Metricbeat Golang] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"expression\":\".es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.allocations.objects\\\").label(\\\"Object Count(avg)\\\").yaxis(1,label=\\\"Count\\\").movingaverage(30),.es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.allocations.total\\\").derivative().label(\\\"Allocation Rate\\\").yaxis(2,label=\\\"Rate\\\").movingaverage(30)\",\"interval\":\"10s\"},\"title\":\"Objects [Metricbeat Golang] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"b59a5200-f52a-11e6-969c-518c48c913e4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:15.764Z","version":"WzM4MjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"System [Metricbeat Golang] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"expression\":\".es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.system.total\\\").label(\\\"System Total\\\").yaxis(label=\\\"Bytes\\\",units=bytes),.es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.system.obtained\\\").label(\\\"System Obtained\\\"),.es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.system.stack\\\").label(\\\"System Stack\\\"),.es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.system.released\\\").label(\\\"System Released\\\")\",\"interval\":\"10s\"},\"title\":\"System [Metricbeat Golang] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"9a9a8bf0-f52a-11e6-969c-518c48c913e4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:15.764Z","version":"WzM4MjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"GC count [Metricbeat Golang] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"expression\":\".es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.gc.pause.count\\\").label(\\\"GC Count\\\").bars().yaxis(label=\\\"Count\\\"),.es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.gc.total_count\\\").label(\\\"GC Rate\\\").derivative().movingaverage(30),.es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.gc.cpu_fraction\\\").label(\\\"CPU Fraction\\\").yaxis(2,label=\\\"Fraction\\\")\",\"interval\":\"10s\"},\"title\":\"GC count [Metricbeat Golang] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"b046cb80-f52a-11e6-969c-518c48c913e4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:15.764Z","version":"WzM4MjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"GC durations [Metricbeat Golang] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"expression\":\".es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.gc.pause.sum.ns\\\").bars().label(\\\"sum of GC Pause durations(ns)\\\").yaxis(label=\\\"Durations(ns)\\\"),.es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.gc.total_pause.ns\\\").derivative().movingaverage(30).label(\\\"Total GC Pause(ns) Rate\\\"),.es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.gc.pause.max.ns\\\").label(\\\"Max GC Pause(ns)\\\").movingaverage(30),.es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.gc.pause.avg.ns\\\").label(\\\"Avg GC Pause(ns)\\\").movingaverage(30),.es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.gc.pause.count\\\").condition(lt,1, null).label(\\\"GC Pause count\\\").points().yaxis(2,label=\\\"Count\\\")\",\"interval\":\"10s\"},\"title\":\"GC durations [Metricbeat Golang] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"ab226b50-f52a-11e6-969c-518c48c913e4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:15.764Z","version":"WzM4MjgsMV0="} +{"attributes":{"description":"Overview of Go profiling information","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":12,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":16,\"h\":16,\"i\":\"9\"},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":12,\"w\":16,\"h\":16,\"i\":\"10\"},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":12,\"w\":16,\"h\":16,\"i\":\"11\"},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":28,\"w\":24,\"h\":16,\"i\":\"12\"},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":28,\"w\":24,\"h\":16,\"i\":\"13\"},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"}]","timeRestore":false,"title":"[Metricbeat Golang] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"f2dc7320-f519-11e6-a3c9-9d1f7c42b045-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"58000780-f529-11e6-844d-b170e2f0a07e-ecs","name":"8:panel_8","type":"visualization"},{"id":"95388680-f52a-11e6-969c-518c48c913e4-ecs","name":"9:panel_9","type":"visualization"},{"id":"b59a5200-f52a-11e6-969c-518c48c913e4-ecs","name":"10:panel_10","type":"visualization"},{"id":"9a9a8bf0-f52a-11e6-969c-518c48c913e4-ecs","name":"11:panel_11","type":"visualization"},{"id":"b046cb80-f52a-11e6-969c-518c48c913e4-ecs","name":"12:panel_12","type":"visualization"},{"id":"ab226b50-f52a-11e6-969c-518c48c913e4-ecs","name":"13:panel_13","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:15.764Z","version":"WzM4MjksMV0="} diff --git a/metricbeat/module/golang/module.yml b/metricbeat/module/golang/module.yml index 11beeafaeb9..969828ed887 100644 --- a/metricbeat/module/golang/module.yml +++ b/metricbeat/module/golang/module.yml @@ -1,3 +1,3 @@ dashboards: - id: f2dc7320-f519-11e6-a3c9-9d1f7c42b045 - file: Metricbeat-golang-overview.json + file: Metricbeat-golang-overview.ndjson diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-backend.json b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-backend.json deleted file mode 100644 index 76f6a25be5c..00000000000 --- a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-backend.json +++ /dev/null @@ -1,114 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "HAProxy backend metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "gridData": { - "h": 2, - "i": "1", - "w": 6, - "x": 0, - "y": 0 - }, - "id": "a64b4fd0-471c-11e8-bc13-1397384faad3-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 2, - "i": "2", - "w": 3, - "x": 6, - "y": 0 - }, - "id": "794b6cd0-471d-11e8-bc13-1397384faad3-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 4, - "i": "3", - "w": 6, - "x": 6, - "y": 2 - }, - "id": "bb0ab500-4735-11e8-bc13-1397384faad3-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 2, - "i": "4", - "w": 3, - "x": 9, - "y": 0 - }, - "id": "40bed190-473b-11e8-bc13-1397384faad3-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 2, - "i": "5", - "w": 6, - "x": 0, - "y": 2 - }, - "id": "0751ed00-479c-11e8-bc13-1397384faad3-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 2, - "i": "6", - "w": 6, - "x": 0, - "y": 4 - }, - "id": "b3463670-47a1-11e8-bc13-1397384faad3-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "6.2.2" - } - ], - "timeRestore": false, - "title": "[Metricbeat HAProxy] Backend ECS", - "version": 1 - }, - "id": "9151c900-471d-11e8-bc13-1397384faad3-ecs", - "type": "dashboard", - "updated_at": "2018-04-24T18:31:25.838Z", - "version": 15 - } - ], - "version": "6.2.2" -} diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-backend.ndjson b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-backend.ndjson new file mode 100644 index 00000000000..107afbd71c7 --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-backend.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"4e35d500-471b-11e8-a520-3f46123ab5eb\"}],\"bar_color_rules\":[{\"id\":\"69899960-4719-11e8-a520-3f46123ab5eb\"}],\"filter\":{\"query\":\"haproxy.stat.component_type:(0 OR 1)\",\"language\":\"lucene\"},\"gauge_color_rules\":[{\"id\":\"6f171ba0-4719-11e8-a520-3f46123ab5eb\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Number of connections\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"41ff3940-4719-11e8-a520-3f46123ab5eb\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"41ff3940-4719-11e8-a520-3f46123ab5eb\",\"id\":\"456a5fa0-4738-11e8-8633-8f8b3acf1566\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"0ceb7740-471a-11e8-a520-3f46123ab5eb\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy connections ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a64b4fd0-471c-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Active servers in backend [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"color\":\"rgba(255,0,6,1)\",\"id\":\"1ec0dde0-471d-11e8-9876-09cc6c85f5f2\",\"operator\":\"lte\",\"value\":0},{\"color\":\"rgba(255,0,6,1)\",\"id\":\"8d345723-dc15-424c-a8df-0777fe7a4ffa\",\"operator\":\"empty\",\"value\":null}],\"bar_color_rules\":[{\"id\":\"297160c0-471d-11e8-9876-09cc6c85f5f2\"}],\"filter\":{\"query\":\"haproxy.stat.component_type:(2 OR 3)\",\"language\":\"lucene\"},\"gauge_color_rules\":[{\"gauge\":\"rgba(255,0,5,1)\",\"id\":\"4ce156a0-471d-11e8-9876-09cc6c85f5f2\",\"operator\":\"lte\",\"text\":null,\"value\":0},{\"gauge\":\"rgba(255,196,0,1)\",\"id\":\"f8458a80-4721-11e8-b854-2f6d2b452362\",\"operator\":\"lte\",\"value\":0.5},{\"gauge\":\"rgba(255,0,5,1)\",\"id\":\"99d5e990-9b29-45c9-b191-e8034fb39ec5\",\"operator\":\"empty\",\"text\":null,\"value\":null}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"query\":\"haproxy.stat.status:UP\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Active servers\",\"line_width\":1,\"metrics\":[{\"denominator\":\"*\",\"field\":\"haproxy.stat.server.id\",\"id\":\"b754d060-471e-11e8-9876-09cc6c85f5f2\",\"metric_agg\":\"count\",\"numerator\":\"*\",\"script\":\"params.up / (params.down + params.up)\",\"type\":\"cardinality\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"cfd51780-471e-11e8-9d35-6baabcdce3dc\",\"name\":\"down\"},{\"field\":\"a049c420-471e-11e8-9876-09cc6c85f5f2\",\"id\":\"45e6ec00-471f-11e8-9d35-6baabcdce3dc\",\"name\":\"up\"}]}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"2cba9420-4724-11e8-b854-2f6d2b452362\",\"label\":\"Total servers\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.server.id\",\"id\":\"2cba9421-4724-11e8-b854-2f6d2b452362\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"HAProxy active servers in backend ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"794b6cd0-471d-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections per server [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"978f2660-4735-11e8-b619-8f82b8185e96\"}],\"drilldown_url\":\"../app/kibana#/dashboard/8cc50a50-47e0-11e8-bc13-1397384faad3-ecs?_a=(query:(language:kuery,query:'haproxy.stat.service_name:\\\"{{ key }}\\\"'))\",\"filter\":{\"query\":\"haproxy.stat.component_type:(2 OR 3)\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Connections per server\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3ea29000-4735-11e8-b619-8f82b8185e96\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.service_name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"HAProxy connections per server ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bb0ab500-4735-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Downtime seconds [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"c86b8e00-4739-11e8-8953-55bbe33e1362\"}],\"filter\":{\"query\":\"haproxy.stat.component_type:1\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,0,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Downtime\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.downtime\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"91aa6a20-473a-11e8-8953-55bbe33e1362\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"91aa6a20-473a-11e8-8953-55bbe33e1362\",\"id\":\"a8ce7ca0-473a-11e8-8953-55bbe33e1362\",\"sigma\":\"\",\"type\":\"sum_bucket\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\",\"value_template\":\"{{value}}s\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"HAProxy downtime seconds ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"40bed190-473b-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average connection time [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Percentile\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"haproxy.stat.connection.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"percentiles\":[{\"id\":\"9fa517e0-479b-11e8-9590-e34c5ed2dd95\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"},{\"id\":\"daafd6e0-479b-11e8-9590-e34c5ed2dd95\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"90\"},{\"id\":\"e006b8c0-479b-11e8-9590-e34c5ed2dd95\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"}],\"type\":\"percentile\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.service_name\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy average connection time ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0751ed00-479c-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average time in queue [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average time in queue\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.queue.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy average time in queue ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b3463670-47a1-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDAsMV0="} +{"attributes":{"description":"HAProxy backend metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":8,\"x\":0,\"y\":0,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":8,\"x\":24,\"y\":0,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":16,\"x\":24,\"y\":8,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":8,\"x\":36,\"y\":0,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":8,\"x\":0,\"y\":8,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":8,\"x\":0,\"y\":16,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Metricbeat HAProxy] Backend ECS","version":1},"coreMigrationVersion":"8.0.0","id":"9151c900-471d-11e8-bc13-1397384faad3-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a64b4fd0-471c-11e8-bc13-1397384faad3-ecs","name":"1:panel_1","type":"visualization"},{"id":"794b6cd0-471d-11e8-bc13-1397384faad3-ecs","name":"2:panel_2","type":"visualization"},{"id":"bb0ab500-4735-11e8-bc13-1397384faad3-ecs","name":"3:panel_3","type":"visualization"},{"id":"40bed190-473b-11e8-bc13-1397384faad3-ecs","name":"4:panel_4","type":"visualization"},{"id":"0751ed00-479c-11e8-bc13-1397384faad3-ecs","name":"5:panel_5","type":"visualization"},{"id":"b3463670-47a1-11e8-bc13-1397384faad3-ecs","name":"6:panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:16.802Z","version":"WzM4MzAsMV0="} diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-frontend.json b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-frontend.json deleted file mode 100644 index cdc97a3c1a3..00000000000 --- a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-frontend.json +++ /dev/null @@ -1,62 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "HAProxy frontend metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "gridData": { - "h": 3, - "i": "2", - "w": 6, - "x": 0, - "y": 0 - }, - "id": "a64b4fd0-471c-11e8-bc13-1397384faad3-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 3, - "i": "3", - "w": 6, - "x": 6, - "y": 0 - }, - "id": "86159190-47c5-11e8-bc13-1397384faad3-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "6.2.2" - } - ], - "timeRestore": false, - "title": "[Metricbeat HAProxy] Frontend ECS", - "version": 1 - }, - "id": "d5878d00-47c5-11e8-bc13-1397384faad3-ecs", - "type": "dashboard", - "updated_at": "2018-04-24T18:32:51.945Z", - "version": 5 - } - ], - "version": "6.2.2" -} diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-frontend.ndjson b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-frontend.ndjson new file mode 100644 index 00000000000..5dac6e0738f --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-frontend.ndjson @@ -0,0 +1,3 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"4e35d500-471b-11e8-a520-3f46123ab5eb\"}],\"bar_color_rules\":[{\"id\":\"69899960-4719-11e8-a520-3f46123ab5eb\"}],\"filter\":{\"query\":\"haproxy.stat.component_type:(0 OR 1)\",\"language\":\"lucene\"},\"gauge_color_rules\":[{\"id\":\"6f171ba0-4719-11e8-a520-3f46123ab5eb\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Number of connections\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"41ff3940-4719-11e8-a520-3f46123ab5eb\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"41ff3940-4719-11e8-a520-3f46123ab5eb\",\"id\":\"456a5fa0-4738-11e8-8633-8f8b3acf1566\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"0ceb7740-471a-11e8-a520-3f46123ab5eb\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy connections ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a64b4fd0-471c-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Traffic volume [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Incoming\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"haproxy.stat.in.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"9814c420-47c4-11e8-994c-81d2daeb7c86\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":\"1\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(25,77,51,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"c89d1520-47c4-11e8-994c-81d2daeb7c86\",\"label\":\"Outgoing\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"haproxy.stat.out.bytes\",\"id\":\"c89d6340-47c4-11e8-994c-81d2daeb7c86\",\"type\":\"sum\"},{\"field\":\"c89d6340-47c4-11e8-994c-81d2daeb7c86\",\"id\":\"c89d6341-47c4-11e8-994c-81d2daeb7c86\",\"type\":\"derivative\",\"unit\":\"\"}],\"override_index_pattern\":0,\"point_size\":\"1\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy traffic volume ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"86159190-47c5-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDEsMV0="} +{"attributes":{"description":"HAProxy frontend metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":0,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":0,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"}]","timeRestore":false,"title":"[Metricbeat HAProxy] Frontend ECS","version":1},"coreMigrationVersion":"8.0.0","id":"d5878d00-47c5-11e8-bc13-1397384faad3-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a64b4fd0-471c-11e8-bc13-1397384faad3-ecs","name":"2:panel_2","type":"visualization"},{"id":"86159190-47c5-11e8-bc13-1397384faad3-ecs","name":"3:panel_3","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:17.859Z","version":"WzM4MzEsMV0="} diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-backend.json b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-backend.json deleted file mode 100644 index 4bbc8b9ca79..00000000000 --- a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-backend.json +++ /dev/null @@ -1,140 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "HAProxy HTTP backend metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "gridData": { - "h": 2, - "i": "1", - "w": 4, - "x": 0, - "y": 5 - }, - "id": "a64b4fd0-471c-11e8-bc13-1397384faad3-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 2, - "i": "2", - "w": 3, - "x": 9, - "y": 0 - }, - "id": "794b6cd0-471d-11e8-bc13-1397384faad3-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 3, - "i": "3", - "w": 6, - "x": 6, - "y": 2 - }, - "id": "bb0ab500-4735-11e8-bc13-1397384faad3-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 2, - "i": "4", - "w": 3, - "x": 6, - "y": 0 - }, - "id": "40bed190-473b-11e8-bc13-1397384faad3-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 2, - "i": "5", - "w": 4, - "x": 4, - "y": 5 - }, - "id": "0751ed00-479c-11e8-bc13-1397384faad3-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 2, - "i": "6", - "w": 4, - "x": 8, - "y": 5 - }, - "id": "b3463670-47a1-11e8-bc13-1397384faad3-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 3, - "i": "7", - "w": 6, - "x": 0, - "y": 0 - }, - "id": "fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs", - "panelIndex": "7", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 2, - "i": "8", - "w": 6, - "x": 0, - "y": 3 - }, - "id": "981d1040-47be-11e8-bc13-1397384faad3-ecs", - "panelIndex": "8", - "type": "visualization", - "version": "6.2.2" - } - ], - "timeRestore": false, - "title": "[Metricbeat HAProxy] HTTP backend ECS", - "version": 1 - }, - "id": "0836a4b0-47bd-11e8-bc13-1397384faad3-ecs", - "type": "dashboard", - "updated_at": "2018-04-24T18:33:28.791Z", - "version": 6 - } - ], - "version": "6.2.2" -} diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-backend.ndjson b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-backend.ndjson new file mode 100644 index 00000000000..9bcee53062a --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-backend.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"4e35d500-471b-11e8-a520-3f46123ab5eb\"}],\"bar_color_rules\":[{\"id\":\"69899960-4719-11e8-a520-3f46123ab5eb\"}],\"filter\":{\"query\":\"haproxy.stat.component_type:(0 OR 1)\",\"language\":\"lucene\"},\"gauge_color_rules\":[{\"id\":\"6f171ba0-4719-11e8-a520-3f46123ab5eb\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Number of connections\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"41ff3940-4719-11e8-a520-3f46123ab5eb\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"41ff3940-4719-11e8-a520-3f46123ab5eb\",\"id\":\"456a5fa0-4738-11e8-8633-8f8b3acf1566\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"0ceb7740-471a-11e8-a520-3f46123ab5eb\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy connections ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a64b4fd0-471c-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Active servers in backend [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"color\":\"rgba(255,0,6,1)\",\"id\":\"1ec0dde0-471d-11e8-9876-09cc6c85f5f2\",\"operator\":\"lte\",\"value\":0},{\"color\":\"rgba(255,0,6,1)\",\"id\":\"8d345723-dc15-424c-a8df-0777fe7a4ffa\",\"operator\":\"empty\",\"value\":null}],\"bar_color_rules\":[{\"id\":\"297160c0-471d-11e8-9876-09cc6c85f5f2\"}],\"filter\":{\"query\":\"haproxy.stat.component_type:(2 OR 3)\",\"language\":\"lucene\"},\"gauge_color_rules\":[{\"gauge\":\"rgba(255,0,5,1)\",\"id\":\"4ce156a0-471d-11e8-9876-09cc6c85f5f2\",\"operator\":\"lte\",\"text\":null,\"value\":0},{\"gauge\":\"rgba(255,196,0,1)\",\"id\":\"f8458a80-4721-11e8-b854-2f6d2b452362\",\"operator\":\"lte\",\"value\":0.5},{\"gauge\":\"rgba(255,0,5,1)\",\"id\":\"99d5e990-9b29-45c9-b191-e8034fb39ec5\",\"operator\":\"empty\",\"text\":null,\"value\":null}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"query\":\"haproxy.stat.status:UP\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Active servers\",\"line_width\":1,\"metrics\":[{\"denominator\":\"*\",\"field\":\"haproxy.stat.server.id\",\"id\":\"b754d060-471e-11e8-9876-09cc6c85f5f2\",\"metric_agg\":\"count\",\"numerator\":\"*\",\"script\":\"params.up / (params.down + params.up)\",\"type\":\"cardinality\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"cfd51780-471e-11e8-9d35-6baabcdce3dc\",\"name\":\"down\"},{\"field\":\"a049c420-471e-11e8-9876-09cc6c85f5f2\",\"id\":\"45e6ec00-471f-11e8-9d35-6baabcdce3dc\",\"name\":\"up\"}]}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"2cba9420-4724-11e8-b854-2f6d2b452362\",\"label\":\"Total servers\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.server.id\",\"id\":\"2cba9421-4724-11e8-b854-2f6d2b452362\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"HAProxy active servers in backend ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"794b6cd0-471d-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections per server [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"978f2660-4735-11e8-b619-8f82b8185e96\"}],\"drilldown_url\":\"../app/kibana#/dashboard/8cc50a50-47e0-11e8-bc13-1397384faad3-ecs?_a=(query:(language:kuery,query:'haproxy.stat.service_name:\\\"{{ key }}\\\"'))\",\"filter\":{\"query\":\"haproxy.stat.component_type:(2 OR 3)\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Connections per server\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3ea29000-4735-11e8-b619-8f82b8185e96\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.service_name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"HAProxy connections per server ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bb0ab500-4735-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Downtime seconds [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"c86b8e00-4739-11e8-8953-55bbe33e1362\"}],\"filter\":{\"query\":\"haproxy.stat.component_type:1\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,0,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Downtime\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.downtime\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"91aa6a20-473a-11e8-8953-55bbe33e1362\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"91aa6a20-473a-11e8-8953-55bbe33e1362\",\"id\":\"a8ce7ca0-473a-11e8-8953-55bbe33e1362\",\"sigma\":\"\",\"type\":\"sum_bucket\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\",\"value_template\":\"{{value}}s\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"HAProxy downtime seconds ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"40bed190-473b-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average connection time [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Percentile\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"haproxy.stat.connection.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"percentiles\":[{\"id\":\"9fa517e0-479b-11e8-9590-e34c5ed2dd95\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"},{\"id\":\"daafd6e0-479b-11e8-9590-e34c5ed2dd95\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"90\"},{\"id\":\"e006b8c0-479b-11e8-9590-e34c5ed2dd95\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"}],\"type\":\"percentile\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.service_name\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy average connection time ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0751ed00-479c-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average time in queue [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average time in queue\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.queue.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy average time in queue ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b3463670-47a1-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"HTTP response codes [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"200s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.2xx\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"973a6de0-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"973a6de0-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"4971d580-47e5-11e8-b45e-f10c3845381c\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(64,240,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"aafd05e0-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"300s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.3xx\",\"id\":\"aafd05e1-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"aafd05e1-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"aafd05e2-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,246,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c77191a0-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"400s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.4xx\",\"id\":\"c77191a1-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"c77191a1-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"c77191a2-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,0,4,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"d574e900-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"500s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.5xx\",\"id\":\"d574e901-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"d574e901-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"d5753720-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,251,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"e3b8a4c0-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"Other\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.other\",\"id\":\"e3b8a4c1-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"e3b8a4c1-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"e3b8a4c2-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(15,20,25,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"f9217d40-47be-11e8-b7ab-dff70b15977c\",\"label\":\"Response errors\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.errors\",\"id\":\"f9217d41-47be-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"f9217d41-47be-11e8-b7ab-dff70b15977c\",\"id\":\"1b7d4400-47bf-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy HTTP response codes ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average response time [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"ms,ms,0\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average response time\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}ms\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy average response time ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"981d1040-47be-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDMsMV0="} +{"attributes":{"description":"HAProxy HTTP backend metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":8,\"x\":0,\"y\":20,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":8,\"x\":36,\"y\":0,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":8,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":8,\"x\":24,\"y\":0,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":8,\"x\":16,\"y\":20,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":8,\"x\":32,\"y\":20,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":0,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":8,\"x\":0,\"y\":12,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Metricbeat HAProxy] HTTP backend ECS","version":1},"coreMigrationVersion":"8.0.0","id":"0836a4b0-47bd-11e8-bc13-1397384faad3-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a64b4fd0-471c-11e8-bc13-1397384faad3-ecs","name":"1:panel_1","type":"visualization"},{"id":"794b6cd0-471d-11e8-bc13-1397384faad3-ecs","name":"2:panel_2","type":"visualization"},{"id":"bb0ab500-4735-11e8-bc13-1397384faad3-ecs","name":"3:panel_3","type":"visualization"},{"id":"40bed190-473b-11e8-bc13-1397384faad3-ecs","name":"4:panel_4","type":"visualization"},{"id":"0751ed00-479c-11e8-bc13-1397384faad3-ecs","name":"5:panel_5","type":"visualization"},{"id":"b3463670-47a1-11e8-bc13-1397384faad3-ecs","name":"6:panel_6","type":"visualization"},{"id":"fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs","name":"7:panel_7","type":"visualization"},{"id":"981d1040-47be-11e8-bc13-1397384faad3-ecs","name":"8:panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:18.847Z","version":"WzM4MzIsMV0="} diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-frontend.json b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-frontend.json deleted file mode 100644 index dc44cd2255c..00000000000 --- a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-frontend.json +++ /dev/null @@ -1,75 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "HAProxy frontend metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "gridData": { - "h": 3, - "i": "3", - "w": 6, - "x": 6, - "y": 3 - }, - "id": "86159190-47c5-11e8-bc13-1397384faad3-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 3, - "i": "4", - "w": 12, - "x": 0, - "y": 0 - }, - "id": "fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 3, - "i": "5", - "w": 6, - "x": 0, - "y": 3 - }, - "id": "30956d00-47d7-11e8-bc13-1397384faad3-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "6.2.2" - } - ], - "timeRestore": false, - "title": "[Metricbeat HAProxy] HTTP frontend ECS", - "version": 1 - }, - "id": "e9057ae0-47c5-11e8-bc13-1397384faad3-ecs", - "type": "dashboard", - "updated_at": "2018-04-24T18:34:15.954Z", - "version": 5 - } - ], - "version": "6.2.2" -} diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-frontend.ndjson b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-frontend.ndjson new file mode 100644 index 00000000000..85f536a474f --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-frontend.ndjson @@ -0,0 +1,4 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Traffic volume [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Incoming\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"haproxy.stat.in.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"9814c420-47c4-11e8-994c-81d2daeb7c86\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":\"1\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(25,77,51,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"c89d1520-47c4-11e8-994c-81d2daeb7c86\",\"label\":\"Outgoing\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"haproxy.stat.out.bytes\",\"id\":\"c89d6340-47c4-11e8-994c-81d2daeb7c86\",\"type\":\"sum\"},{\"field\":\"c89d6340-47c4-11e8-994c-81d2daeb7c86\",\"id\":\"c89d6341-47c4-11e8-994c-81d2daeb7c86\",\"type\":\"derivative\",\"unit\":\"\"}],\"override_index_pattern\":0,\"point_size\":\"1\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy traffic volume ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"86159190-47c5-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"HTTP response codes [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"200s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.2xx\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"973a6de0-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"973a6de0-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"4971d580-47e5-11e8-b45e-f10c3845381c\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(64,240,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"aafd05e0-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"300s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.3xx\",\"id\":\"aafd05e1-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"aafd05e1-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"aafd05e2-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,246,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c77191a0-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"400s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.4xx\",\"id\":\"c77191a1-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"c77191a1-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"c77191a2-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,0,4,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"d574e900-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"500s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.5xx\",\"id\":\"d574e901-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"d574e901-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"d5753720-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,251,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"e3b8a4c0-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"Other\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.other\",\"id\":\"e3b8a4c1-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"e3b8a4c1-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"e3b8a4c2-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(15,20,25,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"f9217d40-47be-11e8-b7ab-dff70b15977c\",\"label\":\"Response errors\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.errors\",\"id\":\"f9217d41-47be-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"f9217d41-47be-11e8-b7ab-dff70b15977c\",\"id\":\"1b7d4400-47bf-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy HTTP response codes ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Requests [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Requests\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.request.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"ad38e2c0-47d6-11e8-994c-81d2daeb7c86\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"ad38e2c0-47d6-11e8-994c-81d2daeb7c86\",\"id\":\"b1ca03a0-47d6-11e8-994c-81d2daeb7c86\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,0,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c2f30500-47d6-11e8-994c-81d2daeb7c86\",\"label\":\"Request errors\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.request.errors\",\"id\":\"c2f30501-47d6-11e8-994c-81d2daeb7c86\",\"type\":\"max\"},{\"field\":\"c2f30501-47d6-11e8-994c-81d2daeb7c86\",\"id\":\"c2f30502-47d6-11e8-994c-81d2daeb7c86\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"c2f30502-47d6-11e8-994c-81d2daeb7c86\",\"id\":\"c2f30503-47d6-11e8-994c-81d2daeb7c86\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,0,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"11968ce0-47d7-11e8-994c-81d2daeb7c86\",\"label\":\"Denied requests\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.request.denied\",\"id\":\"11968ce1-47d7-11e8-994c-81d2daeb7c86\",\"type\":\"max\"},{\"field\":\"11968ce1-47d7-11e8-994c-81d2daeb7c86\",\"id\":\"11968ce2-47d7-11e8-994c-81d2daeb7c86\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"11968ce2-47d7-11e8-994c-81d2daeb7c86\",\"id\":\"11968ce3-47d7-11e8-994c-81d2daeb7c86\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy requests ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"30956d00-47d7-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDQsMV0="} +{"attributes":{"description":"HAProxy frontend metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":48,\"h\":12,\"x\":0,\"y\":0,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Metricbeat HAProxy] HTTP frontend ECS","version":1},"coreMigrationVersion":"8.0.0","id":"e9057ae0-47c5-11e8-bc13-1397384faad3-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"86159190-47c5-11e8-bc13-1397384faad3-ecs","name":"3:panel_3","type":"visualization"},{"id":"fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs","name":"4:panel_4","type":"visualization"},{"id":"30956d00-47d7-11e8-bc13-1397384faad3-ecs","name":"5:panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:19.873Z","version":"WzM4MzMsMV0="} diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-server.json b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-server.json deleted file mode 100644 index 56e2abefbec..00000000000 --- a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-server.json +++ /dev/null @@ -1,114 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "HAProxy metrics for HTTP mode", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "gridData": { - "h": 2, - "i": "5", - "w": 6, - "x": 0, - "y": 5 - }, - "id": "0751ed00-479c-11e8-bc13-1397384faad3-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 2, - "i": "6", - "w": 6, - "x": 6, - "y": 3 - }, - "id": "b3463670-47a1-11e8-bc13-1397384faad3-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 3, - "i": "7", - "w": 6, - "x": 0, - "y": 0 - }, - "id": "fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs", - "panelIndex": "7", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 2, - "i": "8", - "w": 6, - "x": 0, - "y": 3 - }, - "id": "981d1040-47be-11e8-bc13-1397384faad3-ecs", - "panelIndex": "8", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 3, - "i": "10", - "w": 6, - "x": 6, - "y": 0 - }, - "id": "72e84b00-47e1-11e8-bc13-1397384faad3-ecs", - "panelIndex": "10", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 2, - "i": "11", - "w": 6, - "x": 6, - "y": 5 - }, - "id": "976b0910-47e4-11e8-bc13-1397384faad3-ecs", - "panelIndex": "11", - "type": "visualization", - "version": "6.2.2" - } - ], - "timeRestore": false, - "title": "[Metricbeat HAProxy] HTTP server ECS", - "version": 1 - }, - "id": "8cc50a50-47e0-11e8-bc13-1397384faad3-ecs", - "type": "dashboard", - "updated_at": "2018-04-24T18:34:50.803Z", - "version": 9 - } - ], - "version": "6.2.2" -} diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-server.ndjson b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-server.ndjson new file mode 100644 index 00000000000..16b546de7a5 --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-server.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average connection time [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Percentile\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"haproxy.stat.connection.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"percentiles\":[{\"id\":\"9fa517e0-479b-11e8-9590-e34c5ed2dd95\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"},{\"id\":\"daafd6e0-479b-11e8-9590-e34c5ed2dd95\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"90\"},{\"id\":\"e006b8c0-479b-11e8-9590-e34c5ed2dd95\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"}],\"type\":\"percentile\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.service_name\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy average connection time ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0751ed00-479c-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average time in queue [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average time in queue\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.queue.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy average time in queue ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b3463670-47a1-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"HTTP response codes [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"200s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.2xx\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"973a6de0-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"973a6de0-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"4971d580-47e5-11e8-b45e-f10c3845381c\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(64,240,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"aafd05e0-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"300s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.3xx\",\"id\":\"aafd05e1-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"aafd05e1-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"aafd05e2-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,246,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c77191a0-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"400s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.4xx\",\"id\":\"c77191a1-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"c77191a1-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"c77191a2-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,0,4,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"d574e900-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"500s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.5xx\",\"id\":\"d574e901-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"d574e901-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"d5753720-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,251,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"e3b8a4c0-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"Other\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.other\",\"id\":\"e3b8a4c1-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"e3b8a4c1-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"e3b8a4c2-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(15,20,25,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"f9217d40-47be-11e8-b7ab-dff70b15977c\",\"label\":\"Response errors\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.errors\",\"id\":\"f9217d41-47be-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"f9217d41-47be-11e8-b7ab-dff70b15977c\",\"id\":\"1b7d4400-47bf-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy HTTP response codes ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average response time [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"ms,ms,0\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average response time\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}ms\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy average response time ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"981d1040-47be-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of server connections [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"query\":\"haproxy.stat.component_type:(2 OR 3)\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Number of connections\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"22668d40-47e1-11e8-96ee-d767c73d008a\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"22668d40-47e1-11e8-96ee-d767c73d008a\",\"id\":\"2a1d0a00-47e1-11e8-96ee-d767c73d008a\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.service_name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy number of server connections ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"72e84b00-47e1-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Healthcheck [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,0,4,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"198f56e0-47e4-11e8-b45e-f10c3845381c\",\"label\":\"Down\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.downtime\",\"id\":\"198f56e1-47e4-11e8-b45e-f10c3845381c\",\"type\":\"sum\"},{\"field\":\"198f56e1-47e4-11e8-b45e-f10c3845381c\",\"id\":\"dbf38560-47e6-11e8-b45e-f10c3845381c\",\"sigma\":\"\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"dbf38560-47e6-11e8-b45e-f10c3845381c\",\"id\":\"62274b80-47e7-11e8-b45e-f10c3845381c\",\"type\":\"positive_only\",\"unit\":\"\"},{\"id\":\"7b7a7300-47e7-11e8-b45e-f10c3845381c\",\"script\":\"(params.down > 0) ? 1 : 0\",\"type\":\"calculation\",\"variables\":[{\"field\":\"62274b80-47e7-11e8-b45e-f10c3845381c\",\"id\":\"7e577b40-47e7-11e8-b45e-f10c3845381c\",\"name\":\"down\"}]}],\"point_size\":1,\"seperate_axis\":1,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,218,0,1)\",\"fill\":0.5,\"formatter\":\"ms,ms,0\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Duration (ms)\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.check.duration\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy healthcheck ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"976b0910-47e4-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDcsMV0="} +{"attributes":{"description":"HAProxy metrics for HTTP mode","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":8,\"x\":0,\"y\":20,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":8,\"x\":24,\"y\":12,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":0,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":8,\"x\":0,\"y\":12,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":0,\"i\":\"10\"},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":8,\"x\":24,\"y\":20,\"i\":\"11\"},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"}]","timeRestore":false,"title":"[Metricbeat HAProxy] HTTP server ECS","version":1},"coreMigrationVersion":"8.0.0","id":"8cc50a50-47e0-11e8-bc13-1397384faad3-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"0751ed00-479c-11e8-bc13-1397384faad3-ecs","name":"5:panel_5","type":"visualization"},{"id":"b3463670-47a1-11e8-bc13-1397384faad3-ecs","name":"6:panel_6","type":"visualization"},{"id":"fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs","name":"7:panel_7","type":"visualization"},{"id":"981d1040-47be-11e8-bc13-1397384faad3-ecs","name":"8:panel_8","type":"visualization"},{"id":"72e84b00-47e1-11e8-bc13-1397384faad3-ecs","name":"10:panel_10","type":"visualization"},{"id":"976b0910-47e4-11e8-bc13-1397384faad3-ecs","name":"11:panel_11","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:20.914Z","version":"WzM4MzQsMV0="} diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-overview.json b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-overview.json deleted file mode 100644 index c3803a48dbb..00000000000 --- a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-overview.json +++ /dev/null @@ -1,91 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "HAProxy overview", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "gridData": { - "h": 6, - "i": "2", - "w": 4, - "x": 8, - "y": 2 - }, - "id": "79350d50-47db-11e8-bc13-1397384faad3-ecs", - "panelIndex": "2", - "title": "Servers", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 6, - "i": "3", - "w": 4, - "x": 4, - "y": 2 - }, - "id": "8c8f0300-47dc-11e8-bc13-1397384faad3-ecs", - "panelIndex": "3", - "title": "Backends", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 6, - "i": "4", - "w": 4, - "x": 0, - "y": 2 - }, - "id": "f1e27ed0-47dc-11e8-bc13-1397384faad3-ecs", - "panelIndex": "4", - "title": "Frontends", - "type": "visualization", - "version": "6.2.2" - }, - { - "gridData": { - "h": 2, - "i": "5", - "w": 12, - "x": 0, - "y": 0 - }, - "id": "a64b4fd0-471c-11e8-bc13-1397384faad3-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "6.2.2" - } - ], - "timeRestore": false, - "title": "[Metricbeat HAProxy] Overview ECS", - "version": 1 - }, - "id": "4b555c30-47dd-11e8-bc13-1397384faad3-ecs", - "type": "dashboard", - "updated_at": "2018-04-24T18:31:56.356Z", - "version": 3 - } - ], - "version": "6.2.2" -} diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-overview.ndjson b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-overview.ndjson new file mode 100644 index 00000000000..2b4b8371405 --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-overview.ndjson @@ -0,0 +1,5 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Servers per connection [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"50830800-47d9-11e8-9db9-274c7a5e25e4\"}],\"drilldown_url\":\"../app/kibana#/dashboard/8cc50a50-47e0-11e8-bc13-1397384faad3-ecs?_a=(query:(language:kuery,query:'haproxy.stat.service_name:\\\"{{ key }}\\\"'))\",\"filter\":\"\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"markdown\":\"{{#each _all}}\\n{{ label }}\\n\\n{{/each}}\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"query\":\"haproxy.stat.component_type:(2 OR 3)\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Servers\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.service_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"20\",\"var_name\":\"\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"HAProxy servers per connection ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"79350d50-47db-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Backends per connection [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"4aeddd40-47dc-11e8-9db9-274c7a5e25e4\"}],\"drilldown_url\":\"../app/kibana#/dashboard/0836a4b0-47bd-11e8-bc13-1397384faad3-ecs?_a=(query:(language:kuery,query:'haproxy.stat.proxy.name:\\\"{{ key }}\\\"'))\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"query\":\"haproxy.stat.component_type:1\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Backends\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"20\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"HAProxy backends per connection ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8c8f0300-47dc-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Frontends per connection [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"b81d8640-47dc-11e8-9a25-99b107967d82\"}],\"drilldown_url\":\"../app/kibana#/dashboard/e9057ae0-47c5-11e8-bc13-1397384faad3-ecs?_a=(query:(language:kuery,query:'haproxy.stat.proxy.name:\\\"{{ key }}\\\"'))\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"query\":\"haproxy.stat.component_type:0\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Frontends\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"20\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"HAProxy frontends per connection ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f1e27ed0-47dc-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"4e35d500-471b-11e8-a520-3f46123ab5eb\"}],\"bar_color_rules\":[{\"id\":\"69899960-4719-11e8-a520-3f46123ab5eb\"}],\"filter\":{\"query\":\"haproxy.stat.component_type:(0 OR 1)\",\"language\":\"lucene\"},\"gauge_color_rules\":[{\"id\":\"6f171ba0-4719-11e8-a520-3f46123ab5eb\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Number of connections\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"41ff3940-4719-11e8-a520-3f46123ab5eb\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"41ff3940-4719-11e8-a520-3f46123ab5eb\",\"id\":\"456a5fa0-4738-11e8-8633-8f8b3acf1566\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"0ceb7740-471a-11e8-a520-3f46123ab5eb\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy connections ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a64b4fd0-471c-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzYsMV0="} +{"attributes":{"description":"HAProxy overview","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":24,\"x\":32,\"y\":8,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Servers\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":24,\"x\":16,\"y\":8,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Backends\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":24,\"x\":0,\"y\":8,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Frontends\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":48,\"h\":8,\"x\":0,\"y\":0,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Metricbeat HAProxy] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"4b555c30-47dd-11e8-bc13-1397384faad3-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"79350d50-47db-11e8-bc13-1397384faad3-ecs","name":"2:panel_2","type":"visualization"},{"id":"8c8f0300-47dc-11e8-bc13-1397384faad3-ecs","name":"3:panel_3","type":"visualization"},{"id":"f1e27ed0-47dc-11e8-bc13-1397384faad3-ecs","name":"4:panel_4","type":"visualization"},{"id":"a64b4fd0-471c-11e8-bc13-1397384faad3-ecs","name":"5:panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:21.953Z","version":"WzM4MzUsMV0="} diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-visualizations.json b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-visualizations.json deleted file mode 100644 index 78332e26515..00000000000 --- a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-visualizations.json +++ /dev/null @@ -1,1341 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Connections [Metricbeat HAProxy] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "4e35d500-471b-11e8-a520-3f46123ab5eb" - } - ], - "bar_color_rules": [ - { - "id": "69899960-4719-11e8-a520-3f46123ab5eb" - } - ], - "filter": "haproxy.stat.component_type:(0 OR 1)", - "gauge_color_rules": [ - { - "id": "6f171ba0-4719-11e8-a520-3f46123ab5eb" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": "", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Number of connections", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.connection.total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "41ff3940-4719-11e8-a520-3f46123ab5eb", - "type": "derivative", - "unit": "" - }, - { - "field": "41ff3940-4719-11e8-a520-3f46123ab5eb", - "id": "456a5fa0-4738-11e8-8633-8f8b3acf1566", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "series_drop_last_bucket": 1, - "split_color_mode": "rainbow", - "split_filters": [ - { - "color": "#68BC00", - "id": "0ceb7740-471a-11e8-a520-3f46123ab5eb" - } - ], - "split_mode": "terms", - "stacked": "none", - "terms_field": "haproxy.stat.proxy.name" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "HAProxy connections ECS", - "type": "metrics" - } - }, - "id": "a64b4fd0-471c-11e8-bc13-1397384faad3-ecs", - "type": "visualization", - "updated_at": "2018-04-23T20:54:01.082Z", - "version": 3 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Active servers in backend [Metricbeat HAProxy] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "color": "rgba(255,0,6,1)", - "id": "1ec0dde0-471d-11e8-9876-09cc6c85f5f2", - "operator": "lte", - "value": 0 - } - ], - "bar_color_rules": [ - { - "id": "297160c0-471d-11e8-9876-09cc6c85f5f2" - } - ], - "filter": "haproxy.stat.component_type:(2 OR 3)", - "gauge_color_rules": [ - { - "gauge": "rgba(255,0,5,1)", - "id": "4ce156a0-471d-11e8-9876-09cc6c85f5f2", - "operator": "lte", - "text": null, - "value": 0 - }, - { - "gauge": "rgba(255,196,0,1)", - "id": "f8458a80-4721-11e8-b854-2f6d2b452362", - "operator": "lte", - "value": 0.5 - } - ], - "gauge_inner_width": 10, - "gauge_max": "1", - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": "haproxy.stat.status:UP", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Active servers", - "line_width": 1, - "metrics": [ - { - "denominator": "*", - "field": "haproxy.stat.server.id", - "id": "b754d060-471e-11e8-9876-09cc6c85f5f2", - "metric_agg": "count", - "numerator": "*", - "script": "params.up / (params.down + params.up)", - "type": "cardinality", - "variables": [ - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "cfd51780-471e-11e8-9d35-6baabcdce3dc", - "name": "down" - }, - { - "field": "a049c420-471e-11e8-9876-09cc6c85f5f2", - "id": "45e6ec00-471f-11e8-9d35-6baabcdce3dc", - "name": "up" - } - ] - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "terms_field": "haproxy.stat.proxy.name" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "2cba9420-4724-11e8-b854-2f6d2b452362", - "label": "Total servers", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.server.id", - "id": "2cba9421-4724-11e8-b854-2f6d2b452362", - "type": "cardinality" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric" - }, - "title": "HAProxy active servers in backend ECS", - "type": "metrics" - } - }, - "id": "794b6cd0-471d-11e8-bc13-1397384faad3-ecs", - "type": "visualization", - "updated_at": "2018-04-23T21:36:57.634Z", - "version": 8 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Connections per server [Metricbeat HAProxy] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "id": "978f2660-4735-11e8-b619-8f82b8185e96" - } - ], - "drilldown_url": "../app/kibana#/dashboard/8cc50a50-47e0-11e8-bc13-1397384faad3-ecs?_a=(query:(language:kuery,query:'haproxy.stat.service_name:\"{{ key }}\"'))", - "filter": "haproxy.stat.component_type:(2 OR 3)", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Connections per server", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.connection.total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "3ea29000-4735-11e8-b619-8f82b8185e96", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "haproxy.stat.service_name" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "HAProxy connections per server ECS", - "type": "metrics" - } - }, - "id": "bb0ab500-4735-11e8-bc13-1397384faad3-ecs", - "type": "visualization", - "updated_at": "2018-04-24T17:12:35.298Z", - "version": 3 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Downtime seconds [Metricbeat HAProxy] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "c86b8e00-4739-11e8-8953-55bbe33e1362" - } - ], - "filter": "haproxy.stat.component_type:1", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(255,0,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Downtime", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.downtime", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "91aa6a20-473a-11e8-8953-55bbe33e1362", - "type": "derivative", - "unit": "" - }, - { - "field": "91aa6a20-473a-11e8-8953-55bbe33e1362", - "id": "a8ce7ca0-473a-11e8-8953-55bbe33e1362", - "sigma": "", - "type": "sum_bucket" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "haproxy.stat.proxy.name", - "value_template": "{{value}}s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric" - }, - "title": "HAProxy downtime seconds ECS", - "type": "metrics" - } - }, - "id": "40bed190-473b-11e8-bc13-1397384faad3-ecs", - "type": "visualization", - "updated_at": "2018-04-23T21:29:04.708Z", - "version": 3 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Average time in queue [Metricbeat HAProxy] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Average time in queue", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.queue.time.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "HAProxy average time in queue ECS", - "type": "metrics" - } - }, - "id": "b3463670-47a1-11e8-bc13-1397384faad3-ecs", - "type": "visualization", - "updated_at": "2018-04-24T09:27:25.783Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Traffic volume [Metricbeat HAProxy] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(164,221,0,1)", - "fill": "0.5", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Incoming", - "line_width": "1", - "metrics": [ - { - "field": "haproxy.stat.in.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "9814c420-47c4-11e8-994c-81d2daeb7c86", - "type": "derivative", - "unit": "" - } - ], - "point_size": "1", - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(25,77,51,1)", - "fill": "0.5", - "formatter": "bytes", - "id": "c89d1520-47c4-11e8-994c-81d2daeb7c86", - "label": "Outgoing", - "line_width": "1", - "metrics": [ - { - "field": "haproxy.stat.out.bytes", - "id": "c89d6340-47c4-11e8-994c-81d2daeb7c86", - "type": "sum" - }, - { - "field": "c89d6340-47c4-11e8-994c-81d2daeb7c86", - "id": "c89d6341-47c4-11e8-994c-81d2daeb7c86", - "type": "derivative", - "unit": "" - } - ], - "override_index_pattern": 0, - "point_size": "1", - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "HAProxy traffic volume ECS", - "type": "metrics" - } - }, - "id": "86159190-47c5-11e8-bc13-1397384faad3-ecs", - "type": "visualization", - "updated_at": "2018-04-24T14:43:27.616Z", - "version": 3 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "HTTP response codes [Metricbeat HAProxy] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "200s", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.response.http.2xx", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "973a6de0-47bd-11e8-b7ab-dff70b15977c", - "type": "derivative", - "unit": "" - }, - { - "field": "973a6de0-47bd-11e8-b7ab-dff70b15977c", - "id": "4971d580-47e5-11e8-b45e-f10c3845381c", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(64,240,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "aafd05e0-47bd-11e8-b7ab-dff70b15977c", - "label": "300s", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.response.http.3xx", - "id": "aafd05e1-47bd-11e8-b7ab-dff70b15977c", - "type": "sum" - }, - { - "field": "aafd05e1-47bd-11e8-b7ab-dff70b15977c", - "id": "aafd05e2-47bd-11e8-b7ab-dff70b15977c", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(255,246,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "c77191a0-47bd-11e8-b7ab-dff70b15977c", - "label": "400s", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.response.http.4xx", - "id": "c77191a1-47bd-11e8-b7ab-dff70b15977c", - "type": "sum" - }, - { - "field": "c77191a1-47bd-11e8-b7ab-dff70b15977c", - "id": "c77191a2-47bd-11e8-b7ab-dff70b15977c", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(255,0,4,1)", - "fill": 0.5, - "formatter": "number", - "id": "d574e900-47bd-11e8-b7ab-dff70b15977c", - "label": "500s", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.response.http.5xx", - "id": "d574e901-47bd-11e8-b7ab-dff70b15977c", - "type": "sum" - }, - { - "field": "d574e901-47bd-11e8-b7ab-dff70b15977c", - "id": "d5753720-47bd-11e8-b7ab-dff70b15977c", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,251,255,1)", - "fill": 0.5, - "formatter": "number", - "id": "e3b8a4c0-47bd-11e8-b7ab-dff70b15977c", - "label": "Other", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.response.http.other", - "id": "e3b8a4c1-47bd-11e8-b7ab-dff70b15977c", - "type": "sum" - }, - { - "field": "e3b8a4c1-47bd-11e8-b7ab-dff70b15977c", - "id": "e3b8a4c2-47bd-11e8-b7ab-dff70b15977c", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(15,20,25,1)", - "fill": 0.5, - "formatter": "number", - "id": "f9217d40-47be-11e8-b7ab-dff70b15977c", - "label": "Response errors", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.response.errors", - "id": "f9217d41-47be-11e8-b7ab-dff70b15977c", - "type": "sum" - }, - { - "field": "f9217d41-47be-11e8-b7ab-dff70b15977c", - "id": "1b7d4400-47bf-11e8-b7ab-dff70b15977c", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "HAProxy HTTP response codes ECS", - "type": "metrics" - } - }, - "id": "fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs", - "type": "visualization", - "updated_at": "2018-04-24T17:31:30.169Z", - "version": 4 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Average response time [Metricbeat HAProxy] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "ms,ms,0", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Average response time", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.response.time.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "HAProxy average response time ECS", - "type": "metrics" - } - }, - "id": "981d1040-47be-11e8-bc13-1397384faad3-ecs", - "type": "visualization", - "updated_at": "2018-04-24T13:01:49.811Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Requests [Metricbeat HAProxy] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Requests", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.request.total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "ad38e2c0-47d6-11e8-994c-81d2daeb7c86", - "type": "derivative", - "unit": "" - }, - { - "field": "ad38e2c0-47d6-11e8-994c-81d2daeb7c86", - "id": "b1ca03a0-47d6-11e8-994c-81d2daeb7c86", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(255,0,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "c2f30500-47d6-11e8-994c-81d2daeb7c86", - "label": "Request errors", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.request.errors", - "id": "c2f30501-47d6-11e8-994c-81d2daeb7c86", - "type": "max" - }, - { - "field": "c2f30501-47d6-11e8-994c-81d2daeb7c86", - "id": "c2f30502-47d6-11e8-994c-81d2daeb7c86", - "type": "derivative", - "unit": "" - }, - { - "field": "c2f30502-47d6-11e8-994c-81d2daeb7c86", - "id": "c2f30503-47d6-11e8-994c-81d2daeb7c86", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,0,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "11968ce0-47d7-11e8-994c-81d2daeb7c86", - "label": "Denied requests", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.request.denied", - "id": "11968ce1-47d7-11e8-994c-81d2daeb7c86", - "type": "max" - }, - { - "field": "11968ce1-47d7-11e8-994c-81d2daeb7c86", - "id": "11968ce2-47d7-11e8-994c-81d2daeb7c86", - "type": "derivative", - "unit": "" - }, - { - "field": "11968ce2-47d7-11e8-994c-81d2daeb7c86", - "id": "11968ce3-47d7-11e8-994c-81d2daeb7c86", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "HAProxy requests ECS", - "type": "metrics" - } - }, - "id": "30956d00-47d7-11e8-bc13-1397384faad3-ecs", - "type": "visualization", - "updated_at": "2018-04-24T15:50:19.344Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Average connection time [Metricbeat HAProxy] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0.1", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Percentile", - "line_width": "1", - "metrics": [ - { - "field": "haproxy.stat.connection.time.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "percentiles": [ - { - "id": "9fa517e0-479b-11e8-9590-e34c5ed2dd95", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "99" - }, - { - "id": "daafd6e0-479b-11e8-9590-e34c5ed2dd95", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "90" - }, - { - "id": "e006b8c0-479b-11e8-9590-e34c5ed2dd95", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "50" - } - ], - "type": "percentile" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "haproxy.stat.service_name" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "HAProxy average connection time ECS", - "type": "metrics" - } - }, - "id": "0751ed00-479c-11e8-bc13-1397384faad3-ecs", - "type": "visualization", - "updated_at": "2018-04-24T08:51:34.252Z", - "version": 4 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Number of server connections [Metricbeat HAProxy] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": "haproxy.stat.component_type:(2 OR 3)", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Number of connections", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.connection.total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "22668d40-47e1-11e8-96ee-d767c73d008a", - "type": "derivative", - "unit": "" - }, - { - "field": "22668d40-47e1-11e8-96ee-d767c73d008a", - "id": "2a1d0a00-47e1-11e8-96ee-d767c73d008a", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "haproxy.stat.service_name" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "HAProxy number of server connections ECS", - "type": "metrics" - } - }, - "id": "72e84b00-47e1-11e8-bc13-1397384faad3-ecs", - "type": "visualization", - "updated_at": "2018-04-24T17:05:00.128Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Healthcheck [Metricbeat HAProxy] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(255,0,4,1)", - "fill": 0.5, - "formatter": "number", - "id": "198f56e0-47e4-11e8-b45e-f10c3845381c", - "label": "Down", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.downtime", - "id": "198f56e1-47e4-11e8-b45e-f10c3845381c", - "type": "sum" - }, - { - "field": "198f56e1-47e4-11e8-b45e-f10c3845381c", - "id": "dbf38560-47e6-11e8-b45e-f10c3845381c", - "sigma": "", - "type": "derivative", - "unit": "" - }, - { - "field": "dbf38560-47e6-11e8-b45e-f10c3845381c", - "id": "62274b80-47e7-11e8-b45e-f10c3845381c", - "type": "positive_only", - "unit": "" - }, - { - "id": "7b7a7300-47e7-11e8-b45e-f10c3845381c", - "script": "(params.down > 0) ? 1 : 0", - "type": "calculation", - "variables": [ - { - "field": "62274b80-47e7-11e8-b45e-f10c3845381c", - "id": "7e577b40-47e7-11e8-b45e-f10c3845381c", - "name": "down" - } - ] - } - ], - "point_size": 1, - "seperate_axis": 1, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(255,218,0,1)", - "fill": 0.5, - "formatter": "ms,ms,0", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Duration (ms)", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.check.duration", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "HAProxy healthcheck ECS", - "type": "metrics" - } - }, - "id": "976b0910-47e4-11e8-bc13-1397384faad3-ecs", - "type": "visualization", - "updated_at": "2018-04-24T17:49:15.393Z", - "version": 5 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Servers per connection [Metricbeat HAProxy] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "id": "50830800-47d9-11e8-9db9-274c7a5e25e4" - } - ], - "drilldown_url": "../app/kibana#/dashboard/8cc50a50-47e0-11e8-bc13-1397384faad3-ecs?_a=(query:(language:kuery,query:'haproxy.stat.service_name:\"{{ key }}\"'))", - "filter": "", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "auto", - "markdown": "{{#each _all}}\n{{ label }}\n\n{{/each}}", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": "haproxy.stat.component_type:(2 OR 3)", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Servers", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.connection.total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "haproxy.stat.service_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "20", - "var_name": "" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "HAProxy servers per connection ECS", - "type": "metrics" - } - }, - "id": "79350d50-47db-11e8-bc13-1397384faad3-ecs", - "type": "visualization", - "updated_at": "2018-04-24T17:11:53.619Z", - "version": 7 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Backends per connection [Metricbeat HAProxy] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "id": "4aeddd40-47dc-11e8-9db9-274c7a5e25e4" - } - ], - "drilldown_url": "../app/kibana#/dashboard/0836a4b0-47bd-11e8-bc13-1397384faad3-ecs?_a=(query:(language:kuery,query:'haproxy.stat.proxy.name:\"{{ key }}\"'))", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": "haproxy.stat.component_type:1", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Backends", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.connection.total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "haproxy.stat.proxy.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "20" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "HAProxy backends per connection ECS", - "type": "metrics" - } - }, - "id": "8c8f0300-47dc-11e8-bc13-1397384faad3-ecs", - "type": "visualization", - "updated_at": "2018-04-24T16:46:24.802Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Frontends per connection [Metricbeat HAProxy] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "id": "b81d8640-47dc-11e8-9a25-99b107967d82" - } - ], - "drilldown_url": "../app/kibana#/dashboard/e9057ae0-47c5-11e8-bc13-1397384faad3-ecs?_a=(query:(language:kuery,query:'haproxy.stat.proxy.name:\"{{ key }}\"'))", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": "haproxy.stat.component_type:0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Frontends", - "line_width": 1, - "metrics": [ - { - "field": "haproxy.stat.connection.total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "haproxy.stat.proxy.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "20" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "HAProxy frontends per connection ECS", - "type": "metrics" - } - }, - "id": "f1e27ed0-47dc-11e8-bc13-1397384faad3-ecs", - "type": "visualization", - "updated_at": "2018-04-24T16:54:16.639Z", - "version": 3 - } - ], - "version": "6.2.2" -} diff --git a/metricbeat/module/haproxy/module.yml b/metricbeat/module/haproxy/module.yml index c833a31c500..9e44bdf6502 100644 --- a/metricbeat/module/haproxy/module.yml +++ b/metricbeat/module/haproxy/module.yml @@ -1,13 +1,13 @@ dashboards: - id: 9151c900-471d-11e8-bc13-1397384faad3 - file: Metricbeat-haproxy-backend.json + file: Metricbeat-haproxy-backend.ndjson - id: d5878d00-47c5-11e8-bc13-1397384faad3 - file: Metricbeat-haproxy-frontend.json + file: Metricbeat-haproxy-frontend.ndjson - id: 0836a4b0-47bd-11e8-bc13-1397384faad3 - file: Metricbeat-haproxy-http-backend.json + file: Metricbeat-haproxy-http-backend.ndjson - id: e9057ae0-47c5-11e8-bc13-1397384faad3 - file: Metricbeat-haproxy-http-frontend.json + file: Metricbeat-haproxy-http-frontend.ndjson - id: 8cc50a50-47e0-11e8-bc13-1397384faad3 - file: Metricbeat-haproxy-http-server.json + file: Metricbeat-haproxy-http-server.ndjson - id: 4b555c30-47dd-11e8-bc13-1397384faad3 - file: Metricbeat-haproxy-overview.json + file: Metricbeat-haproxy-overview.ndjson diff --git a/metricbeat/module/kafka/_meta/kibana/7/dashboard/Metricbeat-kafka-overview.json b/metricbeat/module/kafka/_meta/kibana/7/dashboard/Metricbeat-kafka-overview.json deleted file mode 100644 index f8cfe3543e0..00000000000 --- a/metricbeat/module/kafka/_meta/kibana/7/dashboard/Metricbeat-kafka-overview.json +++ /dev/null @@ -1,1354 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Kafka analysis of topics and consumer groups", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "1", - "w": 24, - "x": 0, - "y": 20 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "Kafka Topic \u0026 Consumer Offsets", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 6, - "i": "3", - "w": 16, - "x": 0, - "y": 0 - }, - "panelIndex": "3", - "panelRefName": "panel_1", - "title": "Kafka Controls", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "6", - "w": 24, - "x": 0, - "y": 6 - }, - "panelIndex": "6", - "panelRefName": "panel_2", - "title": "Consumer Group Lag by Topic", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "spy": null - }, - "gridData": { - "h": 6, - "i": "10", - "w": 25, - "x": 16, - "y": 0 - }, - "panelIndex": "10", - "panelRefName": "panel_3", - "title": "Kafka Metrics", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "12", - "w": 24, - "x": 0, - "y": 33 - }, - "panelIndex": "12", - "panelRefName": "panel_4", - "title": "Consumer Partition Reassignments", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 6, - "i": "13", - "w": 7, - "x": 41, - "y": 0 - }, - "panelIndex": "13", - "panelRefName": "panel_5", - "title": "Consumer Metrics", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "spy": null, - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 13, - "i": "14", - "w": 24, - "x": 24, - "y": 27 - }, - "panelIndex": "14", - "panelRefName": "panel_6", - "title": "Kafka Consumer Group Clients", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "15", - "w": 24, - "x": 24, - "y": 6 - }, - "panelIndex": "15", - "panelRefName": "panel_7", - "title": "Kafka Brokers", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "table": { - "sort": { - "column": "26d2cd90-d2f5-11e8-9dd4-c5f03280d7b0", - "order": "desc" - } - } - }, - "gridData": { - "h": 11, - "i": "16", - "w": 24, - "x": 24, - "y": 16 - }, - "panelIndex": "16", - "panelRefName": "panel_8", - "title": "Kafka Topic Details", - "version": "7.3.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Kafka] Overview ECS", - "version": 1 - }, - "id": "ea488d90-8e63-11e8-8fa2-3d5f811fbd0f-ecs", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "b9d12c80-8e63-11e8-8fa2-3d5f811fbd0f-ecs", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "8d2f79a0-8e65-11e8-8fa2-3d5f811fbd0f-ecs", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "944188f0-8e79-11e8-8fa2-3d5f811fbd0f-ecs", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "dc89f8d0-8e8e-11e8-8fa2-3d5f811fbd0f-ecs", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "587f2360-8f21-11e8-8fa2-3d5f811fbd0f-ecs", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "1681f1a0-90e7-11e8-8fa2-3d5f811fbd0f-ecs", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "9a7576e0-d231-11e8-8766-dbbdc39e7ba9-ecs", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "27dd5960-d2ed-11e8-8766-dbbdc39e7ba9-ecs", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "491fee50-d2f5-11e8-8766-dbbdc39e7ba9-ecs", - "name": "panel_8", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-11-29T09:36:17.646Z", - "version": "WzI2NDgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Kafka Topic \u0026 Consumer Offsets [Metricbeat Kafka] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "8b27e6a0-8e61-11e8-b741-c3e458b74a68" - } - ], - "filter": { - "language": "lucene", - "query": "NOT kafka.topic.name:__consumer_offsets" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "rgba(244,78,59,1)", - "fill": "0.1", - "filter": { - "language": "lucene", - "query": "metricset.name: partition AND kafka.partition.partition.is_leader: true" - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Topic Offsets", - "line_width": "0.5", - "metrics": [ - { - "field": "kafka.partition.offset.newest", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "kafka.topic.name", - "terms_order_by": "_term", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,0.52)", - "fill": "0", - "filter": { - "language": "lucene", - "query": "metricset.name: consumergroup" - }, - "formatter": "number", - "id": "d43034c0-8f1e-11e8-8784-cd0acd161a28", - "label": "Consumer Offsets", - "line_width": "1", - "metrics": [ - { - "field": "kafka.consumergroup.offset", - "id": "d43034c1-8f1e-11e8-8784-cd0acd161a28", - "type": "sum" - } - ], - "point_size": "1.5", - "seperate_axis": 0, - "split_color_mode": "rainbow", - "split_filters": [ - { - "color": "#68BC00", - "id": "dd41ada0-8f1e-11e8-8784-cd0acd161a28" - } - ], - "split_mode": "terms", - "stacked": "none", - "terms_field": "kafka.consumergroup.id", - "terms_order_by": "_term", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Kafka Topic \u0026 Consumer Offsets [Metricbeat Kafka] ECS", - "type": "metrics" - } - }, - "id": "b9d12c80-8e63-11e8-8fa2-3d5f811fbd0f-ecs", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-29T09:36:17.646Z", - "version": "WzI2MzksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Kafka Controls [Metricbeat Kafka] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "kafka.topic.name", - "id": "1532342651170", - "indexPatternRefName": "control_0_index_pattern", - "label": "Topic Name", - "options": { - "multiselect": true, - "order": "desc", - "size": 10, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "kafka.partition.id", - "id": "1539799686678", - "indexPatternRefName": "control_1_index_pattern", - "label": "Partition", - "options": { - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "1532342651170", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "Kafka Controls [Metricbeat Kafka] ECS", - "type": "input_control_vis" - } - }, - "id": "8d2f79a0-8e65-11e8-8fa2-3d5f811fbd0f-ecs", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-11-29T09:36:17.646Z", - "version": "WzI2NDAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Kafka Consumer Group Lag vs Time [Metricbeat Kafka] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "1966adf0-1298-11ea-abd7-b5bb8e05b5d6" - } - ], - "bar_color_rules": [ - { - "id": "1dbe6f50-1298-11ea-abd7-b5bb8e05b5d6" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "lucene", - "query": "(metricset.name: consumergroup) AND NOT kafka.consumergroup.topic.name:__consumer_offsets" - }, - "gauge_color_rules": [ - { - "id": "1eee15b0-1298-11ea-abd7-b5bb8e05b5d6" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0.2", - "formatter": "number", - "id": "0dcb8020-8e6d-11e8-bfab-6f29bad3a6f2", - "label": "Consumer Groups", - "line_width": 1, - "metrics": [ - { - "field": "kafka.consumergroup.consumer_lag", - "id": "0dcb8021-8e6d-11e8-bfab-6f29bad3a6f2", - "type": "max" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "kafka.consumergroup.topic", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Kafka Consumer Group Lag vs Time [Metricbeat Kafka] ECS", - "type": "metrics" - } - }, - "id": "944188f0-8e79-11e8-8fa2-3d5f811fbd0f-ecs", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-29T11:07:58.021Z", - "version": "WzI4MjMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": "Partition Metricset", - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "metricset.name", - "negate": false, - "params": { - "query": "partition", - "type": "phrase" - }, - "type": "phrase", - "value": "partition" - }, - "query": { - "match": { - "metricset.name": { - "query": "partition", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "kafka.topic.name", - "negate": true, - "params": { - "query": "__consumer_offsets", - "type": "phrase" - }, - "type": "phrase", - "value": "__consumer_offsets" - }, - "query": { - "match": { - "kafka.topic.name": { - "query": "__consumer_offsets", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Kafka Metrics [Metricbeat Kafka] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Topics", - "field": "kafka.topic.name" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Brokers", - "field": "kafka.partition.broker.id" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Partitions", - "field": "kafka.partition.topic_id" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "Replicas", - "field": "kafka.partition.topic_broker_id" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 32, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Kafka Metrics [Metricbeat Kafka] ECS", - "type": "metric" - } - }, - "id": "dc89f8d0-8e8e-11e8-8fa2-3d5f811fbd0f-ecs", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-11-29T09:36:17.646Z", - "version": "WzI2NDIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Consumer Partition Reassignments [Metricbeat Kafka] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_max": "1", - "axis_min": "-1", - "axis_position": "right", - "filter": { - "language": "lucene", - "query": "NOT kafka.topic.name:__consumer_offsets" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "hide_in_legend": 0, - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Consumer -\u003e Partition Reassignment", - "line_width": "1", - "metrics": [ - { - "field": "kafka.consumergroup.partition", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "6b69c760-8f20-11e8-8927-d7e991b5b6ab", - "type": "derivative", - "unit": "" - }, - { - "id": "976f9d80-8f20-11e8-8927-d7e991b5b6ab", - "script": "if (params.sum_partition \u003c 0) { return -1 } else if (params.sum_partition \u003e 0) { return 1 }", - "type": "calculation", - "variables": [ - { - "field": "6b69c760-8f20-11e8-8927-d7e991b5b6ab", - "id": "99cc2b20-8f20-11e8-8927-d7e991b5b6ab", - "name": "sum_partition" - } - ] - } - ], - "point_size": "20", - "seperate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "kafka.consumergroup.id", - "value_template": "" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Consumer Partition Reassignments [Metricbeat Kafka] ECS", - "type": "metrics" - } - }, - "id": "587f2360-8f21-11e8-8fa2-3d5f811fbd0f-ecs", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-29T09:36:17.646Z", - "version": "WzI2NDMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "kafka.topic.name", - "negate": true, - "params": { - "query": "__consumer_offsets", - "type": "phrase" - }, - "type": "phrase", - "value": "__consumer_offsets" - }, - "query": { - "match": { - "kafka.topic.name": { - "query": "__consumer_offsets", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Consumer Metrics [Metricbeat Kafka] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Consumer Groups", - "field": "kafka.consumergroup.id" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 32, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Consumer Metrics [Metricbeat Kafka] ECS", - "type": "metric" - } - }, - "id": "1681f1a0-90e7-11e8-8fa2-3d5f811fbd0f-ecs", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-11-29T09:36:17.646Z", - "version": "WzI2NDQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Kafka Consumer Group Clients [Metricbeat Kafka] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Newest Offset", - "field": "kafka.consumergroup.offset" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Consumer group client", - "field": "kafka.consumergroup.client.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_term", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 64 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Topic", - "field": "kafka.topic.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 64 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Partition", - "field": "kafka.partition.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 256 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Kafka Consumer Group Clients [Metricbeat Kafka] ECS", - "type": "table" - } - }, - "id": "9a7576e0-d231-11e8-8766-dbbdc39e7ba9-ecs", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-11-29T09:36:17.646Z", - "version": "WzI2NDUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Kafka Broker Details [Metricbeat Kafka] ECS", - "uiStateJSON": { - "table": { - "sort": { - "column": "cf09c940-d2ec-11e8-88c8-af5b2a9ee6b2", - "order": "asc" - } - } - }, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "id": "7fb31e00-d2ec-11e8-88c8-af5b2a9ee6b2" - } - ], - "filter": "", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "pivot_id": "kafka.partition.partition.replica", - "pivot_label": "Broker ID", - "pivot_rows": "256", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Topics", - "line_width": 1, - "metrics": [ - { - "field": "kafka.topic.name", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "cardinality" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "kafka.broker.id", - "terms_size": "100" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "color_rules": [ - { - "id": "7e9ee780-d2ef-11e8-9dd4-c5f03280d7b0" - } - ], - "fill": 0.5, - "filter": { - "language": "lucene", - "query": "kafka.partition.partition.is_leader: true" - }, - "formatter": "number", - "id": "b38e91a0-d2ec-11e8-88c8-af5b2a9ee6b2", - "label": "Leader Partitions", - "line_width": 1, - "metrics": [ - { - "field": "kafka.partition.topic_id", - "id": "b38eb8b0-d2ec-11e8-88c8-af5b2a9ee6b2", - "type": "cardinality" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "color_rules": [ - { - "id": "d4d9d2c0-d2ec-11e8-88c8-af5b2a9ee6b2" - } - ], - "fill": 0.5, - "filter": "", - "formatter": "number", - "id": "cf09c940-d2ec-11e8-88c8-af5b2a9ee6b2", - "label": "Replicas", - "line_width": 1, - "metrics": [ - { - "field": "kafka.partition.topic_broker_id", - "id": "cf09f050-d2ec-11e8-88c8-af5b2a9ee6b2", - "type": "cardinality" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "table" - }, - "title": "Kafka Broker Details [Metricbeat Kafka] ECS", - "type": "metrics" - } - }, - "id": "27dd5960-d2ed-11e8-8766-dbbdc39e7ba9-ecs", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-29T09:36:17.646Z", - "version": "WzI2NDYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Kafka Topic Details [Metricbeat Kafka] ECS", - "uiStateJSON": { - "table": { - "sort": { - "column": "_default_", - "order": "asc" - } - } - }, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "id": "f81e47a0-d2f3-11e8-9dd4-c5f03280d7b0" - } - ], - "filter": { - "language": "lucene", - "query": "NOT kafka.topic.name: __consumer_offsets" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "pivot_id": "kafka.topic.name", - "pivot_label": "Topic Name", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "color_rules": [ - { - "id": "f07881d0-d2f5-11e8-95b9-eb9260148efc" - } - ], - "fill": 0.5, - "filter": { - "language": "lucene", - "query": " metricset.name: partition" - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Brokers", - "line_width": 1, - "metrics": [ - { - "field": "kafka.broker.id", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "cardinality" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "color_rules": [ - { - "id": "fb759e10-d2f5-11e8-95b9-eb9260148efc" - } - ], - "fill": 0.5, - "filter": { - "language": "lucene", - "query": " metricset.name: partition" - }, - "formatter": "number", - "id": "7d640440-d2f4-11e8-9dd4-c5f03280d7b0", - "label": "Partitions", - "line_width": 1, - "metrics": [ - { - "field": "kafka.partition.id", - "id": "7d640441-d2f4-11e8-9dd4-c5f03280d7b0", - "type": "cardinality" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "color_rules": [ - { - "id": "fdb1ab60-d2f5-11e8-95b9-eb9260148efc" - } - ], - "fill": 0.5, - "filter": { - "language": "lucene", - "query": " metricset.name: partition" - }, - "formatter": "number", - "id": "ad26e260-d2f4-11e8-9dd4-c5f03280d7b0", - "label": "Replicas", - "line_width": 1, - "metrics": [ - { - "field": "kafka.partition.topic_broker_id", - "id": "ad26e261-d2f4-11e8-9dd4-c5f03280d7b0", - "type": "cardinality" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "color_rules": [ - { - "id": "ff90f2b0-d2f5-11e8-95b9-eb9260148efc" - } - ], - "fill": 0.5, - "filter": { - "language": "lucene", - "query": " metricset.name: consumergroup" - }, - "formatter": "number", - "id": "26d2cd90-d2f5-11e8-9dd4-c5f03280d7b0", - "label": "Consumers", - "line_width": 1, - "metrics": [ - { - "field": "kafka.consumergroup.client.id", - "id": "26d2cd91-d2f5-11e8-9dd4-c5f03280d7b0", - "type": "cardinality" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "color_rules": [ - { - "id": "ea4984e0-d2f4-11e8-9dd4-c5f03280d7b0" - } - ], - "fill": 0.5, - "filter": { - "language": "lucene", - "query": " metricset.name: partition" - }, - "formatter": "number", - "id": "dc390e20-d2f4-11e8-9dd4-c5f03280d7b0", - "label": "Newest Offset", - "line_width": 1, - "metrics": [ - { - "field": "kafka.partition.offset.newest", - "id": "dc393530-d2f4-11e8-9dd4-c5f03280d7b0", - "type": "max" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "color_rules": [ - { - "id": "043b67f0-d2f6-11e8-95b9-eb9260148efc" - } - ], - "fill": 0.5, - "filter": { - "language": "lucene", - "query": " metricset.name: partition" - }, - "formatter": "number", - "id": "11366c80-d2f5-11e8-9dd4-c5f03280d7b0", - "label": "Oldest Offset", - "line_width": 1, - "metrics": [ - { - "field": "kafka.partition.offset.oldest", - "id": "11366c81-d2f5-11e8-9dd4-c5f03280d7b0", - "type": "min" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "table" - }, - "title": "Kafka Topic Details [Metricbeat Kafka] ECS", - "type": "metrics" - } - }, - "id": "491fee50-d2f5-11e8-8766-dbbdc39e7ba9-ecs", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-29T09:36:17.646Z", - "version": "WzI2NDcsMV0=" - } - ], - "version": "7.4.0" -} diff --git a/metricbeat/module/kafka/_meta/kibana/7/dashboard/Metricbeat-kafka-overview.ndjson b/metricbeat/module/kafka/_meta/kibana/7/dashboard/Metricbeat-kafka-overview.ndjson new file mode 100644 index 00000000000..2b1b44436b6 --- /dev/null +++ b/metricbeat/module/kafka/_meta/kibana/7/dashboard/Metricbeat-kafka-overview.ndjson @@ -0,0 +1,10 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Kafka Topic & Consumer Offsets [Metricbeat Kafka] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"8b27e6a0-8e61-11e8-b741-c3e458b74a68\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"NOT kafka.topic.name:__consumer_offsets\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0.1\",\"filter\":{\"language\":\"lucene\",\"query\":\"metricset.name: partition AND kafka.partition.partition.is_leader: true\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Topic Offsets\",\"line_width\":\"0.5\",\"metrics\":[{\"field\":\"kafka.partition.offset.newest\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kafka.topic.name\",\"terms_order_by\":\"_term\",\"value_template\":\"{{value}}\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,0.52)\",\"fill\":\"0\",\"filter\":{\"language\":\"lucene\",\"query\":\"metricset.name: consumergroup\"},\"formatter\":\"number\",\"id\":\"d43034c0-8f1e-11e8-8784-cd0acd161a28\",\"label\":\"Consumer Offsets\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"kafka.consumergroup.offset\",\"id\":\"d43034c1-8f1e-11e8-8784-cd0acd161a28\",\"type\":\"sum\"}],\"point_size\":\"1.5\",\"seperate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"dd41ada0-8f1e-11e8-8784-cd0acd161a28\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kafka.consumergroup.id\",\"terms_order_by\":\"_term\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Kafka Topic & Consumer Offsets [Metricbeat Kafka] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b9d12c80-8e63-11e8-8fa2-3d5f811fbd0f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5ODksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Kafka Controls [Metricbeat Kafka] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"kafka.topic.name\",\"id\":\"1532342651170\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Topic Name\",\"options\":{\"multiselect\":true,\"order\":\"desc\",\"size\":10,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"kafka.partition.id\",\"id\":\"1539799686678\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Partition\",\"options\":{\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"1532342651170\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Kafka Controls [Metricbeat Kafka] ECS\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"8d2f79a0-8e65-11e8-8fa2-3d5f811fbd0f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5OTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Kafka Consumer Group Lag vs Time [Metricbeat Kafka] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"1966adf0-1298-11ea-abd7-b5bb8e05b5d6\"}],\"bar_color_rules\":[{\"id\":\"1dbe6f50-1298-11ea-abd7-b5bb8e05b5d6\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"(metricset.name: consumergroup) AND NOT kafka.consumergroup.topic.name:__consumer_offsets\"},\"gauge_color_rules\":[{\"id\":\"1eee15b0-1298-11ea-abd7-b5bb8e05b5d6\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"0dcb8020-8e6d-11e8-bfab-6f29bad3a6f2\",\"label\":\"Consumer Groups\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.consumergroup.consumer_lag\",\"id\":\"0dcb8021-8e6d-11e8-bfab-6f29bad3a6f2\",\"type\":\"max\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kafka.consumergroup.topic\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Kafka Consumer Group Lag vs Time [Metricbeat Kafka] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"944188f0-8e79-11e8-8fa2-3d5f811fbd0f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5OTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": \"Partition Metricset\", \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"metricset.name\", \"negate\": false, \"params\": {\"query\": \"partition\", \"type\": \"phrase\"}, \"type\": \"phrase\", \"value\": \"partition\"}, \"query\": {\"match\": {\"metricset.name\": {\"query\": \"partition\", \"type\": \"phrase\"}}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"kafka.topic.name\", \"negate\": true, \"params\": {\"query\": \"__consumer_offsets\", \"type\": \"phrase\"}, \"type\": \"phrase\", \"value\": \"__consumer_offsets\"}, \"query\": {\"match\": {\"kafka.topic.name\": {\"query\": \"__consumer_offsets\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Kafka Metrics [Metricbeat Kafka] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Topics\",\"field\":\"kafka.topic.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Brokers\",\"field\":\"kafka.partition.broker.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Partitions\",\"field\":\"kafka.partition.topic_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Replicas\",\"field\":\"kafka.partition.topic_broker_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":32,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Kafka Metrics [Metricbeat Kafka] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"dc89f8d0-8e8e-11e8-8fa2-3d5f811fbd0f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5OTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Consumer Partition Reassignments [Metricbeat Kafka] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_max\":\"1\",\"axis_min\":\"-1\",\"axis_position\":\"right\",\"filter\":{\"language\":\"lucene\",\"query\":\"NOT kafka.topic.name:__consumer_offsets\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Consumer -> Partition Reassignment\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"kafka.consumergroup.partition\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"6b69c760-8f20-11e8-8927-d7e991b5b6ab\",\"type\":\"derivative\",\"unit\":\"\"},{\"id\":\"976f9d80-8f20-11e8-8927-d7e991b5b6ab\",\"script\":\"if (params.sum_partition < 0) { return -1 } else if (params.sum_partition > 0) { return 1 }\",\"type\":\"calculation\",\"variables\":[{\"field\":\"6b69c760-8f20-11e8-8927-d7e991b5b6ab\",\"id\":\"99cc2b20-8f20-11e8-8927-d7e991b5b6ab\",\"name\":\"sum_partition\"}]}],\"point_size\":\"20\",\"seperate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kafka.consumergroup.id\",\"value_template\":\"\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Consumer Partition Reassignments [Metricbeat Kafka] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"587f2360-8f21-11e8-8fa2-3d5f811fbd0f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5OTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"kafka.topic.name\", \"negate\": true, \"params\": {\"query\": \"__consumer_offsets\", \"type\": \"phrase\"}, \"type\": \"phrase\", \"value\": \"__consumer_offsets\"}, \"query\": {\"match\": {\"kafka.topic.name\": {\"query\": \"__consumer_offsets\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Consumer Metrics [Metricbeat Kafka] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Consumer Groups\",\"field\":\"kafka.consumergroup.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":32,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Consumer Metrics [Metricbeat Kafka] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"1681f1a0-90e7-11e8-8fa2-3d5f811fbd0f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5OTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Kafka Consumer Group Clients [Metricbeat Kafka] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Newest Offset\",\"field\":\"kafka.consumergroup.offset\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Consumer group client\",\"field\":\"kafka.consumergroup.client.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_term\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":64},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Topic\",\"field\":\"kafka.topic.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":64},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Partition\",\"field\":\"kafka.partition.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":256},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Kafka Consumer Group Clients [Metricbeat Kafka] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"9a7576e0-d231-11e8-8766-dbbdc39e7ba9-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5OTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Kafka Broker Details [Metricbeat Kafka] ECS","uiStateJSON":"{\"table\": {\"sort\": {\"column\": \"cf09c940-d2ec-11e8-88c8-af5b2a9ee6b2\", \"order\": \"asc\"}}}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"7fb31e00-d2ec-11e8-88c8-af5b2a9ee6b2\"}],\"filter\":\"\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"pivot_id\":\"kafka.partition.partition.replica\",\"pivot_label\":\"Broker ID\",\"pivot_rows\":\"256\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Topics\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.topic.name\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kafka.broker.id\",\"terms_size\":\"100\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"color_rules\":[{\"id\":\"7e9ee780-d2ef-11e8-9dd4-c5f03280d7b0\"}],\"fill\":0.5,\"filter\":{\"language\":\"lucene\",\"query\":\"kafka.partition.partition.is_leader: true\"},\"formatter\":\"number\",\"id\":\"b38e91a0-d2ec-11e8-88c8-af5b2a9ee6b2\",\"label\":\"Leader Partitions\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.partition.topic_id\",\"id\":\"b38eb8b0-d2ec-11e8-88c8-af5b2a9ee6b2\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"color_rules\":[{\"id\":\"d4d9d2c0-d2ec-11e8-88c8-af5b2a9ee6b2\"}],\"fill\":0.5,\"filter\":\"\",\"formatter\":\"number\",\"id\":\"cf09c940-d2ec-11e8-88c8-af5b2a9ee6b2\",\"label\":\"Replicas\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.partition.topic_broker_id\",\"id\":\"cf09f050-d2ec-11e8-88c8-af5b2a9ee6b2\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"table\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Kafka Broker Details [Metricbeat Kafka] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"27dd5960-d2ed-11e8-8766-dbbdc39e7ba9-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5OTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Kafka Topic Details [Metricbeat Kafka] ECS","uiStateJSON":"{\"table\": {\"sort\": {\"column\": \"_default_\", \"order\": \"asc\"}}}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"f81e47a0-d2f3-11e8-9dd4-c5f03280d7b0\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"NOT kafka.topic.name: __consumer_offsets\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"pivot_id\":\"kafka.topic.name\",\"pivot_label\":\"Topic Name\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"color_rules\":[{\"id\":\"f07881d0-d2f5-11e8-95b9-eb9260148efc\"}],\"fill\":0.5,\"filter\":{\"language\":\"lucene\",\"query\":\" metricset.name: partition\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Brokers\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.broker.id\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"color_rules\":[{\"id\":\"fb759e10-d2f5-11e8-95b9-eb9260148efc\"}],\"fill\":0.5,\"filter\":{\"language\":\"lucene\",\"query\":\" metricset.name: partition\"},\"formatter\":\"number\",\"id\":\"7d640440-d2f4-11e8-9dd4-c5f03280d7b0\",\"label\":\"Partitions\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.partition.id\",\"id\":\"7d640441-d2f4-11e8-9dd4-c5f03280d7b0\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"color_rules\":[{\"id\":\"fdb1ab60-d2f5-11e8-95b9-eb9260148efc\"}],\"fill\":0.5,\"filter\":{\"language\":\"lucene\",\"query\":\" metricset.name: partition\"},\"formatter\":\"number\",\"id\":\"ad26e260-d2f4-11e8-9dd4-c5f03280d7b0\",\"label\":\"Replicas\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.partition.topic_broker_id\",\"id\":\"ad26e261-d2f4-11e8-9dd4-c5f03280d7b0\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"color_rules\":[{\"id\":\"ff90f2b0-d2f5-11e8-95b9-eb9260148efc\"}],\"fill\":0.5,\"filter\":{\"language\":\"lucene\",\"query\":\" metricset.name: consumergroup\"},\"formatter\":\"number\",\"id\":\"26d2cd90-d2f5-11e8-9dd4-c5f03280d7b0\",\"label\":\"Consumers\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.consumergroup.client.id\",\"id\":\"26d2cd91-d2f5-11e8-9dd4-c5f03280d7b0\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"color_rules\":[{\"id\":\"ea4984e0-d2f4-11e8-9dd4-c5f03280d7b0\"}],\"fill\":0.5,\"filter\":{\"language\":\"lucene\",\"query\":\" metricset.name: partition\"},\"formatter\":\"number\",\"id\":\"dc390e20-d2f4-11e8-9dd4-c5f03280d7b0\",\"label\":\"Newest Offset\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.partition.offset.newest\",\"id\":\"dc393530-d2f4-11e8-9dd4-c5f03280d7b0\",\"type\":\"max\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"color_rules\":[{\"id\":\"043b67f0-d2f6-11e8-95b9-eb9260148efc\"}],\"fill\":0.5,\"filter\":{\"language\":\"lucene\",\"query\":\" metricset.name: partition\"},\"formatter\":\"number\",\"id\":\"11366c80-d2f5-11e8-9dd4-c5f03280d7b0\",\"label\":\"Oldest Offset\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.partition.offset.oldest\",\"id\":\"11366c81-d2f5-11e8-9dd4-c5f03280d7b0\",\"type\":\"min\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"table\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Kafka Topic Details [Metricbeat Kafka] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"491fee50-d2f5-11e8-8766-dbbdc39e7ba9-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5OTcsMV0="} +{"attributes":{"description":"Kafka analysis of topics and consumer groups","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":20},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Kafka Topic & Consumer Offsets\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"3\",\"w\":16,\"x\":0,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Kafka Controls\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":6},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Consumer Group Lag by Topic\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"10\",\"w\":25,\"x\":16,\"y\":0},\"panelIndex\":\"10\",\"embeddableConfig\":{\"spy\":null,\"enhancements\":{}},\"title\":\"Kafka Metrics\",\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"12\",\"w\":24,\"x\":0,\"y\":33},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Consumer Partition Reassignments\",\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"13\",\"w\":7,\"x\":41,\"y\":0},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Consumer Metrics\",\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"14\",\"w\":24,\"x\":24,\"y\":27},\"panelIndex\":\"14\",\"embeddableConfig\":{\"spy\":null,\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"title\":\"Kafka Consumer Group Clients\",\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"15\",\"w\":24,\"x\":24,\"y\":6},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Kafka Brokers\",\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"16\",\"w\":24,\"x\":24,\"y\":16},\"panelIndex\":\"16\",\"embeddableConfig\":{\"table\":{\"sort\":{\"column\":\"26d2cd90-d2f5-11e8-9dd4-c5f03280d7b0\",\"order\":\"desc\"}},\"enhancements\":{}},\"title\":\"Kafka Topic Details\",\"panelRefName\":\"panel_16\"}]","timeRestore":false,"title":"[Metricbeat Kafka] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"ea488d90-8e63-11e8-8fa2-3d5f811fbd0f-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"b9d12c80-8e63-11e8-8fa2-3d5f811fbd0f-ecs","name":"1:panel_1","type":"visualization"},{"id":"8d2f79a0-8e65-11e8-8fa2-3d5f811fbd0f-ecs","name":"3:panel_3","type":"visualization"},{"id":"944188f0-8e79-11e8-8fa2-3d5f811fbd0f-ecs","name":"6:panel_6","type":"visualization"},{"id":"dc89f8d0-8e8e-11e8-8fa2-3d5f811fbd0f-ecs","name":"10:panel_10","type":"visualization"},{"id":"587f2360-8f21-11e8-8fa2-3d5f811fbd0f-ecs","name":"12:panel_12","type":"visualization"},{"id":"1681f1a0-90e7-11e8-8fa2-3d5f811fbd0f-ecs","name":"13:panel_13","type":"visualization"},{"id":"9a7576e0-d231-11e8-8766-dbbdc39e7ba9-ecs","name":"14:panel_14","type":"visualization"},{"id":"27dd5960-d2ed-11e8-8766-dbbdc39e7ba9-ecs","name":"15:panel_15","type":"visualization"},{"id":"491fee50-d2f5-11e8-8766-dbbdc39e7ba9-ecs","name":"16:panel_16","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5ODgsMV0="} diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-apiserver.json b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-apiserver.json deleted file mode 100644 index d0bad1ace6c..00000000000 --- a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-apiserver.json +++ /dev/null @@ -1,335 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of Kubernetes API Server", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "API Server Top clients by number of requests [Metricbeat Kubernetes] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "id": "61a13010-5794-11e8-8bd0-2180975e72dd" - } - ], - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": 0.5, - "filter": "", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Top clients by number of requests (5m)", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.apiserver.request.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "0e6ff4a0-5792-11e8-8bd0-2180975e72dd", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_filters": [ - { - "color": "#68BC00", - "id": "9e4b8030-5792-11e8-8bd0-2180975e72dd" - } - ], - "split_mode": "terms", - "stacked": "stacked", - "terms_field": "kubernetes.apiserver.request.client", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "10" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "API Server Top clients by number of requests [Metricbeat Kubernetes] ECS", - "type": "metrics" - } - }, - "id": "7cbeb750-5794-11e8-afa2-e9067ea62228-ecs", - "type": "visualization", - "updated_at": "2018-05-14T18:23:10.501Z", - "version": 5 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "API Server Requests [Metricbeat Kubernetes] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(159,5,0,1)", - "fill": "0", - "filter": "NOT (kubernetes.apiserver.request.verb: WATCH or kubernetes.apiserver.request.verb: CONNECT)", - "formatter": "us,ms,2", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Avg response time", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.apiserver.request.latency.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - }, - { - "field": "kubernetes.apiserver.request.count", - "id": "a2185e50-57a0-11e8-af57-a1d645d2b569", - "type": "max" - }, - { - "id": "b09133d0-57a0-11e8-af57-a1d645d2b569", - "script": "params.sum / params.count", - "type": "calculation", - "variables": [ - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "b27c8910-57a0-11e8-af57-a1d645d2b569", - "name": "sum" - }, - { - "field": "a2185e50-57a0-11e8-af57-a1d645d2b569", - "id": "b5fc8810-57a0-11e8-af57-a1d645d2b569", - "name": "count" - } - ] - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}} ms" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(22,165,165,1)", - "fill": 0.5, - "formatter": "number", - "id": "c0019340-57a1-11e8-a049-ff54cef064a2", - "label": "Requests rate", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.apiserver.request.count", - "id": "c001ba50-57a1-11e8-a049-ff54cef064a2", - "type": "max" - }, - { - "field": "c001ba50-57a1-11e8-a049-ff54cef064a2", - "id": "dc83b390-57a1-11e8-a049-ff54cef064a2", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 1, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "API Server Requests [Metricbeat Kubernetes] ECS", - "type": "metrics" - } - }, - "id": "ec360ff0-57a0-11e8-afa2-e9067ea62228-ecs", - "type": "visualization", - "updated_at": "2018-05-14T18:21:27.515Z", - "version": 4 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "API Server Top clients by resource [Metricbeat Kubernetes] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "id": "61a13010-5794-11e8-8bd0-2180975e72dd" - } - ], - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": 0.5, - "filter": "", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Top clients by number of requests (5m)", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.apiserver.request.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "0e6ff4a0-5792-11e8-8bd0-2180975e72dd", - "type": "derivative", - "unit": "" - } - ], - "override_index_pattern": 0, - "point_size": 1, - "seperate_axis": 0, - "series_drop_last_bucket": 1, - "split_filters": [ - { - "color": "#68BC00", - "id": "9e4b8030-5792-11e8-8bd0-2180975e72dd" - } - ], - "split_mode": "terms", - "stacked": "stacked", - "terms_field": "kubernetes.apiserver.request.resource", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "10" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "API Server Top clients by resource [Metricbeat Kubernetes] ECS", - "type": "metrics" - } - }, - "id": "95a7f110-57a2-11e8-afa2-e9067ea62228-ecs", - "type": "visualization", - "updated_at": "2018-05-14T18:23:50.093Z", - "version": 4 - }, - { - "attributes": { - "description": "Kubernetes API server metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": false - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 24, - "i": "1", - "w": 24, - "x": 0, - "y": 22 - }, - "id": "7cbeb750-5794-11e8-afa2-e9067ea62228-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "6.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 22, - "i": "3", - "w": 48, - "x": 0, - "y": 0 - }, - "id": "ec360ff0-57a0-11e8-afa2-e9067ea62228-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "6.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 24, - "i": "4", - "w": 24, - "x": 24, - "y": 22 - }, - "id": "95a7f110-57a2-11e8-afa2-e9067ea62228-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "6.3.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Kubernetes] API server ECS", - "version": 1 - }, - "id": "af7225b0-5794-11e8-afa2-e9067ea62228-ecs", - "type": "dashboard", - "updated_at": "2018-05-14T18:23:55.202Z", - "version": 5 - } - ], - "version": "6.3.0" -} diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-apiserver.ndjson b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-apiserver.ndjson new file mode 100644 index 00000000000..2ff10e78830 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-apiserver.ndjson @@ -0,0 +1,4 @@ +{"attributes":{"description":"Overview of Kubernetes API Server","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"API Server Top clients by number of requests [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"61a13010-5794-11e8-8bd0-2180975e72dd\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Top clients by number of requests (5m)\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.apiserver.request.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"0e6ff4a0-5792-11e8-8bd0-2180975e72dd\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"9e4b8030-5792-11e8-8bd0-2180975e72dd\"}],\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"kubernetes.apiserver.request.client\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"10\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"API Server Top clients by number of requests [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7cbeb750-5794-11e8-afa2-e9067ea62228-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:35.256Z","version":"WzM5OTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"API Server Requests [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(159,5,0,1)\",\"fill\":\"0\",\"filter\":{\"query\":\"NOT (kubernetes.apiserver.request.verb: WATCH or kubernetes.apiserver.request.verb: CONNECT)\",\"language\":\"lucene\"},\"formatter\":\"us,ms,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Avg response time\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.apiserver.request.latency.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"kubernetes.apiserver.request.count\",\"id\":\"a2185e50-57a0-11e8-af57-a1d645d2b569\",\"type\":\"max\"},{\"id\":\"b09133d0-57a0-11e8-af57-a1d645d2b569\",\"script\":\"params.sum / params.count\",\"type\":\"calculation\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"b27c8910-57a0-11e8-af57-a1d645d2b569\",\"name\":\"sum\"},{\"field\":\"a2185e50-57a0-11e8-af57-a1d645d2b569\",\"id\":\"b5fc8810-57a0-11e8-af57-a1d645d2b569\",\"name\":\"count\"}]}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} ms\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c0019340-57a1-11e8-a049-ff54cef064a2\",\"label\":\"Requests rate\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.apiserver.request.count\",\"id\":\"c001ba50-57a1-11e8-a049-ff54cef064a2\",\"type\":\"max\"},{\"field\":\"c001ba50-57a1-11e8-a049-ff54cef064a2\",\"id\":\"dc83b390-57a1-11e8-a049-ff54cef064a2\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":1,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"API Server Requests [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ec360ff0-57a0-11e8-afa2-e9067ea62228-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:35.256Z","version":"WzM5OTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"API Server Top clients by resource [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"61a13010-5794-11e8-8bd0-2180975e72dd\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Top clients by number of requests (5m)\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.apiserver.request.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"0e6ff4a0-5792-11e8-8bd0-2180975e72dd\",\"type\":\"derivative\",\"unit\":\"\"}],\"override_index_pattern\":0,\"point_size\":1,\"seperate_axis\":0,\"series_drop_last_bucket\":1,\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"9e4b8030-5792-11e8-8bd0-2180975e72dd\"}],\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"kubernetes.apiserver.request.resource\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"10\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"API Server Top clients by resource [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"95a7f110-57a2-11e8-afa2-e9067ea62228-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:35.256Z","version":"WzQwMDAsMV0="} +{"attributes":{"description":"Kubernetes API server metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":24,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":22},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":22,\"i\":\"3\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":24,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":22},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Metricbeat Kubernetes] API server ECS","version":1},"coreMigrationVersion":"8.0.0","id":"af7225b0-5794-11e8-afa2-e9067ea62228-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"7cbeb750-5794-11e8-afa2-e9067ea62228-ecs","name":"1:panel_1","type":"visualization"},{"id":"ec360ff0-57a0-11e8-afa2-e9067ea62228-ecs","name":"3:panel_3","type":"visualization"},{"id":"95a7f110-57a2-11e8-afa2-e9067ea62228-ecs","name":"4:panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:35.256Z","version":"WzQwMDEsMV0="} diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-controller-manager.json b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-controller-manager.json deleted file mode 100644 index 6681705af16..00000000000 --- a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-controller-manager.json +++ /dev/null @@ -1,1027 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Kubernetes Controller Manager metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "kubernetes.controllermanager" - }, - "type": "phrase", - "value": "kubernetes.controllermanager" - }, - "query": { - "match": { - "event.dataset": { - "query": "kubernetes.controllermanager", - "type": "phrase" - } - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "1", - "w": 11, - "x": 0, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.1.1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "2", - "w": 11, - "x": 11, - "y": 0 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "version": "7.1.1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "3", - "w": 26, - "x": 22, - "y": 0 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "version": "7.1.1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "5", - "w": 24, - "x": 0, - "y": 39 - }, - "panelIndex": "5", - "panelRefName": "panel_3", - "version": "7.1.1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "6", - "w": 24, - "x": 24, - "y": 39 - }, - "panelIndex": "6", - "panelRefName": "panel_4", - "version": "7.1.1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "7", - "w": 24, - "x": 24, - "y": 14 - }, - "panelIndex": "7", - "panelRefName": "panel_5", - "version": "7.1.1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "8", - "w": 24, - "x": 0, - "y": 27 - }, - "panelIndex": "8", - "panelRefName": "panel_6", - "version": "7.1.1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "9", - "w": 24, - "x": 24, - "y": 27 - }, - "panelIndex": "9", - "panelRefName": "panel_7", - "version": "7.1.1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "10", - "w": 24, - "x": 0, - "y": 14 - }, - "panelIndex": "10", - "panelRefName": "panel_8", - "version": "7.2.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Kubernetes] Controller Manager", - "version": 1 - }, - "id": "97312060-9c1b-11e9-9dc8-fd27291d427f", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "bcb194a0-9bf8-11e9-9dc8-fd27291d427f", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "3dbf6230-9c20-11e9-9dc8-fd27291d427f", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "d86b2da0-9c20-11e9-9dc8-fd27291d427f", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "0ca95350-9c24-11e9-9dc8-fd27291d427f", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "3e1e1fd0-9c27-11e9-9dc8-fd27291d427f", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "2ba628e0-9c2a-11e9-9dc8-fd27291d427f", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "8a95de50-9c38-11e9-9dc8-fd27291d427f", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "485c8550-9c3a-11e9-9dc8-fd27291d427f", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "7d80f790-9d96-11e9-b2ae-49acc4cbcea9", - "name": "panel_8", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-07-03T16:33:10.995Z", - "version": "WzI5OSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Host selector [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "host.hostname", - "id": "1561982488150", - "indexPatternRefName": "control_0_index_pattern", - "label": "Hostname", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "service.address", - "id": "1561982723711", - "indexPatternRefName": "control_1_index_pattern", - "label": "Service address", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": false, - "useTimeFilter": false - }, - "title": "Host selector [Metricbeat Kubernetes]", - "type": "input_control_vis" - } - }, - "id": "bcb194a0-9bf8-11e9-9dc8-fd27291d427f", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-03T07:20:34.226Z", - "version": "WzEzMywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Controller Process [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "30s", - "markdown": "| | |\n|---|---|\n|**Days running**|{{ math.started.last.raw }}|\n|**File descriptors open**|{{ average_of_kubernetes_controllermanager_process_fds_open_count.fds.last.raw }}|\n|**Resident Memory**|{{ average_of_kubernetes_controllermanager_process_memory_resident_bytes.resident_memory.last.formatted }}|\n|**Virtual Memory**|{{ average_of_kubernetes_controllermanager_process_memory_virtual_bytes.virtual_memory.last.formatted }}|\n", - "markdown_css": "#markdown-61ca57f0-469d-11e7-af02-69e470af7417 table,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 tr,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 td,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 th{border:none}", - "markdown_less": "\ntable, tr, td, th {\n border: none;\n}\n\n", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.controllermanager.process.started.sec", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "id": "ebfdb1c0-9c1c-11e9-b29f-d55be9348723", - "script": "round( (params._timestamp /1000 - params.started) / 86400, 2)", - "type": "math", - "variables": [ - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "ef30a230-9c1c-11e9-b29f-d55be9348723", - "name": "started" - } - ] - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "var_name": "started" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "1212ba80-9c1e-11e9-b29f-d55be9348723", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.controllermanager.process.fds.open.count", - "id": "1212ba81-9c1e-11e9-b29f-d55be9348723", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "var_name": "fds" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "3f3b17a0-9c1e-11e9-b29f-d55be9348723", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.controllermanager.process.memory.resident.bytes", - "id": "3f3b17a1-9c1e-11e9-b29f-d55be9348723", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "var_name": "resident_memory" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "b1a01b50-9c1f-11e9-b29f-d55be9348723", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.controllermanager.process.memory.virtual.bytes", - "id": "b1a01b51-9c1f-11e9-b29f-d55be9348723", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "var_name": "virtual_memory" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "markdown" - }, - "title": "Controller Process [Metricbeat Kubernetes]", - "type": "metrics" - } - }, - "id": "3dbf6230-9c20-11e9-9dc8-fd27291d427f", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T14:46:23.136Z", - "version": "WzI5MSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Controller HTTP request duration [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(165,228,85,1)", - "fill": 0.5, - "formatter": "us,ms,2", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "P99", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.controllermanager.http.request.duration.us.percentile.99", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "us,ms,2", - "id": "24fb4960-9c22-11e9-b29f-d55be9348723", - "label": "P90", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.controllermanager.http.request.duration.us.percentile.90", - "id": "24fb4961-9c22-11e9-b29f-d55be9348723", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(65,117,0,1)", - "fill": 0.5, - "formatter": "us,ms,2", - "id": "2e397790-9c22-11e9-b29f-d55be9348723", - "label": "P50", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.controllermanager.http.request.duration.us.percentile.50", - "id": "2e397791-9c22-11e9-b29f-d55be9348723", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Controller HTTP request duration [Metricbeat Kubernetes]", - "type": "metrics" - } - }, - "id": "d86b2da0-9c20-11e9-9dc8-fd27291d427f", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T13:31:57.207Z", - "version": "WzI2MywyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Controller Longest running processor [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.controllermanager.workqueue.longestrunning.sec", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_direction": "desc", - "terms_field": "kubernetes.controllermanager.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Controller Longest running processor [Metricbeat Kubernetes]", - "type": "metrics" - } - }, - "id": "0ca95350-9c24-11e9-9dc8-fd27291d427f", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T16:31:08.744Z", - "version": "WzI5OCwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Controller Unfinished jobs sec [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.controllermanager.workqueue.unfinished.sec", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "kubernetes.controllermanager.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Controller Unfinished jobs sec [Metricbeat Kubernetes]", - "type": "metrics" - } - }, - "id": "3e1e1fd0-9c27-11e9-9dc8-fd27291d427f", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T16:30:46.554Z", - "version": "WzI5NywyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Controller Memory [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(251,158,0,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Resident", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.controllermanager.process.memory.resident.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(164,221,0,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "ac896b30-9c29-11e9-92c1-f7d03186c592", - "label": "Virtual", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.controllermanager.process.memory.virtual.bytes", - "id": "ac896b31-9c29-11e9-92c1-f7d03186c592", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Controller Memory [Metricset Kubernetes]", - "type": "metrics" - } - }, - "id": "2ba628e0-9c2a-11e9-9dc8-fd27291d427f", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T14:04:36.575Z", - "version": "WzI3NSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Controller Workqueue adds [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.controllermanager.workqueue.adds.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "9b5d85d0-9c38-11e9-92c1-f7d03186c592", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "kubernetes.controllermanager.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Controller Workqueue adds [Metricbeat Kubernetes]", - "type": "metrics" - } - }, - "id": "8a95de50-9c38-11e9-9dc8-fd27291d427f", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T16:30:20.439Z", - "version": "WzI5NiwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Controller Workqueue retries [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.controllermanager.workqueue.retries.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "b3107560-9c39-11e9-92c1-f7d03186c592", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_direction": "desc", - "terms_field": "kubernetes.controllermanager.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Controller Workqueue retries [Metricbeat Kubernetes]", - "type": "metrics" - } - }, - "id": "485c8550-9c3a-11e9-9dc8-fd27291d427f", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T16:29:29.303Z", - "version": "WzI5NSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Controller CPU [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "CPU time", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.controllermanager.process.cpu.sec", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "47731390-9d96-11e9-9e81-115d18bcfeaa", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}} s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Controller CPU [Metricbeat Kubernetes]", - "type": "metrics" - } - }, - "id": "7d80f790-9d96-11e9-b2ae-49acc4cbcea9", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T14:12:01.291Z", - "version": "WzI3OCwyXQ==" - } - ], - "version": "7.2.0" -} diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-controller-manager.ndjson b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-controller-manager.ndjson new file mode 100644 index 00000000000..b11a731f52f --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-controller-manager.ndjson @@ -0,0 +1,10 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Host selector [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"host.hostname\",\"id\":\"1561982488150\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Hostname\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"service.address\",\"id\":\"1561982723711\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Service address\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Host selector [Metricbeat Kubernetes]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"bcb194a0-9bf8-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwMzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Controller Process [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":1,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"30s\",\"markdown\":\"| | |\\n|---|---|\\n|**Days running**|{{ math.started.last.raw }}|\\n|**File descriptors open**|{{ average_of_kubernetes_controllermanager_process_fds_open_count.fds.last.raw }}|\\n|**Resident Memory**|{{ average_of_kubernetes_controllermanager_process_memory_resident_bytes.resident_memory.last.formatted }}|\\n|**Virtual Memory**|{{ average_of_kubernetes_controllermanager_process_memory_virtual_bytes.virtual_memory.last.formatted }}|\\n\",\"markdown_css\":\"#markdown-61ca57f0-469d-11e7-af02-69e470af7417 table,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 tr,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 td,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 th{border:none}\",\"markdown_less\":\"\\ntable, tr, td, th {\\n border: none;\\n}\\n\\n\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.process.started.sec\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"id\":\"ebfdb1c0-9c1c-11e9-b29f-d55be9348723\",\"script\":\"round( (params._timestamp /1000 - params.started) / 86400, 2)\",\"type\":\"math\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"ef30a230-9c1c-11e9-b29f-d55be9348723\",\"name\":\"started\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"started\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"1212ba80-9c1e-11e9-b29f-d55be9348723\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.process.fds.open.count\",\"id\":\"1212ba81-9c1e-11e9-b29f-d55be9348723\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"fds\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"3f3b17a0-9c1e-11e9-b29f-d55be9348723\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.process.memory.resident.bytes\",\"id\":\"3f3b17a1-9c1e-11e9-b29f-d55be9348723\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"resident_memory\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"b1a01b50-9c1f-11e9-b29f-d55be9348723\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.process.memory.virtual.bytes\",\"id\":\"b1a01b51-9c1f-11e9-b29f-d55be9348723\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"virtual_memory\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"markdown\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Controller Process [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3dbf6230-9c20-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:36.329Z","version":"WzQwMDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Controller HTTP request duration [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(165,228,85,1)\",\"fill\":0.5,\"formatter\":\"us,ms,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"P99\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.http.request.duration.us.percentile.99\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"us,ms,2\",\"id\":\"24fb4960-9c22-11e9-b29f-d55be9348723\",\"label\":\"P90\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.http.request.duration.us.percentile.90\",\"id\":\"24fb4961-9c22-11e9-b29f-d55be9348723\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(65,117,0,1)\",\"fill\":0.5,\"formatter\":\"us,ms,2\",\"id\":\"2e397790-9c22-11e9-b29f-d55be9348723\",\"label\":\"P50\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.http.request.duration.us.percentile.50\",\"id\":\"2e397791-9c22-11e9-b29f-d55be9348723\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Controller HTTP request duration [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d86b2da0-9c20-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:36.329Z","version":"WzQwMDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Controller Longest running processor [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.workqueue.longestrunning.sec\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_direction\":\"desc\",\"terms_field\":\"kubernetes.controllermanager.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Controller Longest running processor [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0ca95350-9c24-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:36.329Z","version":"WzQwMDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Controller Unfinished jobs sec [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.workqueue.unfinished.sec\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.controllermanager.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Controller Unfinished jobs sec [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3e1e1fd0-9c27-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:36.329Z","version":"WzQwMDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Controller Memory [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Resident\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.process.memory.resident.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"ac896b30-9c29-11e9-92c1-f7d03186c592\",\"label\":\"Virtual\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.process.memory.virtual.bytes\",\"id\":\"ac896b31-9c29-11e9-92c1-f7d03186c592\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Controller Memory [Metricset Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2ba628e0-9c2a-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:36.329Z","version":"WzQwMDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Controller Workqueue adds [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.workqueue.adds.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"9b5d85d0-9c38-11e9-92c1-f7d03186c592\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.controllermanager.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Controller Workqueue adds [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8a95de50-9c38-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:36.329Z","version":"WzQwMDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Controller Workqueue retries [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.workqueue.retries.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"b3107560-9c39-11e9-92c1-f7d03186c592\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_direction\":\"desc\",\"terms_field\":\"kubernetes.controllermanager.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Controller Workqueue retries [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"485c8550-9c3a-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:36.329Z","version":"WzQwMTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Controller CPU [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"CPU time\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.process.cpu.sec\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"47731390-9d96-11e9-9e81-115d18bcfeaa\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} s\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Controller CPU [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7d80f790-9d96-11e9-b2ae-49acc4cbcea9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:36.329Z","version":"WzQwMTEsMV0="} +{"attributes":{"description":"Kubernetes Controller Manager metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"kubernetes.controllermanager\"},\"type\":\"phrase\",\"value\":\"kubernetes.controllermanager\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"kubernetes.controllermanager\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"1\",\"w\":11,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"2\",\"w\":11,\"x\":11,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"3\",\"w\":26,\"x\":22,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"5\",\"w\":24,\"x\":0,\"y\":39},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6\",\"w\":24,\"x\":24,\"y\":39},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":14},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"8\",\"w\":24,\"x\":0,\"y\":27},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"9\",\"w\":24,\"x\":24,\"y\":27},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"10\",\"w\":24,\"x\":0,\"y\":14},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"}]","timeRestore":false,"title":"[Metricbeat Kubernetes] Controller Manager","version":1},"coreMigrationVersion":"8.0.0","id":"97312060-9c1b-11e9-9dc8-fd27291d427f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"bcb194a0-9bf8-11e9-9dc8-fd27291d427f","name":"1:panel_1","type":"visualization"},{"id":"3dbf6230-9c20-11e9-9dc8-fd27291d427f","name":"2:panel_2","type":"visualization"},{"id":"d86b2da0-9c20-11e9-9dc8-fd27291d427f","name":"3:panel_3","type":"visualization"},{"id":"0ca95350-9c24-11e9-9dc8-fd27291d427f","name":"5:panel_5","type":"visualization"},{"id":"3e1e1fd0-9c27-11e9-9dc8-fd27291d427f","name":"6:panel_6","type":"visualization"},{"id":"2ba628e0-9c2a-11e9-9dc8-fd27291d427f","name":"7:panel_7","type":"visualization"},{"id":"8a95de50-9c38-11e9-9dc8-fd27291d427f","name":"8:panel_8","type":"visualization"},{"id":"485c8550-9c3a-11e9-9dc8-fd27291d427f","name":"9:panel_9","type":"visualization"},{"id":"7d80f790-9d96-11e9-b2ae-49acc4cbcea9","name":"10:panel_10","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:36.329Z","version":"WzQwMDIsMV0="} diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-overview.json b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-overview.json deleted file mode 100644 index 5bac6844b67..00000000000 --- a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-overview.json +++ /dev/null @@ -1,1675 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of Kubernetes cluster metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "useMargins": false - }, - "panelsJSON": [ - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 12, - "i": "1", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_1", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 12, - "i": "2", - "w": 24, - "x": 0, - "y": 24 - }, - "panelIndex": "2", - "panelRefName": "panel_2", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 12, - "i": "5", - "w": 7, - "x": 9, - "y": 0 - }, - "panelIndex": "5", - "panelRefName": "panel_5", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 12, - "i": "6", - "w": 8, - "x": 0, - "y": 12 - }, - "panelIndex": "6", - "panelRefName": "panel_6", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 12, - "i": "7", - "w": 24, - "x": 24, - "y": 24 - }, - "panelIndex": "7", - "panelRefName": "panel_7", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 12, - "i": "8", - "w": 24, - "x": 24, - "y": 36 - }, - "panelIndex": "8", - "panelRefName": "panel_8", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 12, - "i": "9", - "w": 24, - "x": 0, - "y": 36 - }, - "panelIndex": "9", - "panelRefName": "panel_9", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 12, - "i": "10", - "w": 8, - "x": 16, - "y": 0 - }, - "panelIndex": "10", - "panelRefName": "panel_10", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 12, - "i": "11", - "w": 24, - "x": 0, - "y": 48 - }, - "panelIndex": "11", - "panelRefName": "panel_11", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 12, - "i": "12", - "w": 24, - "x": 24, - "y": 48 - }, - "panelIndex": "12", - "panelRefName": "panel_12", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 12, - "i": "13", - "w": 8, - "x": 16, - "y": 12 - }, - "panelIndex": "13", - "panelRefName": "panel_13", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 12, - "i": "14", - "w": 24, - "x": 24, - "y": 12 - }, - "panelIndex": "14", - "panelRefName": "panel_14", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 12, - "i": "15", - "w": 8, - "x": 8, - "y": 12 - }, - "panelIndex": "15", - "panelRefName": "panel_15", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 12, - "i": "43e2c937-a06e-4f6c-9e01-e2669110f160", - "w": 9, - "x": 0, - "y": 0 - }, - "panelIndex": "43e2c937-a06e-4f6c-9e01-e2669110f160", - "panelRefName": "panel_43e2c937-a06e-4f6c-9e01-e2669110f160", - "type": "visualization", - "version": "7.11.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Kubernetes] Overview ECS", - "version": 1 - }, - "coreMigrationVersion": "7.11.0", - "id": "e0381d10-e4a6-11eb-9d53-3b3d1d47c519", - "migrationVersion": { - "dashboard": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "022a54c0-2bf5-11e7-859b-f78b612cde28-ecs", - "name": "1:panel_1", - "type": "visualization" - }, - { - "id": "44f12b40-2bf4-11e7-859b-f78b612cde28-ecs", - "name": "2:panel_2", - "type": "visualization" - }, - { - "id": "cd059410-2bfb-11e7-859b-f78b612cde28-ecs", - "name": "5:panel_5", - "type": "visualization" - }, - { - "id": "e1018b90-2bfb-11e7-859b-f78b612cde28-ecs", - "name": "6:panel_6", - "type": "visualization" - }, - { - "id": "d6564360-2bfc-11e7-859b-f78b612cde28-ecs", - "name": "7:panel_7", - "type": "visualization" - }, - { - "id": "16fa4470-2bfd-11e7-859b-f78b612cde28-ecs", - "name": "8:panel_8", - "type": "visualization" - }, - { - "id": "294546b0-30d6-11e7-8df8-6d3604a72912-ecs", - "name": "9:panel_9", - "type": "visualization" - }, - { - "id": "408fccf0-30d6-11e7-8df8-6d3604a72912-ecs", - "name": "10:panel_10", - "type": "visualization" - }, - { - "id": "58e644f0-30d6-11e7-8df8-6d3604a72912-ecs", - "name": "11:panel_11", - "type": "visualization" - }, - { - "id": "a4c9d360-30df-11e7-8df8-6d3604a72912-ecs", - "name": "12:panel_12", - "type": "visualization" - }, - { - "id": "174a6ad0-30e0-11e7-8df8-6d3604a72912-ecs", - "name": "13:panel_13", - "type": "visualization" - }, - { - "id": "7aac4fd0-30e0-11e7-8df8-6d3604a72912-ecs", - "name": "14:panel_14", - "type": "visualization" - }, - { - "id": "da1ff7c0-30ed-11e7-b9e5-2b5b07213ab3-ecs", - "name": "15:panel_15", - "type": "visualization" - }, - { - "id": "d54c65f0-e4a6-11eb-9d53-3b3d1d47c519", - "name": "43e2c937-a06e-4f6c-9e01-e2669110f160:panel_43e2c937-a06e-4f6c-9e01-e2669110f160", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2021-07-14T13:27:20.623Z", - "version": "WzI0NTYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Available pods per deployment [Metricbeat Kubernetes] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "filter": { - "language": "lucene", - "query": "event.module:kubernetes AND metricset.name:state_deployment" - }, - "id": "117fadf0-30df-11e7-8df8-6d3604a72912", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "64456840-30df-11e7-8df8-6d3604a72912", - "label": "Available pods", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.deployment.replicas.available", - "id": "64456841-30df-11e7-8df8-6d3604a72912", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "id": "53d35ad0-30df-11e7-8df8-6d3604a72912" - } - ], - "split_mode": "terms", - "stacked": "stacked", - "terms_field": "kubernetes.deployment.name", - "terms_size": "10000" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries", - "use_kibana_indexes": false - }, - "title": "Available pods per deployment [Metricbeat Kubernetes] ECS", - "type": "metrics" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "022a54c0-2bf5-11e7-859b-f78b612cde28-ecs", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-07-14T13:21:55.473Z", - "version": "WzIwMzksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "CPU usage by node [Metricbeat Kubernetes] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "12c1f2f0-2bf2-11e7-859b-f78b612cde28" - } - ], - "bar_color_rules": [ - { - "id": "1373ddd0-2bf2-11e7-859b-f78b612cde28" - } - ], - "filter": { - "language": "lucene", - "query": "event.module:kubernetes AND (metricset.name:container OR metricset.name:state_node)" - }, - "gauge_color_rules": [ - { - "id": "140e4910-2bf2-11e7-859b-f78b612cde28" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "0d5c6b10-2bf2-11e7-859b-f78b612cde28", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0.5", - "formatter": "0.0a", - "id": "0d5c9220-2bf2-11e7-859b-f78b612cde28", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.container.cpu.usage.nanocores", - "id": "0d5c9221-2bf2-11e7-859b-f78b612cde28", - "type": "sum" - }, - { - "field": "metricset.period", - "id": "8b346300-bf95-11ea-a07c-851701f0d645", - "type": "avg" - }, - { - "id": "25ae6580-bf95-11ea-a07c-851701f0d645", - "script": "params.sum_nanocores / (params._interval / params.avg_period)", - "type": "calculation", - "variables": [ - { - "field": "0d5c9221-2bf2-11e7-859b-f78b612cde28", - "id": "39e40aa0-bf95-11ea-a07c-851701f0d645", - "name": "sum_nanocores" - }, - { - "field": "8b346300-bf95-11ea-a07c-851701f0d645", - "id": "85213600-bf95-11ea-a07c-851701f0d645", - "name": "avg_period" - } - ] - } - ], - "override_index_pattern": 0, - "point_size": 1, - "seperate_axis": 0, - "series_interval": "10s", - "series_time_field": "@timestamp", - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "kubernetes.node.name", - "terms_order_by": "0d5c9221-2bf2-11e7-859b-f78b612cde28", - "terms_size": "10000", - "value_template": "{{value}} nanocores" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": "0", - "formatter": "0.0a", - "hide_in_legend": 1, - "id": "22f65d40-31a7-11e7-84cc-096d2b38e6e5", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.node.cpu.capacity.cores", - "id": "22f65d41-31a7-11e7-84cc-096d2b38e6e5", - "type": "avg" - }, - { - "id": "4af4c390-34d6-11e7-be88-cb6a123dc1bb", - "script": "params.cores * 1000000000", - "type": "calculation", - "variables": [ - { - "field": "22f65d41-31a7-11e7-84cc-096d2b38e6e5", - "id": "4cd32080-34d6-11e7-be88-cb6a123dc1bb", - "name": "cores" - } - ] - } - ], - "override_index_pattern": 0, - "point_size": "0", - "seperate_axis": 0, - "series_interval": "10s", - "series_time_field": "@timestamp", - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "kubernetes.node.name", - "terms_order_by": "22f65d41-31a7-11e7-84cc-096d2b38e6e5", - "terms_size": "10000", - "value_template": "{{value}} nanocores" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries", - "use_kibana_indexes": false - }, - "title": "CPU usage by node [Metricbeat Kubernetes] ECS", - "type": "metrics" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "44f12b40-2bf4-11e7-859b-f78b612cde28-ecs", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-07-14T13:21:55.473Z", - "version": "WzIwNDAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Deployments [Metricbeat Kubernetes] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "67ee7da0-30e0-11e7-8df8-6d3604a72912" - } - ], - "bar_color_rules": [ - { - "id": "68cdba10-30e0-11e7-8df8-6d3604a72912" - } - ], - "filter": { - "language": "lucene", - "query": "event.module:kubernetes AND metricset.name:state_deployment" - }, - "gauge_color_rules": [ - { - "id": "69765620-30e0-11e7-8df8-6d3604a72912" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "hide_last_value_indicator": true, - "id": "4c4690b0-30e0-11e7-8df8-6d3604a72912", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "4c4690b1-30e0-11e7-8df8-6d3604a72912", - "label": "Deployments", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.deployment.name", - "id": "4c4690b2-30e0-11e7-8df8-6d3604a72912", - "type": "cardinality" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "kubernetes.deployment.name" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric", - "use_kibana_indexes": false - }, - "title": "Deployments [Metricbeat Kubernetes] ECS", - "type": "metrics" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "cd059410-2bfb-11e7-859b-f78b612cde28-ecs", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-07-14T13:21:55.473Z", - "version": "WzIwNDEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Desired pods [Metricbeat Kubernetes] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "508ffb30-30d5-11e7-8df8-6d3604a72912" - } - ], - "bar_color_rules": [ - { - "id": "674d83b0-30d5-11e7-8df8-6d3604a72912" - } - ], - "filter": { - "language": "lucene", - "query": "event.module:kubernetes AND metricset.name:state_deployment" - }, - "gauge_color_rules": [ - { - "id": "50f9b980-30d5-11e7-8df8-6d3604a72912" - } - ], - "gauge_inner_width": "10", - "gauge_max": "5", - "gauge_style": "half", - "gauge_width": "10", - "hide_last_value_indicator": true, - "id": "2fe9d3b0-30d5-11e7-8df8-6d3604a72912", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "2fe9d3b1-30d5-11e7-8df8-6d3604a72912", - "label": "Desired Pods", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.deployment.replicas.desired", - "id": "54cf79a0-30d5-11e7-8df8-6d3604a72912", - "type": "sum" - } - ], - "override_index_pattern": 1, - "point_size": 1, - "seperate_axis": 0, - "series_interval": "10s", - "series_time_field": "@timestamp", - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric", - "use_kibana_indexes": false - }, - "title": "Desired pods [Metricbeat Kubernetes] ECS", - "type": "metrics" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "e1018b90-2bfb-11e7-859b-f78b612cde28-ecs", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-07-14T13:21:55.473Z", - "version": "WzIwNDIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Memory usage by node [Metricbeat Kubernetes] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "12c1f2f0-2bf2-11e7-859b-f78b612cde28" - } - ], - "bar_color_rules": [ - { - "id": "1373ddd0-2bf2-11e7-859b-f78b612cde28" - } - ], - "filter": { - "language": "lucene", - "query": "event.module:kubernetes AND (metricset.name:container OR metricset.name:state_node)" - }, - "gauge_color_rules": [ - { - "id": "140e4910-2bf2-11e7-859b-f78b612cde28" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "0d5c6b10-2bf2-11e7-859b-f78b612cde28", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "0d5c9220-2bf2-11e7-859b-f78b612cde28", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.container.memory.usage.bytes", - "id": "0d5c9221-2bf2-11e7-859b-f78b612cde28", - "type": "sum" - }, - { - "field": "0d5c9221-2bf2-11e7-859b-f78b612cde28", - "id": "9f0cf900-1ffb-11e8-81f2-43be86397500", - "type": "cumulative_sum" - }, - { - "field": "9f0cf900-1ffb-11e8-81f2-43be86397500", - "id": "a926e130-1ffb-11e8-81f2-43be86397500", - "type": "derivative", - "unit": "10s" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "kubernetes.node.name", - "terms_order_by": "0d5c9221-2bf2-11e7-859b-f78b612cde28", - "terms_size": "10000" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": "0", - "formatter": "bytes", - "hide_in_legend": 1, - "id": "8ba3b270-31a7-11e7-84cc-096d2b38e6e5", - "label": "Node capacity", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.node.memory.capacity.bytes", - "id": "8ba3b271-31a7-11e7-84cc-096d2b38e6e5", - "type": "sum" - }, - { - "field": "8ba3b271-31a7-11e7-84cc-096d2b38e6e5", - "id": "d1fb2670-1ffb-11e8-81f2-43be86397500", - "type": "cumulative_sum" - }, - { - "field": "d1fb2670-1ffb-11e8-81f2-43be86397500", - "id": "dc8b01f0-1ffb-11e8-81f2-43be86397500", - "type": "derivative", - "unit": "10s" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "kubernetes.node.name", - "terms_order_by": "8ba3b271-31a7-11e7-84cc-096d2b38e6e5", - "terms_size": "10000" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries", - "use_kibana_indexes": false - }, - "title": "Memory usage by node [Metricbeat Kubernetes] ECS", - "type": "metrics" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "d6564360-2bfc-11e7-859b-f78b612cde28-ecs", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-07-14T13:21:55.473Z", - "version": "WzIwNDMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Network in by node [Metricbeat Kubernetes] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "12c1f2f0-2bf2-11e7-859b-f78b612cde28" - } - ], - "bar_color_rules": [ - { - "id": "1373ddd0-2bf2-11e7-859b-f78b612cde28" - } - ], - "filter": { - "language": "lucene", - "query": "event.module:kubernetes AND metricset.name:pod" - }, - "gauge_color_rules": [ - { - "id": "140e4910-2bf2-11e7-859b-f78b612cde28" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "0d5c6b10-2bf2-11e7-859b-f78b612cde28", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "0d5c9220-2bf2-11e7-859b-f78b612cde28", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.pod.network.rx.bytes", - "id": "0d5c9221-2bf2-11e7-859b-f78b612cde28", - "type": "max" - }, - { - "field": "0d5c9221-2bf2-11e7-859b-f78b612cde28", - "id": "494fc310-2bf7-11e7-859b-f78b612cde28", - "type": "derivative", - "unit": "" - }, - { - "field": "494fc310-2bf7-11e7-859b-f78b612cde28", - "id": "37c72a70-3598-11e7-aa4a-8313a0c92a88", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "stacked", - "terms_field": "kubernetes.node.name", - "terms_order_by": "0d5c9221-2bf2-11e7-859b-f78b612cde28", - "terms_size": "100000" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries", - "use_kibana_indexes": false - }, - "title": "Network in by node [Metricbeat Kubernetes] ECS", - "type": "metrics" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "16fa4470-2bfd-11e7-859b-f78b612cde28-ecs", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-07-14T13:21:55.473Z", - "version": "WzIwNDQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Network out by node [Metricbeat Kubernetes] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "12c1f2f0-2bf2-11e7-859b-f78b612cde28" - } - ], - "bar_color_rules": [ - { - "id": "1373ddd0-2bf2-11e7-859b-f78b612cde28" - } - ], - "filter": { - "language": "lucene", - "query": "event.module:kubernetes AND metricset.name:pod" - }, - "gauge_color_rules": [ - { - "id": "140e4910-2bf2-11e7-859b-f78b612cde28" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "0d5c6b10-2bf2-11e7-859b-f78b612cde28", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "0d5c9220-2bf2-11e7-859b-f78b612cde28", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.pod.network.tx.bytes", - "id": "0d5c9221-2bf2-11e7-859b-f78b612cde28", - "type": "max" - }, - { - "field": "0d5c9221-2bf2-11e7-859b-f78b612cde28", - "id": "494fc310-2bf7-11e7-859b-f78b612cde28", - "type": "derivative", - "unit": "" - }, - { - "field": "494fc310-2bf7-11e7-859b-f78b612cde28", - "id": "244c70e0-3598-11e7-aa4a-8313a0c92a88", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "stacked", - "terms_field": "kubernetes.node.name", - "terms_order_by": "0d5c9221-2bf2-11e7-859b-f78b612cde28", - "terms_size": "10000" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries", - "use_kibana_indexes": false - }, - "title": "Network out by node [Metricbeat Kubernetes] ECS", - "type": "metrics" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "294546b0-30d6-11e7-8df8-6d3604a72912-ecs", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-07-14T13:21:55.473Z", - "version": "WzIwNDUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Nodes [Metricbeat Kubernetes] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "67ee7da0-30e0-11e7-8df8-6d3604a72912" - } - ], - "bar_color_rules": [ - { - "id": "68cdba10-30e0-11e7-8df8-6d3604a72912" - } - ], - "filter": { - "language": "lucene", - "query": "event.module:kubernetes AND metricset.name:state_node" - }, - "gauge_color_rules": [ - { - "id": "69765620-30e0-11e7-8df8-6d3604a72912" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "hide_last_value_indicator": true, - "id": "4c4690b0-30e0-11e7-8df8-6d3604a72912", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "4c4690b1-30e0-11e7-8df8-6d3604a72912", - "label": "Nodes", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.node.name", - "id": "4c4690b2-30e0-11e7-8df8-6d3604a72912", - "type": "cardinality" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "kubernetes.deployment.name" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric", - "use_kibana_indexes": false - }, - "title": "Nodes [Metricbeat Kubernetes] ECS", - "type": "metrics" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "408fccf0-30d6-11e7-8df8-6d3604a72912-ecs", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-07-14T13:21:55.473Z", - "version": "WzIwNDYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Top CPU intensive pods [Metricbeat Kubernetes] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "id": "802104d0-2bfc-11e7-859b-f78b612cde28" - } - ], - "filter": { - "language": "lucene", - "query": "event.module:kubernetes AND metricset.name:container" - }, - "hide_last_value_indicator": true, - "id": "5d3692a0-2bfc-11e7-859b-f78b612cde28", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "0.0 a", - "id": "5d3692a1-2bfc-11e7-859b-f78b612cde28", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.container.cpu.usage.core.ns", - "id": "5d3692a2-2bfc-11e7-859b-f78b612cde28", - "type": "max" - }, - { - "field": "5d3692a2-2bfc-11e7-859b-f78b612cde28", - "id": "6c905240-2bfc-11e7-859b-f78b612cde28", - "type": "derivative", - "unit": "1s" - }, - { - "field": "6c905240-2bfc-11e7-859b-f78b612cde28", - "id": "9a51f710-359d-11e7-aa4a-8313a0c92a88", - "type": "positive_only", - "unit": "" - } - ], - "offset_time": "", - "override_index_pattern": 0, - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "kubernetes.pod.name", - "terms_order_by": "5d3692a2-2bfc-11e7-859b-f78b612cde28", - "value_template": "{{value}} ns" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n", - "use_kibana_indexes": false - }, - "title": "Top CPU intensive pods [Metricbeat Kubernetes] ECS", - "type": "metrics" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "58e644f0-30d6-11e7-8df8-6d3604a72912-ecs", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-07-14T13:21:55.473Z", - "version": "WzIwNDcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Top memory intensive pods [Metricbeat Kubernetes] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "id": "802104d0-2bfc-11e7-859b-f78b612cde28" - } - ], - "filter": { - "language": "lucene", - "query": "event.module:kubernetes AND metricset.name:container" - }, - "hide_last_value_indicator": true, - "id": "5d3692a0-2bfc-11e7-859b-f78b612cde28", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "5d3692a1-2bfc-11e7-859b-f78b612cde28", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.container.memory.usage.bytes", - "id": "5d3692a2-2bfc-11e7-859b-f78b612cde28", - "type": "sum" - }, - { - "field": "5d3692a2-2bfc-11e7-859b-f78b612cde28", - "id": "3972e9f0-256f-11e8-84e6-87221f87ae3b", - "type": "cumulative_sum" - }, - { - "field": "3972e9f0-256f-11e8-84e6-87221f87ae3b", - "id": "3e9fd5a0-256f-11e8-84e6-87221f87ae3b", - "type": "derivative", - "unit": "10s" - } - ], - "offset_time": "", - "override_index_pattern": 0, - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "kubernetes.pod.name", - "terms_order_by": "5d3692a2-2bfc-11e7-859b-f78b612cde28", - "terms_size": "10", - "value_template": "" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n", - "use_kibana_indexes": false - }, - "title": "Top memory intensive pods [Metricbeat Kubernetes] ECS", - "type": "metrics" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "a4c9d360-30df-11e7-8df8-6d3604a72912-ecs", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-07-14T13:21:55.473Z", - "version": "WzIwNDgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Unavailable pods [Metricbeat Kubernetes] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "508ffb30-30d5-11e7-8df8-6d3604a72912" - } - ], - "bar_color_rules": [ - { - "id": "674d83b0-30d5-11e7-8df8-6d3604a72912" - } - ], - "filter": { - "language": "lucene", - "query": "event.module:kubernetes AND metricset.name:state_deployment" - }, - "gauge_color_rules": [ - { - "id": "50f9b980-30d5-11e7-8df8-6d3604a72912" - } - ], - "gauge_inner_width": "10", - "gauge_max": "", - "gauge_style": "half", - "gauge_width": "10", - "hide_last_value_indicator": true, - "id": "2fe9d3b0-30d5-11e7-8df8-6d3604a72912", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "2fe9d3b1-30d5-11e7-8df8-6d3604a72912", - "label": "Unavailable Pods", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.deployment.replicas.unavailable", - "id": "54cf79a0-30d5-11e7-8df8-6d3604a72912", - "type": "sum" - } - ], - "override_index_pattern": 1, - "point_size": 1, - "seperate_axis": 0, - "series_interval": "10s", - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric", - "use_kibana_indexes": false - }, - "title": "Unavailable pods [Metricbeat Kubernetes] ECS", - "type": "metrics" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "174a6ad0-30e0-11e7-8df8-6d3604a72912-ecs", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-07-14T13:21:55.473Z", - "version": "WzIwNDksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Unavailable pods per deployment [Metricbeat Kubernetes] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "filter": { - "language": "lucene", - "query": "event.module:kubernetes AND metricset.name:state_deployment" - }, - "id": "117fadf0-30df-11e7-8df8-6d3604a72912", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(254,146,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "64456840-30df-11e7-8df8-6d3604a72912", - "label": "Unavailable pods", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.deployment.replicas.unavailable", - "id": "64456841-30df-11e7-8df8-6d3604a72912", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "id": "53d35ad0-30df-11e7-8df8-6d3604a72912" - } - ], - "split_mode": "terms", - "stacked": "stacked", - "terms_field": "kubernetes.deployment.name", - "terms_size": "10000" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries", - "use_kibana_indexes": false - }, - "title": "Unavailable pods per deployment [Metricbeat Kubernetes] ECS", - "type": "metrics" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "7aac4fd0-30e0-11e7-8df8-6d3604a72912-ecs", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-07-14T13:21:55.473Z", - "version": "WzIwNTAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Available pods [Metricbeat Kubernetes] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "508ffb30-30d5-11e7-8df8-6d3604a72912" - } - ], - "bar_color_rules": [ - { - "id": "674d83b0-30d5-11e7-8df8-6d3604a72912" - } - ], - "filter": { - "language": "lucene", - "query": "event.module:kubernetes AND metricset.name:state_deployment" - }, - "gauge_color_rules": [ - { - "id": "50f9b980-30d5-11e7-8df8-6d3604a72912" - } - ], - "gauge_inner_width": "10", - "gauge_max": "5", - "gauge_style": "half", - "gauge_width": "10", - "hide_last_value_indicator": true, - "id": "2fe9d3b0-30d5-11e7-8df8-6d3604a72912", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "2fe9d3b1-30d5-11e7-8df8-6d3604a72912", - "label": "Available Pods", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.deployment.replicas.available", - "id": "54cf79a0-30d5-11e7-8df8-6d3604a72912", - "type": "sum" - } - ], - "override_index_pattern": 1, - "point_size": 1, - "seperate_axis": 0, - "series_index_pattern": "*", - "series_interval": "10s", - "series_time_field": "@timestamp", - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric", - "use_kibana_indexes": false - }, - "title": "Available pods [Metricbeat Kubernetes] ECS", - "type": "metrics" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "da1ff7c0-30ed-11e7-b9e5-2b5b07213ab3-ecs", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-07-14T13:21:55.473Z", - "version": "WzIwNTEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Cluster Filter [Metricbeat Kubernetes] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "orchestrator.cluster.name", - "id": "1626269001600", - "indexPatternRefName": "control_0_index_pattern", - "label": "Cluster Name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "Cluster Filter [Metricbeat Kubernetes] ECS", - "type": "input_control_vis" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "d54c65f0-e4a6-11eb-9d53-3b3d1d47c519", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2021-07-14T13:36:17.931Z", - "version": "WzI2MjEsMV0=" - } - ], - "version": "7.11.0" -} diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-overview.ndjson b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-overview.ndjson new file mode 100644 index 00000000000..3746eaf629b --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-overview.ndjson @@ -0,0 +1,15 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Available pods per deployment [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:state_deployment\"},\"id\":\"117fadf0-30df-11e7-8df8-6d3604a72912\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"64456840-30df-11e7-8df8-6d3604a72912\",\"label\":\"Available pods\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.deployment.replicas.available\",\"id\":\"64456841-30df-11e7-8df8-6d3604a72912\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"53d35ad0-30df-11e7-8df8-6d3604a72912\"}],\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"kubernetes.deployment.name\",\"terms_size\":\"10000\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Available pods per deployment [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"022a54c0-2bf5-11e7-859b-f78b612cde28-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"CPU usage by node [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"12c1f2f0-2bf2-11e7-859b-f78b612cde28\"}],\"bar_color_rules\":[{\"id\":\"1373ddd0-2bf2-11e7-859b-f78b612cde28\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND (metricset.name:container OR metricset.name:state_node)\"},\"gauge_color_rules\":[{\"id\":\"140e4910-2bf2-11e7-859b-f78b612cde28\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"0d5c6b10-2bf2-11e7-859b-f78b612cde28\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.5\",\"formatter\":\"0.0a\",\"id\":\"0d5c9220-2bf2-11e7-859b-f78b612cde28\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.container.cpu.usage.nanocores\",\"id\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"type\":\"sum\"},{\"field\":\"metricset.period\",\"id\":\"8b346300-bf95-11ea-a07c-851701f0d645\",\"type\":\"avg\"},{\"id\":\"25ae6580-bf95-11ea-a07c-851701f0d645\",\"script\":\"params.sum_nanocores / (params._interval / params.avg_period)\",\"type\":\"calculation\",\"variables\":[{\"field\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"id\":\"39e40aa0-bf95-11ea-a07c-851701f0d645\",\"name\":\"sum_nanocores\"},{\"field\":\"8b346300-bf95-11ea-a07c-851701f0d645\",\"id\":\"85213600-bf95-11ea-a07c-851701f0d645\",\"name\":\"avg_period\"}]}],\"override_index_pattern\":0,\"point_size\":1,\"seperate_axis\":0,\"series_interval\":\"10s\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.node.name\",\"terms_order_by\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"terms_size\":\"10000\",\"value_template\":\"{{value}} nanocores\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"0\",\"formatter\":\"0.0a\",\"hide_in_legend\":1,\"id\":\"22f65d40-31a7-11e7-84cc-096d2b38e6e5\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.node.cpu.capacity.cores\",\"id\":\"22f65d41-31a7-11e7-84cc-096d2b38e6e5\",\"type\":\"avg\"},{\"id\":\"4af4c390-34d6-11e7-be88-cb6a123dc1bb\",\"script\":\"params.cores * 1000000000\",\"type\":\"calculation\",\"variables\":[{\"field\":\"22f65d41-31a7-11e7-84cc-096d2b38e6e5\",\"id\":\"4cd32080-34d6-11e7-be88-cb6a123dc1bb\",\"name\":\"cores\"}]}],\"override_index_pattern\":0,\"point_size\":\"0\",\"seperate_axis\":0,\"series_interval\":\"10s\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.node.name\",\"terms_order_by\":\"22f65d41-31a7-11e7-84cc-096d2b38e6e5\",\"terms_size\":\"10000\",\"value_template\":\"{{value}} nanocores\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"CPU usage by node [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"44f12b40-2bf4-11e7-859b-f78b612cde28-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Deployments [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"67ee7da0-30e0-11e7-8df8-6d3604a72912\"}],\"bar_color_rules\":[{\"id\":\"68cdba10-30e0-11e7-8df8-6d3604a72912\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:state_deployment\"},\"gauge_color_rules\":[{\"id\":\"69765620-30e0-11e7-8df8-6d3604a72912\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"hide_last_value_indicator\":true,\"id\":\"4c4690b0-30e0-11e7-8df8-6d3604a72912\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"4c4690b1-30e0-11e7-8df8-6d3604a72912\",\"label\":\"Deployments\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.deployment.name\",\"id\":\"4c4690b2-30e0-11e7-8df8-6d3604a72912\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.deployment.name\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false},\"title\":\"Deployments [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"cd059410-2bfb-11e7-859b-f78b612cde28-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Desired pods [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"508ffb30-30d5-11e7-8df8-6d3604a72912\"}],\"bar_color_rules\":[{\"id\":\"674d83b0-30d5-11e7-8df8-6d3604a72912\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:state_deployment\"},\"gauge_color_rules\":[{\"id\":\"50f9b980-30d5-11e7-8df8-6d3604a72912\"}],\"gauge_inner_width\":\"10\",\"gauge_max\":\"5\",\"gauge_style\":\"half\",\"gauge_width\":\"10\",\"hide_last_value_indicator\":true,\"id\":\"2fe9d3b0-30d5-11e7-8df8-6d3604a72912\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"2fe9d3b1-30d5-11e7-8df8-6d3604a72912\",\"label\":\"Desired Pods\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.deployment.replicas.desired\",\"id\":\"54cf79a0-30d5-11e7-8df8-6d3604a72912\",\"type\":\"sum\"}],\"override_index_pattern\":1,\"point_size\":1,\"seperate_axis\":0,\"series_interval\":\"10s\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false},\"title\":\"Desired pods [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e1018b90-2bfb-11e7-859b-f78b612cde28-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Memory usage by node [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"12c1f2f0-2bf2-11e7-859b-f78b612cde28\"}],\"bar_color_rules\":[{\"id\":\"1373ddd0-2bf2-11e7-859b-f78b612cde28\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND (metricset.name:container OR metricset.name:state_node)\"},\"gauge_color_rules\":[{\"id\":\"140e4910-2bf2-11e7-859b-f78b612cde28\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"0d5c6b10-2bf2-11e7-859b-f78b612cde28\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"0d5c9220-2bf2-11e7-859b-f78b612cde28\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.container.memory.usage.bytes\",\"id\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"type\":\"sum\"},{\"field\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"id\":\"9f0cf900-1ffb-11e8-81f2-43be86397500\",\"type\":\"cumulative_sum\"},{\"field\":\"9f0cf900-1ffb-11e8-81f2-43be86397500\",\"id\":\"a926e130-1ffb-11e8-81f2-43be86397500\",\"type\":\"derivative\",\"unit\":\"10s\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.node.name\",\"terms_order_by\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"terms_size\":\"10000\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"hide_in_legend\":1,\"id\":\"8ba3b270-31a7-11e7-84cc-096d2b38e6e5\",\"label\":\"Node capacity\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.node.memory.capacity.bytes\",\"id\":\"8ba3b271-31a7-11e7-84cc-096d2b38e6e5\",\"type\":\"sum\"},{\"field\":\"8ba3b271-31a7-11e7-84cc-096d2b38e6e5\",\"id\":\"d1fb2670-1ffb-11e8-81f2-43be86397500\",\"type\":\"cumulative_sum\"},{\"field\":\"d1fb2670-1ffb-11e8-81f2-43be86397500\",\"id\":\"dc8b01f0-1ffb-11e8-81f2-43be86397500\",\"type\":\"derivative\",\"unit\":\"10s\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.node.name\",\"terms_order_by\":\"8ba3b271-31a7-11e7-84cc-096d2b38e6e5\",\"terms_size\":\"10000\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Memory usage by node [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d6564360-2bfc-11e7-859b-f78b612cde28-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Network in by node [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"12c1f2f0-2bf2-11e7-859b-f78b612cde28\"}],\"bar_color_rules\":[{\"id\":\"1373ddd0-2bf2-11e7-859b-f78b612cde28\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:pod\"},\"gauge_color_rules\":[{\"id\":\"140e4910-2bf2-11e7-859b-f78b612cde28\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"0d5c6b10-2bf2-11e7-859b-f78b612cde28\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"0d5c9220-2bf2-11e7-859b-f78b612cde28\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.pod.network.rx.bytes\",\"id\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"type\":\"max\"},{\"field\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"id\":\"494fc310-2bf7-11e7-859b-f78b612cde28\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"494fc310-2bf7-11e7-859b-f78b612cde28\",\"id\":\"37c72a70-3598-11e7-aa4a-8313a0c92a88\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"kubernetes.node.name\",\"terms_order_by\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"terms_size\":\"100000\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Network in by node [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"16fa4470-2bfd-11e7-859b-f78b612cde28-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Network out by node [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"12c1f2f0-2bf2-11e7-859b-f78b612cde28\"}],\"bar_color_rules\":[{\"id\":\"1373ddd0-2bf2-11e7-859b-f78b612cde28\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:pod\"},\"gauge_color_rules\":[{\"id\":\"140e4910-2bf2-11e7-859b-f78b612cde28\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"0d5c6b10-2bf2-11e7-859b-f78b612cde28\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"0d5c9220-2bf2-11e7-859b-f78b612cde28\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.pod.network.tx.bytes\",\"id\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"type\":\"max\"},{\"field\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"id\":\"494fc310-2bf7-11e7-859b-f78b612cde28\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"494fc310-2bf7-11e7-859b-f78b612cde28\",\"id\":\"244c70e0-3598-11e7-aa4a-8313a0c92a88\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"kubernetes.node.name\",\"terms_order_by\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"terms_size\":\"10000\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Network out by node [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"294546b0-30d6-11e7-8df8-6d3604a72912-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Nodes [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"67ee7da0-30e0-11e7-8df8-6d3604a72912\"}],\"bar_color_rules\":[{\"id\":\"68cdba10-30e0-11e7-8df8-6d3604a72912\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:state_node\"},\"gauge_color_rules\":[{\"id\":\"69765620-30e0-11e7-8df8-6d3604a72912\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"hide_last_value_indicator\":true,\"id\":\"4c4690b0-30e0-11e7-8df8-6d3604a72912\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"4c4690b1-30e0-11e7-8df8-6d3604a72912\",\"label\":\"Nodes\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.node.name\",\"id\":\"4c4690b2-30e0-11e7-8df8-6d3604a72912\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.deployment.name\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false},\"title\":\"Nodes [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"408fccf0-30d6-11e7-8df8-6d3604a72912-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top CPU intensive pods [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"802104d0-2bfc-11e7-859b-f78b612cde28\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:container\"},\"hide_last_value_indicator\":true,\"id\":\"5d3692a0-2bfc-11e7-859b-f78b612cde28\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"0.0 a\",\"id\":\"5d3692a1-2bfc-11e7-859b-f78b612cde28\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.container.cpu.usage.core.ns\",\"id\":\"5d3692a2-2bfc-11e7-859b-f78b612cde28\",\"type\":\"max\"},{\"field\":\"5d3692a2-2bfc-11e7-859b-f78b612cde28\",\"id\":\"6c905240-2bfc-11e7-859b-f78b612cde28\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"6c905240-2bfc-11e7-859b-f78b612cde28\",\"id\":\"9a51f710-359d-11e7-aa4a-8313a0c92a88\",\"type\":\"positive_only\",\"unit\":\"\"}],\"offset_time\":\"\",\"override_index_pattern\":0,\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.pod.name\",\"terms_order_by\":\"5d3692a2-2bfc-11e7-859b-f78b612cde28\",\"value_template\":\"{{value}} ns\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false},\"title\":\"Top CPU intensive pods [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"58e644f0-30d6-11e7-8df8-6d3604a72912-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top memory intensive pods [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"802104d0-2bfc-11e7-859b-f78b612cde28\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:container\"},\"hide_last_value_indicator\":true,\"id\":\"5d3692a0-2bfc-11e7-859b-f78b612cde28\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"5d3692a1-2bfc-11e7-859b-f78b612cde28\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.container.memory.usage.bytes\",\"id\":\"5d3692a2-2bfc-11e7-859b-f78b612cde28\",\"type\":\"sum\"},{\"field\":\"5d3692a2-2bfc-11e7-859b-f78b612cde28\",\"id\":\"3972e9f0-256f-11e8-84e6-87221f87ae3b\",\"type\":\"cumulative_sum\"},{\"field\":\"3972e9f0-256f-11e8-84e6-87221f87ae3b\",\"id\":\"3e9fd5a0-256f-11e8-84e6-87221f87ae3b\",\"type\":\"derivative\",\"unit\":\"10s\"}],\"offset_time\":\"\",\"override_index_pattern\":0,\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.pod.name\",\"terms_order_by\":\"5d3692a2-2bfc-11e7-859b-f78b612cde28\",\"terms_size\":\"10\",\"value_template\":\"\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false},\"title\":\"Top memory intensive pods [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a4c9d360-30df-11e7-8df8-6d3604a72912-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Unavailable pods [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"508ffb30-30d5-11e7-8df8-6d3604a72912\"}],\"bar_color_rules\":[{\"id\":\"674d83b0-30d5-11e7-8df8-6d3604a72912\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:state_deployment\"},\"gauge_color_rules\":[{\"id\":\"50f9b980-30d5-11e7-8df8-6d3604a72912\"}],\"gauge_inner_width\":\"10\",\"gauge_max\":\"\",\"gauge_style\":\"half\",\"gauge_width\":\"10\",\"hide_last_value_indicator\":true,\"id\":\"2fe9d3b0-30d5-11e7-8df8-6d3604a72912\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"2fe9d3b1-30d5-11e7-8df8-6d3604a72912\",\"label\":\"Unavailable Pods\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.deployment.replicas.unavailable\",\"id\":\"54cf79a0-30d5-11e7-8df8-6d3604a72912\",\"type\":\"sum\"}],\"override_index_pattern\":1,\"point_size\":1,\"seperate_axis\":0,\"series_interval\":\"10s\",\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false},\"title\":\"Unavailable pods [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"174a6ad0-30e0-11e7-8df8-6d3604a72912-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Unavailable pods per deployment [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:state_deployment\"},\"id\":\"117fadf0-30df-11e7-8df8-6d3604a72912\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"64456840-30df-11e7-8df8-6d3604a72912\",\"label\":\"Unavailable pods\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.deployment.replicas.unavailable\",\"id\":\"64456841-30df-11e7-8df8-6d3604a72912\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"53d35ad0-30df-11e7-8df8-6d3604a72912\"}],\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"kubernetes.deployment.name\",\"terms_size\":\"10000\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Unavailable pods per deployment [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7aac4fd0-30e0-11e7-8df8-6d3604a72912-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Available pods [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"508ffb30-30d5-11e7-8df8-6d3604a72912\"}],\"bar_color_rules\":[{\"id\":\"674d83b0-30d5-11e7-8df8-6d3604a72912\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:state_deployment\"},\"gauge_color_rules\":[{\"id\":\"50f9b980-30d5-11e7-8df8-6d3604a72912\"}],\"gauge_inner_width\":\"10\",\"gauge_max\":\"5\",\"gauge_style\":\"half\",\"gauge_width\":\"10\",\"hide_last_value_indicator\":true,\"id\":\"2fe9d3b0-30d5-11e7-8df8-6d3604a72912\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"2fe9d3b1-30d5-11e7-8df8-6d3604a72912\",\"label\":\"Available Pods\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.deployment.replicas.available\",\"id\":\"54cf79a0-30d5-11e7-8df8-6d3604a72912\",\"type\":\"sum\"}],\"override_index_pattern\":1,\"point_size\":1,\"seperate_axis\":0,\"series_index_pattern\":\"*\",\"series_interval\":\"10s\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false},\"title\":\"Available pods [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"da1ff7c0-30ed-11e7-b9e5-2b5b07213ab3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Cluster Filter [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"orchestrator.cluster.name\",\"id\":\"1626269001600\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Cluster Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Cluster Filter [Metricbeat Kubernetes] ECS\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"d54c65f0-e4a6-11eb-9d53-3b3d1d47c519","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMjYsMV0="} +{"attributes":{"description":"Overview of Kubernetes cluster metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false, \"useMargins\": false}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"1\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"1\",\"panelRefName\":\"panel_1\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"2\",\"w\":24,\"x\":0,\"y\":24},\"panelIndex\":\"2\",\"panelRefName\":\"panel_2\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"5\",\"w\":7,\"x\":9,\"y\":0},\"panelIndex\":\"5\",\"panelRefName\":\"panel_5\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"6\",\"w\":8,\"x\":0,\"y\":12},\"panelIndex\":\"6\",\"panelRefName\":\"panel_6\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":24},\"panelIndex\":\"7\",\"panelRefName\":\"panel_7\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":36},\"panelIndex\":\"8\",\"panelRefName\":\"panel_8\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"9\",\"w\":24,\"x\":0,\"y\":36},\"panelIndex\":\"9\",\"panelRefName\":\"panel_9\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"10\",\"w\":8,\"x\":16,\"y\":0},\"panelIndex\":\"10\",\"panelRefName\":\"panel_10\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"11\",\"w\":24,\"x\":0,\"y\":48},\"panelIndex\":\"11\",\"panelRefName\":\"panel_11\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"12\",\"w\":24,\"x\":24,\"y\":48},\"panelIndex\":\"12\",\"panelRefName\":\"panel_12\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"13\",\"w\":8,\"x\":16,\"y\":12},\"panelIndex\":\"13\",\"panelRefName\":\"panel_13\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"14\",\"w\":24,\"x\":24,\"y\":12},\"panelIndex\":\"14\",\"panelRefName\":\"panel_14\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"15\",\"w\":8,\"x\":8,\"y\":12},\"panelIndex\":\"15\",\"panelRefName\":\"panel_15\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"43e2c937-a06e-4f6c-9e01-e2669110f160\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"43e2c937-a06e-4f6c-9e01-e2669110f160\",\"panelRefName\":\"panel_43e2c937-a06e-4f6c-9e01-e2669110f160\",\"type\":\"visualization\",\"version\":\"7.11.0\"}]","timeRestore":false,"title":"[Metricbeat Kubernetes] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"e0381d10-e4a6-11eb-9d53-3b3d1d47c519","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"022a54c0-2bf5-11e7-859b-f78b612cde28-ecs","name":"1:panel_1","type":"visualization"},{"id":"44f12b40-2bf4-11e7-859b-f78b612cde28-ecs","name":"2:panel_2","type":"visualization"},{"id":"cd059410-2bfb-11e7-859b-f78b612cde28-ecs","name":"5:panel_5","type":"visualization"},{"id":"e1018b90-2bfb-11e7-859b-f78b612cde28-ecs","name":"6:panel_6","type":"visualization"},{"id":"d6564360-2bfc-11e7-859b-f78b612cde28-ecs","name":"7:panel_7","type":"visualization"},{"id":"16fa4470-2bfd-11e7-859b-f78b612cde28-ecs","name":"8:panel_8","type":"visualization"},{"id":"294546b0-30d6-11e7-8df8-6d3604a72912-ecs","name":"9:panel_9","type":"visualization"},{"id":"408fccf0-30d6-11e7-8df8-6d3604a72912-ecs","name":"10:panel_10","type":"visualization"},{"id":"58e644f0-30d6-11e7-8df8-6d3604a72912-ecs","name":"11:panel_11","type":"visualization"},{"id":"a4c9d360-30df-11e7-8df8-6d3604a72912-ecs","name":"12:panel_12","type":"visualization"},{"id":"174a6ad0-30e0-11e7-8df8-6d3604a72912-ecs","name":"13:panel_13","type":"visualization"},{"id":"7aac4fd0-30e0-11e7-8df8-6d3604a72912-ecs","name":"14:panel_14","type":"visualization"},{"id":"da1ff7c0-30ed-11e7-b9e5-2b5b07213ab3-ecs","name":"15:panel_15","type":"visualization"},{"id":"d54c65f0-e4a6-11eb-9d53-3b3d1d47c519","name":"43e2c937-a06e-4f6c-9e01-e2669110f160:panel_43e2c937-a06e-4f6c-9e01-e2669110f160","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMTIsMV0="} diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-proxy.json b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-proxy.json deleted file mode 100644 index 30d039df170..00000000000 --- a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-proxy.json +++ /dev/null @@ -1,1197 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Kubernetes Proxy metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "kubernetes.proxy" - }, - "type": "phrase", - "value": "kubernetes.proxy" - }, - "query": { - "match": { - "event.dataset": { - "query": "kubernetes.proxy", - "type": "phrase" - } - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "1", - "w": 23, - "x": 0, - "y": 12 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.1.1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "2", - "w": 25, - "x": 23, - "y": 12 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "version": "7.1.1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "3", - "w": 9, - "x": 12, - "y": 0 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "version": "7.1.1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "4", - "w": 27, - "x": 21, - "y": 0 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "version": "7.1.1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "5", - "w": 48, - "x": 0, - "y": 24 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "version": "7.1.1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "6", - "w": 48, - "x": 0, - "y": 37 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "version": "7.1.1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "7", - "w": 12, - "x": 0, - "y": 0 - }, - "panelIndex": "7", - "panelRefName": "panel_6", - "version": "7.1.1" - } - ], - "timeRestore": false, - "title": "[Metricbeat Kubernetes] Proxy", - "version": 1 - }, - "id": "5e649d60-9901-11e9-ba57-b7ab4e2d4b58", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "e0ddd3e0-98fe-11e9-ba57-b7ab4e2d4b58", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "cac89fb0-9906-11e9-ba57-b7ab4e2d4b58", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "09b404f0-99af-11e9-ba57-b7ab4e2d4b58", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "8c6c2690-9bd8-11e9-9dc8-fd27291d427f", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "b8a24790-9bf0-11e9-9dc8-fd27291d427f", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "ba7bf750-9bf5-11e9-9dc8-fd27291d427f", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "bcb194a0-9bf8-11e9-9dc8-fd27291d427f", - "name": "panel_6", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-07-03T14:46:55.299Z", - "version": "WzI5MywyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Proxy CPU [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "CPU time", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.process.cpu.sec", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "35da60d0-98fe-11e9-b4e1-6dc893538542", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}} s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Proxy CPU [Metricbeat Kubernetes]", - "type": "metrics" - } - }, - "id": "e0ddd3e0-98fe-11e9-ba57-b7ab4e2d4b58", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T14:03:00.189Z", - "version": "WzI3NCwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Proxy memory [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(251,158,0,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Resident", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.process.memory.resident.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(164,221,0,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "1ea6cee0-9907-11e9-b4e1-6dc893538542", - "label": "Virtual", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.process.memory.virtual.bytes", - "id": "1ea6cee1-9907-11e9-b4e1-6dc893538542", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Proxy memory [Metricbeat Kubernetes]", - "type": "metrics" - } - }, - "id": "cac89fb0-9906-11e9-ba57-b7ab4e2d4b58", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T11:26:56.138Z", - "version": "WzI1NiwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Proxy process [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "30s", - "markdown": "\n| | |\n|---|---|\n|**Days running**|{{ math.started.last.raw }}|\n|**File descriptors open**|{{ average_of_kubernetes_proxy_process_fds_open_count.fds.last.raw }}|\n|**Resident Memory**|{{ average_of_kubernetes_proxy_process_memory_resident_bytes.resident_memory.last.formatted }}|\n|**Virtual Memory**|{{ average_of_kubernetes_proxy_process_memory_virtual_bytes.virtual_memory.last.formatted }}|\n\n", - "markdown_css": "#markdown-61ca57f0-469d-11e7-af02-69e470af7417 table,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 tr,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 td,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 th{border:none}", - "markdown_less": "\ntable, tr, td, th {\n border: none;\n}\n\n", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.process.started.sec", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "script": "", - "type": "max", - "variables": [ - { - "id": "1bbc4a20-99ac-11e9-8beb-c3bf9b9dfc43", - "name": "v" - } - ] - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "1f34f620-99ac-11e9-8beb-c3bf9b9dfc43", - "script": "round( (params._timestamp /1000 - params.started) / 86400, 2)", - "type": "math", - "variables": [ - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "1f371900-99ac-11e9-8beb-c3bf9b9dfc43", - "name": "started" - } - ] - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "var_name": "started" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "cc3b1700-99ac-11e9-8beb-c3bf9b9dfc43", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.process.fds.open.count", - "id": "cc3b1701-99ac-11e9-8beb-c3bf9b9dfc43", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "var_name": "fds" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "da1b1270-99ad-11e9-8beb-c3bf9b9dfc43", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.process.memory.resident.bytes", - "id": "da1b1271-99ad-11e9-8beb-c3bf9b9dfc43", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "var_name": "resident_memory" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "50f54000-99ae-11e9-8beb-c3bf9b9dfc43", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.process.memory.virtual.bytes", - "id": "50f54001-99ae-11e9-8beb-c3bf9b9dfc43", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "var_name": "virtual_memory" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "markdown" - }, - "title": "Proxy process [Metricbeat Kubernetes]", - "type": "metrics" - } - }, - "id": "09b404f0-99af-11e9-ba57-b7ab4e2d4b58", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T14:46:47.946Z", - "version": "WzI5MiwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Proxy HTTP request duration [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(165,228,85,1)", - "fill": 0.5, - "formatter": "us,ms,2", - "id": "05a03f20-9bd8-11e9-871d-d3c7d4c337ef", - "label": "P99", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.http.request.duration.us.percentile.99", - "id": "05a06630-9bd8-11e9-871d-d3c7d4c337ef", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "us,ms,2", - "id": "dc0faec0-9bd7-11e9-871d-d3c7d4c337ef", - "label": "P90", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.http.request.duration.us.percentile.90", - "id": "dc0faec1-9bd7-11e9-871d-d3c7d4c337ef", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(65,117,0,1)", - "fill": 0.5, - "formatter": "us,ms,2", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "P50", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.http.request.duration.us.percentile.50", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Proxy HTTP request duration [Metricbeat Kubernetes]", - "type": "metrics" - } - }, - "id": "8c6c2690-9bd8-11e9-9dc8-fd27291d427f", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T11:25:27.941Z", - "version": "WzI1MiwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Proxy network programming [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "4fb3cbb0-9be5-11e9-871d-d3c7d4c337ef" - } - ], - "bar_color_rules": [ - { - "id": "4b459c20-9be5-11e9-871d-d3c7d4c337ef" - } - ], - "default_index_pattern": "metricbeat-*", - "gauge_color_rules": [ - { - "id": "4de1cad0-9be5-11e9-871d-d3c7d4c337ef" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(63,112,2,1)", - "fill": 0.5, - "formatter": "number", - "hidden": false, - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Under 16ms", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.sync.networkprogramming.duration.us.bucket.16000", - "id": "4dbb3a90-9be6-11e9-871d-d3c7d4c337ef", - "type": "avg" - }, - { - "field": "4dbb3a90-9be6-11e9-871d-d3c7d4c337ef", - "id": "189688a0-9be7-11e9-871d-d3c7d4c337ef", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(138,223,24,1)", - "fill": "0.4", - "formatter": "number", - "hidden": false, - "id": "a60dbe60-9be7-11e9-871d-d3c7d4c337ef", - "label": "Under 512ms", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.sync.networkprogramming.duration.us.bucket.512000", - "id": "a60dbe61-9be7-11e9-871d-d3c7d4c337ef", - "type": "avg" - }, - { - "field": "a60dbe61-9be7-11e9-871d-d3c7d4c337ef", - "id": "b55a1080-9be7-11e9-871d-d3c7d4c337ef", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(174,161,255,1)", - "fill": "0.4", - "formatter": "number", - "hidden": false, - "id": "c5cc4f90-9be8-11e9-871d-d3c7d4c337ef", - "label": "Under 1024 ms", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.sync.networkprogramming.duration.us.bucket.1024000", - "id": "c5cc4f91-9be8-11e9-871d-d3c7d4c337ef", - "type": "avg" - }, - { - "field": "c5cc4f91-9be8-11e9-871d-d3c7d4c337ef", - "id": "f17cb2b0-9be8-11e9-871d-d3c7d4c337ef", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": "0.2", - "formatter": "number", - "hidden": false, - "id": "e0901380-9be7-11e9-871d-d3c7d4c337ef", - "label": "Under 4096 ms", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.sync.networkprogramming.duration.us.bucket.4096000", - "id": "e0901381-9be7-11e9-871d-d3c7d4c337ef", - "type": "avg" - }, - { - "field": "e0901381-9be7-11e9-871d-d3c7d4c337ef", - "id": "f2b6fce0-9be7-11e9-871d-d3c7d4c337ef", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": "0.2", - "formatter": "number", - "id": "882fa5a0-9be9-11e9-871d-d3c7d4c337ef", - "label": "Under 8192 ms", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.sync.networkprogramming.duration.us.bucket.8192000", - "id": "882fccb0-9be9-11e9-871d-d3c7d4c337ef", - "type": "avg" - }, - { - "field": "882fccb0-9be9-11e9-871d-d3c7d4c337ef", - "id": "9adb9d80-9be9-11e9-871d-d3c7d4c337ef", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(209,119,103,1)", - "fill": "0", - "formatter": "number", - "id": "86549550-9bef-11e9-871d-d3c7d4c337ef", - "label": "Under 16384 ms", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.sync.networkprogramming.duration.us.bucket.16384000", - "id": "86549551-9bef-11e9-871d-d3c7d4c337ef", - "type": "avg" - }, - { - "field": "86549551-9bef-11e9-871d-d3c7d4c337ef", - "id": "86549552-9bef-11e9-871d-d3c7d4c337ef", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "c66bf580-9be9-11e9-871d-d3c7d4c337ef", - "label": "All", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.sync.networkprogramming.duration.us.bucket.+Inf", - "id": "c66bf581-9be9-11e9-871d-d3c7d4c337ef", - "type": "avg" - }, - { - "field": "c66bf581-9be9-11e9-871d-d3c7d4c337ef", - "id": "d48b3950-9be9-11e9-871d-d3c7d4c337ef", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Proxy network programming [Metricbeat Kubernetes]", - "type": "metrics" - } - }, - "id": "b8a24790-9bf0-11e9-9dc8-fd27291d427f", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T11:26:26.595Z", - "version": "WzI1NSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Proxy sync rules [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(63,112,2,1)", - "fill": 0.5, - "formatter": "number", - "hidden": false, - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Under 16 ms", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.sync.rules.duration.us.bucket.16000", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "038a94d0-9bf4-11e9-9f03-d58417b2a60d", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(138,223,24,1)", - "fill": "0.4", - "formatter": "number", - "hidden": false, - "id": "250daed0-9bf4-11e9-9f03-d58417b2a60d", - "label": "Under 512 ms", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.sync.rules.duration.us.bucket.512000", - "id": "250dd5e0-9bf4-11e9-9f03-d58417b2a60d", - "type": "avg" - }, - { - "field": "250dd5e0-9bf4-11e9-9f03-d58417b2a60d", - "id": "250dd5e1-9bf4-11e9-9f03-d58417b2a60d", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(174,161,255,1)", - "fill": "0.3", - "formatter": "number", - "hidden": false, - "id": "744141b0-9bf4-11e9-9f03-d58417b2a60d", - "label": "Under 1024 ms", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.sync.rules.duration.us.bucket.1024000", - "id": "744141b1-9bf4-11e9-9f03-d58417b2a60d", - "type": "avg" - }, - { - "field": "744141b1-9bf4-11e9-9f03-d58417b2a60d", - "id": "744141b2-9bf4-11e9-9f03-d58417b2a60d", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": "0.2", - "formatter": "number", - "hidden": false, - "id": "e4454060-9bf4-11e9-9f03-d58417b2a60d", - "label": "Under 4096 ms", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.sync.rules.duration.us.bucket.4096000", - "id": "e4454061-9bf4-11e9-9f03-d58417b2a60d", - "type": "avg" - }, - { - "field": "e4454061-9bf4-11e9-9f03-d58417b2a60d", - "id": "e4456770-9bf4-11e9-9f03-d58417b2a60d", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": "0.1", - "formatter": "number", - "hidden": false, - "id": "1ac14f80-9bf5-11e9-9f03-d58417b2a60d", - "label": "Under 8192 ms", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.sync.rules.duration.us.bucket.8192000", - "id": "1ac17690-9bf5-11e9-9f03-d58417b2a60d", - "type": "avg" - }, - { - "field": "1ac17690-9bf5-11e9-9f03-d58417b2a60d", - "id": "1ac17691-9bf5-11e9-9f03-d58417b2a60d", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(209,119,103,1)", - "fill": "0", - "formatter": "number", - "hidden": false, - "id": "3cbf17c0-9bf5-11e9-9f03-d58417b2a60d", - "label": "Under 16384 ms", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.sync.rules.duration.us.bucket.16384000", - "id": "3cbf17c1-9bf5-11e9-9f03-d58417b2a60d", - "type": "avg" - }, - { - "field": "3cbf17c1-9bf5-11e9-9f03-d58417b2a60d", - "id": "3cbf17c2-9bf5-11e9-9f03-d58417b2a60d", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "formatter": "number", - "id": "58fb7c80-9bf5-11e9-9f03-d58417b2a60d", - "label": "All", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.proxy.sync.rules.duration.us.bucket.+Inf", - "id": "58fb7c81-9bf5-11e9-9f03-d58417b2a60d", - "type": "avg" - }, - { - "field": "58fb7c81-9bf5-11e9-9f03-d58417b2a60d", - "id": "58fb7c82-9bf5-11e9-9f03-d58417b2a60d", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Proxy sync rules [Metricbeat Kubernetes]", - "type": "metrics" - } - }, - "id": "ba7bf750-9bf5-11e9-9dc8-fd27291d427f", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T11:27:49.230Z", - "version": "WzI1OSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Host selector [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "host.hostname", - "id": "1561982488150", - "indexPatternRefName": "control_0_index_pattern", - "label": "Hostname", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "service.address", - "id": "1561982723711", - "indexPatternRefName": "control_1_index_pattern", - "label": "Service address", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": false, - "useTimeFilter": false - }, - "title": "Host selector [Metricbeat Kubernetes]", - "type": "input_control_vis" - } - }, - "id": "bcb194a0-9bf8-11e9-9dc8-fd27291d427f", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-03T07:20:34.226Z", - "version": "WzEzMywxXQ==" - } - ], - "version": "7.2.0" -} diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-proxy.ndjson b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-proxy.ndjson new file mode 100644 index 00000000000..b76b81a09fc --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-proxy.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Proxy CPU [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"CPU time\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.process.cpu.sec\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"35da60d0-98fe-11e9-b4e1-6dc893538542\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} s\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Proxy CPU [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e0ddd3e0-98fe-11e9-ba57-b7ab4e2d4b58","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:38.365Z","version":"WzQwMjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Proxy memory [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Resident\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.process.memory.resident.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"1ea6cee0-9907-11e9-b4e1-6dc893538542\",\"label\":\"Virtual\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.process.memory.virtual.bytes\",\"id\":\"1ea6cee1-9907-11e9-b4e1-6dc893538542\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Proxy memory [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"cac89fb0-9906-11e9-ba57-b7ab4e2d4b58","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:38.365Z","version":"WzQwMjksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Proxy process [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"30s\",\"markdown\":\"\\n| | |\\n|---|---|\\n|**Days running**|{{ math.started.last.raw }}|\\n|**File descriptors open**|{{ average_of_kubernetes_proxy_process_fds_open_count.fds.last.raw }}|\\n|**Resident Memory**|{{ average_of_kubernetes_proxy_process_memory_resident_bytes.resident_memory.last.formatted }}|\\n|**Virtual Memory**|{{ average_of_kubernetes_proxy_process_memory_virtual_bytes.virtual_memory.last.formatted }}|\\n\\n\",\"markdown_css\":\"#markdown-61ca57f0-469d-11e7-af02-69e470af7417 table,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 tr,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 td,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 th{border:none}\",\"markdown_less\":\"\\ntable, tr, td, th {\\n border: none;\\n}\\n\\n\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.process.started.sec\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"script\":\"\",\"type\":\"max\",\"variables\":[{\"id\":\"1bbc4a20-99ac-11e9-8beb-c3bf9b9dfc43\",\"name\":\"v\"}]},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"1f34f620-99ac-11e9-8beb-c3bf9b9dfc43\",\"script\":\"round( (params._timestamp /1000 - params.started) / 86400, 2)\",\"type\":\"math\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"1f371900-99ac-11e9-8beb-c3bf9b9dfc43\",\"name\":\"started\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"started\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"cc3b1700-99ac-11e9-8beb-c3bf9b9dfc43\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.process.fds.open.count\",\"id\":\"cc3b1701-99ac-11e9-8beb-c3bf9b9dfc43\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"fds\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"da1b1270-99ad-11e9-8beb-c3bf9b9dfc43\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.process.memory.resident.bytes\",\"id\":\"da1b1271-99ad-11e9-8beb-c3bf9b9dfc43\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"resident_memory\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"50f54000-99ae-11e9-8beb-c3bf9b9dfc43\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.process.memory.virtual.bytes\",\"id\":\"50f54001-99ae-11e9-8beb-c3bf9b9dfc43\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"virtual_memory\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"markdown\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Proxy process [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"09b404f0-99af-11e9-ba57-b7ab4e2d4b58","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:38.365Z","version":"WzQwMzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Proxy HTTP request duration [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(165,228,85,1)\",\"fill\":0.5,\"formatter\":\"us,ms,2\",\"id\":\"05a03f20-9bd8-11e9-871d-d3c7d4c337ef\",\"label\":\"P99\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.http.request.duration.us.percentile.99\",\"id\":\"05a06630-9bd8-11e9-871d-d3c7d4c337ef\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"us,ms,2\",\"id\":\"dc0faec0-9bd7-11e9-871d-d3c7d4c337ef\",\"label\":\"P90\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.http.request.duration.us.percentile.90\",\"id\":\"dc0faec1-9bd7-11e9-871d-d3c7d4c337ef\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(65,117,0,1)\",\"fill\":0.5,\"formatter\":\"us,ms,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"P50\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.http.request.duration.us.percentile.50\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Proxy HTTP request duration [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8c6c2690-9bd8-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:38.365Z","version":"WzQwMzEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Proxy network programming [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4fb3cbb0-9be5-11e9-871d-d3c7d4c337ef\"}],\"bar_color_rules\":[{\"id\":\"4b459c20-9be5-11e9-871d-d3c7d4c337ef\"}],\"gauge_color_rules\":[{\"id\":\"4de1cad0-9be5-11e9-871d-d3c7d4c337ef\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(63,112,2,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Under 16ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.networkprogramming.duration.us.bucket.16000\",\"id\":\"4dbb3a90-9be6-11e9-871d-d3c7d4c337ef\",\"type\":\"avg\"},{\"field\":\"4dbb3a90-9be6-11e9-871d-d3c7d4c337ef\",\"id\":\"189688a0-9be7-11e9-871d-d3c7d4c337ef\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(138,223,24,1)\",\"fill\":\"0.4\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"a60dbe60-9be7-11e9-871d-d3c7d4c337ef\",\"label\":\"Under 512ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.networkprogramming.duration.us.bucket.512000\",\"id\":\"a60dbe61-9be7-11e9-871d-d3c7d4c337ef\",\"type\":\"avg\"},{\"field\":\"a60dbe61-9be7-11e9-871d-d3c7d4c337ef\",\"id\":\"b55a1080-9be7-11e9-871d-d3c7d4c337ef\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(174,161,255,1)\",\"fill\":\"0.4\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"c5cc4f90-9be8-11e9-871d-d3c7d4c337ef\",\"label\":\"Under 1024 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.networkprogramming.duration.us.bucket.1024000\",\"id\":\"c5cc4f91-9be8-11e9-871d-d3c7d4c337ef\",\"type\":\"avg\"},{\"field\":\"c5cc4f91-9be8-11e9-871d-d3c7d4c337ef\",\"id\":\"f17cb2b0-9be8-11e9-871d-d3c7d4c337ef\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"e0901380-9be7-11e9-871d-d3c7d4c337ef\",\"label\":\"Under 4096 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.networkprogramming.duration.us.bucket.4096000\",\"id\":\"e0901381-9be7-11e9-871d-d3c7d4c337ef\",\"type\":\"avg\"},{\"field\":\"e0901381-9be7-11e9-871d-d3c7d4c337ef\",\"id\":\"f2b6fce0-9be7-11e9-871d-d3c7d4c337ef\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"882fa5a0-9be9-11e9-871d-d3c7d4c337ef\",\"label\":\"Under 8192 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.networkprogramming.duration.us.bucket.8192000\",\"id\":\"882fccb0-9be9-11e9-871d-d3c7d4c337ef\",\"type\":\"avg\"},{\"field\":\"882fccb0-9be9-11e9-871d-d3c7d4c337ef\",\"id\":\"9adb9d80-9be9-11e9-871d-d3c7d4c337ef\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(209,119,103,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"86549550-9bef-11e9-871d-d3c7d4c337ef\",\"label\":\"Under 16384 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.networkprogramming.duration.us.bucket.16384000\",\"id\":\"86549551-9bef-11e9-871d-d3c7d4c337ef\",\"type\":\"avg\"},{\"field\":\"86549551-9bef-11e9-871d-d3c7d4c337ef\",\"id\":\"86549552-9bef-11e9-871d-d3c7d4c337ef\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c66bf580-9be9-11e9-871d-d3c7d4c337ef\",\"label\":\"All\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.networkprogramming.duration.us.bucket.+Inf\",\"id\":\"c66bf581-9be9-11e9-871d-d3c7d4c337ef\",\"type\":\"avg\"},{\"field\":\"c66bf581-9be9-11e9-871d-d3c7d4c337ef\",\"id\":\"d48b3950-9be9-11e9-871d-d3c7d4c337ef\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Proxy network programming [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b8a24790-9bf0-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:38.365Z","version":"WzQwMzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Proxy sync rules [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(63,112,2,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Under 16 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.rules.duration.us.bucket.16000\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"038a94d0-9bf4-11e9-9f03-d58417b2a60d\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(138,223,24,1)\",\"fill\":\"0.4\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"250daed0-9bf4-11e9-9f03-d58417b2a60d\",\"label\":\"Under 512 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.rules.duration.us.bucket.512000\",\"id\":\"250dd5e0-9bf4-11e9-9f03-d58417b2a60d\",\"type\":\"avg\"},{\"field\":\"250dd5e0-9bf4-11e9-9f03-d58417b2a60d\",\"id\":\"250dd5e1-9bf4-11e9-9f03-d58417b2a60d\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(174,161,255,1)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"744141b0-9bf4-11e9-9f03-d58417b2a60d\",\"label\":\"Under 1024 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.rules.duration.us.bucket.1024000\",\"id\":\"744141b1-9bf4-11e9-9f03-d58417b2a60d\",\"type\":\"avg\"},{\"field\":\"744141b1-9bf4-11e9-9f03-d58417b2a60d\",\"id\":\"744141b2-9bf4-11e9-9f03-d58417b2a60d\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"e4454060-9bf4-11e9-9f03-d58417b2a60d\",\"label\":\"Under 4096 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.rules.duration.us.bucket.4096000\",\"id\":\"e4454061-9bf4-11e9-9f03-d58417b2a60d\",\"type\":\"avg\"},{\"field\":\"e4454061-9bf4-11e9-9f03-d58417b2a60d\",\"id\":\"e4456770-9bf4-11e9-9f03-d58417b2a60d\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0.1\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"1ac14f80-9bf5-11e9-9f03-d58417b2a60d\",\"label\":\"Under 8192 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.rules.duration.us.bucket.8192000\",\"id\":\"1ac17690-9bf5-11e9-9f03-d58417b2a60d\",\"type\":\"avg\"},{\"field\":\"1ac17690-9bf5-11e9-9f03-d58417b2a60d\",\"id\":\"1ac17691-9bf5-11e9-9f03-d58417b2a60d\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(209,119,103,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"3cbf17c0-9bf5-11e9-9f03-d58417b2a60d\",\"label\":\"Under 16384 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.rules.duration.us.bucket.16384000\",\"id\":\"3cbf17c1-9bf5-11e9-9f03-d58417b2a60d\",\"type\":\"avg\"},{\"field\":\"3cbf17c1-9bf5-11e9-9f03-d58417b2a60d\",\"id\":\"3cbf17c2-9bf5-11e9-9f03-d58417b2a60d\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"58fb7c80-9bf5-11e9-9f03-d58417b2a60d\",\"label\":\"All\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.rules.duration.us.bucket.+Inf\",\"id\":\"58fb7c81-9bf5-11e9-9f03-d58417b2a60d\",\"type\":\"avg\"},{\"field\":\"58fb7c81-9bf5-11e9-9f03-d58417b2a60d\",\"id\":\"58fb7c82-9bf5-11e9-9f03-d58417b2a60d\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Proxy sync rules [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ba7bf750-9bf5-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:38.365Z","version":"WzQwMzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Host selector [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"host.hostname\",\"id\":\"1561982488150\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Hostname\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"service.address\",\"id\":\"1561982723711\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Service address\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Host selector [Metricbeat Kubernetes]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"bcb194a0-9bf8-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwMzYsMV0="} +{"attributes":{"description":"Kubernetes Proxy metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"kubernetes.proxy\"},\"type\":\"phrase\",\"value\":\"kubernetes.proxy\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"kubernetes.proxy\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"1\",\"w\":23,\"x\":0,\"y\":12},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"2\",\"w\":25,\"x\":23,\"y\":12},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"3\",\"w\":9,\"x\":12,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"4\",\"w\":27,\"x\":21,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":24},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":37},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"7\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Metricbeat Kubernetes] Proxy","version":1},"coreMigrationVersion":"8.0.0","id":"5e649d60-9901-11e9-ba57-b7ab4e2d4b58","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"e0ddd3e0-98fe-11e9-ba57-b7ab4e2d4b58","name":"1:panel_1","type":"visualization"},{"id":"cac89fb0-9906-11e9-ba57-b7ab4e2d4b58","name":"2:panel_2","type":"visualization"},{"id":"09b404f0-99af-11e9-ba57-b7ab4e2d4b58","name":"3:panel_3","type":"visualization"},{"id":"8c6c2690-9bd8-11e9-9dc8-fd27291d427f","name":"4:panel_4","type":"visualization"},{"id":"b8a24790-9bf0-11e9-9dc8-fd27291d427f","name":"5:panel_5","type":"visualization"},{"id":"ba7bf750-9bf5-11e9-9dc8-fd27291d427f","name":"6:panel_6","type":"visualization"},{"id":"bcb194a0-9bf8-11e9-9dc8-fd27291d427f","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:38.365Z","version":"WzQwMjcsMV0="} diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-scheduler.json b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-scheduler.json deleted file mode 100644 index 7420aced930..00000000000 --- a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-scheduler.json +++ /dev/null @@ -1,1016 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Kubernetes Scheduler metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "kubernetes.scheduler" - }, - "type": "phrase", - "value": "kubernetes.scheduler" - }, - "query": { - "match": { - "event.dataset": { - "query": "kubernetes.scheduler", - "type": "phrase" - } - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "1", - "w": 14, - "x": 0, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.2.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "2", - "w": 11, - "x": 14, - "y": 0 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "version": "7.2.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "3", - "w": 23, - "x": 25, - "y": 0 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "version": "7.2.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "4", - "w": 24, - "x": 0, - "y": 29 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "version": "7.2.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "5", - "w": 24, - "x": 24, - "y": 29 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "version": "7.2.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "6", - "w": 24, - "x": 0, - "y": 14 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "version": "7.2.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "7", - "w": 24, - "x": 24, - "y": 14 - }, - "panelIndex": "7", - "panelRefName": "panel_6", - "version": "7.2.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Kubernetes] Scheduler", - "version": 1 - }, - "id": "f5ab5510-9c94-11e9-94fd-c91206cd5249", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "bcb194a0-9bf8-11e9-9dc8-fd27291d427f", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "826d80c0-9c97-11e9-94fd-c91206cd5249", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "15bd4420-9c9b-11e9-94fd-c91206cd5249", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "d9fc1b80-9c9c-11e9-94fd-c91206cd5249", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "95595810-9ca8-11e9-94fd-c91206cd5249", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "382ace30-9d98-11e9-b2ae-49acc4cbcea9", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "84d9b200-9d98-11e9-b2ae-49acc4cbcea9", - "name": "panel_6", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-07-03T14:42:40.028Z", - "version": "WzI4OSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Host selector [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "host.hostname", - "id": "1561982488150", - "indexPatternRefName": "control_0_index_pattern", - "label": "Hostname", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "service.address", - "id": "1561982723711", - "indexPatternRefName": "control_1_index_pattern", - "label": "Service address", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": false, - "useTimeFilter": false - }, - "title": "Host selector [Metricbeat Kubernetes]", - "type": "input_control_vis" - } - }, - "id": "bcb194a0-9bf8-11e9-9dc8-fd27291d427f", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-03T07:20:34.226Z", - "version": "WzEzMywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Process summary [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": "_exists_:\"kubernetes.scheduler.process.started.sec\"", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "30s", - "markdown": "| | |\n|---|---|\n|**Days running**|{{ math.started.last.raw }}|\n|**File descriptors open**|{{ max_of_kubernetes_scheduler_process_fds_open_count.fds.last.raw }}|\n|**Resident Memory**|{{ max_of_kubernetes_scheduler_process_memory_resident_bytes.resident_memory.last.formatted }}|\n|**Virtual Memory**|{{ max_of_kubernetes_scheduler_process_memory_virtual_bytes.virtual_memory.last.formatted }}|\n", - "markdown_css": "#markdown-61ca57f0-469d-11e7-af02-69e470af7417 table,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 tr,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 td,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 th{border:none}", - "markdown_less": "\ntable, tr, td, th {\n border: none;\n}\n\n", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.scheduler.process.started.sec", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "id": "94b52370-9c95-11e9-87bc-455cc45f013a", - "script": "round( (params._timestamp /1000 - params.started) / 86400, 2)", - "type": "math", - "variables": [ - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "97cc0060-9c95-11e9-87bc-455cc45f013a", - "name": "started" - } - ] - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "var_name": "started" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "a8475ca0-9c95-11e9-87bc-455cc45f013a", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.scheduler.process.fds.open.count", - "id": "a8475ca1-9c95-11e9-87bc-455cc45f013a", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "var_name": "fds" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "cdc6d190-9c95-11e9-87bc-455cc45f013a", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.scheduler.process.memory.resident.bytes", - "id": "cdc6d191-9c95-11e9-87bc-455cc45f013a", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "var_name": "resident_memory" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "dfa0fa80-9c95-11e9-87bc-455cc45f013a", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.scheduler.process.memory.virtual.bytes", - "id": "dfa0fa81-9c95-11e9-87bc-455cc45f013a", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "var_name": "virtual_memory" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "markdown" - }, - "title": "Process summary [Metricbeat Kubernetes]", - "type": "metrics" - } - }, - "id": "826d80c0-9c97-11e9-94fd-c91206cd5249", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T14:45:05.521Z", - "version": "WzI5MCwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Scheduler HTTP request duration [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(165,228,85,1)", - "fill": 0.5, - "formatter": "us,ms,2", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "P99", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.scheduler.http.request.duration.us.percentile.99", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "us,ms,2", - "id": "708a5a50-9c9b-11e9-b248-53caaa33a2c5", - "label": "P90", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.scheduler.http.request.duration.us.percentile.90", - "id": "708a8160-9c9b-11e9-b248-53caaa33a2c5", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(65,117,0,1)", - "fill": 0.5, - "formatter": "us,ms,2", - "id": "9ba449d0-9c9b-11e9-b248-53caaa33a2c5", - "label": "P50", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.scheduler.http.request.duration.us.percentile.50", - "id": "9ba449d1-9c9b-11e9-b248-53caaa33a2c5", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Scheduler HTTP request duration [Metricbeat Kubernetes]", - "type": "metrics" - } - }, - "id": "15bd4420-9c9b-11e9-94fd-c91206cd5249", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T07:20:34.226Z", - "version": "WzEzNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Scheduler end to end scheduling duration [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(63,112,2,1)", - "fill": 0.5, - "formatter": "number", - "hidden": false, - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Under 16ms", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.scheduler.scheduling.e2e.duration.us.bucket.16000", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "2a21d690-9c9d-11e9-8174-4589c2c40897", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(138,223,24,1)", - "fill": "0.4", - "formatter": "number", - "hidden": false, - "id": "a0344a80-9ca1-11e9-9b2f-4dae0cc2bdf1", - "label": "Under 512ms", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.scheduler.scheduling.e2e.duration.us.bucket.512000", - "id": "a0347190-9ca1-11e9-9b2f-4dae0cc2bdf1", - "type": "avg" - }, - { - "field": "a0347190-9ca1-11e9-9b2f-4dae0cc2bdf1", - "id": "9a865d10-9ca3-11e9-9b2f-4dae0cc2bdf1", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(174,161,255,1)", - "fill": "0.3", - "formatter": "number", - "hidden": false, - "id": "c456c780-9ca1-11e9-9b2f-4dae0cc2bdf1", - "label": "Under 1024ms", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.scheduler.scheduling.e2e.duration.us.bucket.1024000", - "id": "c456c781-9ca1-11e9-9b2f-4dae0cc2bdf1", - "type": "avg" - }, - { - "field": "c456c781-9ca1-11e9-9b2f-4dae0cc2bdf1", - "id": "a77cd850-9ca3-11e9-9b2f-4dae0cc2bdf1", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": "0.2", - "formatter": "number", - "hidden": false, - "id": "127a9810-9ca2-11e9-9b2f-4dae0cc2bdf1", - "label": "Under 4096ms", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.scheduler.scheduling.e2e.duration.us.bucket.4096000", - "id": "127a9811-9ca2-11e9-9b2f-4dae0cc2bdf1", - "type": "avg" - }, - { - "field": "127a9811-9ca2-11e9-9b2f-4dae0cc2bdf1", - "id": "b48a0fe0-9ca3-11e9-9b2f-4dae0cc2bdf1", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": "0.1", - "formatter": "number", - "hidden": false, - "id": "6a2ba130-9ca2-11e9-9b2f-4dae0cc2bdf1", - "label": "Under 8192ms", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.scheduler.scheduling.e2e.duration.us.bucket.8192000", - "id": "6a2ba131-9ca2-11e9-9b2f-4dae0cc2bdf1", - "type": "avg" - }, - { - "field": "6a2ba131-9ca2-11e9-9b2f-4dae0cc2bdf1", - "id": "c727fe00-9ca3-11e9-9b2f-4dae0cc2bdf1", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(209,119,103,1)", - "fill": "0", - "formatter": "number", - "hidden": false, - "id": "f93a66e0-9ca2-11e9-9b2f-4dae0cc2bdf1", - "label": "Under 16384ms", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.scheduler.scheduling.e2e.duration.us.bucket.16384000", - "id": "f93a66e1-9ca2-11e9-9b2f-4dae0cc2bdf1", - "type": "avg" - }, - { - "field": "f93a66e1-9ca2-11e9-9b2f-4dae0cc2bdf1", - "id": "ce42d700-9ca3-11e9-9b2f-4dae0cc2bdf1", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "formatter": "number", - "hidden": false, - "id": "310452c0-9ca3-11e9-9b2f-4dae0cc2bdf1", - "label": "All", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.scheduler.scheduling.e2e.duration.us.bucket.+Inf", - "id": "310452c1-9ca3-11e9-9b2f-4dae0cc2bdf1", - "type": "avg" - }, - { - "field": "310452c1-9ca3-11e9-9b2f-4dae0cc2bdf1", - "id": "e0692420-9ca3-11e9-9b2f-4dae0cc2bdf1", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Scheduler end to end scheduling duration [Metricbeat Kubernetes]", - "type": "metrics" - } - }, - "id": "d9fc1b80-9c9c-11e9-94fd-c91206cd5249", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T07:20:34.226Z", - "version": "WzEzNiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Scheduler scheduling attempts [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Attempts", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.scheduler.scheduling.pod.attempts.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "18aae5d0-9ca9-11e9-b8ef-3ddf5d748ddb", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "kubernetes.scheduler.result", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Scheduler scheduling attempts [Metricbeat Kubernetes]", - "type": "metrics" - } - }, - "id": "95595810-9ca8-11e9-94fd-c91206cd5249", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T07:20:34.226Z", - "version": "WzEzNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Scheduler CPU [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "CPU time", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.scheduler.process.cpu.sec", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "11331120-9d98-11e9-9e81-115d18bcfeaa", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}} s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Scheduler CPU [Metricbeat Kubernetes]", - "type": "metrics" - } - }, - "id": "382ace30-9d98-11e9-b2ae-49acc4cbcea9", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T14:10:38.608Z", - "version": "WzI3NywyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Scheduler Memory [Metricbeat Kubernetes]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(251,158,0,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Resident", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.scheduler.process.memory.resident.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "a14defa0-9d98-11e9-9e81-115d18bcfeaa", - "label": "Virtual", - "line_width": 1, - "metrics": [ - { - "field": "kubernetes.scheduler.process.memory.virtual.bytes", - "id": "a14defa1-9d98-11e9-9e81-115d18bcfeaa", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Scheduler Memory [Metricset Kubernetes]", - "type": "metrics" - } - }, - "id": "84d9b200-9d98-11e9-b2ae-49acc4cbcea9", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-03T13:45:33.315Z", - "version": "WzI3MiwyXQ==" - } - ], - "version": "7.2.0" -} diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-scheduler.ndjson b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-scheduler.ndjson new file mode 100644 index 00000000000..f4e931562cd --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-scheduler.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Host selector [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"host.hostname\",\"id\":\"1561982488150\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Hostname\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"service.address\",\"id\":\"1561982723711\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Service address\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Host selector [Metricbeat Kubernetes]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"bcb194a0-9bf8-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwMzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Process summary [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":1,\"filter\":{\"query\":\"_exists_:\\\"kubernetes.scheduler.process.started.sec\\\"\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"30s\",\"markdown\":\"| | |\\n|---|---|\\n|**Days running**|{{ math.started.last.raw }}|\\n|**File descriptors open**|{{ max_of_kubernetes_scheduler_process_fds_open_count.fds.last.raw }}|\\n|**Resident Memory**|{{ max_of_kubernetes_scheduler_process_memory_resident_bytes.resident_memory.last.formatted }}|\\n|**Virtual Memory**|{{ max_of_kubernetes_scheduler_process_memory_virtual_bytes.virtual_memory.last.formatted }}|\\n\",\"markdown_css\":\"#markdown-61ca57f0-469d-11e7-af02-69e470af7417 table,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 tr,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 td,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 th{border:none}\",\"markdown_less\":\"\\ntable, tr, td, th {\\n border: none;\\n}\\n\\n\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.process.started.sec\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"id\":\"94b52370-9c95-11e9-87bc-455cc45f013a\",\"script\":\"round( (params._timestamp /1000 - params.started) / 86400, 2)\",\"type\":\"math\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"97cc0060-9c95-11e9-87bc-455cc45f013a\",\"name\":\"started\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"started\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a8475ca0-9c95-11e9-87bc-455cc45f013a\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.process.fds.open.count\",\"id\":\"a8475ca1-9c95-11e9-87bc-455cc45f013a\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"fds\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"cdc6d190-9c95-11e9-87bc-455cc45f013a\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.process.memory.resident.bytes\",\"id\":\"cdc6d191-9c95-11e9-87bc-455cc45f013a\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"resident_memory\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"dfa0fa80-9c95-11e9-87bc-455cc45f013a\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.process.memory.virtual.bytes\",\"id\":\"dfa0fa81-9c95-11e9-87bc-455cc45f013a\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"virtual_memory\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"markdown\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Process summary [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"826d80c0-9c97-11e9-94fd-c91206cd5249","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwMzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Scheduler HTTP request duration [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(165,228,85,1)\",\"fill\":0.5,\"formatter\":\"us,ms,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"P99\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.http.request.duration.us.percentile.99\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"us,ms,2\",\"id\":\"708a5a50-9c9b-11e9-b248-53caaa33a2c5\",\"label\":\"P90\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.http.request.duration.us.percentile.90\",\"id\":\"708a8160-9c9b-11e9-b248-53caaa33a2c5\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(65,117,0,1)\",\"fill\":0.5,\"formatter\":\"us,ms,2\",\"id\":\"9ba449d0-9c9b-11e9-b248-53caaa33a2c5\",\"label\":\"P50\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.http.request.duration.us.percentile.50\",\"id\":\"9ba449d1-9c9b-11e9-b248-53caaa33a2c5\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Scheduler HTTP request duration [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"15bd4420-9c9b-11e9-94fd-c91206cd5249","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwMzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Scheduler end to end scheduling duration [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(63,112,2,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Under 16ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.scheduling.e2e.duration.us.bucket.16000\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"2a21d690-9c9d-11e9-8174-4589c2c40897\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(138,223,24,1)\",\"fill\":\"0.4\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"a0344a80-9ca1-11e9-9b2f-4dae0cc2bdf1\",\"label\":\"Under 512ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.scheduling.e2e.duration.us.bucket.512000\",\"id\":\"a0347190-9ca1-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"avg\"},{\"field\":\"a0347190-9ca1-11e9-9b2f-4dae0cc2bdf1\",\"id\":\"9a865d10-9ca3-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(174,161,255,1)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"c456c780-9ca1-11e9-9b2f-4dae0cc2bdf1\",\"label\":\"Under 1024ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.scheduling.e2e.duration.us.bucket.1024000\",\"id\":\"c456c781-9ca1-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"avg\"},{\"field\":\"c456c781-9ca1-11e9-9b2f-4dae0cc2bdf1\",\"id\":\"a77cd850-9ca3-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"127a9810-9ca2-11e9-9b2f-4dae0cc2bdf1\",\"label\":\"Under 4096ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.scheduling.e2e.duration.us.bucket.4096000\",\"id\":\"127a9811-9ca2-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"avg\"},{\"field\":\"127a9811-9ca2-11e9-9b2f-4dae0cc2bdf1\",\"id\":\"b48a0fe0-9ca3-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0.1\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"6a2ba130-9ca2-11e9-9b2f-4dae0cc2bdf1\",\"label\":\"Under 8192ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.scheduling.e2e.duration.us.bucket.8192000\",\"id\":\"6a2ba131-9ca2-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"avg\"},{\"field\":\"6a2ba131-9ca2-11e9-9b2f-4dae0cc2bdf1\",\"id\":\"c727fe00-9ca3-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(209,119,103,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"f93a66e0-9ca2-11e9-9b2f-4dae0cc2bdf1\",\"label\":\"Under 16384ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.scheduling.e2e.duration.us.bucket.16384000\",\"id\":\"f93a66e1-9ca2-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"avg\"},{\"field\":\"f93a66e1-9ca2-11e9-9b2f-4dae0cc2bdf1\",\"id\":\"ce42d700-9ca3-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"310452c0-9ca3-11e9-9b2f-4dae0cc2bdf1\",\"label\":\"All\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.scheduling.e2e.duration.us.bucket.+Inf\",\"id\":\"310452c1-9ca3-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"avg\"},{\"field\":\"310452c1-9ca3-11e9-9b2f-4dae0cc2bdf1\",\"id\":\"e0692420-9ca3-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Scheduler end to end scheduling duration [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d9fc1b80-9c9c-11e9-94fd-c91206cd5249","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwMzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Scheduler scheduling attempts [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Attempts\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.scheduling.pod.attempts.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"18aae5d0-9ca9-11e9-b8ef-3ddf5d748ddb\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.scheduler.result\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Scheduler scheduling attempts [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"95595810-9ca8-11e9-94fd-c91206cd5249","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwNDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Scheduler CPU [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"CPU time\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.process.cpu.sec\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"11331120-9d98-11e9-9e81-115d18bcfeaa\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} s\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Scheduler CPU [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"382ace30-9d98-11e9-b2ae-49acc4cbcea9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwNDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Scheduler Memory [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Resident\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.process.memory.resident.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"a14defa0-9d98-11e9-9e81-115d18bcfeaa\",\"label\":\"Virtual\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.process.memory.virtual.bytes\",\"id\":\"a14defa1-9d98-11e9-9e81-115d18bcfeaa\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Scheduler Memory [Metricset Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"84d9b200-9d98-11e9-b2ae-49acc4cbcea9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwNDIsMV0="} +{"attributes":{"description":"Kubernetes Scheduler metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"kubernetes.scheduler\"},\"type\":\"phrase\",\"value\":\"kubernetes.scheduler\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"kubernetes.scheduler\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"1\",\"w\":14,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"2\",\"w\":11,\"x\":14,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"3\",\"w\":23,\"x\":25,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"4\",\"w\":24,\"x\":0,\"y\":29},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":29},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":14},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":14},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Metricbeat Kubernetes] Scheduler","version":1},"coreMigrationVersion":"8.0.0","id":"f5ab5510-9c94-11e9-94fd-c91206cd5249","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"bcb194a0-9bf8-11e9-9dc8-fd27291d427f","name":"1:panel_1","type":"visualization"},{"id":"826d80c0-9c97-11e9-94fd-c91206cd5249","name":"2:panel_2","type":"visualization"},{"id":"15bd4420-9c9b-11e9-94fd-c91206cd5249","name":"3:panel_3","type":"visualization"},{"id":"d9fc1b80-9c9c-11e9-94fd-c91206cd5249","name":"4:panel_4","type":"visualization"},{"id":"95595810-9ca8-11e9-94fd-c91206cd5249","name":"5:panel_5","type":"visualization"},{"id":"382ace30-9d98-11e9-b2ae-49acc4cbcea9","name":"6:panel_6","type":"visualization"},{"id":"84d9b200-9d98-11e9-b2ae-49acc4cbcea9","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwMzUsMV0="} diff --git a/metricbeat/module/kubernetes/module.yml b/metricbeat/module/kubernetes/module.yml index 5c79a2dc241..fa1025c8132 100644 --- a/metricbeat/module/kubernetes/module.yml +++ b/metricbeat/module/kubernetes/module.yml @@ -1,3 +1,3 @@ dashboards: - id: AV4RGUqo5NkDleZmzKuZ - file: Metricbeat-kubernetes-overview.json + file: Metricbeat-kubernetes-overview.ndjson diff --git a/metricbeat/module/mongodb/_meta/kibana/7/dashboard/Metricbeat-mongodb-overview.json b/metricbeat/module/mongodb/_meta/kibana/7/dashboard/Metricbeat-mongodb-overview.json deleted file mode 100644 index 1fdd15196bf..00000000000 --- a/metricbeat/module/mongodb/_meta/kibana/7/dashboard/Metricbeat-mongodb-overview.json +++ /dev/null @@ -1,1232 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "MongoDB-search-ecs", - "title": "Hosts [Metricbeat MongoDB] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Number of connections", - "field": "mongodb.status.connections.current" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "service.address", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Arch", - "field": "mongodb.status.memory.bits" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Resident memory", - "field": "mongodb.status.memory.resident.mb" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Virtual memory", - "field": "mongodb.status.memory.virtual.mb" - }, - "schema": "metric", - "type": "avg" - } - ], - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Hosts [Metricbeat MongoDB] ECS", - "type": "table" - } - }, - "id": "MongoDB-hosts-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "MongoDB-search-ecs", - "title": "Engine & Version [Metricbeat MongoDB] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "service.address" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Engine", - "field": "mongodb.status.storage_engine.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Version", - "field": "service.version", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "bottom", - "shareYAxis": true, - "type": "pie" - }, - "title": "Engine & Version [Metricbeat MongoDB] ECS", - "type": "pie" - } - }, - "id": "MongoDB-Engine-ampersand-Version-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "MongoDB-search-ecs", - "title": "Operation counters [Metricbeat MongoDB] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "command", - "field": "mongodb.status.ops.counters.command" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "delete", - "field": "mongodb.status.ops.counters.delete" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "getmore", - "field": "mongodb.status.ops.counters.getmore" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "insert", - "field": "mongodb.status.ops.counters.insert" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "query", - "field": "mongodb.status.ops.counters.query" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "7", - "params": { - "customLabel": "update", - "field": "mongodb.status.ops.replicated.update" - }, - "schema": "metric", - "type": "avg" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "bottom", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": false, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Operation counters [Metricbeat MongoDB] ECS", - "type": "area" - } - }, - "id": "MongoDB-operation-counters-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "MongoDB-search-ecs", - "title": "Concurrent transactions Read [Metricbeat MongoDB] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "Read Available": "#508642", - "Read Used": "#BF1B00" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Read Available", - "field": "mongodb.status.wired_tiger.concurrent_transactions.read.available" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Read Used", - "field": "mongodb.status.wired_tiger.concurrent_transactions.read.out" - }, - "schema": "metric", - "type": "avg" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "bottom", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": false, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Concurrent transactions Read [Metricbeat MongoDB] ECS", - "type": "area" - } - }, - "id": "MongoDB-Concurrent-transactions-Read-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "MongoDB-search-ecs", - "title": "Concurrent transactions Write [Metricbeat MongoDB] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "Write Available": "#629E51", - "Write Used": "#BF1B00" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Write Available", - "field": "mongodb.status.wired_tiger.concurrent_transactions.write.available" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Write Used", - "field": "mongodb.status.wired_tiger.concurrent_transactions.write.out" - }, - "schema": "metric", - "type": "avg" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "bottom", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": false, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Concurrent transactions Write [Metricbeat MongoDB] ECS", - "type": "area" - } - }, - "id": "MongoDB-Concurrent-transactions-Write-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "MongoDB-search-ecs", - "title": "Memory stats [Metricbeat MongoDB] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Mapped", - "field": "mongodb.status.memory.mapped.mb" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Mapped with journal", - "field": "mongodb.status.memory.mapped_with_journal.mb" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Rezident", - "field": "mongodb.status.memory.resident.mb" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Virtual", - "field": "mongodb.status.memory.virtual.mb" - }, - "schema": "metric", - "type": "avg" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "bottom", - "radiusRatio": 9, - "scale": "log", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "showCircles": true, - "smoothLines": false, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Memory stats [Metricbeat MongoDB] ECS", - "type": "line" - } - }, - "id": "MongoDB-memory-stats-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "MongoDB-search-ecs", - "title": "Asserts [Metricbeat MongoDB] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "message", - "field": "mongodb.status.asserts.msg" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "regular", - "field": "mongodb.status.asserts.regular" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "rollover", - "field": "mongodb.status.asserts.rollovers" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "user", - "field": "mongodb.status.asserts.user" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "warning", - "field": "mongodb.status.asserts.warning" - }, - "schema": "metric", - "type": "max" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "bottom", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": false, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Asserts [Metricbeat MongoDB] ECS", - "type": "area" - } - }, - "id": "MongoDB-asserts-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "MongoDB-search-ecs", - "title": "WiredTiger Cache [Metricbeat MongoDB] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "max", - "field": "mongodb.status.wired_tiger.cache.maximum.bytes" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "used", - "field": "mongodb.status.wired_tiger.cache.used.bytes" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "dirty", - "field": "mongodb.status.wired_tiger.cache.dirty.bytes" - }, - "schema": "metric", - "type": "avg" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "bottom", - "mode": "overlap", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": false, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "WiredTiger Cache [Metricbeat MongoDB] ECS", - "type": "area" - } - }, - "id": "MongoDB-WiredTiger-Cache-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "event.module:mongodb" - } - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "MongoDB search ECS", - "version": 1 - }, - "id": "MongoDB-search-ecs", - "type": "search", - "version": 1 - }, - { - "attributes": { - "description": "Overview of MongoDB server status", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "MongoDB-hosts-ecs", - "panelIndex": 1, - "row": 1, - "size_x": 8, - "size_y": 3, - "type": "visualization" - }, - { - "col": 9, - "id": "MongoDB-Engine-ampersand-Version-ecs", - "panelIndex": 4, - "row": 1, - "size_x": 4, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "MongoDB-operation-counters-ecs", - "panelIndex": 2, - "row": 4, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 7, - "id": "MongoDB-Concurrent-transactions-Read-ecs", - "panelIndex": 6, - "row": 4, - "size_x": 3, - "size_y": 3, - "type": "visualization" - }, - { - "col": 10, - "id": "MongoDB-Concurrent-transactions-Write-ecs", - "panelIndex": 7, - "row": 4, - "size_x": 3, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "MongoDB-memory-stats-ecs", - "panelIndex": 5, - "row": 10, - "size_x": 12, - "size_y": 4, - "type": "visualization" - }, - { - "col": 7, - "id": "MongoDB-asserts-ecs", - "panelIndex": 3, - "row": 7, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "MongoDB-WiredTiger-Cache-ecs", - "panelIndex": 8, - "row": 7, - "size_x": 6, - "size_y": 3, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Metricbeat MongoDB] Overview ECS", - "uiStateJSON": { - "P-1": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - } - }, - "version": 1 - }, - "id": "Metricbeat-MongoDB-ecs", - "type": "dashboard", - "version": 3 - } - ], - "version": "6.0.0-beta1-SNAPSHOT" -} diff --git a/metricbeat/module/mongodb/_meta/kibana/7/dashboard/Metricbeat-mongodb-overview.ndjson b/metricbeat/module/mongodb/_meta/kibana/7/dashboard/Metricbeat-mongodb-overview.ndjson new file mode 100644 index 00000000000..76da08fdd56 --- /dev/null +++ b/metricbeat/module/mongodb/_meta/kibana/7/dashboard/Metricbeat-mongodb-overview.ndjson @@ -0,0 +1,10 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.module:mongodb\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"MongoDB search ECS","version":1},"coreMigrationVersion":"8.0.0","id":"MongoDB-search-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Hosts [Metricbeat MongoDB] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Number of connections\",\"field\":\"mongodb.status.connections.current\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"service.address\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Arch\",\"field\":\"mongodb.status.memory.bits\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Resident memory\",\"field\":\"mongodb.status.memory.resident.mb\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Virtual memory\",\"field\":\"mongodb.status.memory.virtual.mb\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Hosts [Metricbeat MongoDB] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-hosts-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Operation counters [Metricbeat MongoDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"command\",\"field\":\"mongodb.status.ops.counters.command\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"delete\",\"field\":\"mongodb.status.ops.counters.delete\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"getmore\",\"field\":\"mongodb.status.ops.counters.getmore\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"insert\",\"field\":\"mongodb.status.ops.counters.insert\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"query\",\"field\":\"mongodb.status.ops.counters.query\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"update\",\"field\":\"mongodb.status.ops.replicated.update\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"bottom\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Operation counters [Metricbeat MongoDB] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-operation-counters-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Asserts [Metricbeat MongoDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"message\",\"field\":\"mongodb.status.asserts.msg\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"regular\",\"field\":\"mongodb.status.asserts.regular\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"rollover\",\"field\":\"mongodb.status.asserts.rollovers\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"user\",\"field\":\"mongodb.status.asserts.user\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"warning\",\"field\":\"mongodb.status.asserts.warning\"},\"schema\":\"metric\",\"type\":\"max\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"bottom\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Asserts [Metricbeat MongoDB] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-asserts-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Engine & Version [Metricbeat MongoDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"service.address\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Engine\",\"field\":\"mongodb.status.storage_engine.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Version\",\"field\":\"service.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Engine & Version [Metricbeat MongoDB] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-Engine-ampersand-Version-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Memory stats [Metricbeat MongoDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Mapped\",\"field\":\"mongodb.status.memory.mapped.mb\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Mapped with journal\",\"field\":\"mongodb.status.memory.mapped_with_journal.mb\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Rezident\",\"field\":\"mongodb.status.memory.resident.mb\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Virtual\",\"field\":\"mongodb.status.memory.virtual.mb\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"bottom\",\"radiusRatio\":9,\"scale\":\"log\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Memory stats [Metricbeat MongoDB] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-memory-stats-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Concurrent transactions Read [Metricbeat MongoDB] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Read Available\": \"#508642\", \"Read Used\": \"#BF1B00\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Read Available\",\"field\":\"mongodb.status.wired_tiger.concurrent_transactions.read.available\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Read Used\",\"field\":\"mongodb.status.wired_tiger.concurrent_transactions.read.out\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"bottom\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Concurrent transactions Read [Metricbeat MongoDB] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-Concurrent-transactions-Read-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Concurrent transactions Write [Metricbeat MongoDB] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Write Available\": \"#629E51\", \"Write Used\": \"#BF1B00\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Write Available\",\"field\":\"mongodb.status.wired_tiger.concurrent_transactions.write.available\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Write Used\",\"field\":\"mongodb.status.wired_tiger.concurrent_transactions.write.out\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"bottom\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Concurrent transactions Write [Metricbeat MongoDB] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-Concurrent-transactions-Write-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"WiredTiger Cache [Metricbeat MongoDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"max\",\"field\":\"mongodb.status.wired_tiger.cache.maximum.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"used\",\"field\":\"mongodb.status.wired_tiger.cache.used.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"dirty\",\"field\":\"mongodb.status.wired_tiger.cache.dirty.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"bottom\",\"mode\":\"overlap\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"WiredTiger Cache [Metricbeat MongoDB] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-WiredTiger-Cache-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNTAsMV0="} +{"attributes":{"description":"Overview of MongoDB server status","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":32,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":24,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":24,\"w\":24,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":0,\"w\":16,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":36,\"w\":48,\"h\":16,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":12,\"w\":12,\"h\":12,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":36,\"y\":12,\"w\":12,\"h\":12,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":24,\"w\":24,\"h\":12,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Metricbeat MongoDB] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Metricbeat-MongoDB-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"MongoDB-hosts-ecs","name":"1:panel_1","type":"visualization"},{"id":"MongoDB-operation-counters-ecs","name":"2:panel_2","type":"visualization"},{"id":"MongoDB-asserts-ecs","name":"3:panel_3","type":"visualization"},{"id":"MongoDB-Engine-ampersand-Version-ecs","name":"4:panel_4","type":"visualization"},{"id":"MongoDB-memory-stats-ecs","name":"5:panel_5","type":"visualization"},{"id":"MongoDB-Concurrent-transactions-Read-ecs","name":"6:panel_6","type":"visualization"},{"id":"MongoDB-Concurrent-transactions-Write-ecs","name":"7:panel_7","type":"visualization"},{"id":"MongoDB-WiredTiger-Cache-ecs","name":"8:panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNTIsMV0="} diff --git a/metricbeat/module/mongodb/module.yml b/metricbeat/module/mongodb/module.yml index 3a523a410e2..a80aace66f6 100644 --- a/metricbeat/module/mongodb/module.yml +++ b/metricbeat/module/mongodb/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Metricbeat-MongoDB - file: Metricbeat-mongodb-overview.json + file: Metricbeat-mongodb-overview.ndjson diff --git a/metricbeat/module/mysql/_meta/kibana/7/dashboard/Metricbeat-mysql-overview.json b/metricbeat/module/mysql/_meta/kibana/7/dashboard/Metricbeat-mysql-overview.json deleted file mode 100644 index 8391437537f..00000000000 --- a/metricbeat/module/mysql/_meta/kibana/7/dashboard/Metricbeat-mysql-overview.json +++ /dev/null @@ -1,2382 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of MySQL server", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Open Tables, Files, Streams" - }, - "gridData": { - "h": 15, - "i": "14", - "w": 16, - "x": 15, - "y": 38 - }, - "panelIndex": "14", - "panelRefName": "panel_0", - "title": "Open Tables, Files, Streams", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Rate of Questions" - }, - "gridData": { - "h": 12, - "i": "050b110b-0b4d-404a-86c0-fa97f7eed2a0", - "w": 16, - "x": 0, - "y": 0 - }, - "panelIndex": "050b110b-0b4d-404a-86c0-fa97f7eed2a0", - "panelRefName": "panel_1", - "title": "Rate of Questions", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Rate of SELECT statements" - }, - "gridData": { - "h": 12, - "i": "988a61d7-ac3e-481e-a6ae-aa75aaa32a3a", - "w": 16, - "x": 16, - "y": 0 - }, - "panelIndex": "988a61d7-ac3e-481e-a6ae-aa75aaa32a3a", - "panelRefName": "panel_2", - "title": "Rate of SELECT statements", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Rate of INSERT, UPDATE, DELETE" - }, - "gridData": { - "h": 12, - "i": "a1f8fa38-a62f-4e05-adde-e995dae9ad83", - "w": 16, - "x": 32, - "y": 0 - }, - "panelIndex": "a1f8fa38-a62f-4e05-adde-e995dae9ad83", - "panelRefName": "panel_3", - "title": "Rate of INSERT, UPDATE, DELETE", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Connected Threads" - }, - "gridData": { - "h": 12, - "i": "d126fb61-605f-43af-b5d5-3fa3c128f726", - "w": 6, - "x": 0, - "y": 12 - }, - "panelIndex": "d126fb61-605f-43af-b5d5-3fa3c128f726", - "panelRefName": "panel_4", - "title": "Connected Threads", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Connections" - }, - "gridData": { - "h": 12, - "i": "59586d96-3abd-48a3-a258-cfd620826ec2", - "w": 14, - "x": 6, - "y": 12 - }, - "panelIndex": "59586d96-3abd-48a3-a258-cfd620826ec2", - "panelRefName": "panel_5", - "title": "Connections", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Aborted Connections Rate" - }, - "gridData": { - "h": 12, - "i": "dd0cf202-fe22-4daf-8f25-09c64d412bf3", - "w": 14, - "x": 20, - "y": 12 - }, - "panelIndex": "dd0cf202-fe22-4daf-8f25-09c64d412bf3", - "panelRefName": "panel_6", - "title": "Aborted Connections Rate", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Thread Activity" - }, - "gridData": { - "h": 12, - "i": "ead16a55-a2d3-49ae-a09b-a0b03560e9a0", - "w": 14, - "x": 34, - "y": 12 - }, - "panelIndex": "ead16a55-a2d3-49ae-a09b-a0b03560e9a0", - "panelRefName": "panel_7", - "title": "Thread Activity", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Buffer Pool Pages" - }, - "gridData": { - "h": 14, - "i": "24fc2926-610d-4910-8f3e-eb63ca69788c", - "w": 15, - "x": 0, - "y": 24 - }, - "panelIndex": "24fc2926-610d-4910-8f3e-eb63ca69788c", - "panelRefName": "panel_8", - "title": "Buffer Pool Pages", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Buffer Pool Utilization" - }, - "gridData": { - "h": 14, - "i": "33c10c95-be67-492e-afb5-863f375cffc2", - "w": 16, - "x": 15, - "y": 24 - }, - "panelIndex": "33c10c95-be67-492e-afb5-863f375cffc2", - "panelRefName": "panel_9", - "title": "Buffer Pool Utilization", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Buffer Pool Efficiency" - }, - "gridData": { - "h": 14, - "i": "d35d7c5e-8832-40e2-8c77-953ad320c853", - "w": 17, - "x": 31, - "y": 24 - }, - "panelIndex": "d35d7c5e-8832-40e2-8c77-953ad320c853", - "panelRefName": "panel_10", - "title": "Buffer Pool Efficiency", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Network Traffic" - }, - "gridData": { - "h": 15, - "i": "3cd58868-0d03-4715-9ecc-9fba3cde47c1", - "w": 15, - "x": 0, - "y": 38 - }, - "panelIndex": "3cd58868-0d03-4715-9ecc-9fba3cde47c1", - "panelRefName": "panel_11", - "title": "Network Traffic", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Open Tables Cache" - }, - "gridData": { - "h": 15, - "i": "277c8209-3c5f-41f5-95f4-de0782917fba", - "w": 17, - "x": 31, - "y": 38 - }, - "panelIndex": "277c8209-3c5f-41f5-95f4-de0782917fba", - "panelRefName": "panel_12", - "title": "Open Tables Cache", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Connection Errors" - }, - "gridData": { - "h": 13, - "i": "9487b742-3e7f-4d57-af32-014ad360235c", - "w": 13, - "x": 0, - "y": 53 - }, - "panelIndex": "9487b742-3e7f-4d57-af32-014ad360235c", - "panelRefName": "panel_13", - "title": "Connection Errors", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Commands Operations" - }, - "gridData": { - "h": 13, - "i": "00cd9f15-01bd-43f3-a8c5-43d6ff17dad3", - "w": 20, - "x": 13, - "y": 53 - }, - "panelIndex": "00cd9f15-01bd-43f3-a8c5-43d6ff17dad3", - "panelRefName": "panel_14", - "title": "Commands Operations", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "SSL Cache" - }, - "gridData": { - "h": 13, - "i": "cd4deb30-c0dd-4f23-8868-ecffd73b2406", - "w": 15, - "x": 33, - "y": 53 - }, - "panelIndex": "cd4deb30-c0dd-4f23-8868-ecffd73b2406", - "panelRefName": "panel_15", - "title": "SSL Cache", - "version": "7.7.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat MySQL] Database Overview", - "version": 1 - }, - "id": "57b3fb50-6309-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "aaa326b0-f1f5-11e7-85ab-594b1652e0d1-ecs", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "4fa69a10-630b-11ea-a83e-25b8612d00cc", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "7ea77d30-630a-11ea-a83e-25b8612d00cc", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "779ee920-6309-11ea-a83e-25b8612d00cc", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "fc6b5a40-630d-11ea-a83e-25b8612d00cc", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "493e8460-630d-11ea-a83e-25b8612d00cc", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "bf60bc10-639b-11ea-a83e-25b8612d00cc", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "822df290-630f-11ea-a83e-25b8612d00cc", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "98c7bca0-63a2-11ea-a83e-25b8612d00cc", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "96d46630-63a4-11ea-a83e-25b8612d00cc", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "a1e00160-63a4-11ea-a83e-25b8612d00cc", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "c8661020-6310-11ea-a83e-25b8612d00cc", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "cd72e030-c6a6-11ea-a106-5be590f42b74", - "name": "panel_12", - "type": "visualization" - }, - { - "id": "0774bbb0-c69c-11ea-a106-5be590f42b74", - "name": "panel_13", - "type": "visualization" - }, - { - "id": "3e5c4490-c6a1-11ea-a106-5be590f42b74", - "name": "panel_14", - "type": "visualization" - }, - { - "id": "8b276c80-c6ad-11ea-a106-5be590f42b74", - "name": "panel_15", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-07-15T15:17:01.974Z", - "version": "WzM4MywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Open tables, files, streams [Metricbeat MySQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(22,165,165,1)", - "fill": "0.3", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Open Tables", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.open.tables", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": "0.3", - "formatter": "number", - "id": "615a2400-6312-11ea-99e6-b5eed31db613", - "label": "Open Files", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.open.files", - "id": "615a2401-6312-11ea-99e6-b5eed31db613", - "type": "avg" - } - ], - "point_size": "0", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(226,115,0,1)", - "fill": "0.3", - "formatter": "number", - "id": "15d7bcd0-6313-11ea-99e6-b5eed31db613", - "label": "Open Streams", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.open.streams", - "id": "15d7bcd1-6313-11ea-99e6-b5eed31db613", - "type": "avg" - } - ], - "point_size": "0", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Open tables, files, streams [Metricbeat MySQL] ECS", - "type": "metrics" - } - }, - "id": "aaa326b0-f1f5-11e7-85ab-594b1652e0d1-ecs", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-07-15T12:11:22.038Z", - "version": "WzIwNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Question rates [Metricbeat MySQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "d61928d0-6309-11ea-99e6-b5eed31db613" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "legend_position": "right", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": "0.3", - "formatter": "'0.0a'", - "id": "3c2a2a40-f1f4-11e7-a752-236fe3270d99", - "label": "SELECT", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.questions", - "id": "3c2a2a41-f1f4-11e7-a752-236fe3270d99", - "type": "max" - }, - { - "field": "3c2a2a41-f1f4-11e7-a752-236fe3270d99", - "id": "3c2a2a42-f1f4-11e7-a752-236fe3270d99", - "type": "derivative", - "unit": "1s" - }, - { - "field": "3c2a2a42-f1f4-11e7-a752-236fe3270d99", - "id": "82f59710-6309-11ea-99e6-b5eed31db613", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 0, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Question rates [Metricbeat MySQL] ECS", - "type": "metrics" - } - }, - "id": "4fa69a10-630b-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-07-15T12:11:22.038Z", - "version": "WzIwOCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SELECT rates [Metricbeat MySQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "d61928d0-6309-11ea-99e6-b5eed31db613" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "legend_position": "right", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0.3", - "formatter": "'0.0a'", - "id": "3c2a2a40-f1f4-11e7-a752-236fe3270d99", - "label": "SELECT", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.command.select", - "id": "3c2a2a41-f1f4-11e7-a752-236fe3270d99", - "type": "max" - }, - { - "field": "3c2a2a41-f1f4-11e7-a752-236fe3270d99", - "id": "3c2a2a42-f1f4-11e7-a752-236fe3270d99", - "type": "derivative", - "unit": "1s" - }, - { - "field": "3c2a2a42-f1f4-11e7-a752-236fe3270d99", - "id": "82f59710-6309-11ea-99e6-b5eed31db613", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 0, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "SELECT rates [Metricbeat MySQL] ECS", - "type": "metrics" - } - }, - "id": "7ea77d30-630a-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-07-15T12:11:22.038Z", - "version": "WzIwOSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Insert, Update, Delete rates [Metricbeat MySQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "d61928d0-6309-11ea-99e6-b5eed31db613" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": "0.3", - "formatter": "number", - "id": "3c2a2a40-f1f4-11e7-a752-236fe3270d99", - "label": "INSERT", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.command.insert", - "id": "3c2a2a41-f1f4-11e7-a752-236fe3270d99", - "type": "max" - }, - { - "field": "3c2a2a41-f1f4-11e7-a752-236fe3270d99", - "id": "3c2a2a42-f1f4-11e7-a752-236fe3270d99", - "type": "derivative", - "unit": "1s" - }, - { - "field": "3c2a2a42-f1f4-11e7-a752-236fe3270d99", - "id": "82f59710-6309-11ea-99e6-b5eed31db613", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": "0.3", - "formatter": "number", - "id": "485ce050-f1f4-11e7-a752-236fe3270d99", - "label": "UPDATE", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.command.update", - "id": "485ce051-f1f4-11e7-a752-236fe3270d99", - "type": "max" - }, - { - "field": "485ce051-f1f4-11e7-a752-236fe3270d99", - "id": "485ce052-f1f4-11e7-a752-236fe3270d99", - "type": "derivative", - "unit": "1s" - }, - { - "field": "485ce052-f1f4-11e7-a752-236fe3270d99", - "id": "a4092660-6309-11ea-99e6-b5eed31db613", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": "0.3", - "formatter": "number", - "id": "543a4a70-f1f4-11e7-a752-236fe3270d99", - "label": "DELETE", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.command.delete", - "id": "543a4a71-f1f4-11e7-a752-236fe3270d99", - "type": "max" - }, - { - "field": "543a4a71-f1f4-11e7-a752-236fe3270d99", - "id": "543a4a72-f1f4-11e7-a752-236fe3270d99", - "type": "derivative", - "unit": "1s" - }, - { - "field": "543a4a72-f1f4-11e7-a752-236fe3270d99", - "id": "bae29b50-6309-11ea-99e6-b5eed31db613", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Insert, Update, Delete rates [Metricbeat MySQL] ECS", - "type": "metrics" - } - }, - "id": "779ee920-6309-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-07-15T12:11:22.038Z", - "version": "WzIxMCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Connected Threads [Metricbeat MySQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "d5fcf170-630d-11ea-99e6-b5eed31db613" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "f1321f60-630d-11ea-99e6-b5eed31db613" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,0.89)", - "fill": "0.3", - "formatter": "number", - "id": "fe9af660-630b-11ea-99e6-b5eed31db613", - "label": "Connections", - "line_width": "2", - "metrics": [ - { - "field": "mysql.status.threads.connected", - "id": "fe9af661-630b-11ea-99e6-b5eed31db613", - "type": "max" - } - ], - "point_size": "0", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Connected Threads [Metricbeat MySQL] ECS", - "type": "metrics" - } - }, - "id": "fc6b5a40-630d-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-07-15T12:11:22.038Z", - "version": "WzIxMSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Connections [Metricbeat MySQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(198,135,31,1)", - "fill": "0.2", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Connection rate", - "line_width": "2", - "metrics": [ - { - "field": "mysql.status.connections", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "caee3e70-630c-11ea-99e6-b5eed31db613", - "type": "derivative", - "unit": "1s" - }, - { - "field": "caee3e70-630c-11ea-99e6-b5eed31db613", - "id": "d4eb4fd0-630c-11ea-99e6-b5eed31db613", - "type": "positive_only", - "unit": "" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,0.89)", - "fill": "0.3", - "formatter": "number", - "id": "fe9af660-630b-11ea-99e6-b5eed31db613", - "label": "Connected", - "line_width": "2", - "metrics": [ - { - "field": "mysql.status.threads.connected", - "id": "fe9af661-630b-11ea-99e6-b5eed31db613", - "type": "max" - } - ], - "point_size": "0", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "e3d46bf0-630f-11ea-99e6-b5eed31db613", - "label": "Max Used Connections", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.max_used_connections", - "id": "e3d46bf1-630f-11ea-99e6-b5eed31db613", - "type": "avg" - } - ], - "point_size": "0", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Connections [Metricbeat MySQL] ECS", - "type": "metrics" - } - }, - "id": "493e8460-630d-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-07-15T12:11:22.038Z", - "version": "WzIxMiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Aborted Connections Rate [Metricbeat MySQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "d61928d0-6309-11ea-99e6-b5eed31db613" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(176,188,0,1)", - "fill": "0.3", - "formatter": "'0.0a'", - "id": "3c2a2a40-f1f4-11e7-a752-236fe3270d99", - "label": "Aborted Connections", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.aborted.clients", - "id": "3c2a2a41-f1f4-11e7-a752-236fe3270d99", - "type": "max" - }, - { - "field": "3c2a2a41-f1f4-11e7-a752-236fe3270d99", - "id": "6d053540-639b-11ea-83d6-4f7a6fe5aed4", - "type": "derivative", - "unit": "1s" - }, - { - "field": "6d053540-639b-11ea-83d6-4f7a6fe5aed4", - "id": "7548afc0-639b-11ea-83d6-4f7a6fe5aed4", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(251,158,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "d6572ee0-639b-11ea-83d6-4f7a6fe5aed4", - "label": "Failed Attempts to Connect ", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.aborted.connects", - "id": "d6572ee1-639b-11ea-83d6-4f7a6fe5aed4", - "type": "max" - }, - { - "field": "d6572ee1-639b-11ea-83d6-4f7a6fe5aed4", - "id": "e4a63540-639b-11ea-83d6-4f7a6fe5aed4", - "type": "derivative", - "unit": "1s" - }, - { - "id": "ec492a00-639b-11ea-83d6-4f7a6fe5aed4", - "type": "positive_only" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Aborted Connections Rate [Metricbeat MySQL] ECS", - "type": "metrics" - } - }, - "id": "bf60bc10-639b-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-07-15T12:11:22.038Z", - "version": "WzIxMywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Thread Activity [Metricbeat MySQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(226,115,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Avg Threads Running", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.threads.running", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(22,165,165,1)", - "fill": "0", - "formatter": "number", - "id": "895f0820-630e-11ea-99e6-b5eed31db613", - "label": "Peak Threads Running", - "line_width": "2", - "metrics": [ - { - "field": "mysql.status.threads.running", - "id": "895f0821-630e-11ea-99e6-b5eed31db613", - "type": "max" - } - ], - "point_size": "0", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(77,77,77,1)", - "fill": "0", - "formatter": "number", - "id": "f8752460-630e-11ea-99e6-b5eed31db613", - "label": "Peak Threads Connected", - "line_width": "2", - "metrics": [ - { - "field": "mysql.status.threads.connected", - "id": "f8752461-630e-11ea-99e6-b5eed31db613", - "type": "max" - } - ], - "point_size": "0", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Thread Activity [Metricbeat MySQL] ECS", - "type": "metrics" - } - }, - "id": "822df290-630f-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-07-15T12:11:22.038Z", - "version": "WzIxNCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Buffer Pool Pages [Metricbeat MySQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "515b9dd0-639f-11ea-96d8-1943b9bb65d9", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "'0.0a'", - "id": "37f2d600-63a0-11ea-90a2-c51229c5db5f", - "label": "Buffer Pool Pages Data", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.innodb.buffer_pool.pages.data", - "id": "37f2d601-63a0-11ea-90a2-c51229c5db5f", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(22,165,165,1)", - "fill": "0", - "formatter": "'0.0a'", - "id": "57ae9d80-63a0-11ea-90a2-c51229c5db5f", - "label": "Buffer Pool Pages Free", - "line_width": "2", - "metrics": [ - { - "field": "mysql.status.innodb.buffer_pool.pages.free", - "id": "57ae9d81-63a0-11ea-90a2-c51229c5db5f", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(102,102,102,1)", - "fill": "0", - "formatter": "'0.0a'", - "id": "c86cc470-63a0-11ea-90a2-c51229c5db5f", - "label": "Buffer Pool Pages Total", - "line_width": "2", - "metrics": [ - { - "field": "mysql.status.innodb.buffer_pool.pages.total", - "id": "c86ceb80-63a0-11ea-90a2-c51229c5db5f", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Buffer Pool Pages [Metricbeat MySQL] ECS", - "type": "metrics" - } - }, - "id": "98c7bca0-63a2-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-07-15T12:11:22.038Z", - "version": "WzIxNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Buffer Pool Utilization [Metricbeat MySQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "0f20fa60-63a3-11ea-90a2-c51229c5db5f" - } - ], - "bar_color_rules": [ - { - "id": "0e1ecca0-63a3-11ea-90a2-c51229c5db5f" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "07c08ce0-63a3-11ea-90a2-c51229c5db5f" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "515b9dd0-639f-11ea-96d8-1943b9bb65d9", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(226,115,0,1)", - "fill": "0.1", - "formatter": "percent", - "id": "256f1f40-63a3-11ea-90a2-c51229c5db5f", - "label": "Utilization", - "line_width": "2", - "metrics": [ - { - "field": "mysql.status.innodb.buffer_pool.pages.total", - "id": "256f1f41-63a3-11ea-90a2-c51229c5db5f", - "type": "max" - }, - { - "field": "mysql.status.innodb.buffer_pool.pages.free", - "id": "256f1f43-63a3-11ea-90a2-c51229c5db5f", - "type": "max" - }, - { - "id": "256f1f45-63a3-11ea-90a2-c51229c5db5f", - "script": "params.total != null \u0026\u0026 params.total \u003e 0 ? (params.total - params.free)/params.total : null", - "type": "calculation", - "variables": [ - { - "field": "256f1f41-63a3-11ea-90a2-c51229c5db5f", - "id": "256f1f42-63a3-11ea-90a2-c51229c5db5f", - "name": "total" - }, - { - "field": "256f1f43-63a3-11ea-90a2-c51229c5db5f", - "id": "256f1f44-63a3-11ea-90a2-c51229c5db5f", - "name": "free" - } - ] - } - ], - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Buffer Pool Utilization [Metricbeat MySQL] ECS", - "type": "metrics" - } - }, - "id": "96d46630-63a4-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-07-15T12:11:22.038Z", - "version": "WzIxNiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Buffer Pool Efficiency [Metricbeat MySQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "0f20fa60-63a3-11ea-90a2-c51229c5db5f" - } - ], - "bar_color_rules": [ - { - "id": "0e1ecca0-63a3-11ea-90a2-c51229c5db5f" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "07c08ce0-63a3-11ea-90a2-c51229c5db5f" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "515b9dd0-639f-11ea-96d8-1943b9bb65d9", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(87,177,211,1)", - "fill": "0.1", - "formatter": "number", - "hidden": false, - "id": "a397d570-63a2-11ea-90a2-c51229c5db5f", - "label": "Effeciency (lower is better)", - "line_width": "2", - "metrics": [ - { - "field": "mysql.status.innodb.buffer_pool.pool.reads", - "id": "a397d571-63a2-11ea-90a2-c51229c5db5f", - "type": "max" - }, - { - "field": "mysql.status.innodb.buffer_pool.read.requests", - "id": "ad177970-63a2-11ea-90a2-c51229c5db5f", - "type": "max" - }, - { - "id": "af58ddf0-63a2-11ea-90a2-c51229c5db5f", - "script": "params.pool_read_requests != null \u0026\u0026 params.pool_read_requests \u003e 0 ? (params.pool_reads/params.pool_read_requests) * 100: null", - "type": "calculation", - "variables": [ - { - "field": "a397d571-63a2-11ea-90a2-c51229c5db5f", - "id": "b1b6cb20-63a2-11ea-90a2-c51229c5db5f", - "name": "pool_reads" - }, - { - "field": "ad177970-63a2-11ea-90a2-c51229c5db5f", - "id": "c3fe5be0-63a2-11ea-90a2-c51229c5db5f", - "name": "pool_read_requests" - } - ] - } - ], - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Buffer Pool Efficiency [Metricbeat MySQL] ECS", - "type": "metrics" - } - }, - "id": "a1e00160-63a4-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-07-15T12:11:22.038Z", - "version": "WzIxOCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Network Traffic [Metricbeat MySQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,98,177,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "2b1c2390-f1f7-11e7-a752-236fe3270d99", - "label": "Received bytes", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.bytes.received", - "id": "2b1c2391-f1f7-11e7-a752-236fe3270d99", - "type": "max" - }, - { - "field": "2b1c2391-f1f7-11e7-a752-236fe3270d99", - "id": "2b1c2392-f1f7-11e7-a752-236fe3270d99", - "type": "derivative", - "unit": "1s" - }, - { - "field": "2b1c2392-f1f7-11e7-a752-236fe3270d99", - "id": "788d3c90-6310-11ea-99e6-b5eed31db613", - "type": "positive_only", - "unit": "" - }, - { - "id": "88f8e160-6310-11ea-99e6-b5eed31db613", - "script": "params.received != null \u0026\u0026 params.received \u003e 0 ? params.received * -1 : null", - "type": "calculation", - "variables": [ - { - "field": "788d3c90-6310-11ea-99e6-b5eed31db613", - "id": "8beb4660-6310-11ea-99e6-b5eed31db613", - "name": "received" - } - ] - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Sent bytes", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.bytes.sent", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "23cfda50-f1f7-11e7-a752-236fe3270d99", - "type": "derivative", - "unit": "1s" - }, - { - "field": "23cfda50-f1f7-11e7-a752-236fe3270d99", - "id": "ad26a900-6310-11ea-99e6-b5eed31db613", - "type": "positive_only", - "unit": "" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Network Traffic [Metricbeat MySQL] ECS", - "type": "metrics" - } - }, - "id": "c8661020-6310-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-07-15T12:11:22.038Z", - "version": "WzIxNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Open Tables Cache [Metricbeat MySQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Hits", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.cache.table.open_cache.hits", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "534a23e0-c6a6-11ea-880f-352bebf10188", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "60ab20c0-c6a6-11ea-880f-352bebf10188", - "label": "Misses", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.cache.table.open_cache.misses", - "id": "60ab47d0-c6a6-11ea-880f-352bebf10188", - "type": "max" - }, - { - "field": "60ab47d0-c6a6-11ea-880f-352bebf10188", - "id": "6a1519e0-c6a6-11ea-880f-352bebf10188", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(254,146,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "69113e70-c6a6-11ea-880f-352bebf10188", - "label": "Overflows", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.cache.table.open_cache.overflows", - "id": "69113e71-c6a6-11ea-880f-352bebf10188", - "type": "max" - }, - { - "field": "69113e71-c6a6-11ea-880f-352bebf10188", - "id": "75a108a0-c6a6-11ea-880f-352bebf10188", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Open Tables Cache [Metricbeat MySQL] ECS", - "type": "metrics" - } - }, - "id": "cd72e030-c6a6-11ea-a106-5be590f42b74", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-07-15T15:12:29.413Z", - "version": "WzM3NSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Connection Errors [Metricbeat MySQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Max", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.connection.errors.max", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "percentiles": [ - { - "id": "968f0500-c69a-11ea-880f-352bebf10188", - "mode": "line", - "shade": 0.2, - "value": 50 - } - ], - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "a088e210-c69a-11ea-880f-352bebf10188", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "a61998a0-c69a-11ea-880f-352bebf10188", - "label": "Accept", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.connection.errors.accept", - "id": "a61998a1-c69a-11ea-880f-352bebf10188", - "type": "max" - }, - { - "field": "a61998a1-c69a-11ea-880f-352bebf10188", - "id": "a8f8c3c0-c69a-11ea-880f-352bebf10188", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "b6a26260-c69a-11ea-880f-352bebf10188", - "label": "Internal", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.connection.errors.internal", - "id": "b6a26261-c69a-11ea-880f-352bebf10188", - "type": "max" - }, - { - "field": "b6a26261-c69a-11ea-880f-352bebf10188", - "id": "c09d02c0-c69a-11ea-880f-352bebf10188", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": 0.5, - "formatter": "number", - "id": "c713d390-c69a-11ea-880f-352bebf10188", - "label": "Select", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.connection.errors.select", - "id": "c713d391-c69a-11ea-880f-352bebf10188", - "type": "max" - }, - { - "field": "c713d391-c69a-11ea-880f-352bebf10188", - "id": "4ace8360-c69b-11ea-880f-352bebf10188", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(253,161,255,1)", - "fill": 0.5, - "formatter": "number", - "id": "50c798b0-c69b-11ea-880f-352bebf10188", - "label": "Peer Address", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.connection.errors.peer_address", - "id": "50c798b1-c69b-11ea-880f-352bebf10188", - "type": "max" - }, - { - "field": "50c798b1-c69b-11ea-880f-352bebf10188", - "id": "78d49650-c69b-11ea-880f-352bebf10188", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Connection Errors [Metricbeat MySQL] ECS", - "type": "metrics" - } - }, - "id": "0774bbb0-c69c-11ea-a106-5be590f42b74", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-07-15T13:06:43.051Z", - "version": "WzM0OCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Commands Operations [Metricbeat MySQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Select", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.command.select", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "e76f75d0-c6a0-11ea-880f-352bebf10188", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(219,223,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "ed3a0110-c6a0-11ea-880f-352bebf10188", - "label": "Update", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.command.update", - "id": "ed3a0111-c6a0-11ea-880f-352bebf10188", - "type": "max" - }, - { - "field": "ed3a0111-c6a0-11ea-880f-352bebf10188", - "id": "f961e1b0-c6a0-11ea-880f-352bebf10188", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": 0.5, - "formatter": "number", - "id": "00b3f750-c6a1-11ea-880f-352bebf10188", - "label": "Delete", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.command.delete", - "id": "00b3f751-c6a1-11ea-880f-352bebf10188", - "type": "max" - }, - { - "field": "00b3f751-c6a1-11ea-880f-352bebf10188", - "id": "09f46f70-c6a1-11ea-880f-352bebf10188", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "0f38dac0-c6a1-11ea-880f-352bebf10188", - "label": "Insert", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.command.insert", - "id": "0f38dac1-c6a1-11ea-880f-352bebf10188", - "type": "max" - }, - { - "field": "0f38dac1-c6a1-11ea-880f-352bebf10188", - "id": "1d1cc340-c6a1-11ea-880f-352bebf10188", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Commands Operations [Metricbeat MySQL] ECS", - "type": "metrics" - } - }, - "id": "3e5c4490-c6a1-11ea-a106-5be590f42b74", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-07-15T13:44:02.649Z", - "version": "WzM1NSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SSL Cache [Metricbeat MySQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Hits", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.cache.ssl.hits", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "1a353d40-c6ad-11ea-880f-352bebf10188", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(253,161,255,1)", - "fill": 0.5, - "formatter": "number", - "id": "2dd02900-c6ad-11ea-880f-352bebf10188", - "label": "Misses", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.cache.ssl.misses", - "id": "2dd02901-c6ad-11ea-880f-352bebf10188", - "type": "max" - }, - { - "field": "2dd02901-c6ad-11ea-880f-352bebf10188", - "id": "327cc120-c6ad-11ea-880f-352bebf10188", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": 0.5, - "formatter": "number", - "id": "3f459cb0-c6ad-11ea-880f-352bebf10188", - "label": "Size", - "line_width": 1, - "metrics": [ - { - "field": "mysql.status.cache.ssl.size", - "id": "3f459cb1-c6ad-11ea-880f-352bebf10188", - "type": "max" - }, - { - "field": "3f459cb1-c6ad-11ea-880f-352bebf10188", - "id": "426ccd50-c6ad-11ea-880f-352bebf10188", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "SSL Cache [Metricbeat MySQL] ECS", - "type": "metrics" - } - }, - "id": "8b276c80-c6ad-11ea-a106-5be590f42b74", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-07-15T15:12:05.448Z", - "version": "WzM3NCwxXQ==" - } - ], - "version": "7.7.0" -} diff --git a/metricbeat/module/mysql/_meta/kibana/7/dashboard/Metricbeat-mysql-overview.ndjson b/metricbeat/module/mysql/_meta/kibana/7/dashboard/Metricbeat-mysql-overview.ndjson new file mode 100644 index 00000000000..c96bf6160b1 --- /dev/null +++ b/metricbeat/module/mysql/_meta/kibana/7/dashboard/Metricbeat-mysql-overview.ndjson @@ -0,0 +1,17 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Open tables, files, streams [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Open Tables\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.open.tables\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"id\":\"615a2400-6312-11ea-99e6-b5eed31db613\",\"label\":\"Open Files\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.open.files\",\"id\":\"615a2401-6312-11ea-99e6-b5eed31db613\",\"type\":\"avg\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"id\":\"15d7bcd0-6313-11ea-99e6-b5eed31db613\",\"label\":\"Open Streams\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.open.streams\",\"id\":\"15d7bcd1-6313-11ea-99e6-b5eed31db613\",\"type\":\"avg\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Open tables, files, streams [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"aaa326b0-f1f5-11e7-85ab-594b1652e0d1-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNjksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Question rates [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"d61928d0-6309-11ea-99e6-b5eed31db613\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"right\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":\"0.3\",\"formatter\":\"'0.0a'\",\"id\":\"3c2a2a40-f1f4-11e7-a752-236fe3270d99\",\"label\":\"SELECT\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.questions\",\"id\":\"3c2a2a41-f1f4-11e7-a752-236fe3270d99\",\"type\":\"max\"},{\"field\":\"3c2a2a41-f1f4-11e7-a752-236fe3270d99\",\"id\":\"3c2a2a42-f1f4-11e7-a752-236fe3270d99\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"3c2a2a42-f1f4-11e7-a752-236fe3270d99\",\"id\":\"82f59710-6309-11ea-99e6-b5eed31db613\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Question rates [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4fa69a10-630b-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SELECT rates [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"d61928d0-6309-11ea-99e6-b5eed31db613\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"right\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0.3\",\"formatter\":\"'0.0a'\",\"id\":\"3c2a2a40-f1f4-11e7-a752-236fe3270d99\",\"label\":\"SELECT\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.command.select\",\"id\":\"3c2a2a41-f1f4-11e7-a752-236fe3270d99\",\"type\":\"max\"},{\"field\":\"3c2a2a41-f1f4-11e7-a752-236fe3270d99\",\"id\":\"3c2a2a42-f1f4-11e7-a752-236fe3270d99\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"3c2a2a42-f1f4-11e7-a752-236fe3270d99\",\"id\":\"82f59710-6309-11ea-99e6-b5eed31db613\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SELECT rates [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7ea77d30-630a-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Insert, Update, Delete rates [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"d61928d0-6309-11ea-99e6-b5eed31db613\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"id\":\"3c2a2a40-f1f4-11e7-a752-236fe3270d99\",\"label\":\"INSERT\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.command.insert\",\"id\":\"3c2a2a41-f1f4-11e7-a752-236fe3270d99\",\"type\":\"max\"},{\"field\":\"3c2a2a41-f1f4-11e7-a752-236fe3270d99\",\"id\":\"3c2a2a42-f1f4-11e7-a752-236fe3270d99\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"3c2a2a42-f1f4-11e7-a752-236fe3270d99\",\"id\":\"82f59710-6309-11ea-99e6-b5eed31db613\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"id\":\"485ce050-f1f4-11e7-a752-236fe3270d99\",\"label\":\"UPDATE\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.command.update\",\"id\":\"485ce051-f1f4-11e7-a752-236fe3270d99\",\"type\":\"max\"},{\"field\":\"485ce051-f1f4-11e7-a752-236fe3270d99\",\"id\":\"485ce052-f1f4-11e7-a752-236fe3270d99\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"485ce052-f1f4-11e7-a752-236fe3270d99\",\"id\":\"a4092660-6309-11ea-99e6-b5eed31db613\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"id\":\"543a4a70-f1f4-11e7-a752-236fe3270d99\",\"label\":\"DELETE\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.command.delete\",\"id\":\"543a4a71-f1f4-11e7-a752-236fe3270d99\",\"type\":\"max\"},{\"field\":\"543a4a71-f1f4-11e7-a752-236fe3270d99\",\"id\":\"543a4a72-f1f4-11e7-a752-236fe3270d99\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"543a4a72-f1f4-11e7-a752-236fe3270d99\",\"id\":\"bae29b50-6309-11ea-99e6-b5eed31db613\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Insert, Update, Delete rates [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"779ee920-6309-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connected Threads [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"d5fcf170-630d-11ea-99e6-b5eed31db613\"}],\"gauge_color_rules\":[{\"id\":\"f1321f60-630d-11ea-99e6-b5eed31db613\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,0.89)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"id\":\"fe9af660-630b-11ea-99e6-b5eed31db613\",\"label\":\"Connections\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"mysql.status.threads.connected\",\"id\":\"fe9af661-630b-11ea-99e6-b5eed31db613\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Connected Threads [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fc6b5a40-630d-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(198,135,31,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Connection rate\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"mysql.status.connections\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"caee3e70-630c-11ea-99e6-b5eed31db613\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"caee3e70-630c-11ea-99e6-b5eed31db613\",\"id\":\"d4eb4fd0-630c-11ea-99e6-b5eed31db613\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,0.89)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"id\":\"fe9af660-630b-11ea-99e6-b5eed31db613\",\"label\":\"Connected\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"mysql.status.threads.connected\",\"id\":\"fe9af661-630b-11ea-99e6-b5eed31db613\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"e3d46bf0-630f-11ea-99e6-b5eed31db613\",\"label\":\"Max Used Connections\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.max_used_connections\",\"id\":\"e3d46bf1-630f-11ea-99e6-b5eed31db613\",\"type\":\"avg\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Connections [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"493e8460-630d-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Aborted Connections Rate [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"d61928d0-6309-11ea-99e6-b5eed31db613\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":\"0.3\",\"formatter\":\"'0.0a'\",\"id\":\"3c2a2a40-f1f4-11e7-a752-236fe3270d99\",\"label\":\"Aborted Connections\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.aborted.clients\",\"id\":\"3c2a2a41-f1f4-11e7-a752-236fe3270d99\",\"type\":\"max\"},{\"field\":\"3c2a2a41-f1f4-11e7-a752-236fe3270d99\",\"id\":\"6d053540-639b-11ea-83d6-4f7a6fe5aed4\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"6d053540-639b-11ea-83d6-4f7a6fe5aed4\",\"id\":\"7548afc0-639b-11ea-83d6-4f7a6fe5aed4\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"d6572ee0-639b-11ea-83d6-4f7a6fe5aed4\",\"label\":\"Failed Attempts to Connect \",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.aborted.connects\",\"id\":\"d6572ee1-639b-11ea-83d6-4f7a6fe5aed4\",\"type\":\"max\"},{\"field\":\"d6572ee1-639b-11ea-83d6-4f7a6fe5aed4\",\"id\":\"e4a63540-639b-11ea-83d6-4f7a6fe5aed4\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"id\":\"ec492a00-639b-11ea-83d6-4f7a6fe5aed4\",\"type\":\"positive_only\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Aborted Connections Rate [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bf60bc10-639b-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Thread Activity [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Avg Threads Running\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.threads.running\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"895f0820-630e-11ea-99e6-b5eed31db613\",\"label\":\"Peak Threads Running\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"mysql.status.threads.running\",\"id\":\"895f0821-630e-11ea-99e6-b5eed31db613\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(77,77,77,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"f8752460-630e-11ea-99e6-b5eed31db613\",\"label\":\"Peak Threads Connected\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"mysql.status.threads.connected\",\"id\":\"f8752461-630e-11ea-99e6-b5eed31db613\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Thread Activity [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"822df290-630f-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Buffer Pool Pages [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"515b9dd0-639f-11ea-96d8-1943b9bb65d9\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"'0.0a'\",\"id\":\"37f2d600-63a0-11ea-90a2-c51229c5db5f\",\"label\":\"Buffer Pool Pages Data\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.innodb.buffer_pool.pages.data\",\"id\":\"37f2d601-63a0-11ea-90a2-c51229c5db5f\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0\",\"formatter\":\"'0.0a'\",\"id\":\"57ae9d80-63a0-11ea-90a2-c51229c5db5f\",\"label\":\"Buffer Pool Pages Free\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"mysql.status.innodb.buffer_pool.pages.free\",\"id\":\"57ae9d81-63a0-11ea-90a2-c51229c5db5f\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(102,102,102,1)\",\"fill\":\"0\",\"formatter\":\"'0.0a'\",\"id\":\"c86cc470-63a0-11ea-90a2-c51229c5db5f\",\"label\":\"Buffer Pool Pages Total\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"mysql.status.innodb.buffer_pool.pages.total\",\"id\":\"c86ceb80-63a0-11ea-90a2-c51229c5db5f\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Buffer Pool Pages [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"98c7bca0-63a2-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Buffer Pool Utilization [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0f20fa60-63a3-11ea-90a2-c51229c5db5f\"}],\"bar_color_rules\":[{\"id\":\"0e1ecca0-63a3-11ea-90a2-c51229c5db5f\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"07c08ce0-63a3-11ea-90a2-c51229c5db5f\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"515b9dd0-639f-11ea-96d8-1943b9bb65d9\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":\"0.1\",\"formatter\":\"percent\",\"id\":\"256f1f40-63a3-11ea-90a2-c51229c5db5f\",\"label\":\"Utilization\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"mysql.status.innodb.buffer_pool.pages.total\",\"id\":\"256f1f41-63a3-11ea-90a2-c51229c5db5f\",\"type\":\"max\"},{\"field\":\"mysql.status.innodb.buffer_pool.pages.free\",\"id\":\"256f1f43-63a3-11ea-90a2-c51229c5db5f\",\"type\":\"max\"},{\"id\":\"256f1f45-63a3-11ea-90a2-c51229c5db5f\",\"script\":\"params.total != null && params.total > 0 ? (params.total - params.free)/params.total : null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"256f1f41-63a3-11ea-90a2-c51229c5db5f\",\"id\":\"256f1f42-63a3-11ea-90a2-c51229c5db5f\",\"name\":\"total\"},{\"field\":\"256f1f43-63a3-11ea-90a2-c51229c5db5f\",\"id\":\"256f1f44-63a3-11ea-90a2-c51229c5db5f\",\"name\":\"free\"}]}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Buffer Pool Utilization [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"96d46630-63a4-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Buffer Pool Efficiency [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0f20fa60-63a3-11ea-90a2-c51229c5db5f\"}],\"bar_color_rules\":[{\"id\":\"0e1ecca0-63a3-11ea-90a2-c51229c5db5f\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"07c08ce0-63a3-11ea-90a2-c51229c5db5f\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"515b9dd0-639f-11ea-96d8-1943b9bb65d9\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(87,177,211,1)\",\"fill\":\"0.1\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"a397d570-63a2-11ea-90a2-c51229c5db5f\",\"label\":\"Effeciency (lower is better)\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"mysql.status.innodb.buffer_pool.pool.reads\",\"id\":\"a397d571-63a2-11ea-90a2-c51229c5db5f\",\"type\":\"max\"},{\"field\":\"mysql.status.innodb.buffer_pool.read.requests\",\"id\":\"ad177970-63a2-11ea-90a2-c51229c5db5f\",\"type\":\"max\"},{\"id\":\"af58ddf0-63a2-11ea-90a2-c51229c5db5f\",\"script\":\"params.pool_read_requests != null && params.pool_read_requests > 0 ? (params.pool_reads/params.pool_read_requests) * 100: null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"a397d571-63a2-11ea-90a2-c51229c5db5f\",\"id\":\"b1b6cb20-63a2-11ea-90a2-c51229c5db5f\",\"name\":\"pool_reads\"},{\"field\":\"ad177970-63a2-11ea-90a2-c51229c5db5f\",\"id\":\"c3fe5be0-63a2-11ea-90a2-c51229c5db5f\",\"name\":\"pool_read_requests\"}]}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Buffer Pool Efficiency [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a1e00160-63a4-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Network Traffic [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,98,177,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"2b1c2390-f1f7-11e7-a752-236fe3270d99\",\"label\":\"Received bytes\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.bytes.received\",\"id\":\"2b1c2391-f1f7-11e7-a752-236fe3270d99\",\"type\":\"max\"},{\"field\":\"2b1c2391-f1f7-11e7-a752-236fe3270d99\",\"id\":\"2b1c2392-f1f7-11e7-a752-236fe3270d99\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"2b1c2392-f1f7-11e7-a752-236fe3270d99\",\"id\":\"788d3c90-6310-11ea-99e6-b5eed31db613\",\"type\":\"positive_only\",\"unit\":\"\"},{\"id\":\"88f8e160-6310-11ea-99e6-b5eed31db613\",\"script\":\"params.received != null && params.received > 0 ? params.received * -1 : null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"788d3c90-6310-11ea-99e6-b5eed31db613\",\"id\":\"8beb4660-6310-11ea-99e6-b5eed31db613\",\"name\":\"received\"}]}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Sent bytes\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.bytes.sent\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"23cfda50-f1f7-11e7-a752-236fe3270d99\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"23cfda50-f1f7-11e7-a752-236fe3270d99\",\"id\":\"ad26a900-6310-11ea-99e6-b5eed31db613\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Network Traffic [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c8661020-6310-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwODAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Open Tables Cache [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Hits\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.cache.table.open_cache.hits\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"534a23e0-c6a6-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"60ab20c0-c6a6-11ea-880f-352bebf10188\",\"label\":\"Misses\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.cache.table.open_cache.misses\",\"id\":\"60ab47d0-c6a6-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"60ab47d0-c6a6-11ea-880f-352bebf10188\",\"id\":\"6a1519e0-c6a6-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"69113e70-c6a6-11ea-880f-352bebf10188\",\"label\":\"Overflows\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.cache.table.open_cache.overflows\",\"id\":\"69113e71-c6a6-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"69113e71-c6a6-11ea-880f-352bebf10188\",\"id\":\"75a108a0-c6a6-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Open Tables Cache [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"cd72e030-c6a6-11ea-a106-5be590f42b74","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwODEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connection Errors [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Max\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.connection.errors.max\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"percentiles\":[{\"id\":\"968f0500-c69a-11ea-880f-352bebf10188\",\"mode\":\"line\",\"shade\":0.2,\"value\":50}],\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"a088e210-c69a-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a61998a0-c69a-11ea-880f-352bebf10188\",\"label\":\"Accept\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.connection.errors.accept\",\"id\":\"a61998a1-c69a-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"a61998a1-c69a-11ea-880f-352bebf10188\",\"id\":\"a8f8c3c0-c69a-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"b6a26260-c69a-11ea-880f-352bebf10188\",\"label\":\"Internal\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.connection.errors.internal\",\"id\":\"b6a26261-c69a-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"b6a26261-c69a-11ea-880f-352bebf10188\",\"id\":\"c09d02c0-c69a-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c713d390-c69a-11ea-880f-352bebf10188\",\"label\":\"Select\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.connection.errors.select\",\"id\":\"c713d391-c69a-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"c713d391-c69a-11ea-880f-352bebf10188\",\"id\":\"4ace8360-c69b-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(253,161,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"50c798b0-c69b-11ea-880f-352bebf10188\",\"label\":\"Peer Address\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.connection.errors.peer_address\",\"id\":\"50c798b1-c69b-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"50c798b1-c69b-11ea-880f-352bebf10188\",\"id\":\"78d49650-c69b-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Connection Errors [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0774bbb0-c69c-11ea-a106-5be590f42b74","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwODIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Commands Operations [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Select\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.command.select\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"e76f75d0-c6a0-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(219,223,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"ed3a0110-c6a0-11ea-880f-352bebf10188\",\"label\":\"Update\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.command.update\",\"id\":\"ed3a0111-c6a0-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"ed3a0111-c6a0-11ea-880f-352bebf10188\",\"id\":\"f961e1b0-c6a0-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"00b3f750-c6a1-11ea-880f-352bebf10188\",\"label\":\"Delete\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.command.delete\",\"id\":\"00b3f751-c6a1-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"00b3f751-c6a1-11ea-880f-352bebf10188\",\"id\":\"09f46f70-c6a1-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"0f38dac0-c6a1-11ea-880f-352bebf10188\",\"label\":\"Insert\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.command.insert\",\"id\":\"0f38dac1-c6a1-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"0f38dac1-c6a1-11ea-880f-352bebf10188\",\"id\":\"1d1cc340-c6a1-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Commands Operations [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3e5c4490-c6a1-11ea-a106-5be590f42b74","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwODMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SSL Cache [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Hits\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.cache.ssl.hits\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"1a353d40-c6ad-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(253,161,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"2dd02900-c6ad-11ea-880f-352bebf10188\",\"label\":\"Misses\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.cache.ssl.misses\",\"id\":\"2dd02901-c6ad-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"2dd02901-c6ad-11ea-880f-352bebf10188\",\"id\":\"327cc120-c6ad-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"3f459cb0-c6ad-11ea-880f-352bebf10188\",\"label\":\"Size\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.cache.ssl.size\",\"id\":\"3f459cb1-c6ad-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"3f459cb1-c6ad-11ea-880f-352bebf10188\",\"id\":\"426ccd50-c6ad-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SSL Cache [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8b276c80-c6ad-11ea-a106-5be590f42b74","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwODQsMV0="} +{"attributes":{"description":"Overview of MySQL server","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"14\",\"w\":16,\"x\":15,\"y\":38},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Open Tables, Files, Streams\",\"panelRefName\":\"panel_14\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"050b110b-0b4d-404a-86c0-fa97f7eed2a0\",\"w\":16,\"x\":0,\"y\":0},\"panelIndex\":\"050b110b-0b4d-404a-86c0-fa97f7eed2a0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Rate of Questions\",\"panelRefName\":\"panel_050b110b-0b4d-404a-86c0-fa97f7eed2a0\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"988a61d7-ac3e-481e-a6ae-aa75aaa32a3a\",\"w\":16,\"x\":16,\"y\":0},\"panelIndex\":\"988a61d7-ac3e-481e-a6ae-aa75aaa32a3a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Rate of SELECT statements\",\"panelRefName\":\"panel_988a61d7-ac3e-481e-a6ae-aa75aaa32a3a\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"a1f8fa38-a62f-4e05-adde-e995dae9ad83\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"a1f8fa38-a62f-4e05-adde-e995dae9ad83\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Rate of INSERT, UPDATE, DELETE\",\"panelRefName\":\"panel_a1f8fa38-a62f-4e05-adde-e995dae9ad83\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"d126fb61-605f-43af-b5d5-3fa3c128f726\",\"w\":6,\"x\":0,\"y\":12},\"panelIndex\":\"d126fb61-605f-43af-b5d5-3fa3c128f726\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Connected Threads\",\"panelRefName\":\"panel_d126fb61-605f-43af-b5d5-3fa3c128f726\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"59586d96-3abd-48a3-a258-cfd620826ec2\",\"w\":14,\"x\":6,\"y\":12},\"panelIndex\":\"59586d96-3abd-48a3-a258-cfd620826ec2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Connections\",\"panelRefName\":\"panel_59586d96-3abd-48a3-a258-cfd620826ec2\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"dd0cf202-fe22-4daf-8f25-09c64d412bf3\",\"w\":14,\"x\":20,\"y\":12},\"panelIndex\":\"dd0cf202-fe22-4daf-8f25-09c64d412bf3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Aborted Connections Rate\",\"panelRefName\":\"panel_dd0cf202-fe22-4daf-8f25-09c64d412bf3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"ead16a55-a2d3-49ae-a09b-a0b03560e9a0\",\"w\":14,\"x\":34,\"y\":12},\"panelIndex\":\"ead16a55-a2d3-49ae-a09b-a0b03560e9a0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Thread Activity\",\"panelRefName\":\"panel_ead16a55-a2d3-49ae-a09b-a0b03560e9a0\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"24fc2926-610d-4910-8f3e-eb63ca69788c\",\"w\":15,\"x\":0,\"y\":24},\"panelIndex\":\"24fc2926-610d-4910-8f3e-eb63ca69788c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Buffer Pool Pages\",\"panelRefName\":\"panel_24fc2926-610d-4910-8f3e-eb63ca69788c\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"33c10c95-be67-492e-afb5-863f375cffc2\",\"w\":16,\"x\":15,\"y\":24},\"panelIndex\":\"33c10c95-be67-492e-afb5-863f375cffc2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Buffer Pool Utilization\",\"panelRefName\":\"panel_33c10c95-be67-492e-afb5-863f375cffc2\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"d35d7c5e-8832-40e2-8c77-953ad320c853\",\"w\":17,\"x\":31,\"y\":24},\"panelIndex\":\"d35d7c5e-8832-40e2-8c77-953ad320c853\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Buffer Pool Efficiency\",\"panelRefName\":\"panel_d35d7c5e-8832-40e2-8c77-953ad320c853\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3cd58868-0d03-4715-9ecc-9fba3cde47c1\",\"w\":15,\"x\":0,\"y\":38},\"panelIndex\":\"3cd58868-0d03-4715-9ecc-9fba3cde47c1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Network Traffic\",\"panelRefName\":\"panel_3cd58868-0d03-4715-9ecc-9fba3cde47c1\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"277c8209-3c5f-41f5-95f4-de0782917fba\",\"w\":17,\"x\":31,\"y\":38},\"panelIndex\":\"277c8209-3c5f-41f5-95f4-de0782917fba\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Open Tables Cache\",\"panelRefName\":\"panel_277c8209-3c5f-41f5-95f4-de0782917fba\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"9487b742-3e7f-4d57-af32-014ad360235c\",\"w\":13,\"x\":0,\"y\":53},\"panelIndex\":\"9487b742-3e7f-4d57-af32-014ad360235c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Connection Errors\",\"panelRefName\":\"panel_9487b742-3e7f-4d57-af32-014ad360235c\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"00cd9f15-01bd-43f3-a8c5-43d6ff17dad3\",\"w\":20,\"x\":13,\"y\":53},\"panelIndex\":\"00cd9f15-01bd-43f3-a8c5-43d6ff17dad3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Commands Operations\",\"panelRefName\":\"panel_00cd9f15-01bd-43f3-a8c5-43d6ff17dad3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"cd4deb30-c0dd-4f23-8868-ecffd73b2406\",\"w\":15,\"x\":33,\"y\":53},\"panelIndex\":\"cd4deb30-c0dd-4f23-8868-ecffd73b2406\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SSL Cache\",\"panelRefName\":\"panel_cd4deb30-c0dd-4f23-8868-ecffd73b2406\"}]","timeRestore":false,"title":"[Metricbeat MySQL] Database Overview","version":1},"coreMigrationVersion":"8.0.0","id":"57b3fb50-6309-11ea-a83e-25b8612d00cc","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"aaa326b0-f1f5-11e7-85ab-594b1652e0d1-ecs","name":"14:panel_14","type":"visualization"},{"id":"4fa69a10-630b-11ea-a83e-25b8612d00cc","name":"050b110b-0b4d-404a-86c0-fa97f7eed2a0:panel_050b110b-0b4d-404a-86c0-fa97f7eed2a0","type":"visualization"},{"id":"7ea77d30-630a-11ea-a83e-25b8612d00cc","name":"988a61d7-ac3e-481e-a6ae-aa75aaa32a3a:panel_988a61d7-ac3e-481e-a6ae-aa75aaa32a3a","type":"visualization"},{"id":"779ee920-6309-11ea-a83e-25b8612d00cc","name":"a1f8fa38-a62f-4e05-adde-e995dae9ad83:panel_a1f8fa38-a62f-4e05-adde-e995dae9ad83","type":"visualization"},{"id":"fc6b5a40-630d-11ea-a83e-25b8612d00cc","name":"d126fb61-605f-43af-b5d5-3fa3c128f726:panel_d126fb61-605f-43af-b5d5-3fa3c128f726","type":"visualization"},{"id":"493e8460-630d-11ea-a83e-25b8612d00cc","name":"59586d96-3abd-48a3-a258-cfd620826ec2:panel_59586d96-3abd-48a3-a258-cfd620826ec2","type":"visualization"},{"id":"bf60bc10-639b-11ea-a83e-25b8612d00cc","name":"dd0cf202-fe22-4daf-8f25-09c64d412bf3:panel_dd0cf202-fe22-4daf-8f25-09c64d412bf3","type":"visualization"},{"id":"822df290-630f-11ea-a83e-25b8612d00cc","name":"ead16a55-a2d3-49ae-a09b-a0b03560e9a0:panel_ead16a55-a2d3-49ae-a09b-a0b03560e9a0","type":"visualization"},{"id":"98c7bca0-63a2-11ea-a83e-25b8612d00cc","name":"24fc2926-610d-4910-8f3e-eb63ca69788c:panel_24fc2926-610d-4910-8f3e-eb63ca69788c","type":"visualization"},{"id":"96d46630-63a4-11ea-a83e-25b8612d00cc","name":"33c10c95-be67-492e-afb5-863f375cffc2:panel_33c10c95-be67-492e-afb5-863f375cffc2","type":"visualization"},{"id":"a1e00160-63a4-11ea-a83e-25b8612d00cc","name":"d35d7c5e-8832-40e2-8c77-953ad320c853:panel_d35d7c5e-8832-40e2-8c77-953ad320c853","type":"visualization"},{"id":"c8661020-6310-11ea-a83e-25b8612d00cc","name":"3cd58868-0d03-4715-9ecc-9fba3cde47c1:panel_3cd58868-0d03-4715-9ecc-9fba3cde47c1","type":"visualization"},{"id":"cd72e030-c6a6-11ea-a106-5be590f42b74","name":"277c8209-3c5f-41f5-95f4-de0782917fba:panel_277c8209-3c5f-41f5-95f4-de0782917fba","type":"visualization"},{"id":"0774bbb0-c69c-11ea-a106-5be590f42b74","name":"9487b742-3e7f-4d57-af32-014ad360235c:panel_9487b742-3e7f-4d57-af32-014ad360235c","type":"visualization"},{"id":"3e5c4490-c6a1-11ea-a106-5be590f42b74","name":"00cd9f15-01bd-43f3-a8c5-43d6ff17dad3:panel_00cd9f15-01bd-43f3-a8c5-43d6ff17dad3","type":"visualization"},{"id":"8b276c80-c6ad-11ea-a106-5be590f42b74","name":"cd4deb30-c0dd-4f23-8868-ecffd73b2406:panel_cd4deb30-c0dd-4f23-8868-ecffd73b2406","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNjgsMV0="} diff --git a/metricbeat/module/mysql/module.yml b/metricbeat/module/mysql/module.yml index d07603c6179..55008b1a940 100644 --- a/metricbeat/module/mysql/module.yml +++ b/metricbeat/module/mysql/module.yml @@ -1,6 +1,6 @@ dashboards: - id: 66881e90-0006-11e7-bf7f-c9acc3d3e306 - file: Metricbeat-mysql-overview.json + file: Metricbeat-mysql-overview.ndjson name: mysql metricsets: - performance diff --git a/metricbeat/module/nats/_meta/kibana/7/dashboard/Metricbeat-nats-overview.json b/metricbeat/module/nats/_meta/kibana/7/dashboard/Metricbeat-nats-overview.json deleted file mode 100644 index 99537cafeec..00000000000 --- a/metricbeat/module/nats/_meta/kibana/7/dashboard/Metricbeat-nats-overview.json +++ /dev/null @@ -1,1801 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of NATS server status", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Subscriptions Info" - }, - "gridData": { - "h": 11, - "i": "6", - "w": 24, - "x": 0, - "y": 38 - }, - "panelIndex": "6", - "panelRefName": "panel_0", - "title": "Subscriptions Info", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "title": "Server Uptime" - }, - "gridData": { - "h": 11, - "i": "8", - "w": 24, - "x": 24, - "y": 38 - }, - "panelIndex": "8", - "panelRefName": "panel_1", - "title": "Server Uptime", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "title": "Subscriptions Stats Timeline" - }, - "gridData": { - "h": 10, - "i": "12", - "w": 13, - "x": 11, - "y": 28 - }, - "panelIndex": "12", - "panelRefName": "panel_2", - "title": "Subscriptions Stats Timeline", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "title": "Cache Hit Rate Timeline" - }, - "gridData": { - "h": 10, - "i": "18", - "w": 12, - "x": 24, - "y": 28 - }, - "panelIndex": "18", - "panelRefName": "panel_3", - "title": "Cache Hit Rate Timeline", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "title": "Memory Usage" - }, - "gridData": { - "h": 8, - "i": "4ffa8ccd-bd36-4eaf-973e-688b3025e95c", - "w": 15, - "x": 0, - "y": 0 - }, - "panelIndex": "4ffa8ccd-bd36-4eaf-973e-688b3025e95c", - "panelRefName": "panel_4", - "title": "Memory Usage", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "title": "Incoming Bytes Rate" - }, - "gridData": { - "h": 8, - "i": "b07d6b97-c0b5-4663-8507-8d3cc2a63367", - "w": 16, - "x": 15, - "y": 0 - }, - "panelIndex": "b07d6b97-c0b5-4663-8507-8d3cc2a63367", - "panelRefName": "panel_5", - "title": "Incoming Bytes Rate", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "title": "Connection Incoming Bytes" - }, - "gridData": { - "h": 8, - "i": "eb420bb0-754e-4544-bc1f-027568db1c8c", - "w": 17, - "x": 31, - "y": 0 - }, - "panelIndex": "eb420bb0-754e-4544-bc1f-027568db1c8c", - "panelRefName": "panel_6", - "title": "Connection Incoming Bytes", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "title": "Incoming Messages Rate" - }, - "gridData": { - "h": 10, - "i": "1ed3e570-4ece-42a4-92b1-fdc19e3e1ad5", - "w": 15, - "x": 0, - "y": 8 - }, - "panelIndex": "1ed3e570-4ece-42a4-92b1-fdc19e3e1ad5", - "panelRefName": "panel_7", - "title": "Incoming Messages Rate", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "title": "Connections" - }, - "gridData": { - "h": 10, - "i": "ed6181bc-4274-400a-a9d8-a84a027a4a77", - "w": 16, - "x": 15, - "y": 8 - }, - "panelIndex": "ed6181bc-4274-400a-a9d8-a84a027a4a77", - "panelRefName": "panel_8", - "title": "Connections", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "title": "Connections Uptime" - }, - "gridData": { - "h": 10, - "i": "7862e4cd-22db-493b-a3be-247570eaaa8a", - "w": 17, - "x": 31, - "y": 8 - }, - "panelIndex": "7862e4cd-22db-493b-a3be-247570eaaa8a", - "panelRefName": "panel_9", - "title": "Connections Uptime", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "title": "Total Routes" - }, - "gridData": { - "h": 10, - "i": "5c6f0fdf-67e6-4a39-8543-d46c3f833ac6", - "w": 15, - "x": 0, - "y": 18 - }, - "panelIndex": "5c6f0fdf-67e6-4a39-8543-d46c3f833ac6", - "panelRefName": "panel_10", - "title": "Total Routes", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "title": "Total Connections" - }, - "gridData": { - "h": 10, - "i": "258a5243-55f6-4195-90cb-ef3ec94707db", - "w": 16, - "x": 15, - "y": 18 - }, - "panelIndex": "258a5243-55f6-4195-90cb-ef3ec94707db", - "panelRefName": "panel_11", - "title": "Total Connections", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "title": "Connection Pending Bytes" - }, - "gridData": { - "h": 10, - "i": "0e68fd8a-abd9-4391-b2d0-026e79714835", - "w": 17, - "x": 31, - "y": 18 - }, - "panelIndex": "0e68fd8a-abd9-4391-b2d0-026e79714835", - "panelRefName": "panel_12", - "title": "Connection Pending Bytes", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Slow Consumers" - }, - "gridData": { - "h": 10, - "i": "3141f1f6-d2d1-4b3f-8a7a-7d915bcb5d7c", - "w": 11, - "x": 0, - "y": 28 - }, - "panelIndex": "3141f1f6-d2d1-4b3f-8a7a-7d915bcb5d7c", - "panelRefName": "panel_13", - "title": "Slow Consumers", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Subscription Cache Actions" - }, - "gridData": { - "h": 10, - "i": "66f0d0ac-bf45-40e3-ba8c-32d6360e8584", - "w": 12, - "x": 36, - "y": 28 - }, - "panelIndex": "66f0d0ac-bf45-40e3-ba8c-32d6360e8584", - "panelRefName": "panel_14", - "title": "Subscription Cache Actions", - "version": "7.10.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat NATS] Overview ECS", - "version": 1 - }, - "id": "Metricbeat-Nats-Dashboard-ecs", - "migrationVersion": { - "dashboard": "7.9.3" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "b129b220-1e44-11e9-a1b4-79a7ae42ab61-ecs", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "206f1bc0-1e45-11e9-a1b4-79a7ae42ab61-ecs", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "754215c0-1e46-11e9-a1b4-79a7ae42ab61-ecs", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "dff743a0-1f1c-11e9-a673-d9577e5e50eb-ecs", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "b877eb90-2988-11eb-8245-71f739a9f622", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "d3142a50-2987-11eb-8245-71f739a9f622", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "5146f2a0-2987-11eb-8245-71f739a9f622", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "eeb33da0-2987-11eb-8245-71f739a9f622", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "431edfc0-2988-11eb-8245-71f739a9f622", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "898d2fe0-2986-11eb-8245-71f739a9f622", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "3a670a80-2986-11eb-8245-71f739a9f622", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "55c2d340-2986-11eb-8245-71f739a9f622", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "68d40020-2987-11eb-8245-71f739a9f622", - "name": "panel_12", - "type": "visualization" - }, - { - "id": "84e60a90-2a79-11eb-952d-594e5c56d011", - "name": "panel_13", - "type": "visualization" - }, - { - "id": "d80d4c30-2a81-11eb-9625-31ed579c09b3", - "name": "panel_14", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-11-19T16:12:16.796Z", - "version": "WzM3MDAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Subscriptions Info [Metricbeat NATS] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Cache Fanout Avg", - "field": "nats.subscriptions.cache.fanout.avg" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Cache Fanout Max", - "field": "nats.subscriptions.cache.fanout.max" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Cache Hit Rate", - "field": "nats.subscriptions.cache.hit_rate" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Cache Size", - "field": "nats.subscriptions.cache.size" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Inserts", - "field": "nats.subscriptions.inserts" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "Matches", - "field": "nats.subscriptions.matches" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "7", - "params": { - "customLabel": "Removes", - "field": "nats.subscriptions.removes" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "8", - "params": { - "customLabel": "Total", - "field": "nats.subscriptions.total" - }, - "schema": "metric", - "type": "avg" - } - ], - "params": { - "perPage": 1, - "showMeticsAtAllLevels": false, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Subscriptions Info [Metricbeat NATS] ECS", - "type": "table" - } - }, - "id": "b129b220-1e44-11e9-a1b4-79a7ae42ab61-ecs", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-11-19T15:52:48.969Z", - "version": "WzI1MywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Server Uptime [Metricbeat NATS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Server Uptime", - "field": "nats.stats.uptime" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "nats.server.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 42, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Server Uptime [Metricbeat NATS] ECS", - "type": "metric" - } - }, - "id": "206f1bc0-1e45-11e9-a1b4-79a7ae42ab61-ecs", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-11-19T15:52:48.969Z", - "version": "WzI1NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Subscription Stats Timeline [Metricbeat NATS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Cache Fanout Avg", - "field": "nats.subscriptions.cache.fanout.avg" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 0, - "scaleMetricValues": false, - "timeRange": { - "from": "now-15m", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Cache Fanout Max", - "field": "nats.subscriptions.cache.fanout.max" - }, - "schema": "metric", - "type": "avg" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "labels": {}, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Cache Fanout Avg" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "3", - "label": "Cache Fanout Max" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Cache Fanout Avg" - }, - "type": "value" - } - ] - }, - "title": "Subscription Stats Timeline [Metricbeat NATS] ECS", - "type": "line" - } - }, - "id": "754215c0-1e46-11e9-a1b4-79a7ae42ab61-ecs", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-11-19T15:52:48.969Z", - "version": "WzI1NSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Cache Hit Rate Timeline [Metricbeat NATS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Cache Hit Rate", - "field": "nats.subscriptions.cache.hit_rate" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Cache Hit Rate" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Cache Hit Rate (%)" - }, - "type": "value" - } - ] - }, - "title": "Cache Hit Rate Timeline [Metricbeat NATS] ECS", - "type": "line" - } - }, - "id": "dff743a0-1f1c-11e9-a673-d9577e5e50eb-ecs", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-11-19T15:52:48.969Z", - "version": "WzI1NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Memory Usage [Metricbeat NATS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "e4c53250-2985-11eb-9192-5db805fbad79", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "bytes", - "id": "e4c53251-2985-11eb-9192-5db805fbad79", - "label": "Memory Usage", - "line_width": 2, - "metrics": [ - { - "field": "nats.stats.mem.bytes", - "id": "e4c53252-2985-11eb-9192-5db805fbad79", - "type": "avg", - "unit": "" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "nats.server.id", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Memory Usage [Metricbeat NATS]", - "type": "metrics" - } - }, - "id": "b877eb90-2988-11eb-8245-71f739a9f622", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-11-19T15:52:48.969Z", - "version": "WzI1NywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Incoming Bytes Rate [Metricbeat NATS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "e4c53250-2985-11eb-9192-5db805fbad79", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "bytes", - "id": "e4c53251-2985-11eb-9192-5db805fbad79", - "label": "Incoming Bytes Rate", - "line_width": 2, - "metrics": [ - { - "field": "nats.stats.in.bytes", - "id": "e4c53252-2985-11eb-9192-5db805fbad79", - "type": "positive_rate" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "nats.server.id", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Incoming Bytes Rate [Metricbeat NATS]", - "type": "metrics" - } - }, - "id": "d3142a50-2987-11eb-8245-71f739a9f622", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-11-19T15:52:48.969Z", - "version": "WzI1OCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Connection Incoming Bytes [Metricbeat NATS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "e4c53250-2985-11eb-9192-5db805fbad79", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "bytes", - "id": "e4c53251-2985-11eb-9192-5db805fbad79", - "label": "Connection Incoming Bytes", - "line_width": 2, - "metrics": [ - { - "field": "nats.connection.in.bytes", - "id": "e4c53252-2985-11eb-9192-5db805fbad79", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "nats.connection.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Connection Incoming Bytes [Metricbeat NATS]", - "type": "metrics" - } - }, - "id": "5146f2a0-2987-11eb-8245-71f739a9f622", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-11-19T15:52:48.969Z", - "version": "WzI1OSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Incoming Messages Rate [Metricbeat NATS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "e4c53250-2985-11eb-9192-5db805fbad79", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "number", - "id": "e4c53251-2985-11eb-9192-5db805fbad79", - "label": "Incoming Messages Rate", - "line_width": 2, - "metrics": [ - { - "field": "nats.stats.in.messages", - "id": "e4c53252-2985-11eb-9192-5db805fbad79", - "type": "positive_rate", - "unit": "" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "nats.server.id", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Incoming Messages Rate [Metricbeat NATS]", - "type": "metrics" - } - }, - "id": "eeb33da0-2987-11eb-8245-71f739a9f622", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-11-19T15:52:48.969Z", - "version": "WzI2MCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Connections [Metricbeat NATS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "e4c53250-2985-11eb-9192-5db805fbad79", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "number", - "id": "e4c53251-2985-11eb-9192-5db805fbad79", - "label": "Connections", - "line_width": 2, - "metrics": [ - { - "field": "nats.stats.total_connections", - "id": "e4c53252-2985-11eb-9192-5db805fbad79", - "type": "positive_rate", - "unit": "" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "nats.server.id", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Connections [Metricbeat NATS]", - "type": "metrics" - } - }, - "id": "431edfc0-2988-11eb-8245-71f739a9f622", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-11-19T15:52:48.969Z", - "version": "WzI2MSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Connections Uptime [Metricbeat NATS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "e4c53250-2985-11eb-9192-5db805fbad79", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "s,s,", - "id": "e4c53251-2985-11eb-9192-5db805fbad79", - "label": "Connection Uptime", - "line_width": 2, - "metrics": [ - { - "field": "nats.connection.uptime", - "id": "e4c53252-2985-11eb-9192-5db805fbad79", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "nats.connection.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Connections Uptime [Metricbeat NATS]", - "type": "metrics" - } - }, - "id": "898d2fe0-2986-11eb-8245-71f739a9f622", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-11-19T15:52:48.969Z", - "version": "WzI2MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Total Routes [Metricbeat NATS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "e4c53250-2985-11eb-9192-5db805fbad79", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "number", - "id": "e4c53251-2985-11eb-9192-5db805fbad79", - "label": "Routes", - "line_width": 2, - "metrics": [ - { - "field": "nats.routes.total", - "id": "e4c53252-2985-11eb-9192-5db805fbad79", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "nats.server.id", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Total Routes [Metricbeat NATS]", - "type": "metrics" - } - }, - "id": "3a670a80-2986-11eb-8245-71f739a9f622", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-11-19T15:52:48.969Z", - "version": "WzI2MywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Total Connections [Metricbeat NATS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "e4c53250-2985-11eb-9192-5db805fbad79", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "number", - "id": "e4c53251-2985-11eb-9192-5db805fbad79", - "label": "Connections", - "line_width": 2, - "metrics": [ - { - "field": "nats.connections.total", - "id": "e4c53252-2985-11eb-9192-5db805fbad79", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "nats.server.id", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Total Connections [Metricbeat NATS]", - "type": "metrics" - } - }, - "id": "55c2d340-2986-11eb-8245-71f739a9f622", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-11-19T15:52:48.969Z", - "version": "WzI2NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Connection Pending Bytes [Metricbeat NATS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "e4c53250-2985-11eb-9192-5db805fbad79", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "bytes", - "id": "e4c53251-2985-11eb-9192-5db805fbad79", - "label": "Connection Pending Bytes", - "line_width": 2, - "metrics": [ - { - "field": "nats.connection.pending_bytes", - "id": "e4c53252-2985-11eb-9192-5db805fbad79", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "nats.connection.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Connection Pending Bytes [Metricbeat NATS]", - "type": "metrics" - } - }, - "id": "68d40020-2987-11eb-8245-71f739a9f622", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-11-19T15:52:48.969Z", - "version": "WzI2NSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Slow Consumers [Metricbeat NATS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "e4c53250-2985-11eb-9192-5db805fbad79", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "number", - "id": "e4c53251-2985-11eb-9192-5db805fbad79", - "label": "Slow Consumers", - "line_width": 2, - "metrics": [ - { - "field": "nats.stats.slow_consumers", - "id": "e4c53252-2985-11eb-9192-5db805fbad79", - "type": "avg", - "unit": "" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "nats.server.id", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Slow Consumers [Metricbeat NATS]", - "type": "metrics" - } - }, - "id": "84e60a90-2a79-11eb-952d-594e5c56d011", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-11-19T15:52:48.969Z", - "version": "WzI2NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Subscription Cache Actions [Metricbeat NATS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "a9b96760-2a81-11eb-8cd4-770b42226f97", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "number", - "id": "a9b96761-2a81-11eb-8cd4-770b42226f97", - "label": "rate(inserts)", - "line_width": 2, - "metrics": [ - { - "field": "nats.subscriptions.inserts", - "id": "a9b96762-2a81-11eb-8cd4-770b42226f97", - "type": "max" - }, - { - "field": "a9b96762-2a81-11eb-8cd4-770b42226f97", - "id": "a9b96764-2a81-11eb-8cd4-770b42226f97", - "type": "derivative", - "unit": "1s" - }, - { - "field": "a9b96764-2a81-11eb-8cd4-770b42226f97", - "id": "a9b96763-2a81-11eb-8cd4-770b42226f97", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}/s" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#D36086", - "fill": 0, - "formatter": "number", - "id": "a9b96765-2a81-11eb-8cd4-770b42226f97", - "label": "rate(removes)", - "line_width": 2, - "metrics": [ - { - "field": "nats.subscriptions.removes", - "id": "a9b96766-2a81-11eb-8cd4-770b42226f97", - "type": "max" - }, - { - "field": "a9b96766-2a81-11eb-8cd4-770b42226f97", - "id": "a9b96768-2a81-11eb-8cd4-770b42226f97", - "type": "derivative", - "unit": "1s" - }, - { - "field": "a9b96768-2a81-11eb-8cd4-770b42226f97", - "id": "a9b96767-2a81-11eb-8cd4-770b42226f97", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}/s" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#54B399", - "fill": 0, - "formatter": "number", - "id": "a9b96769-2a81-11eb-8cd4-770b42226f97", - "label": "rate(matches)", - "line_width": 2, - "metrics": [ - { - "field": "nats.subscriptions.matches", - "id": "a9b9676a-2a81-11eb-8cd4-770b42226f97", - "type": "max" - }, - { - "field": "a9b9676a-2a81-11eb-8cd4-770b42226f97", - "id": "a9b9676c-2a81-11eb-8cd4-770b42226f97", - "type": "derivative", - "unit": "1s" - }, - { - "field": "a9b9676c-2a81-11eb-8cd4-770b42226f97", - "id": "a9b9676b-2a81-11eb-8cd4-770b42226f97", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}/s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Subscription Cache Actions [Metricbeat NATS]", - "type": "metrics" - } - }, - "id": "d80d4c30-2a81-11eb-9625-31ed579c09b3", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-11-19T16:11:12.882Z", - "version": "WzMyNjEsMV0=" - } - ], - "version": "7.10.0" -} diff --git a/metricbeat/module/nats/_meta/kibana/7/dashboard/Metricbeat-nats-overview.ndjson b/metricbeat/module/nats/_meta/kibana/7/dashboard/Metricbeat-nats-overview.ndjson new file mode 100644 index 00000000000..1de395ccfa6 --- /dev/null +++ b/metricbeat/module/nats/_meta/kibana/7/dashboard/Metricbeat-nats-overview.ndjson @@ -0,0 +1,16 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Subscriptions Info [Metricbeat NATS] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Cache Fanout Avg\",\"field\":\"nats.subscriptions.cache.fanout.avg\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Cache Fanout Max\",\"field\":\"nats.subscriptions.cache.fanout.max\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Cache Hit Rate\",\"field\":\"nats.subscriptions.cache.hit_rate\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Cache Size\",\"field\":\"nats.subscriptions.cache.size\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Inserts\",\"field\":\"nats.subscriptions.inserts\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Matches\",\"field\":\"nats.subscriptions.matches\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"Removes\",\"field\":\"nats.subscriptions.removes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"Total\",\"field\":\"nats.subscriptions.total\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"perPage\":1,\"showMeticsAtAllLevels\":false,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Subscriptions Info [Metricbeat NATS] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"b129b220-1e44-11e9-a1b4-79a7ae42ab61-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwODYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Server Uptime [Metricbeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Server Uptime\",\"field\":\"nats.stats.uptime\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"nats.server.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":42,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Server Uptime [Metricbeat NATS] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"206f1bc0-1e45-11e9-a1b4-79a7ae42ab61-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwODcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Subscription Stats Timeline [Metricbeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Cache Fanout Avg\",\"field\":\"nats.subscriptions.cache.fanout.avg\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":0,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-15m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Cache Fanout Max\",\"field\":\"nats.subscriptions.cache.fanout.max\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Cache Fanout Avg\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Cache Fanout Max\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Cache Fanout Avg\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Subscription Stats Timeline [Metricbeat NATS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"754215c0-1e46-11e9-a1b4-79a7ae42ab61-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwODgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Cache Hit Rate Timeline [Metricbeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Cache Hit Rate\",\"field\":\"nats.subscriptions.cache.hit_rate\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Cache Hit Rate\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Cache Hit Rate (%)\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Cache Hit Rate Timeline [Metricbeat NATS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"dff743a0-1f1c-11e9-a673-d9577e5e50eb-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwODksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Memory Usage [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Memory Usage\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.stats.mem.bytes\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"avg\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.server.id\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Memory Usage [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b877eb90-2988-11eb-8245-71f739a9f622","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Incoming Bytes Rate [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Incoming Bytes Rate\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.stats.in.bytes\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"positive_rate\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.server.id\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Incoming Bytes Rate [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d3142a50-2987-11eb-8245-71f739a9f622","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connection Incoming Bytes [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Connection Incoming Bytes\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.connection.in.bytes\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.connection.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Connection Incoming Bytes [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5146f2a0-2987-11eb-8245-71f739a9f622","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Incoming Messages Rate [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Incoming Messages Rate\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.stats.in.messages\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"positive_rate\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.server.id\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Incoming Messages Rate [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"eeb33da0-2987-11eb-8245-71f739a9f622","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Connections\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.stats.total_connections\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"positive_rate\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.server.id\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Connections [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"431edfc0-2988-11eb-8245-71f739a9f622","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections Uptime [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"s,s,\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Connection Uptime\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.connection.uptime\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.connection.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Connections Uptime [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"898d2fe0-2986-11eb-8245-71f739a9f622","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total Routes [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Routes\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.routes.total\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.server.id\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Total Routes [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3a670a80-2986-11eb-8245-71f739a9f622","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total Connections [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Connections\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.connections.total\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.server.id\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Total Connections [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"55c2d340-2986-11eb-8245-71f739a9f622","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connection Pending Bytes [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Connection Pending Bytes\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.connection.pending_bytes\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.connection.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Connection Pending Bytes [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"68d40020-2987-11eb-8245-71f739a9f622","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Slow Consumers [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Slow Consumers\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.stats.slow_consumers\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"avg\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.server.id\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Slow Consumers [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"84e60a90-2a79-11eb-952d-594e5c56d011","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Subscription Cache Actions [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"a9b96760-2a81-11eb-8cd4-770b42226f97\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"a9b96761-2a81-11eb-8cd4-770b42226f97\",\"label\":\"rate(inserts)\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.subscriptions.inserts\",\"id\":\"a9b96762-2a81-11eb-8cd4-770b42226f97\",\"type\":\"max\"},{\"field\":\"a9b96762-2a81-11eb-8cd4-770b42226f97\",\"id\":\"a9b96764-2a81-11eb-8cd4-770b42226f97\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"a9b96764-2a81-11eb-8cd4-770b42226f97\",\"id\":\"a9b96763-2a81-11eb-8cd4-770b42226f97\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}/s\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#D36086\",\"fill\":0,\"formatter\":\"number\",\"id\":\"a9b96765-2a81-11eb-8cd4-770b42226f97\",\"label\":\"rate(removes)\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.subscriptions.removes\",\"id\":\"a9b96766-2a81-11eb-8cd4-770b42226f97\",\"type\":\"max\"},{\"field\":\"a9b96766-2a81-11eb-8cd4-770b42226f97\",\"id\":\"a9b96768-2a81-11eb-8cd4-770b42226f97\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"a9b96768-2a81-11eb-8cd4-770b42226f97\",\"id\":\"a9b96767-2a81-11eb-8cd4-770b42226f97\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}/s\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#54B399\",\"fill\":0,\"formatter\":\"number\",\"id\":\"a9b96769-2a81-11eb-8cd4-770b42226f97\",\"label\":\"rate(matches)\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.subscriptions.matches\",\"id\":\"a9b9676a-2a81-11eb-8cd4-770b42226f97\",\"type\":\"max\"},{\"field\":\"a9b9676a-2a81-11eb-8cd4-770b42226f97\",\"id\":\"a9b9676c-2a81-11eb-8cd4-770b42226f97\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"a9b9676c-2a81-11eb-8cd4-770b42226f97\",\"id\":\"a9b9676b-2a81-11eb-8cd4-770b42226f97\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Subscription Cache Actions [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d80d4c30-2a81-11eb-9625-31ed579c09b3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQxMDAsMV0="} +{"attributes":{"description":"Overview of NATS server status","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":38},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Subscriptions Info\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":38},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Server Uptime\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"12\",\"w\":13,\"x\":11,\"y\":28},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Subscriptions Stats Timeline\",\"panelRefName\":\"panel_12\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"18\",\"w\":12,\"x\":24,\"y\":28},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cache Hit Rate Timeline\",\"panelRefName\":\"panel_18\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"4ffa8ccd-bd36-4eaf-973e-688b3025e95c\",\"w\":15,\"x\":0,\"y\":0},\"panelIndex\":\"4ffa8ccd-bd36-4eaf-973e-688b3025e95c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Memory Usage\",\"panelRefName\":\"panel_4ffa8ccd-bd36-4eaf-973e-688b3025e95c\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"b07d6b97-c0b5-4663-8507-8d3cc2a63367\",\"w\":16,\"x\":15,\"y\":0},\"panelIndex\":\"b07d6b97-c0b5-4663-8507-8d3cc2a63367\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Incoming Bytes Rate\",\"panelRefName\":\"panel_b07d6b97-c0b5-4663-8507-8d3cc2a63367\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"eb420bb0-754e-4544-bc1f-027568db1c8c\",\"w\":17,\"x\":31,\"y\":0},\"panelIndex\":\"eb420bb0-754e-4544-bc1f-027568db1c8c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Connection Incoming Bytes\",\"panelRefName\":\"panel_eb420bb0-754e-4544-bc1f-027568db1c8c\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1ed3e570-4ece-42a4-92b1-fdc19e3e1ad5\",\"w\":15,\"x\":0,\"y\":8},\"panelIndex\":\"1ed3e570-4ece-42a4-92b1-fdc19e3e1ad5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Incoming Messages Rate\",\"panelRefName\":\"panel_1ed3e570-4ece-42a4-92b1-fdc19e3e1ad5\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"ed6181bc-4274-400a-a9d8-a84a027a4a77\",\"w\":16,\"x\":15,\"y\":8},\"panelIndex\":\"ed6181bc-4274-400a-a9d8-a84a027a4a77\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Connections\",\"panelRefName\":\"panel_ed6181bc-4274-400a-a9d8-a84a027a4a77\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"7862e4cd-22db-493b-a3be-247570eaaa8a\",\"w\":17,\"x\":31,\"y\":8},\"panelIndex\":\"7862e4cd-22db-493b-a3be-247570eaaa8a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Connections Uptime\",\"panelRefName\":\"panel_7862e4cd-22db-493b-a3be-247570eaaa8a\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"5c6f0fdf-67e6-4a39-8543-d46c3f833ac6\",\"w\":15,\"x\":0,\"y\":18},\"panelIndex\":\"5c6f0fdf-67e6-4a39-8543-d46c3f833ac6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Routes\",\"panelRefName\":\"panel_5c6f0fdf-67e6-4a39-8543-d46c3f833ac6\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"258a5243-55f6-4195-90cb-ef3ec94707db\",\"w\":16,\"x\":15,\"y\":18},\"panelIndex\":\"258a5243-55f6-4195-90cb-ef3ec94707db\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Connections\",\"panelRefName\":\"panel_258a5243-55f6-4195-90cb-ef3ec94707db\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"0e68fd8a-abd9-4391-b2d0-026e79714835\",\"w\":17,\"x\":31,\"y\":18},\"panelIndex\":\"0e68fd8a-abd9-4391-b2d0-026e79714835\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Connection Pending Bytes\",\"panelRefName\":\"panel_0e68fd8a-abd9-4391-b2d0-026e79714835\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3141f1f6-d2d1-4b3f-8a7a-7d915bcb5d7c\",\"w\":11,\"x\":0,\"y\":28},\"panelIndex\":\"3141f1f6-d2d1-4b3f-8a7a-7d915bcb5d7c\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Slow Consumers\",\"panelRefName\":\"panel_3141f1f6-d2d1-4b3f-8a7a-7d915bcb5d7c\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"66f0d0ac-bf45-40e3-ba8c-32d6360e8584\",\"w\":12,\"x\":36,\"y\":28},\"panelIndex\":\"66f0d0ac-bf45-40e3-ba8c-32d6360e8584\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Subscription Cache Actions\",\"panelRefName\":\"panel_66f0d0ac-bf45-40e3-ba8c-32d6360e8584\"}]","timeRestore":false,"title":"[Metricbeat NATS] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Metricbeat-Nats-Dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"b129b220-1e44-11e9-a1b4-79a7ae42ab61-ecs","name":"6:panel_6","type":"visualization"},{"id":"206f1bc0-1e45-11e9-a1b4-79a7ae42ab61-ecs","name":"8:panel_8","type":"visualization"},{"id":"754215c0-1e46-11e9-a1b4-79a7ae42ab61-ecs","name":"12:panel_12","type":"visualization"},{"id":"dff743a0-1f1c-11e9-a673-d9577e5e50eb-ecs","name":"18:panel_18","type":"visualization"},{"id":"b877eb90-2988-11eb-8245-71f739a9f622","name":"4ffa8ccd-bd36-4eaf-973e-688b3025e95c:panel_4ffa8ccd-bd36-4eaf-973e-688b3025e95c","type":"visualization"},{"id":"d3142a50-2987-11eb-8245-71f739a9f622","name":"b07d6b97-c0b5-4663-8507-8d3cc2a63367:panel_b07d6b97-c0b5-4663-8507-8d3cc2a63367","type":"visualization"},{"id":"5146f2a0-2987-11eb-8245-71f739a9f622","name":"eb420bb0-754e-4544-bc1f-027568db1c8c:panel_eb420bb0-754e-4544-bc1f-027568db1c8c","type":"visualization"},{"id":"eeb33da0-2987-11eb-8245-71f739a9f622","name":"1ed3e570-4ece-42a4-92b1-fdc19e3e1ad5:panel_1ed3e570-4ece-42a4-92b1-fdc19e3e1ad5","type":"visualization"},{"id":"431edfc0-2988-11eb-8245-71f739a9f622","name":"ed6181bc-4274-400a-a9d8-a84a027a4a77:panel_ed6181bc-4274-400a-a9d8-a84a027a4a77","type":"visualization"},{"id":"898d2fe0-2986-11eb-8245-71f739a9f622","name":"7862e4cd-22db-493b-a3be-247570eaaa8a:panel_7862e4cd-22db-493b-a3be-247570eaaa8a","type":"visualization"},{"id":"3a670a80-2986-11eb-8245-71f739a9f622","name":"5c6f0fdf-67e6-4a39-8543-d46c3f833ac6:panel_5c6f0fdf-67e6-4a39-8543-d46c3f833ac6","type":"visualization"},{"id":"55c2d340-2986-11eb-8245-71f739a9f622","name":"258a5243-55f6-4195-90cb-ef3ec94707db:panel_258a5243-55f6-4195-90cb-ef3ec94707db","type":"visualization"},{"id":"68d40020-2987-11eb-8245-71f739a9f622","name":"0e68fd8a-abd9-4391-b2d0-026e79714835:panel_0e68fd8a-abd9-4391-b2d0-026e79714835","type":"visualization"},{"id":"84e60a90-2a79-11eb-952d-594e5c56d011","name":"3141f1f6-d2d1-4b3f-8a7a-7d915bcb5d7c:panel_3141f1f6-d2d1-4b3f-8a7a-7d915bcb5d7c","type":"visualization"},{"id":"d80d4c30-2a81-11eb-9625-31ed579c09b3","name":"66f0d0ac-bf45-40e3-ba8c-32d6360e8584:panel_66f0d0ac-bf45-40e3-ba8c-32d6360e8584","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwODUsMV0="} diff --git a/metricbeat/module/nats/module.yml b/metricbeat/module/nats/module.yml index 153522a652e..e012cfcb746 100644 --- a/metricbeat/module/nats/module.yml +++ b/metricbeat/module/nats/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Metricbeat-Nats-Dashboard - file: Metricbeat-nats-overview.json + file: Metricbeat-nats-overview.ndjson diff --git a/metricbeat/module/nginx/_meta/kibana/7/dashboard/metricbeat-nginx-overview.json b/metricbeat/module/nginx/_meta/kibana/7/dashboard/metricbeat-nginx-overview.json deleted file mode 100644 index ba0af75e029..00000000000 --- a/metricbeat/module/nginx/_meta/kibana/7/dashboard/metricbeat-nginx-overview.json +++ /dev/null @@ -1,474 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Request Rate [Metricbeat Nginx] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Request rate", - "line_width": 1, - "metrics": [ - { - "field": "nginx.stubstatus.requests", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "396ec980-f1a1-11e7-95d0-8ddf041d42a2", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Request Rate [Metricbeat Nginx] ECS", - "type": "metrics" - } - }, - "id": "555df8a0-f1a1-11e7-a9ef-93c69af7b129-ecs", - "type": "visualization", - "updated_at": "2018-01-04T22:48:58.542Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Accepts and Handled Rate [Metricbeat Nginx] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [ - { - "color": "#F00", - "icon": "fa-tag", - "id": "8644f980-f1a3-11e7-95d0-8ddf041d42a2", - "ignore_global_filters": 1, - "ignore_panel_filters": 1, - "index_pattern": "*", - "time_field": "@timestamp" - } - ], - "axis_formatter": "number", - "axis_position": "left", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0.5", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Accepts rate", - "line_width": 1, - "metrics": [ - { - "field": "nginx.stubstatus.accepts", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "396ec980-f1a1-11e7-95d0-8ddf041d42a2", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0.9", - "formatter": "number", - "id": "56dd33b0-f1a3-11e7-95d0-8ddf041d42a2", - "label": "Handled rate", - "line_width": 1, - "metrics": [ - { - "field": "nginx.stubstatus.handled", - "id": "56dd33b1-f1a3-11e7-95d0-8ddf041d42a2", - "type": "avg" - }, - { - "field": "56dd33b1-f1a3-11e7-95d0-8ddf041d42a2", - "id": "56dd33b2-f1a3-11e7-95d0-8ddf041d42a2", - "type": "derivative", - "unit": "" - } - ], - "point_size": "3", - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Accepts and Handled Rate [Metricbeat Nginx] ECS", - "type": "metrics" - } - }, - "id": "a1d92240-f1a1-11e7-a9ef-93c69af7b129-ecs", - "type": "visualization", - "updated_at": "2018-01-04T23:07:23.056Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Drops Rate [Metricbeat Nginx] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(188,0,65,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Drops rate", - "line_width": 1, - "metrics": [ - { - "field": "nginx.stubstatus.dropped", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "396ec980-f1a1-11e7-95d0-8ddf041d42a2", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Drops Rate [Metricbeat Nginx] ECS", - "type": "metrics" - } - }, - "id": "d763a570-f1a1-11e7-a9ef-93c69af7b129-ecs", - "type": "visualization", - "updated_at": "2018-01-04T22:51:46.375Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Active connections [Metricbeat Nginx] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "field": "nginx.stubstatus.active", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Active connections [Metricbeat Nginx] ECS", - "type": "metrics" - } - }, - "id": "47a8e0f0-f1a4-11e7-a9ef-93c69af7b129-ecs", - "type": "visualization", - "updated_at": "2018-01-04T23:09:55.944Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Reading / Writing / Waiting Rates [Metricbeat Nginx] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Reading", - "line_width": 1, - "metrics": [ - { - "field": "nginx.stubstatus.reading", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": 0.5, - "formatter": "number", - "id": "b1773680-f1a4-11e7-95d0-8ddf041d42a2", - "label": "Writing", - "line_width": 1, - "metrics": [ - { - "field": "nginx.stubstatus.writing", - "id": "b1773681-f1a4-11e7-95d0-8ddf041d42a2", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "b68aa6c0-f1a4-11e7-95d0-8ddf041d42a2", - "label": "Waiting", - "line_width": 1, - "metrics": [ - { - "field": "nginx.stubstatus.waiting", - "id": "b68aa6c1-f1a4-11e7-95d0-8ddf041d42a2", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Reading / Writing / Waiting Rates [Metricbeat Nginx] ECS", - "type": "metrics" - } - }, - "id": "dcbffe30-f1a4-11e7-a9ef-93c69af7b129-ecs", - "type": "visualization", - "updated_at": "2018-01-04T23:13:23.859Z", - "version": 1 - }, - { - "attributes": { - "description": "Overview dashboard for the Nginx module in Metricbeat", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "gridData": { - "h": 3, - "i": "1", - "w": 6, - "x": 6, - "y": 0 - }, - "id": "555df8a0-f1a1-11e7-a9ef-93c69af7b129-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "2", - "w": 6, - "x": 6, - "y": 3 - }, - "id": "a1d92240-f1a1-11e7-a9ef-93c69af7b129-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "3", - "w": 6, - "x": 0, - "y": 3 - }, - "id": "d763a570-f1a1-11e7-a9ef-93c69af7b129-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "4", - "w": 6, - "x": 0, - "y": 0 - }, - "id": "47a8e0f0-f1a4-11e7-a9ef-93c69af7b129-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "5", - "w": 12, - "x": 0, - "y": 6 - }, - "id": "dcbffe30-f1a4-11e7-a9ef-93c69af7b129-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "6.2.4" - } - ], - "timeRestore": false, - "title": "[Metricbeat Nginx] Overview ECS", - "version": 1 - }, - "id": "023d2930-f1a5-11e7-a9ef-93c69af7b129-ecs", - "type": "dashboard", - "updated_at": "2018-01-04T23:14:26.755Z", - "version": 1 - } - ], - "version": "6.2.4" -} diff --git a/metricbeat/module/nginx/_meta/kibana/7/dashboard/metricbeat-nginx-overview.ndjson b/metricbeat/module/nginx/_meta/kibana/7/dashboard/metricbeat-nginx-overview.ndjson new file mode 100644 index 00000000000..3fcd8125bbb --- /dev/null +++ b/metricbeat/module/nginx/_meta/kibana/7/dashboard/metricbeat-nginx-overview.ndjson @@ -0,0 +1,6 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Request Rate [Metricbeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Request rate\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.stubstatus.requests\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"396ec980-f1a1-11e7-95d0-8ddf041d42a2\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Request Rate [Metricbeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"555df8a0-f1a1-11e7-a9ef-93c69af7b129-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:57.845Z","version":"WzQyMDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Accepts and Handled Rate [Metricbeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"icon\":\"fa-tag\",\"id\":\"8644f980-f1a3-11e7-95d0-8ddf041d42a2\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"time_field\":\"@timestamp\"}],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Accepts rate\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.stubstatus.accepts\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"396ec980-f1a1-11e7-95d0-8ddf041d42a2\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0.9\",\"formatter\":\"number\",\"id\":\"56dd33b0-f1a3-11e7-95d0-8ddf041d42a2\",\"label\":\"Handled rate\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.stubstatus.handled\",\"id\":\"56dd33b1-f1a3-11e7-95d0-8ddf041d42a2\",\"type\":\"avg\"},{\"field\":\"56dd33b1-f1a3-11e7-95d0-8ddf041d42a2\",\"id\":\"56dd33b2-f1a3-11e7-95d0-8ddf041d42a2\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":\"3\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Accepts and Handled Rate [Metricbeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a1d92240-f1a1-11e7-a9ef-93c69af7b129-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:57.845Z","version":"WzQyMDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Drops Rate [Metricbeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(188,0,65,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Drops rate\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.stubstatus.dropped\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"396ec980-f1a1-11e7-95d0-8ddf041d42a2\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Drops Rate [Metricbeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d763a570-f1a1-11e7-a9ef-93c69af7b129-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:57.845Z","version":"WzQyMDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Active connections [Metricbeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.stubstatus.active\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Active connections [Metricbeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"47a8e0f0-f1a4-11e7-a9ef-93c69af7b129-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:57.845Z","version":"WzQyMDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Reading / Writing / Waiting Rates [Metricbeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Reading\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.stubstatus.reading\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"b1773680-f1a4-11e7-95d0-8ddf041d42a2\",\"label\":\"Writing\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.stubstatus.writing\",\"id\":\"b1773681-f1a4-11e7-95d0-8ddf041d42a2\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"b68aa6c0-f1a4-11e7-95d0-8ddf041d42a2\",\"label\":\"Waiting\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.stubstatus.waiting\",\"id\":\"b68aa6c1-f1a4-11e7-95d0-8ddf041d42a2\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Reading / Writing / Waiting Rates [Metricbeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"dcbffe30-f1a4-11e7-a9ef-93c69af7b129-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:57.845Z","version":"WzQyMDcsMV0="} +{"attributes":{"description":"Overview dashboard for the Nginx module in Metricbeat","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":0,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":0,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":48,\"h\":12,\"x\":0,\"y\":24,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Metricbeat Nginx] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"023d2930-f1a5-11e7-a9ef-93c69af7b129-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"555df8a0-f1a1-11e7-a9ef-93c69af7b129-ecs","name":"1:panel_1","type":"visualization"},{"id":"a1d92240-f1a1-11e7-a9ef-93c69af7b129-ecs","name":"2:panel_2","type":"visualization"},{"id":"d763a570-f1a1-11e7-a9ef-93c69af7b129-ecs","name":"3:panel_3","type":"visualization"},{"id":"47a8e0f0-f1a4-11e7-a9ef-93c69af7b129-ecs","name":"4:panel_4","type":"visualization"},{"id":"dcbffe30-f1a4-11e7-a9ef-93c69af7b129-ecs","name":"5:panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:57.845Z","version":"WzQyMDgsMV0="} diff --git a/metricbeat/module/nginx/module.yml b/metricbeat/module/nginx/module.yml index 1bd8fa76625..0f1d2c237f5 100644 --- a/metricbeat/module/nginx/module.yml +++ b/metricbeat/module/nginx/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 023d2930-f1a5-11e7-a9ef-93c69af7b129 - file: metricbeat-nginx-overview.json + file: metricbeat-nginx-overview.ndjson diff --git a/metricbeat/module/postgresql/_meta/kibana/7/dashboard/Metricbeat-postgresql-overview.json b/metricbeat/module/postgresql/_meta/kibana/7/dashboard/Metricbeat-postgresql-overview.json deleted file mode 100644 index f9a3ba57b50..00000000000 --- a/metricbeat/module/postgresql/_meta/kibana/7/dashboard/Metricbeat-postgresql-overview.json +++ /dev/null @@ -1,1394 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This PostgreSQL dashboard shows the most important database related metrics.\n\n", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Query Latency" - }, - "gridData": { - "h": 13, - "i": "1", - "w": 24, - "x": 0, - "y": 6 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "Query Latency", - "version": "7.3.1" - }, - { - "embeddableConfig": { - "title": "Database Transactions" - }, - "gridData": { - "h": 12, - "i": "2", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "Database Transactions", - "version": "7.3.1" - }, - { - "embeddableConfig": { - "title": "Fileblock IO" - }, - "gridData": { - "h": 10, - "i": "3", - "w": 24, - "x": 0, - "y": 19 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "Fileblock IO", - "version": "7.3.1" - }, - { - "embeddableConfig": { - "title": "Rows Fetched/Returned" - }, - "gridData": { - "h": 6, - "i": "4", - "w": 14, - "x": 10, - "y": 0 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "title": "Rows Fetched/Returned", - "version": "7.3.1" - }, - { - "embeddableConfig": { - "title": "Rows Inserted/Deleted/Updated" - }, - "gridData": { - "h": 9, - "i": "5", - "w": 24, - "x": 24, - "y": 22 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "title": "Rows Inserted/Deleted/Updated", - "version": "7.3.1" - }, - { - "embeddableConfig": { - "title": "Conflict/Deadlock Rates" - }, - "gridData": { - "h": 11, - "i": "6", - "w": 24, - "x": 0, - "y": 29 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "title": "Conflict/Deadlock Rates", - "version": "7.3.1" - }, - { - "embeddableConfig": { - "title": "Database Filter" - }, - "gridData": { - "h": 6, - "i": "7", - "w": 10, - "x": 0, - "y": 0 - }, - "panelIndex": "7", - "panelRefName": "panel_6", - "title": "Database Filter", - "version": "7.3.1" - }, - { - "embeddableConfig": { - "title": "Top Queries" - }, - "gridData": { - "h": 10, - "i": "8", - "w": 24, - "x": 24, - "y": 12 - }, - "panelIndex": "8", - "panelRefName": "panel_7", - "title": "Top Queries", - "version": "7.3.1" - }, - { - "embeddableConfig": { - "title": "Local block cache stats" - }, - "gridData": { - "h": 9, - "i": "9", - "w": 12, - "x": 24, - "y": 31 - }, - "panelIndex": "9", - "panelRefName": "panel_8", - "title": "Local block cache stats", - "version": "7.3.1" - }, - { - "embeddableConfig": { - "title": "Shared block cache stats" - }, - "gridData": { - "h": 9, - "i": "10", - "w": 12, - "x": 36, - "y": 31 - }, - "panelIndex": "10", - "panelRefName": "panel_9", - "title": "Shared block cache stats", - "version": "7.3.1" - } - ], - "timeRestore": false, - "title": "[Metricbeat PostgreSQL] Database Overview", - "version": 1 - }, - "id": "4288b790-b79f-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "fbfa67e0-b796-11e9-a579-f5c0a5d81340", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "d733c630-b797-11e9-a579-f5c0a5d81340", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "570973a0-b798-11e9-a579-f5c0a5d81340", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "66d67200-b799-11e9-a579-f5c0a5d81340", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "20931ef0-b79a-11e9-a579-f5c0a5d81340", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "960ecdf0-b79a-11e9-a579-f5c0a5d81340", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "98e6b0a0-b79b-11e9-a579-f5c0a5d81340", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "147875b0-b903-11e9-a579-f5c0a5d81340", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "0cb65170-b909-11e9-a579-f5c0a5d81340", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "e2b28ce0-b908-11e9-a579-f5c0a5d81340", - "name": "panel_9", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-02-06T12:05:20.696Z", - "version": "WzQzNTYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Query Latency [Metricbeat PostgreSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "919c5570-b796-11e9-8ed3-ef1959e6b366", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0.1", - "filter": { - "language": "kuery", - "query": "not postgresql.statement.query.text : (\"BEGIN;\" or \"begin\" or \"commit\" or \"end\" or \"END;\" or \"SELECT * FROM pg_stat_statements\" or \"SELECT * FROM pg_stat_database\" or \"SELECT * FROM pg_stat_bgwriter\" or \"SELECT * FROM pg_stat_activity\")" - }, - "formatter": "number", - "id": "919c5571-b796-11e9-8ed3-ef1959e6b366", - "label": "Query Latency", - "line_width": 2, - "metrics": [ - { - "field": "postgresql.statement.query.time.total.ms", - "id": "919c7c80-b796-11e9-8ed3-ef1959e6b366", - "type": "max" - }, - { - "field": "919c7c80-b796-11e9-8ed3-ef1959e6b366", - "id": "9e553c60-b79f-11e9-9029-a9d302b79ec2", - "type": "derivative", - "unit": "1s" - }, - { - "field": "9e553c60-b79f-11e9-9029-a9d302b79ec2", - "id": "a58b6590-b79f-11e9-9029-a9d302b79ec2", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "postgresql.statement.query.text", - "terms_order_by": "919c7c80-b796-11e9-8ed3-ef1959e6b366", - "terms_size": "10", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Query Latency [Metricbeat PostgreSQL] ECS", - "type": "metrics" - } - }, - "id": "fbfa67e0-b796-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-06T11:59:01.903Z", - "version": "WzQzNTAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Database Transactions [Metricbeat PostgreSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "7af01590-b797-11e9-8816-2992f1df7a62", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": 0, - "formatter": "number", - "id": "7af01591-b797-11e9-8816-2992f1df7a62", - "label": "committed", - "line_width": 2, - "metrics": [ - { - "field": "postgresql.database.transactions.commit", - "id": "7af01592-b797-11e9-8816-2992f1df7a62", - "type": "max" - }, - { - "field": "7af01592-b797-11e9-8816-2992f1df7a62", - "id": "7af01594-b797-11e9-8816-2992f1df7a62", - "type": "derivative", - "unit": "1s" - }, - { - "field": "7af01594-b797-11e9-8816-2992f1df7a62", - "id": "7af01593-b797-11e9-8816-2992f1df7a62", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(254,146,0,1)", - "fill": 0, - "formatter": "number", - "id": "7af01595-b797-11e9-8816-2992f1df7a62", - "label": "rolled back", - "line_width": 2, - "metrics": [ - { - "field": "postgresql.database.transactions.rollback", - "id": "7af01596-b797-11e9-8816-2992f1df7a62", - "type": "max" - }, - { - "field": "7af01596-b797-11e9-8816-2992f1df7a62", - "id": "7af01598-b797-11e9-8816-2992f1df7a62", - "type": "derivative", - "unit": "1s" - }, - { - "field": "7af01598-b797-11e9-8816-2992f1df7a62", - "id": "7af01597-b797-11e9-8816-2992f1df7a62", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Database Transactions [Metricbeat PostgreSQL] ECS", - "type": "metrics" - } - }, - "id": "d733c630-b797-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-05T15:49:18.236Z", - "version": "WzQzMTIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Fileblock IO Rate [Metricbeat PostgreSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "fbc27280-b797-11e9-b46b-4f80f005c4a5", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": 0, - "formatter": "number", - "id": "fbc27281-b797-11e9-b46b-4f80f005c4a5", - "label": "read", - "line_width": 2, - "metrics": [ - { - "field": "postgresql.database.blocks.time.read.ms", - "id": "fbc27282-b797-11e9-b46b-4f80f005c4a5", - "type": "max" - }, - { - "field": "fbc27282-b797-11e9-b46b-4f80f005c4a5", - "id": "fbc27284-b797-11e9-b46b-4f80f005c4a5", - "type": "derivative", - "unit": "1s" - }, - { - "field": "fbc27284-b797-11e9-b46b-4f80f005c4a5", - "id": "fbc27283-b797-11e9-b46b-4f80f005c4a5", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "{{value}} ms" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(123,100,255,1)", - "fill": 0, - "formatter": "number", - "id": "fbc27285-b797-11e9-b46b-4f80f005c4a5", - "label": "write", - "line_width": 2, - "metrics": [ - { - "field": "postgresql.database.blocks.time.write.ms", - "id": "fbc27286-b797-11e9-b46b-4f80f005c4a5", - "type": "max" - }, - { - "field": "fbc27286-b797-11e9-b46b-4f80f005c4a5", - "id": "fbc27288-b797-11e9-b46b-4f80f005c4a5", - "type": "derivative", - "unit": "1s" - }, - { - "field": "fbc27288-b797-11e9-b46b-4f80f005c4a5", - "id": "fbc27287-b797-11e9-b46b-4f80f005c4a5", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "{{value}} ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Fileblock IO Rate [Metricbeat PostgreSQL] ECS", - "type": "metrics" - } - }, - "id": "570973a0-b798-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-05T19:01:54.390Z", - "version": "WzQzMjQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Rows Fetched/Returned [Metricbeat PostgreSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "bec42b70-b798-11e9-af2f-3be5a91b64a6" - } - ], - "bar_color_rules": [ - { - "id": "cc80b5d0-b798-11e9-af2f-3be5a91b64a6" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "ada89790-b798-11e9-af2f-3be5a91b64a6" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "a6981ed0-b798-11e9-a598-8baa89257193", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(164,221,0,1)", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "'0.0 a'", - "id": "a6981ed1-b798-11e9-a598-8baa89257193", - "label": "Rows Returned", - "line_width": 2, - "metrics": [ - { - "field": "postgresql.database.rows.returned", - "id": "a6981ed2-b798-11e9-a598-8baa89257193", - "percentiles": [ - { - "id": "b507cc90-b798-11e9-af2f-3be5a91b64a6", - "mode": "line", - "shade": 0.2, - "value": 50 - } - ], - "type": "max" - }, - { - "field": "a6981ed2-b798-11e9-a598-8baa89257193", - "id": "ed6f33d0-b8ff-11e9-8645-31d6a6d28728", - "type": "derivative", - "unit": "1" - }, - { - "field": "ed6f33d0-b8ff-11e9-8645-31d6a6d28728", - "id": "f58b9e50-b8ff-11e9-8645-31d6a6d28728", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": 0, - "formatter": "number", - "id": "a6981ed3-b798-11e9-a598-8baa89257193", - "label": "Rows Fetched", - "line_width": 2, - "metrics": [ - { - "field": "postgresql.database.rows.fetched", - "id": "a6981ed4-b798-11e9-a598-8baa89257193", - "type": "max" - }, - { - "field": "a6981ed4-b798-11e9-a598-8baa89257193", - "id": "064737e0-b900-11e9-8645-31d6a6d28728", - "type": "derivative", - "unit": "1s" - }, - { - "field": "064737e0-b900-11e9-8645-31d6a6d28728", - "id": "0fea1b50-b900-11e9-8645-31d6a6d28728", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Rows Fetched/Returned [Metricbeat PostgreSQL] ECS", - "type": "metrics" - } - }, - "id": "66d67200-b799-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-06T11:56:03.315Z", - "version": "WzQzNDYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Rows Inserted/Deleted/Updated [Metricbeat PostgreSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "fc474800-b799-11e9-bfa6-bd2fe13c0445", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "formatter": "number", - "id": "fc474801-b799-11e9-bfa6-bd2fe13c0445", - "label": "inserted", - "line_width": 2, - "metrics": [ - { - "field": "postgresql.database.rows.inserted", - "id": "fc474802-b799-11e9-bfa6-bd2fe13c0445", - "type": "max" - }, - { - "field": "fc474802-b799-11e9-bfa6-bd2fe13c0445", - "id": "fc474804-b799-11e9-bfa6-bd2fe13c0445", - "type": "derivative", - "unit": "1s" - }, - { - "field": "fc474804-b799-11e9-bfa6-bd2fe13c0445", - "id": "fc474803-b799-11e9-bfa6-bd2fe13c0445", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}/s" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#DB1374", - "fill": 0, - "formatter": "number", - "id": "fc474805-b799-11e9-bfa6-bd2fe13c0445", - "label": "deleted", - "line_width": 2, - "metrics": [ - { - "field": "postgresql.database.rows.deleted", - "id": "fc474806-b799-11e9-bfa6-bd2fe13c0445", - "type": "max" - }, - { - "field": "fc474806-b799-11e9-bfa6-bd2fe13c0445", - "id": "fc474808-b799-11e9-bfa6-bd2fe13c0445", - "type": "derivative", - "unit": "1s" - }, - { - "field": "fc474808-b799-11e9-bfa6-bd2fe13c0445", - "id": "fc474807-b799-11e9-bfa6-bd2fe13c0445", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}/s" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#00B3A4", - "fill": 0, - "formatter": "number", - "id": "fc476f10-b799-11e9-bfa6-bd2fe13c0445", - "label": "updated", - "line_width": 2, - "metrics": [ - { - "field": "postgresql.database.rows.updated", - "id": "fc476f11-b799-11e9-bfa6-bd2fe13c0445", - "type": "max" - }, - { - "field": "fc476f11-b799-11e9-bfa6-bd2fe13c0445", - "id": "fc476f13-b799-11e9-bfa6-bd2fe13c0445", - "type": "derivative", - "unit": "1s" - }, - { - "field": "fc476f13-b799-11e9-bfa6-bd2fe13c0445", - "id": "fc476f12-b799-11e9-bfa6-bd2fe13c0445", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}/s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Rows Inserted/Deleted/Updated [Metricbeat PostgreSQL] ECS", - "type": "metrics" - } - }, - "id": "20931ef0-b79a-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-06T12:01:45.205Z", - "version": "WzQzNTMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Conflict/Deadlock Rates [Metricbeat PostgreSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "6c90db30-b79a-11e9-a8f0-d7983cd3d871", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(12,121,125,1)", - "fill": 0, - "formatter": "number", - "id": "6c90db31-b79a-11e9-a8f0-d7983cd3d871", - "label": "conflicts", - "line_width": 2, - "metrics": [ - { - "field": "postgresql.database.conflicts", - "id": "6c90db32-b79a-11e9-a8f0-d7983cd3d871", - "type": "avg" - }, - { - "field": "6c90db32-b79a-11e9-a8f0-d7983cd3d871", - "id": "6c90db34-b79a-11e9-a8f0-d7983cd3d871", - "type": "derivative", - "unit": "1s" - }, - { - "field": "6c90db34-b79a-11e9-a8f0-d7983cd3d871", - "id": "6c90db33-b79a-11e9-a8f0-d7983cd3d871", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": 0, - "formatter": "number", - "id": "6c90db35-b79a-11e9-a8f0-d7983cd3d871", - "label": "deadlocks", - "line_width": 2, - "metrics": [ - { - "field": "postgresql.database.deadlocks", - "id": "6c90db36-b79a-11e9-a8f0-d7983cd3d871", - "type": "avg" - }, - { - "field": "6c90db36-b79a-11e9-a8f0-d7983cd3d871", - "id": "6c90db38-b79a-11e9-a8f0-d7983cd3d871", - "type": "derivative", - "unit": "1s" - }, - { - "field": "6c90db38-b79a-11e9-a8f0-d7983cd3d871", - "id": "6c90db37-b79a-11e9-a8f0-d7983cd3d871", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Conflict/Deadlock Rates [Metricbeat PostgreSQL] ECS", - "type": "metrics" - } - }, - "id": "960ecdf0-b79a-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-05T15:46:52.411Z", - "version": "WzQzMDgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Database Filter [Metricbeat PostgreSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "postgresql.database.name", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "database", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": true - }, - "title": "Database Filter [Metricbeat PostgreSQL] ECS", - "type": "input_control_vis" - } - }, - "id": "98e6b0a0-b79b-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-01-22T13:56:51.268Z", - "version": "WzQwMjgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Query Calls Count [Metricbeat PostgreSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "d3cc2560-484b-11ea-a805-d7a3b4bc3300" - } - ], - "bar_color_rules": [ - { - "id": "6da7d6e0-b902-11e9-9f00-7b1f283b2282" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "d22727f0-484b-11ea-a805-d7a3b4bc3300" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "2bc5fea0-b902-11e9-8b8c-f99be54b4271", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "pivot_id": "postgresql.statement.query.text", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(22,165,165,1)", - "fill": 0, - "filter": { - "language": "kuery", - "query": "not postgresql.statement.query.text : (\"BEGIN;\" or \"begin\" or \"commit\" or \"end\" or \"END;\" or \"SELECT * FROM pg_stat_statements\" or \"SELECT * FROM pg_stat_database\" or \"SELECT * FROM pg_stat_bgwriter\" or \"SELECT * FROM pg_stat_activity\")" - }, - "formatter": "'0a'", - "id": "2bc5fea1-b902-11e9-8b8c-f99be54b4271", - "label": "Number of times the query has been run", - "line_width": 2, - "metrics": [ - { - "field": "postgresql.statement.query.calls", - "id": "2bc5fea2-b902-11e9-8b8c-f99be54b4271", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "postgresql.statement.query.text", - "terms_order_by": "2bc5fea2-b902-11e9-8b8c-f99be54b4271", - "terms_size": "20", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "top_n" - }, - "title": "Query Calls Count [Metricbeat PostgreSQL] ECS", - "type": "metrics" - } - }, - "id": "147875b0-b903-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-06T12:04:42.628Z", - "version": "WzQzNTUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Local block cache stats [Metricbeat PostgreSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "8f49dbd0-b908-11e9-a256-6d0ec934f3f9", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "formatter": "number", - "id": "8f49dbd1-b908-11e9-a256-6d0ec934f3f9", - "label": "cache hits", - "line_width": 2, - "metrics": [ - { - "field": "postgresql.statement.query.memory.local.hit", - "id": "8f49dbd2-b908-11e9-a256-6d0ec934f3f9", - "type": "max" - }, - { - "field": "8f49dbd2-b908-11e9-a256-6d0ec934f3f9", - "id": "8f49dbd4-b908-11e9-a256-6d0ec934f3f9", - "type": "derivative", - "unit": "1s" - }, - { - "field": "8f49dbd2-b908-11e9-a256-6d0ec934f3f9", - "id": "8f49dbd3-b908-11e9-a256-6d0ec934f3f9", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#DB1374", - "fill": 0, - "formatter": "number", - "id": "8f49dbd5-b908-11e9-a256-6d0ec934f3f9", - "label": "cache read", - "line_width": 2, - "metrics": [ - { - "field": "postgresql.statement.query.memory.local.read", - "id": "8f49dbd6-b908-11e9-a256-6d0ec934f3f9", - "type": "max" - }, - { - "field": "8f49dbd6-b908-11e9-a256-6d0ec934f3f9", - "id": "8f49dbd8-b908-11e9-a256-6d0ec934f3f9", - "type": "derivative", - "unit": "1s" - }, - { - "field": "8f49dbd6-b908-11e9-a256-6d0ec934f3f9", - "id": "8f49dbd7-b908-11e9-a256-6d0ec934f3f9", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Local block cache stats [Metricbeat PostgreSQL] ECS", - "type": "metrics" - } - }, - "id": "0cb65170-b909-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-22T13:56:51.268Z", - "version": "WzQwMzAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Shared block cache stats [Metricbeat PostgreSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "8f49dbd0-b908-11e9-a256-6d0ec934f3f9", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "formatter": "number", - "id": "8f49dbd1-b908-11e9-a256-6d0ec934f3f9", - "label": "cache hits", - "line_width": 2, - "metrics": [ - { - "field": "postgresql.statement.query.memory.shared.hit", - "id": "8f49dbd2-b908-11e9-a256-6d0ec934f3f9", - "type": "max" - }, - { - "field": "8f49dbd2-b908-11e9-a256-6d0ec934f3f9", - "id": "8f49dbd4-b908-11e9-a256-6d0ec934f3f9", - "type": "derivative", - "unit": "1s" - }, - { - "field": "8f49dbd4-b908-11e9-a256-6d0ec934f3f9", - "id": "8f49dbd3-b908-11e9-a256-6d0ec934f3f9", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#DB1374", - "fill": 0, - "formatter": "number", - "id": "8f49dbd5-b908-11e9-a256-6d0ec934f3f9", - "label": "cache read", - "line_width": 2, - "metrics": [ - { - "field": "postgresql.statement.query.memory.shared.read", - "id": "8f49dbd6-b908-11e9-a256-6d0ec934f3f9", - "type": "max" - }, - { - "field": "8f49dbd6-b908-11e9-a256-6d0ec934f3f9", - "id": "8f49dbd8-b908-11e9-a256-6d0ec934f3f9", - "type": "derivative", - "unit": "1s" - }, - { - "field": "8f49dbd8-b908-11e9-a256-6d0ec934f3f9", - "id": "8f49dbd7-b908-11e9-a256-6d0ec934f3f9", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Shared block cache stats [Metricbeat PostgreSQL] ECS", - "type": "metrics" - } - }, - "id": "e2b28ce0-b908-11e9-a579-f5c0a5d81340", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-22T13:56:51.268Z", - "version": "WzQwMzEsMV0=" - } - ], - "version": "7.3.1" -} diff --git a/metricbeat/module/postgresql/_meta/kibana/7/dashboard/Metricbeat-postgresql-overview.ndjson b/metricbeat/module/postgresql/_meta/kibana/7/dashboard/Metricbeat-postgresql-overview.ndjson new file mode 100644 index 00000000000..dd7fe54378d --- /dev/null +++ b/metricbeat/module/postgresql/_meta/kibana/7/dashboard/Metricbeat-postgresql-overview.ndjson @@ -0,0 +1,11 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Query Latency [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"919c5570-b796-11e9-8ed3-ef1959e6b366\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0.1\",\"filter\":{\"language\":\"kuery\",\"query\":\"not postgresql.statement.query.text : (\\\"BEGIN;\\\" or \\\"begin\\\" or \\\"commit\\\" or \\\"end\\\" or \\\"END;\\\" or \\\"SELECT * FROM pg_stat_statements\\\" or \\\"SELECT * FROM pg_stat_database\\\" or \\\"SELECT * FROM pg_stat_bgwriter\\\" or \\\"SELECT * FROM pg_stat_activity\\\")\"},\"formatter\":\"number\",\"id\":\"919c5571-b796-11e9-8ed3-ef1959e6b366\",\"label\":\"Query Latency\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.statement.query.time.total.ms\",\"id\":\"919c7c80-b796-11e9-8ed3-ef1959e6b366\",\"type\":\"max\"},{\"field\":\"919c7c80-b796-11e9-8ed3-ef1959e6b366\",\"id\":\"9e553c60-b79f-11e9-9029-a9d302b79ec2\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"9e553c60-b79f-11e9-9029-a9d302b79ec2\",\"id\":\"a58b6590-b79f-11e9-9029-a9d302b79ec2\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"postgresql.statement.query.text\",\"terms_order_by\":\"919c7c80-b796-11e9-8ed3-ef1959e6b366\",\"terms_size\":\"10\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Query Latency [Metricbeat PostgreSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fbfa67e0-b796-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Database Transactions [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7af01590-b797-11e9-8816-2992f1df7a62\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7af01591-b797-11e9-8816-2992f1df7a62\",\"label\":\"committed\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.transactions.commit\",\"id\":\"7af01592-b797-11e9-8816-2992f1df7a62\",\"type\":\"max\"},{\"field\":\"7af01592-b797-11e9-8816-2992f1df7a62\",\"id\":\"7af01594-b797-11e9-8816-2992f1df7a62\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"7af01594-b797-11e9-8816-2992f1df7a62\",\"id\":\"7af01593-b797-11e9-8816-2992f1df7a62\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7af01595-b797-11e9-8816-2992f1df7a62\",\"label\":\"rolled back\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.transactions.rollback\",\"id\":\"7af01596-b797-11e9-8816-2992f1df7a62\",\"type\":\"max\"},{\"field\":\"7af01596-b797-11e9-8816-2992f1df7a62\",\"id\":\"7af01598-b797-11e9-8816-2992f1df7a62\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"7af01598-b797-11e9-8816-2992f1df7a62\",\"id\":\"7af01597-b797-11e9-8816-2992f1df7a62\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Database Transactions [Metricbeat PostgreSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d733c630-b797-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Fileblock IO Rate [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"fbc27280-b797-11e9-b46b-4f80f005c4a5\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"fbc27281-b797-11e9-b46b-4f80f005c4a5\",\"label\":\"read\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.blocks.time.read.ms\",\"id\":\"fbc27282-b797-11e9-b46b-4f80f005c4a5\",\"type\":\"max\"},{\"field\":\"fbc27282-b797-11e9-b46b-4f80f005c4a5\",\"id\":\"fbc27284-b797-11e9-b46b-4f80f005c4a5\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"fbc27284-b797-11e9-b46b-4f80f005c4a5\",\"id\":\"fbc27283-b797-11e9-b46b-4f80f005c4a5\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(123,100,255,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"fbc27285-b797-11e9-b46b-4f80f005c4a5\",\"label\":\"write\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.blocks.time.write.ms\",\"id\":\"fbc27286-b797-11e9-b46b-4f80f005c4a5\",\"type\":\"max\"},{\"field\":\"fbc27286-b797-11e9-b46b-4f80f005c4a5\",\"id\":\"fbc27288-b797-11e9-b46b-4f80f005c4a5\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"fbc27288-b797-11e9-b46b-4f80f005c4a5\",\"id\":\"fbc27287-b797-11e9-b46b-4f80f005c4a5\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Fileblock IO Rate [Metricbeat PostgreSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"570973a0-b798-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Rows Fetched/Returned [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"bec42b70-b798-11e9-af2f-3be5a91b64a6\"}],\"bar_color_rules\":[{\"id\":\"cc80b5d0-b798-11e9-af2f-3be5a91b64a6\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"ada89790-b798-11e9-af2f-3be5a91b64a6\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"a6981ed0-b798-11e9-a598-8baa89257193\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0.0 a'\",\"id\":\"a6981ed1-b798-11e9-a598-8baa89257193\",\"label\":\"Rows Returned\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.rows.returned\",\"id\":\"a6981ed2-b798-11e9-a598-8baa89257193\",\"percentiles\":[{\"id\":\"b507cc90-b798-11e9-af2f-3be5a91b64a6\",\"mode\":\"line\",\"shade\":0.2,\"value\":50}],\"type\":\"max\"},{\"field\":\"a6981ed2-b798-11e9-a598-8baa89257193\",\"id\":\"ed6f33d0-b8ff-11e9-8645-31d6a6d28728\",\"type\":\"derivative\",\"unit\":\"1\"},{\"field\":\"ed6f33d0-b8ff-11e9-8645-31d6a6d28728\",\"id\":\"f58b9e50-b8ff-11e9-8645-31d6a6d28728\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"a6981ed3-b798-11e9-a598-8baa89257193\",\"label\":\"Rows Fetched\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.rows.fetched\",\"id\":\"a6981ed4-b798-11e9-a598-8baa89257193\",\"type\":\"max\"},{\"field\":\"a6981ed4-b798-11e9-a598-8baa89257193\",\"id\":\"064737e0-b900-11e9-8645-31d6a6d28728\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"064737e0-b900-11e9-8645-31d6a6d28728\",\"id\":\"0fea1b50-b900-11e9-8645-31d6a6d28728\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Rows Fetched/Returned [Metricbeat PostgreSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"66d67200-b799-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Rows Inserted/Deleted/Updated [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"fc474800-b799-11e9-bfa6-bd2fe13c0445\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"fc474801-b799-11e9-bfa6-bd2fe13c0445\",\"label\":\"inserted\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.rows.inserted\",\"id\":\"fc474802-b799-11e9-bfa6-bd2fe13c0445\",\"type\":\"max\"},{\"field\":\"fc474802-b799-11e9-bfa6-bd2fe13c0445\",\"id\":\"fc474804-b799-11e9-bfa6-bd2fe13c0445\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"fc474804-b799-11e9-bfa6-bd2fe13c0445\",\"id\":\"fc474803-b799-11e9-bfa6-bd2fe13c0445\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":0,\"formatter\":\"number\",\"id\":\"fc474805-b799-11e9-bfa6-bd2fe13c0445\",\"label\":\"deleted\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.rows.deleted\",\"id\":\"fc474806-b799-11e9-bfa6-bd2fe13c0445\",\"type\":\"max\"},{\"field\":\"fc474806-b799-11e9-bfa6-bd2fe13c0445\",\"id\":\"fc474808-b799-11e9-bfa6-bd2fe13c0445\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"fc474808-b799-11e9-bfa6-bd2fe13c0445\",\"id\":\"fc474807-b799-11e9-bfa6-bd2fe13c0445\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":0,\"formatter\":\"number\",\"id\":\"fc476f10-b799-11e9-bfa6-bd2fe13c0445\",\"label\":\"updated\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.rows.updated\",\"id\":\"fc476f11-b799-11e9-bfa6-bd2fe13c0445\",\"type\":\"max\"},{\"field\":\"fc476f11-b799-11e9-bfa6-bd2fe13c0445\",\"id\":\"fc476f13-b799-11e9-bfa6-bd2fe13c0445\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"fc476f13-b799-11e9-bfa6-bd2fe13c0445\",\"id\":\"fc476f12-b799-11e9-bfa6-bd2fe13c0445\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Rows Inserted/Deleted/Updated [Metricbeat PostgreSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"20931ef0-b79a-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Conflict/Deadlock Rates [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"6c90db30-b79a-11e9-a8f0-d7983cd3d871\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(12,121,125,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"6c90db31-b79a-11e9-a8f0-d7983cd3d871\",\"label\":\"conflicts\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.conflicts\",\"id\":\"6c90db32-b79a-11e9-a8f0-d7983cd3d871\",\"type\":\"avg\"},{\"field\":\"6c90db32-b79a-11e9-a8f0-d7983cd3d871\",\"id\":\"6c90db34-b79a-11e9-a8f0-d7983cd3d871\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"6c90db34-b79a-11e9-a8f0-d7983cd3d871\",\"id\":\"6c90db33-b79a-11e9-a8f0-d7983cd3d871\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"6c90db35-b79a-11e9-a8f0-d7983cd3d871\",\"label\":\"deadlocks\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.deadlocks\",\"id\":\"6c90db36-b79a-11e9-a8f0-d7983cd3d871\",\"type\":\"avg\"},{\"field\":\"6c90db36-b79a-11e9-a8f0-d7983cd3d871\",\"id\":\"6c90db38-b79a-11e9-a8f0-d7983cd3d871\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"6c90db38-b79a-11e9-a8f0-d7983cd3d871\",\"id\":\"6c90db37-b79a-11e9-a8f0-d7983cd3d871\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Conflict/Deadlock Rates [Metricbeat PostgreSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"960ecdf0-b79a-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Database Filter [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"postgresql.database.name\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"database\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"Database Filter [Metricbeat PostgreSQL] ECS\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"98e6b0a0-b79b-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Query Calls Count [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"d3cc2560-484b-11ea-a805-d7a3b4bc3300\"}],\"bar_color_rules\":[{\"id\":\"6da7d6e0-b902-11e9-9f00-7b1f283b2282\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"d22727f0-484b-11ea-a805-d7a3b4bc3300\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"2bc5fea0-b902-11e9-8b8c-f99be54b4271\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"pivot_id\":\"postgresql.statement.query.text\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"not postgresql.statement.query.text : (\\\"BEGIN;\\\" or \\\"begin\\\" or \\\"commit\\\" or \\\"end\\\" or \\\"END;\\\" or \\\"SELECT * FROM pg_stat_statements\\\" or \\\"SELECT * FROM pg_stat_database\\\" or \\\"SELECT * FROM pg_stat_bgwriter\\\" or \\\"SELECT * FROM pg_stat_activity\\\")\"},\"formatter\":\"'0a'\",\"id\":\"2bc5fea1-b902-11e9-8b8c-f99be54b4271\",\"label\":\"Number of times the query has been run\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.statement.query.calls\",\"id\":\"2bc5fea2-b902-11e9-8b8c-f99be54b4271\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"postgresql.statement.query.text\",\"terms_order_by\":\"2bc5fea2-b902-11e9-8b8c-f99be54b4271\",\"terms_size\":\"20\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Query Calls Count [Metricbeat PostgreSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"147875b0-b903-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Local block cache stats [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"8f49dbd0-b908-11e9-a256-6d0ec934f3f9\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"8f49dbd1-b908-11e9-a256-6d0ec934f3f9\",\"label\":\"cache hits\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.statement.query.memory.local.hit\",\"id\":\"8f49dbd2-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"max\"},{\"field\":\"8f49dbd2-b908-11e9-a256-6d0ec934f3f9\",\"id\":\"8f49dbd4-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"8f49dbd2-b908-11e9-a256-6d0ec934f3f9\",\"id\":\"8f49dbd3-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":0,\"formatter\":\"number\",\"id\":\"8f49dbd5-b908-11e9-a256-6d0ec934f3f9\",\"label\":\"cache read\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.statement.query.memory.local.read\",\"id\":\"8f49dbd6-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"max\"},{\"field\":\"8f49dbd6-b908-11e9-a256-6d0ec934f3f9\",\"id\":\"8f49dbd8-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"8f49dbd6-b908-11e9-a256-6d0ec934f3f9\",\"id\":\"8f49dbd7-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Local block cache stats [Metricbeat PostgreSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0cb65170-b909-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Shared block cache stats [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"8f49dbd0-b908-11e9-a256-6d0ec934f3f9\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"8f49dbd1-b908-11e9-a256-6d0ec934f3f9\",\"label\":\"cache hits\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.statement.query.memory.shared.hit\",\"id\":\"8f49dbd2-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"max\"},{\"field\":\"8f49dbd2-b908-11e9-a256-6d0ec934f3f9\",\"id\":\"8f49dbd4-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"8f49dbd4-b908-11e9-a256-6d0ec934f3f9\",\"id\":\"8f49dbd3-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":0,\"formatter\":\"number\",\"id\":\"8f49dbd5-b908-11e9-a256-6d0ec934f3f9\",\"label\":\"cache read\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.statement.query.memory.shared.read\",\"id\":\"8f49dbd6-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"max\"},{\"field\":\"8f49dbd6-b908-11e9-a256-6d0ec934f3f9\",\"id\":\"8f49dbd8-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"8f49dbd8-b908-11e9-a256-6d0ec934f3f9\",\"id\":\"8f49dbd7-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Shared block cache stats [Metricbeat PostgreSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e2b28ce0-b908-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMTEsMV0="} +{"attributes":{"description":"This PostgreSQL dashboard shows the most important database related metrics.\n\n","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":6},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Query Latency\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Database Transactions\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":19},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Fileblock IO\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"4\",\"w\":14,\"x\":10,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Rows Fetched/Returned\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":22},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Rows Inserted/Deleted/Updated\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":29},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Conflict/Deadlock Rates\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"7\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Database Filter\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":12},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Queries\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"9\",\"w\":12,\"x\":24,\"y\":31},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Local block cache stats\",\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"10\",\"w\":12,\"x\":36,\"y\":31},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Shared block cache stats\",\"panelRefName\":\"panel_10\"}]","timeRestore":false,"title":"[Metricbeat PostgreSQL] Database Overview","version":1},"coreMigrationVersion":"8.0.0","id":"4288b790-b79f-11e9-a579-f5c0a5d81340","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"fbfa67e0-b796-11e9-a579-f5c0a5d81340","name":"1:panel_1","type":"visualization"},{"id":"d733c630-b797-11e9-a579-f5c0a5d81340","name":"2:panel_2","type":"visualization"},{"id":"570973a0-b798-11e9-a579-f5c0a5d81340","name":"3:panel_3","type":"visualization"},{"id":"66d67200-b799-11e9-a579-f5c0a5d81340","name":"4:panel_4","type":"visualization"},{"id":"20931ef0-b79a-11e9-a579-f5c0a5d81340","name":"5:panel_5","type":"visualization"},{"id":"960ecdf0-b79a-11e9-a579-f5c0a5d81340","name":"6:panel_6","type":"visualization"},{"id":"98e6b0a0-b79b-11e9-a579-f5c0a5d81340","name":"7:panel_7","type":"visualization"},{"id":"147875b0-b903-11e9-a579-f5c0a5d81340","name":"8:panel_8","type":"visualization"},{"id":"0cb65170-b909-11e9-a579-f5c0a5d81340","name":"9:panel_9","type":"visualization"},{"id":"e2b28ce0-b908-11e9-a579-f5c0a5d81340","name":"10:panel_10","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMDEsMV0="} diff --git a/metricbeat/module/prometheus/_meta/kibana/7/dashboard/Metricbeat-prometheus-overview.json b/metricbeat/module/prometheus/_meta/kibana/7/dashboard/Metricbeat-prometheus-overview.json deleted file mode 100644 index e04577d7c4b..00000000000 --- a/metricbeat/module/prometheus/_meta/kibana/7/dashboard/Metricbeat-prometheus-overview.json +++ /dev/null @@ -1,905 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Various stats for Prometheus Server", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "1", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "HTTP Requests", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "2", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "Query Durations", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "3", - "w": 24, - "x": 24, - "y": 15 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "Number of Targets", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "4", - "w": 24, - "x": 0, - "y": 22 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "title": "Head Chunks", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "5", - "w": 11, - "x": 0, - "y": 15 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "title": "WAL Stats", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "6", - "w": 13, - "x": 11, - "y": 15 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "title": "Reload Count", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "7", - "w": 10, - "x": 24, - "y": 22 - }, - "panelIndex": "7", - "panelRefName": "panel_6", - "title": "Remote API Reads", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "8", - "w": 14, - "x": 34, - "y": 22 - }, - "panelIndex": "8", - "panelRefName": "panel_7", - "title": "Alert Notifications", - "version": "7.3.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Prometheus] Overview", - "version": 1 - }, - "id": "6a9b80c0-b2ed-11e9-9a23-67ee28886a4b", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "19886730-b2e7-11e9-9a23-67ee28886a4b", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "f77c5900-b2e4-11e9-9a23-67ee28886a4b", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "ffb70040-b2ec-11e9-9a23-67ee28886a4b", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "79345b00-b2e5-11e9-9a23-67ee28886a4b", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "138704c0-b2f8-11e9-9a23-67ee28886a4b", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "d7740b40-b2fc-11e9-9a23-67ee28886a4b", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "edd33100-b305-11e9-9a23-67ee28886a4b", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "0b356630-b308-11e9-9a23-67ee28886a4b", - "name": "panel_7", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-08-02T10:59:13.474Z", - "version": "WzYxMCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "HTTP Requests [Metricbeat Prometheus]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "b2579fe0-b2e6-11e9-96a9-535735f478e7", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(219,223,0,1)", - "fill": 0, - "formatter": "number", - "id": "b2579fe1-b2e6-11e9-96a9-535735f478e7", - "label": "HTTP Requests", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.metrics.prometheus_http_requests_total", - "id": "b2579fe2-b2e6-11e9-96a9-535735f478e7", - "type": "max" - }, - { - "field": "b2579fe2-b2e6-11e9-96a9-535735f478e7", - "id": "4ff83340-b445-11e9-88c2-81f27aea5920", - "type": "derivative", - "unit": "1s" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.handler", - "terms_size": "5", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "HTTP Requests [Metricbeat Prometheus]", - "type": "metrics" - } - }, - "id": "19886730-b2e7-11e9-9a23-67ee28886a4b", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-08-01T10:16:22.004Z", - "version": "WzUwMCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Query Durations [Metricbeat Prometheus]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "prometheus.labels.quantile : \"0.99\"" - }, - "id": "0fa40ac0-b2e3-11e9-9d48-591d2f459020", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": 0, - "filter": { - "language": "kuery", - "query": "prometheus.labels.quantile : \"0.99\" " - }, - "formatter": "'0.0[0000]'", - "id": "0fa40ac1-b2e3-11e9-9d48-591d2f459020", - "label": "Query Durations p99", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.metrics.prometheus_engine_query_duration_seconds", - "id": "0fa40ac2-b2e3-11e9-9d48-591d2f459020", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_filters": [ - { - "color": "#3185FC", - "filter": { - "language": "kuery", - "query": "prometheus.labels.slice : \"inner_eval\" " - }, - "id": "5089a8b0-b2e3-11e9-a478-1744b9617108", - "label": "Inner" - } - ], - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.slice", - "terms_order_by": "_count", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Query Durations [Metricbeat Prometheus]", - "type": "metrics" - } - }, - "id": "f77c5900-b2e4-11e9-9a23-67ee28886a4b", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-31T12:29:35.301Z", - "version": "WzQ0MSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Number of Targets [Metricbeat Prometheus]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "08298160-b2ea-11e9-a1e3-dd90a90fb461", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "08298161-b2ea-11e9-a1e3-dd90a90fb461", - "label": "Total Number of Discovered Targets", - "line_width": "1", - "metrics": [ - { - "field": "prometheus.metrics.prometheus_sd_discovered_targets", - "id": "08298162-b2ea-11e9-a1e3-dd90a90fb461", - "type": "max" - } - ], - "point_size": "0", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "steps": 1, - "terms_direction": "desc", - "terms_field": "prometheus.labels.name", - "terms_order_by": "08298162-b2ea-11e9-a1e3-dd90a90fb461", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Number of Targets [Metricbeat Prometheus]", - "type": "metrics" - } - }, - "id": "ffb70040-b2ec-11e9-9a23-67ee28886a4b", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-31T12:34:36.214Z", - "version": "WzQ2MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Head Chunks [Metricbeat Prometheus]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "2f5a6920-b2e5-11e9-b248-0162f01eb4ee", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(101,50,148,1)", - "fill": 0, - "formatter": "number", - "id": "2f5a9030-b2e5-11e9-b248-0162f01eb4ee", - "label": "Head Chunks", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.metrics.prometheus_tsdb_head_chunks", - "id": "2f5a9031-b2e5-11e9-b248-0162f01eb4ee", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Head Chunks [Metricbeat Prometheus]", - "type": "metrics" - } - }, - "id": "79345b00-b2e5-11e9-9a23-67ee28886a4b", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-31T12:35:36.349Z", - "version": "WzQ2OSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "WAL [Metricbeat Prometheus]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "f4985140-b2f7-11e9-8481-37d39feabbb2" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "ce91d200-b2f7-11e9-9e3f-5b12e64d4361", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(247,75,56,1)", - "fill": 0, - "formatter": "number", - "id": "ce91f910-b2f7-11e9-9e3f-5b12e64d4361", - "label": "Failed WAL Truncations", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.metrics.prometheus_tsdb_wal_truncations_failed_total", - "id": "ce91f911-b2f7-11e9-9e3f-5b12e64d4361", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(251,158,0,1)", - "fill": 0, - "formatter": "number", - "id": "ce91f912-b2f7-11e9-9e3f-5b12e64d4361", - "label": "WAL Corruptions Total", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.metrics.prometheus_tsdb_wal_corruptions_total", - "id": "ce91f913-b2f7-11e9-9e3f-5b12e64d4361", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "WAL [Metricbeat Prometheus]", - "type": "metrics" - } - }, - "id": "138704c0-b2f8-11e9-9a23-67ee28886a4b", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-31T12:31:29.355Z", - "version": "WzQ0NywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Reload Count [Metricbeat Prometheus]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "6acaf760-b2fc-11e9-86ff-9300d5a00260", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(12,121,125,1)", - "fill": "0.2", - "formatter": "'0.0[0000]'", - "id": "6acaf761-b2fc-11e9-86ff-9300d5a00260", - "label": "reloads", - "line_width": "1", - "metrics": [ - { - "field": "prometheus.metrics.prometheus_tsdb_reloads_total", - "id": "6acaf762-b2fc-11e9-86ff-9300d5a00260", - "type": "max" - }, - { - "field": "6acaf762-b2fc-11e9-86ff-9300d5a00260", - "id": "6acaf764-b2fc-11e9-86ff-9300d5a00260", - "type": "derivative", - "unit": "1s" - }, - { - "field": "6acaf764-b2fc-11e9-86ff-9300d5a00260", - "id": "6acaf763-b2fc-11e9-86ff-9300d5a00260", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "steps": 1, - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#DB1374", - "fill": "0.2", - "formatter": "'0.0[0000]'", - "id": "6acaf765-b2fc-11e9-86ff-9300d5a00260", - "label": "failures", - "line_width": "1", - "metrics": [ - { - "field": "prometheus.metrics.prometheus_tsdb_reloads_failures_total", - "id": "6acaf766-b2fc-11e9-86ff-9300d5a00260", - "type": "max" - }, - { - "field": "6acaf766-b2fc-11e9-86ff-9300d5a00260", - "id": "6acaf768-b2fc-11e9-86ff-9300d5a00260", - "type": "derivative", - "unit": "1s" - }, - { - "field": "6acaf768-b2fc-11e9-86ff-9300d5a00260", - "id": "6acaf767-b2fc-11e9-86ff-9300d5a00260", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "steps": 1, - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Reload Count [Metricbeat Prometheus]", - "type": "metrics" - } - }, - "id": "d7740b40-b2fc-11e9-9a23-67ee28886a4b", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-30T19:05:35.833Z", - "version": "WzM3OSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Remote API Reads [Metricbeat Prometheus]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "a3dbf320-b305-11e9-a86d-99bede5bfcc3", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(219,223,0,1)", - "fill": 0, - "formatter": "number", - "id": "a3dbf321-b305-11e9-a86d-99bede5bfcc3", - "label": "# of remote read queries", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.metrics.prometheus_api_remote_read_queries", - "id": "a3dbf322-b305-11e9-a86d-99bede5bfcc3", - "type": "max" - }, - { - "field": "a3dbf322-b305-11e9-a86d-99bede5bfcc3", - "id": "a3dbf324-b305-11e9-a86d-99bede5bfcc3", - "type": "derivative", - "unit": "1s" - }, - { - "field": "a3dbf324-b305-11e9-a86d-99bede5bfcc3", - "id": "a3dbf323-b305-11e9-a86d-99bede5bfcc3", - "type": "positive_only" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Remote API Reads [Metricbeat Prometheus]", - "type": "metrics" - } - }, - "id": "edd33100-b305-11e9-9a23-67ee28886a4b", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-30T20:09:25.775Z", - "version": "WzM5NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Alert Notifications [Metricbeat Prometheus]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "b1741ab0-b307-11e9-95cd-c3f5589dc7d2", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": 0, - "formatter": "number", - "id": "b1741ab1-b307-11e9-95cd-c3f5589dc7d2", - "label": "Capacity of the alert notifications queue", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.metrics.prometheus_notifications_queue_capacity", - "id": "b1741ab2-b307-11e9-95cd-c3f5589dc7d2", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(176,188,0,1)", - "fill": "0.2", - "formatter": "number", - "id": "b1741ab3-b307-11e9-95cd-c3f5589dc7d2", - "label": "Alert notifications in the queue", - "line_width": "1", - "metrics": [ - { - "field": "prometheus.metrics.prometheus_notifications_queue_length", - "id": "b1741ab4-b307-11e9-95cd-c3f5589dc7d2", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Alert Notifications [Metricbeat Prometheus]", - "type": "metrics" - } - }, - "id": "0b356630-b308-11e9-9a23-67ee28886a4b", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-30T20:24:34.067Z", - "version": "WzQwMiwxXQ==" - } - ], - "version": "7.3.0" -} diff --git a/metricbeat/module/prometheus/_meta/kibana/7/dashboard/Metricbeat-prometheus-overview.ndjson b/metricbeat/module/prometheus/_meta/kibana/7/dashboard/Metricbeat-prometheus-overview.ndjson new file mode 100644 index 00000000000..25148604011 --- /dev/null +++ b/metricbeat/module/prometheus/_meta/kibana/7/dashboard/Metricbeat-prometheus-overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"HTTP Requests [Metricbeat Prometheus]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"b2579fe0-b2e6-11e9-96a9-535735f478e7\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(219,223,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"b2579fe1-b2e6-11e9-96a9-535735f478e7\",\"label\":\"HTTP Requests\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_http_requests_total\",\"id\":\"b2579fe2-b2e6-11e9-96a9-535735f478e7\",\"type\":\"max\"},{\"field\":\"b2579fe2-b2e6-11e9-96a9-535735f478e7\",\"id\":\"4ff83340-b445-11e9-88c2-81f27aea5920\",\"type\":\"derivative\",\"unit\":\"1s\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.handler\",\"terms_size\":\"5\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HTTP Requests [Metricbeat Prometheus]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"19886730-b2e7-11e9-9a23-67ee28886a4b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:46.559Z","version":"WzQxMTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Query Durations [Metricbeat Prometheus]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"prometheus.labels.quantile : \\\"0.99\\\"\"},\"id\":\"0fa40ac0-b2e3-11e9-9d48-591d2f459020\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"prometheus.labels.quantile : \\\"0.99\\\" \"},\"formatter\":\"'0.0[0000]'\",\"id\":\"0fa40ac1-b2e3-11e9-9d48-591d2f459020\",\"label\":\"Query Durations p99\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_engine_query_duration_seconds\",\"id\":\"0fa40ac2-b2e3-11e9-9d48-591d2f459020\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_filters\":[{\"color\":\"#3185FC\",\"filter\":{\"language\":\"kuery\",\"query\":\"prometheus.labels.slice : \\\"inner_eval\\\" \"},\"id\":\"5089a8b0-b2e3-11e9-a478-1744b9617108\",\"label\":\"Inner\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.slice\",\"terms_order_by\":\"_count\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Query Durations [Metricbeat Prometheus]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f77c5900-b2e4-11e9-9a23-67ee28886a4b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:46.559Z","version":"WzQxMTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of Targets [Metricbeat Prometheus]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"08298160-b2ea-11e9-a1e3-dd90a90fb461\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"08298161-b2ea-11e9-a1e3-dd90a90fb461\",\"label\":\"Total Number of Discovered Targets\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_sd_discovered_targets\",\"id\":\"08298162-b2ea-11e9-a1e3-dd90a90fb461\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":1,\"terms_direction\":\"desc\",\"terms_field\":\"prometheus.labels.name\",\"terms_order_by\":\"08298162-b2ea-11e9-a1e3-dd90a90fb461\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Number of Targets [Metricbeat Prometheus]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ffb70040-b2ec-11e9-9a23-67ee28886a4b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:46.559Z","version":"WzQxMTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Head Chunks [Metricbeat Prometheus]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"2f5a6920-b2e5-11e9-b248-0162f01eb4ee\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(101,50,148,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"2f5a9030-b2e5-11e9-b248-0162f01eb4ee\",\"label\":\"Head Chunks\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_tsdb_head_chunks\",\"id\":\"2f5a9031-b2e5-11e9-b248-0162f01eb4ee\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Head Chunks [Metricbeat Prometheus]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"79345b00-b2e5-11e9-9a23-67ee28886a4b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:46.559Z","version":"WzQxMTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"WAL [Metricbeat Prometheus]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"f4985140-b2f7-11e9-8481-37d39feabbb2\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"ce91d200-b2f7-11e9-9e3f-5b12e64d4361\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(247,75,56,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"ce91f910-b2f7-11e9-9e3f-5b12e64d4361\",\"label\":\"Failed WAL Truncations\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_tsdb_wal_truncations_failed_total\",\"id\":\"ce91f911-b2f7-11e9-9e3f-5b12e64d4361\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"ce91f912-b2f7-11e9-9e3f-5b12e64d4361\",\"label\":\"WAL Corruptions Total\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_tsdb_wal_corruptions_total\",\"id\":\"ce91f913-b2f7-11e9-9e3f-5b12e64d4361\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"WAL [Metricbeat Prometheus]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"138704c0-b2f8-11e9-9a23-67ee28886a4b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:46.559Z","version":"WzQxMTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Reload Count [Metricbeat Prometheus]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"6acaf760-b2fc-11e9-86ff-9300d5a00260\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(12,121,125,1)\",\"fill\":\"0.2\",\"formatter\":\"'0.0[0000]'\",\"id\":\"6acaf761-b2fc-11e9-86ff-9300d5a00260\",\"label\":\"reloads\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_tsdb_reloads_total\",\"id\":\"6acaf762-b2fc-11e9-86ff-9300d5a00260\",\"type\":\"max\"},{\"field\":\"6acaf762-b2fc-11e9-86ff-9300d5a00260\",\"id\":\"6acaf764-b2fc-11e9-86ff-9300d5a00260\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"6acaf764-b2fc-11e9-86ff-9300d5a00260\",\"id\":\"6acaf763-b2fc-11e9-86ff-9300d5a00260\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":1,\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":\"0.2\",\"formatter\":\"'0.0[0000]'\",\"id\":\"6acaf765-b2fc-11e9-86ff-9300d5a00260\",\"label\":\"failures\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_tsdb_reloads_failures_total\",\"id\":\"6acaf766-b2fc-11e9-86ff-9300d5a00260\",\"type\":\"max\"},{\"field\":\"6acaf766-b2fc-11e9-86ff-9300d5a00260\",\"id\":\"6acaf768-b2fc-11e9-86ff-9300d5a00260\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"6acaf768-b2fc-11e9-86ff-9300d5a00260\",\"id\":\"6acaf767-b2fc-11e9-86ff-9300d5a00260\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":1,\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Reload Count [Metricbeat Prometheus]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d7740b40-b2fc-11e9-9a23-67ee28886a4b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:46.559Z","version":"WzQxMTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Remote API Reads [Metricbeat Prometheus]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"a3dbf320-b305-11e9-a86d-99bede5bfcc3\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(219,223,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"a3dbf321-b305-11e9-a86d-99bede5bfcc3\",\"label\":\"# of remote read queries\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_api_remote_read_queries\",\"id\":\"a3dbf322-b305-11e9-a86d-99bede5bfcc3\",\"type\":\"max\"},{\"field\":\"a3dbf322-b305-11e9-a86d-99bede5bfcc3\",\"id\":\"a3dbf324-b305-11e9-a86d-99bede5bfcc3\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"a3dbf324-b305-11e9-a86d-99bede5bfcc3\",\"id\":\"a3dbf323-b305-11e9-a86d-99bede5bfcc3\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Remote API Reads [Metricbeat Prometheus]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"edd33100-b305-11e9-9a23-67ee28886a4b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:46.559Z","version":"WzQxMTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Alert Notifications [Metricbeat Prometheus]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"b1741ab0-b307-11e9-95cd-c3f5589dc7d2\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"b1741ab1-b307-11e9-95cd-c3f5589dc7d2\",\"label\":\"Capacity of the alert notifications queue\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_notifications_queue_capacity\",\"id\":\"b1741ab2-b307-11e9-95cd-c3f5589dc7d2\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"b1741ab3-b307-11e9-95cd-c3f5589dc7d2\",\"label\":\"Alert notifications in the queue\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_notifications_queue_length\",\"id\":\"b1741ab4-b307-11e9-95cd-c3f5589dc7d2\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Alert Notifications [Metricbeat Prometheus]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0b356630-b308-11e9-9a23-67ee28886a4b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:46.559Z","version":"WzQxMjAsMV0="} +{"attributes":{"description":"Various stats for Prometheus Server","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"HTTP Requests\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Query Durations\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"3\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Number of Targets\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":24,\"x\":0,\"y\":22},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Head Chunks\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"5\",\"w\":11,\"x\":0,\"y\":15},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"WAL Stats\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"6\",\"w\":13,\"x\":11,\"y\":15},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Reload Count\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":10,\"x\":24,\"y\":22},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Remote API Reads\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":14,\"x\":34,\"y\":22},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Alert Notifications\",\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Metricbeat Prometheus] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"6a9b80c0-b2ed-11e9-9a23-67ee28886a4b","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"19886730-b2e7-11e9-9a23-67ee28886a4b","name":"1:panel_1","type":"visualization"},{"id":"f77c5900-b2e4-11e9-9a23-67ee28886a4b","name":"2:panel_2","type":"visualization"},{"id":"ffb70040-b2ec-11e9-9a23-67ee28886a4b","name":"3:panel_3","type":"visualization"},{"id":"79345b00-b2e5-11e9-9a23-67ee28886a4b","name":"4:panel_4","type":"visualization"},{"id":"138704c0-b2f8-11e9-9a23-67ee28886a4b","name":"5:panel_5","type":"visualization"},{"id":"d7740b40-b2fc-11e9-9a23-67ee28886a4b","name":"6:panel_6","type":"visualization"},{"id":"edd33100-b305-11e9-9a23-67ee28886a4b","name":"7:panel_7","type":"visualization"},{"id":"0b356630-b308-11e9-9a23-67ee28886a4b","name":"8:panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:46.559Z","version":"WzQxMTIsMV0="} diff --git a/metricbeat/module/rabbitmq/_meta/kibana/7/dashboard/Metricbeat-rabbitmq-overview.json b/metricbeat/module/rabbitmq/_meta/kibana/7/dashboard/Metricbeat-rabbitmq-overview.json deleted file mode 100644 index 2bd4b044025..00000000000 --- a/metricbeat/module/rabbitmq/_meta/kibana/7/dashboard/Metricbeat-rabbitmq-overview.json +++ /dev/null @@ -1,453 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Metricbeat-Rabbitmq-ecs", - "title": "Memory Usage [Metricbeat RabbitMQ] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Used memory", - "field": "rabbitmq.node.mem.used.bytes", - "json": "" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "3", - "params": { - "customInterval": "30s", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "custom", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Node name", - "field": "rabbitmq.node.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": true, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "legendPosition": "top", - "radiusRatio": 9, - "scale": "linear", - "setYExtents": false, - "shareYAxis": true, - "showCircles": false, - "smoothLines": true, - "times": [], - "yAxis": {} - }, - "title": "RabbitMQ Memory Usage ECS", - "type": "line" - } - }, - "id": "RabbitMQ-Memory-Usage-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Metricbeat-Rabbitmq-ecs", - "title": "Number of Nodes [Metricbeat RabbitMQ] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "RabbitMQ Nodes", - "field": "rabbitmq.node.name" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "fontSize": 60, - "handleNoResults": true - }, - "title": "Rabbitmq Number of Nodes ECS", - "type": "metric" - } - }, - "id": "Rabbitmq-Number-of-Nodes-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Metricbeat-Rabbitmq-ecs", - "title": "Erlang Process Usage [Metricbeat RabbitMQ] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Used Process", - "field": "rabbitmq.node.proc.used" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "3", - "params": { - "customInterval": "30s", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "custom", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Node name", - "field": "rabbitmq.node.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "legendPosition": "top", - "radiusRatio": 9, - "scale": "linear", - "setYExtents": false, - "shareYAxis": true, - "showCircles": false, - "smoothLines": true, - "times": [], - "yAxis": {} - }, - "title": "RabbitMQ Erlang Process Usage ECS", - "type": "line" - } - }, - "id": "RabbitMQ-Erlang-Process-Usage-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Metricbeat-Rabbitmq-ecs", - "title": "Queue Index Operations [Metricbeat RabbitMQ] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Queue Index Read", - "field": "rabbitmq.node.queue.index.read.count" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "30s", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "custom", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Queue Index Jornal Write", - "field": "rabbitmq.node.queue.index.journal_write.count" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Queue Index Write", - "field": "rabbitmq.node.queue.index.write.count" - }, - "schema": "metric", - "type": "max" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "top", - "radiusRatio": 9, - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "showCircles": false, - "smoothLines": false, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Queue Index Operations [Metricbeat RabbitMQ] ECS", - "type": "line" - } - }, - "id": "RabbitMQ-Queue-Index-Operations-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "event.module:rabbitmq" - } - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Metricbeat Rabbitmq ECS", - "version": 1 - }, - "id": "Metricbeat-Rabbitmq-ecs", - "type": "search", - "version": 1 - }, - { - "attributes": { - "description": "Overview of RabbitMQ status", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "RabbitMQ-Memory-Usage-ecs", - "panelIndex": 8, - "row": 1, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 8, - "id": "Rabbitmq-Number-of-Nodes-ecs", - "panelIndex": 2, - "row": 1, - "size_x": 3, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "RabbitMQ-Erlang-Process-Usage-ecs", - "panelIndex": 10, - "row": 4, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 7, - "id": "RabbitMQ-Queue-Index-Operations-ecs", - "panelIndex": 9, - "row": 4, - "size_x": 6, - "size_y": 3, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Metricbeat RabbitMQ] Overview ECS", - "uiStateJSON": { - "P-2": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - } - }, - "version": 1 - }, - "id": "AV4YobKIge1VCbKU_qVo-ecs", - "type": "dashboard", - "version": 2 - } - ], - "version": "6.0.0-beta1-SNAPSHOT" -} diff --git a/metricbeat/module/rabbitmq/_meta/kibana/7/dashboard/Metricbeat-rabbitmq-overview.ndjson b/metricbeat/module/rabbitmq/_meta/kibana/7/dashboard/Metricbeat-rabbitmq-overview.ndjson new file mode 100644 index 00000000000..d7919334e67 --- /dev/null +++ b/metricbeat/module/rabbitmq/_meta/kibana/7/dashboard/Metricbeat-rabbitmq-overview.ndjson @@ -0,0 +1,6 @@ +{"attributes":{"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.module:rabbitmq\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Metricbeat Rabbitmq ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Metricbeat-Rabbitmq-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:31:47.567Z","version":"WzQxMjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Number of Nodes [Metricbeat RabbitMQ] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"RabbitMQ Nodes\",\"field\":\"rabbitmq.node.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"fontSize\":60,\"handleNoResults\":true},\"title\":\"Rabbitmq Number of Nodes ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"Rabbitmq-Number-of-Nodes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Rabbitmq-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:47.567Z","version":"WzQxMjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Memory Usage [Metricbeat RabbitMQ] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Used memory\",\"field\":\"rabbitmq.node.mem.used.bytes\",\"json\":\"\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"30s\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Node name\",\"field\":\"rabbitmq.node.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":true,\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"legendPosition\":\"top\",\"radiusRatio\":9,\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":false,\"smoothLines\":true,\"times\":[],\"yAxis\":{}},\"title\":\"RabbitMQ Memory Usage ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"RabbitMQ-Memory-Usage-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Rabbitmq-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:47.567Z","version":"WzQxMjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Queue Index Operations [Metricbeat RabbitMQ] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Queue Index Read\",\"field\":\"rabbitmq.node.queue.index.read.count\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"30s\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Queue Index Jornal Write\",\"field\":\"rabbitmq.node.queue.index.journal_write.count\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Queue Index Write\",\"field\":\"rabbitmq.node.queue.index.write.count\"},\"schema\":\"metric\",\"type\":\"max\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"top\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":false,\"smoothLines\":false,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Queue Index Operations [Metricbeat RabbitMQ] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"RabbitMQ-Queue-Index-Operations-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Rabbitmq-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:47.567Z","version":"WzQxMjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Erlang Process Usage [Metricbeat RabbitMQ] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Used Process\",\"field\":\"rabbitmq.node.proc.used\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"30s\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Node name\",\"field\":\"rabbitmq.node.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"legendPosition\":\"top\",\"radiusRatio\":9,\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":false,\"smoothLines\":true,\"times\":[],\"yAxis\":{}},\"title\":\"RabbitMQ Erlang Process Usage ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"RabbitMQ-Erlang-Process-Usage-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Rabbitmq-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:47.567Z","version":"WzQxMjMsMV0="} +{"attributes":{"description":"Overview of RabbitMQ status","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":28,\"y\":0,\"w\":12,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":24,\"h\":12,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":12,\"w\":24,\"h\":12,\"i\":\"9\"},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":24,\"h\":12,\"i\":\"10\"},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"}]","timeRestore":false,"title":"[Metricbeat RabbitMQ] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"AV4YobKIge1VCbKU_qVo-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Rabbitmq-Number-of-Nodes-ecs","name":"2:panel_2","type":"visualization"},{"id":"RabbitMQ-Memory-Usage-ecs","name":"8:panel_8","type":"visualization"},{"id":"RabbitMQ-Queue-Index-Operations-ecs","name":"9:panel_9","type":"visualization"},{"id":"RabbitMQ-Erlang-Process-Usage-ecs","name":"10:panel_10","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:47.567Z","version":"WzQxMjYsMV0="} diff --git a/metricbeat/module/rabbitmq/module.yml b/metricbeat/module/rabbitmq/module.yml index 42a37caaa63..89626b015cf 100644 --- a/metricbeat/module/rabbitmq/module.yml +++ b/metricbeat/module/rabbitmq/module.yml @@ -1,3 +1,3 @@ dashboards: - id: AV4YobKIge1VCbKU_qVo - file: Metricbeat-rabbitmq-overview.json + file: Metricbeat-rabbitmq-overview.ndjson diff --git a/metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-keys.json b/metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-keys.json deleted file mode 100644 index e6350a74a80..00000000000 --- a/metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-keys.json +++ /dev/null @@ -1,893 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Keyspace selector [Metricbeat Redis] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "redis.keyspace.id", - "id": "1545388837304", - "indexPattern": "metricbeat-*", - "label": "Keyspace", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "Keyspace selector [Metricbeat Redis] ECS", - "type": "input_control_vis" - } - }, - "id": "00d39210-050d-11e9-9c60-d582a238e2c5-ecs", - "type": "visualization", - "updated_at": "2018-12-21T11:19:04.179Z", - "version": 5 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "metricbeat-*", - "key": "redis.key.type", - "negate": false, - "params": { - "query": "list", - "type": "phrase" - }, - "type": "phrase", - "value": "list" - }, - "query": { - "match": { - "redis.key.type": { - "query": "list", - "type": "phrase" - } - } - } - } - ], - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Lists length [Metricbeat Redis] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Number of elements", - "field": "redis.key.length" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Keyspace", - "field": "redis.keyspace.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 16 - }, - "schema": "group", - "type": "terms" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Key name", - "field": "redis.key.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": true, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "group", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "timeRange": { - "from": "now-15m", - "mode": "quick", - "to": "now" - }, - "time_zone": "Europe/Berlin", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Number of elements" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Number of elements" - }, - "type": "value" - } - ] - }, - "title": "Lists length [Metricbeat Redis] ECS", - "type": "line" - } - }, - "id": "7f4bc7d0-050c-11e9-9c60-d582a238e2c5-ecs", - "type": "visualization", - "updated_at": "2018-12-21T11:22:12.807Z", - "version": 4 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Keys by type [Metricbeat Redis] ECS", - "uiStateJSON": { - "vis": { - "legendOpen": false - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Number of keys", - "field": "redis.key.id" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Key type", - "field": "redis.key.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customInterval": "2h", - "customLabel": "", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "timeRange": { - "from": "now-15m", - "mode": "quick", - "to": "now" - }, - "time_zone": "Europe/Berlin", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Number of keys" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Number of keys" - }, - "type": "value" - } - ] - }, - "title": "Keys by type [Metricbeat Redis] ECS", - "type": "line" - } - }, - "id": "4435ac40-050e-11e9-9c60-d582a238e2c5-ecs", - "type": "visualization", - "updated_at": "2018-12-21T11:23:46.207Z", - "version": 5 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "metricbeat-*", - "key": "redis.key.type", - "negate": false, - "params": { - "query": "string", - "type": "phrase" - }, - "type": "phrase", - "value": "string" - }, - "query": { - "match": { - "redis.key.type": { - "query": "string", - "type": "phrase" - } - } - } - } - ], - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Average string key size [Metricbeat Redis] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Average key size", - "field": "redis.key.length" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Keyspace", - "field": "redis.keyspace.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "timeRange": { - "from": "now-15m", - "mode": "quick", - "to": "now" - }, - "time_zone": "Europe/Berlin", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Average key size" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Average key size" - }, - "type": "value" - } - ] - }, - "title": "Average string key size [Metricbeat Redis] ECS", - "type": "line" - } - }, - "id": "8541a4a0-0513-11e9-9c60-d582a238e2c5-ecs", - "type": "visualization", - "updated_at": "2018-12-21T11:28:20.970Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "metricbeat-*", - "key": "redis.key.expire.ttl", - "negate": false, - "params": { - "gte": 0, - "lt": null - }, - "type": "range", - "value": "0 to +∞" - }, - "range": { - "redis.key.expire.ttl": { - "gte": 0, - "lt": null - } - } - } - ], - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Average keys TTL [Metricbeat Redis] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Average TTL", - "field": "redis.key.expire.ttl" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Keyspace", - "field": "redis.keyspace.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Key type", - "field": "redis.key.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "timeRange": { - "from": "now-15m", - "mode": "quick", - "to": "now" - }, - "time_zone": "Europe/Berlin", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Average TTL" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Average TTL" - }, - "type": "value" - } - ] - }, - "title": "Average keys TTL [Metricbeat Redis] ECS", - "type": "line" - } - }, - "id": "517a5fd0-0514-11e9-9c60-d582a238e2c5-ecs", - "type": "visualization", - "updated_at": "2018-12-21T11:34:03.597Z", - "version": 1 - }, - { - "attributes": { - "description": "Redis keys metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "controlledBy": "1545388837304", - "disabled": false, - "index": "metricbeat-*", - "key": "redis.keyspace.id", - "negate": false, - "params": [ - "db0", - "db1" - ], - "type": "phrases", - "value": "db0, db1" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "redis.keyspace.id": "db0" - } - }, - { - "match_phrase": { - "redis.keyspace.id": "db1" - } - } - ] - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 5, - "i": "1", - "w": 12, - "x": 0, - "y": 0 - }, - "id": "00d39210-050d-11e9-9c60-d582a238e2c5-ecs", - "panelIndex": "1", - "title": "Keyspace selector", - "type": "visualization", - "version": "6.5.2" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "2", - "w": 36, - "x": 12, - "y": 0 - }, - "id": "7f4bc7d0-050c-11e9-9c60-d582a238e2c5-ecs", - "panelIndex": "2", - "title": "Lists length", - "type": "visualization", - "version": "6.5.2" - }, - { - "embeddableConfig": { - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 10, - "i": "3", - "w": 12, - "x": 0, - "y": 5 - }, - "id": "4435ac40-050e-11e9-9c60-d582a238e2c5-ecs", - "panelIndex": "3", - "title": "Keys by type", - "type": "visualization", - "version": "6.5.2" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "4", - "w": 24, - "x": 0, - "y": 15 - }, - "id": "8541a4a0-0513-11e9-9c60-d582a238e2c5-ecs", - "panelIndex": "4", - "title": "Average size of string keys", - "type": "visualization", - "version": "6.5.2" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "5", - "w": 24, - "x": 24, - "y": 15 - }, - "id": "517a5fd0-0514-11e9-9c60-d582a238e2c5-ecs", - "panelIndex": "5", - "title": "Average keys TTL", - "type": "visualization", - "version": "6.5.2" - } - ], - "timeRestore": false, - "title": "[Metricbeat Redis] Keys ECS", - "version": 1 - }, - "id": "28969190-0511-11e9-9c60-d582a238e2c5-ecs", - "type": "dashboard", - "updated_at": "2018-12-21T11:39:13.143Z", - "version": 4 - } - ], - "version": "6.5.2" -} diff --git a/metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-keys.ndjson b/metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-keys.ndjson new file mode 100644 index 00000000000..40d831ed369 --- /dev/null +++ b/metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-keys.ndjson @@ -0,0 +1,6 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Keyspace selector [Metricbeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"redis.keyspace.id\",\"id\":\"1545388837304\",\"label\":\"Keyspace\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\",\"indexPatternRefName\":\"control_0_index_pattern\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Keyspace selector [Metricbeat Redis] ECS\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"00d39210-050d-11e9-9c60-d582a238e2c5-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:48.690Z","version":"WzQxMjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"redis.key.type\",\"negate\":false,\"params\":{\"query\":\"list\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"list\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"redis.key.type\":{\"query\":\"list\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Lists length [Metricbeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Number of elements\",\"field\":\"redis.key.length\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Keyspace\",\"field\":\"redis.keyspace.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":16},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Key name\",\"field\":\"redis.key.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15m\",\"mode\":\"quick\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Number of elements\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Number of elements\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Lists length [Metricbeat Redis] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"7f4bc7d0-050c-11e9-9c60-d582a238e2c5-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:48.690Z","version":"WzQxMjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Keys by type [Metricbeat Redis] ECS","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Number of keys\",\"field\":\"redis.key.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Key type\",\"field\":\"redis.key.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"\",\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15m\",\"mode\":\"quick\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Number of keys\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Number of keys\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Keys by type [Metricbeat Redis] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"4435ac40-050e-11e9-9c60-d582a238e2c5-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:48.690Z","version":"WzQxMjksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"redis.key.type\",\"negate\":false,\"params\":{\"query\":\"string\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"string\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"redis.key.type\":{\"query\":\"string\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Average string key size [Metricbeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Average key size\",\"field\":\"redis.key.length\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Keyspace\",\"field\":\"redis.keyspace.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15m\",\"mode\":\"quick\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Average key size\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Average key size\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Average string key size [Metricbeat Redis] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"8541a4a0-0513-11e9-9c60-d582a238e2c5-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:48.690Z","version":"WzQxMzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"redis.key.expire.ttl\",\"negate\":false,\"params\":{\"gte\":0,\"lt\":null},\"type\":\"range\",\"value\":\"0 to +∞\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"range\":{\"redis.key.expire.ttl\":{\"gte\":0,\"lt\":null}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Average keys TTL [Metricbeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Average TTL\",\"field\":\"redis.key.expire.ttl\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Keyspace\",\"field\":\"redis.keyspace.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Key type\",\"field\":\"redis.key.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15m\",\"mode\":\"quick\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Average TTL\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Average TTL\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Average keys TTL [Metricbeat Redis] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"517a5fd0-0514-11e9-9c60-d582a238e2c5-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:48.690Z","version":"WzQxMzEsMV0="} +{"attributes":{"description":"Redis keys metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"controlledBy\":\"1545388837304\",\"disabled\":false,\"key\":\"redis.keyspace.id\",\"negate\":false,\"params\":[\"db0\",\"db1\"],\"type\":\"phrases\",\"value\":\"db0, db1\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"redis.keyspace.id\":\"db0\"}},{\"match_phrase\":{\"redis.keyspace.id\":\"db1\"}}]}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"1\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Keyspace selector\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Lists length\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3\",\"w\":12,\"x\":0,\"y\":5},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Keys by type\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Average size of string keys\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Average keys TTL\",\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Metricbeat Redis] Keys ECS","version":1},"coreMigrationVersion":"8.0.0","id":"28969190-0511-11e9-9c60-d582a238e2c5-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"00d39210-050d-11e9-9c60-d582a238e2c5-ecs","name":"1:panel_1","type":"visualization"},{"id":"7f4bc7d0-050c-11e9-9c60-d582a238e2c5-ecs","name":"2:panel_2","type":"visualization"},{"id":"4435ac40-050e-11e9-9c60-d582a238e2c5-ecs","name":"3:panel_3","type":"visualization"},{"id":"8541a4a0-0513-11e9-9c60-d582a238e2c5-ecs","name":"4:panel_4","type":"visualization"},{"id":"517a5fd0-0514-11e9-9c60-d582a238e2c5-ecs","name":"5:panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:48.690Z","version":"WzQxMzIsMV0="} diff --git a/metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-overview.json b/metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-overview.json deleted file mode 100644 index 7ab339ad910..00000000000 --- a/metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-overview.json +++ /dev/null @@ -1,819 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Metricbeat-Redis-ecs", - "title": "Clients [Metricbeat Redis] ECS", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Connected clients", - "field": "redis.info.clients.connected" - }, - "schema": "metric", - "type": "max" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "fontSize": 60, - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "handleNoResults": true, - "type": "gauge" - }, - "title": "Clients [Metricbeat Redis] ECS", - "type": "metric" - } - }, - "col": 1, - "id": "Redis-Clients-Metrics-ecs", - "panelIndex": 2, - "row": 1, - "size_x": 3, - "size_y": 3, - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Metricbeat-Redis-ecs", - "title": "Connected clients [Metricbeat Redis] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "Blocked": "#C15C17" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Connected", - "field": "redis.info.clients.connected" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Blocked", - "field": "redis.info.clients.blocked" - }, - "schema": "metric", - "type": "max" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "mode": "grouped", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "times": [], - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Connected clients [Metricbeat Redis] ECS", - "type": "histogram" - } - }, - "col": 4, - "id": "Redis-Connected-clients-ecs", - "panelIndex": 1, - "row": 1, - "size_x": 5, - "size_y": 3, - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Metricbeat-Redis-ecs", - "title": "Hosts [Metricbeat Redis] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "field": "service.address", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Uptime (s)", - "field": "redis.info.server.uptime" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "PID", - "field": "process.pid" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Memory", - "field": "redis.info.memory.used.peak" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "CPU used (user)", - "field": "redis.info.cpu.used.user" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "CPU used (system)", - "field": "redis.info.cpu.used.sys" - }, - "schema": "metric", - "type": "max" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Hosts [Metricbeat Redis] ECS", - "type": "table" - } - }, - "col": 1, - "id": "Redis-hosts-ecs", - "panelIndex": 3, - "row": 4, - "size_x": 12, - "size_y": 2, - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Metricbeat-Redis-ecs", - "title": "Server Versions [Metricbeat Redis] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Hosts", - "field": "service.address" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Multiplexing API", - "field": "service.version", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "legendPosition": "right", - "shareYAxis": true - }, - "title": "Server Versions [Metricbeat Redis] ECS", - "type": "pie" - } - }, - "col": 1, - "id": "Redis-Server-Versions-ecs", - "panelIndex": 4, - "row": 6, - "size_x": 4, - "size_y": 2, - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Metricbeat-Redis-ecs", - "title": "Server mode [Metricbeat Redis] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Hosts", - "field": "service.address" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Server mode", - "field": "redis.info.server.mode", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "legendPosition": "right", - "shareYAxis": true - }, - "title": "Server mode [Metricbeat Redis] ECS", - "type": "pie" - } - }, - "col": 5, - "id": "Redis-server-mode-ecs", - "panelIndex": 5, - "row": 6, - "size_x": 4, - "size_y": 2, - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Metricbeat-Redis-ecs", - "title": "Multiplexing API [Metricbeat Redis] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Hosts", - "field": "service.address" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Multiplexing API", - "field": "redis.info.server.multiplexing_api", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "legendPosition": "right", - "shareYAxis": true - }, - "title": "Multiplexing API [Metricbeat Redis] ECS", - "type": "pie" - } - }, - "col": 9, - "id": "Redis-multiplexing-API-ecs", - "panelIndex": 6, - "row": 6, - "size_x": 3, - "size_y": 2, - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Metricbeat-Redis-ecs", - "title": "Keyspaces [Metricbeat Redis] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Number of keys", - "field": "redis.keyspace.keys" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Keyspaces", - "field": "redis.keyspace.id", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": false, - "times": [], - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Keyspaces [Metricbeat Redis] ECS", - "type": "area" - } - }, - "col": 9, - "id": "Redis-Keyspaces-ecs", - "panelIndex": 7, - "row": 1, - "size_x": 4, - "size_y": 3, - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "event.module:redis" - } - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Metricbeat Redis ECS", - "version": 1 - }, - "id": "Metricbeat-Redis-ecs", - "type": "search", - "version": 7 - }, - { - "attributes": { - "description": "Overview of Redis server metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - }, - "highlightAll": true, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "Redis-Clients-Metrics-ecs", - "panelIndex": 2, - "row": 1, - "size_x": 3, - "size_y": 3, - "type": "visualization" - }, - { - "col": 4, - "id": "Redis-Connected-clients-ecs", - "panelIndex": 1, - "row": 1, - "size_x": 5, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "Redis-hosts-ecs", - "panelIndex": 3, - "row": 4, - "size_x": 12, - "size_y": 2, - "type": "visualization" - }, - { - "col": 1, - "id": "Redis-Server-Versions-ecs", - "panelIndex": 4, - "row": 6, - "size_x": 4, - "size_y": 2, - "type": "visualization" - }, - { - "col": 5, - "id": "Redis-server-mode-ecs", - "panelIndex": 5, - "row": 6, - "size_x": 4, - "size_y": 2, - "type": "visualization" - }, - { - "col": 9, - "id": "Redis-multiplexing-API-ecs", - "panelIndex": 6, - "row": 6, - "size_x": 3, - "size_y": 2, - "type": "visualization" - }, - { - "col": 9, - "id": "Redis-Keyspaces-ecs", - "panelIndex": 7, - "row": 1, - "size_x": 4, - "size_y": 3, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Metricbeat Redis] Overview ECS", - "uiStateJSON": { - "P-2": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "P-3": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-4": { - "vis": { - "legendOpen": true - } - } - }, - "version": 1 - }, - "id": "AV4YjZ5pux-M-tCAunxK-ecs", - "type": "dashboard", - "version": 1 - } - ], - "version": "5.6.0-SNAPSHOT" -} diff --git a/metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-overview.ndjson b/metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-overview.ndjson new file mode 100644 index 00000000000..5f3ea732ec6 --- /dev/null +++ b/metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.module:redis\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Metricbeat Redis ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Metricbeat-Redis-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:31:49.646Z","version":"WzQxNDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Connected clients [Metricbeat Redis] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Blocked\": \"#C15C17\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Connected\",\"field\":\"redis.info.clients.connected\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Blocked\",\"field\":\"redis.info.clients.blocked\"},\"schema\":\"metric\",\"type\":\"max\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"grouped\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{}},\"title\":\"Connected clients [Metricbeat Redis] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Redis-Connected-clients-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Redis-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:49.646Z","version":"WzQxMzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Clients [Metricbeat Redis] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Connected clients\",\"field\":\"redis.info.clients.connected\"},\"schema\":\"metric\",\"type\":\"max\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":60,\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Clients [Metricbeat Redis] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"Redis-Clients-Metrics-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Redis-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:49.646Z","version":"WzQxMzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Hosts [Metricbeat Redis] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"service.address\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Uptime (s)\",\"field\":\"redis.info.server.uptime\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"PID\",\"field\":\"process.pid\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Memory\",\"field\":\"redis.info.memory.used.peak\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"CPU used (user)\",\"field\":\"redis.info.cpu.used.user\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"CPU used (system)\",\"field\":\"redis.info.cpu.used.sys\"},\"schema\":\"metric\",\"type\":\"max\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Hosts [Metricbeat Redis] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Redis-hosts-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Redis-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:49.646Z","version":"WzQxMzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Server Versions [Metricbeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Hosts\",\"field\":\"service.address\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Multiplexing API\",\"field\":\"service.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Server Versions [Metricbeat Redis] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Redis-Server-Versions-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Redis-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:49.646Z","version":"WzQxMzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Server mode [Metricbeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Hosts\",\"field\":\"service.address\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Server mode\",\"field\":\"redis.info.server.mode\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Server mode [Metricbeat Redis] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Redis-server-mode-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Redis-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:49.646Z","version":"WzQxMzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Multiplexing API [Metricbeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Hosts\",\"field\":\"service.address\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Multiplexing API\",\"field\":\"redis.info.server.multiplexing_api\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Multiplexing API [Metricbeat Redis] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Redis-multiplexing-API-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Redis-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:49.646Z","version":"WzQxMzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Keyspaces [Metricbeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Number of keys\",\"field\":\"redis.keyspace.keys\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Keyspaces\",\"field\":\"redis.keyspace.id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{}},\"title\":\"Keyspaces [Metricbeat Redis] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"Redis-Keyspaces-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Redis-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:49.646Z","version":"WzQxMzksMV0="} +{"attributes":{"description":"Overview of Redis server metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"highlightAll\":true,\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":12,\"y\":0,\"w\":20,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":12,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":8,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":16,\"h\":8,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":20,\"w\":16,\"h\":8,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":20,\"w\":12,\"h\":8,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":0,\"w\":16,\"h\":12,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Metricbeat Redis] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"AV4YjZ5pux-M-tCAunxK-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Redis-Connected-clients-ecs","name":"1:panel_1","type":"visualization"},{"id":"Redis-Clients-Metrics-ecs","name":"2:panel_2","type":"visualization"},{"id":"Redis-hosts-ecs","name":"3:panel_3","type":"visualization"},{"id":"Redis-Server-Versions-ecs","name":"4:panel_4","type":"visualization"},{"id":"Redis-server-mode-ecs","name":"5:panel_5","type":"visualization"},{"id":"Redis-multiplexing-API-ecs","name":"6:panel_6","type":"visualization"},{"id":"Redis-Keyspaces-ecs","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:49.646Z","version":"WzQxNDEsMV0="} diff --git a/metricbeat/module/redis/module.yml b/metricbeat/module/redis/module.yml index f89e64a72b3..f4b262e71e1 100644 --- a/metricbeat/module/redis/module.yml +++ b/metricbeat/module/redis/module.yml @@ -1,4 +1,4 @@ name: redis dashboards: - id: AV4YjZ5pux-M-tCAunxK - file: Metricbeat-redis-overview.json + file: Metricbeat-redis-overview.ndjson diff --git a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-Host-Services-overview.json b/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-Host-Services-overview.json deleted file mode 100644 index 026e5bd579a..00000000000 --- a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-Host-Services-overview.json +++ /dev/null @@ -1,831 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of services on an individual host.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Running Services" - }, - "gridData": { - "h": 11, - "i": "023b7623-9610-47ee-a10c-64ee8d2ccfa1", - "w": 14, - "x": 0, - "y": 0 - }, - "panelIndex": "023b7623-9610-47ee-a10c-64ee8d2ccfa1", - "panelRefName": "panel_0", - "title": "Running Services", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Service States" - }, - "gridData": { - "h": 11, - "i": "40ebab84-f48f-4060-a7af-3ffdf833ad3a", - "w": 12, - "x": 14, - "y": 0 - }, - "panelIndex": "40ebab84-f48f-4060-a7af-3ffdf833ad3a", - "panelRefName": "panel_1", - "title": "Service States", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Service Sub-State" - }, - "gridData": { - "h": 11, - "i": "0ad1caa8-2a3f-4429-9631-42d1c57a9e64", - "w": 12, - "x": 26, - "y": 0 - }, - "panelIndex": "0ad1caa8-2a3f-4429-9631-42d1c57a9e64", - "panelRefName": "panel_2", - "title": "Service Sub-State", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Return Codes Of Exited Services" - }, - "gridData": { - "h": 11, - "i": "9e37921b-da6f-464d-9683-5c9bd550640b", - "w": 10, - "x": 38, - "y": 0 - }, - "panelIndex": "9e37921b-da6f-464d-9683-5c9bd550640b", - "panelRefName": "panel_3", - "title": "Return Codes Of Exited Services", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Top Services By Memory Usage" - }, - "gridData": { - "h": 11, - "i": "e3ec1fe3-a03a-466e-8bc2-69136e3e6302", - "w": 24, - "x": 0, - "y": 11 - }, - "panelIndex": "e3ec1fe3-a03a-466e-8bc2-69136e3e6302", - "panelRefName": "panel_4", - "title": "Top Services By Memory Usage", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Top Services By Task Count" - }, - "gridData": { - "h": 11, - "i": "cc928f52-22c9-402d-a7a1-4f32720a4290", - "w": 24, - "x": 24, - "y": 11 - }, - "panelIndex": "cc928f52-22c9-402d-a7a1-4f32720a4290", - "panelRefName": "panel_5", - "title": "Top Services By Task Count", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Service Memory Use Over Time" - }, - "gridData": { - "h": 14, - "i": "c83f16cd-286f-411b-bae9-bade176a8db2", - "w": 48, - "x": 0, - "y": 22 - }, - "panelIndex": "c83f16cd-286f-411b-bae9-bade176a8db2", - "panelRefName": "panel_6", - "title": "Service Memory Use Over Time", - "version": "7.4.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat System] Host Services Overview", - "version": 1 - }, - "id": "c431f410-f9ac-11e9-90e8-1fb18e796788", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "a30871f0-f98f-11e9-90e8-1fb18e796788", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "bb3a8720-f991-11e9-90e8-1fb18e796788", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "e6e639e0-f992-11e9-90e8-1fb18e796788", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "9c69cad0-f9b0-11e9-90e8-1fb18e796788", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "8c071e20-f999-11e9-90e8-1fb18e796788", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "4b254630-f998-11e9-90e8-1fb18e796788", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "d3f51850-f9b6-11e9-90e8-1fb18e796788", - "name": "panel_6", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-10-31T14:21:04.680Z", - "version": "WzE0NjksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Running Services [Metricbeat System]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Running Services [Metricbeat Services]", - "field": "system.service.name" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Running Services [Metricbeat System]", - "type": "metric" - } - }, - "id": "a30871f0-f98f-11e9-90e8-1fb18e796788", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-10-31T13:35:51.219Z", - "version": "WzE0NTAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Service States [Metricbeat System]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Service States [Metricbeat Services]" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "system.service.state", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Service States [Metricbeat System]", - "type": "pie" - } - }, - "id": "bb3a8720-f991-11e9-90e8-1fb18e796788", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-10-31T13:38:51.526Z", - "version": "WzE0NTIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Service Sub-State [Metricbeat System]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Service Sub-State [Metricbeat Services]" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "system.service.sub_state", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Service Sub-State [Metricbeat System]", - "type": "pie" - } - }, - "id": "e6e639e0-f992-11e9-90e8-1fb18e796788", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-10-31T13:40:09.336Z", - "version": "WzE0NTQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "metricset.name", - "negate": false, - "params": { - "query": "service" - }, - "type": "phrase", - "value": "service" - }, - "query": { - "match": { - "metricset.name": { - "query": "service", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Return Codes Of Exited Services [Metricbeat System]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Return Codes Of Exited Services [Metricbeat Services]" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "process.exit_code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "number", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Return Codes Of Exited Services [Metricbeat System]", - "type": "pie" - } - }, - "id": "9c69cad0-f9b0-11e9-90e8-1fb18e796788", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-10-31T14:03:44.126Z", - "version": "WzE0NjEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top Services By Memory Usage [Metricbeat System]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "5af08c50-f998-11e9-ac67-272468589910" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "field": "system.service.resources.memory.usage.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "system.service.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "top_n" - }, - "title": "Top Services By Memory Usage [Metricbeat System]", - "type": "metrics" - } - }, - "id": "8c071e20-f999-11e9-90e8-1fb18e796788", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-31T14:11:44.048Z", - "version": "WzE0NjMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top Services By Task Count [Metricbeat System]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "3aeae000-f997-11e9-ac67-272468589910" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "hidden": false, - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "system.service.resources.tasks.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "system.service.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "top_n" - }, - "title": "Top Services By Task Count [Metricbeat System]", - "type": "metrics" - } - }, - "id": "4b254630-f998-11e9-90e8-1fb18e796788", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-31T14:14:42.665Z", - "version": "WzE0NjUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Service Memory Use Over Time [Metricbeat System]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "system.service.resources.memory.usage.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "system.service.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Service Memory Use Over Time [Metricbeat System]", - "type": "metrics" - } - }, - "id": "d3f51850-f9b6-11e9-90e8-1fb18e796788", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-31T14:18:54.802Z", - "version": "WzE0NjcsMV0=" - } - ], - "version": "7.4.0" -} diff --git a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-Host-Services-overview.ndjson b/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-Host-Services-overview.ndjson new file mode 100644 index 00000000000..2c005e3c1dc --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-Host-Services-overview.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Running Services [Metricbeat System]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Running Services [Metricbeat Services]\",\"field\":\"system.service.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Running Services [Metricbeat System]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"a30871f0-f98f-11e9-90e8-1fb18e796788","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:18.402Z","version":"WzMyNTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Service States [Metricbeat System]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Service States [Metricbeat Services]\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"system.service.state\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Service States [Metricbeat System]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"bb3a8720-f991-11e9-90e8-1fb18e796788","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:18.402Z","version":"WzMyNTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Service Sub-State [Metricbeat System]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Service Sub-State [Metricbeat Services]\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"system.service.sub_state\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Service Sub-State [Metricbeat System]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"e6e639e0-f992-11e9-90e8-1fb18e796788","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:18.402Z","version":"WzMyNTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"metricset.name\", \"negate\": false, \"params\": {\"query\": \"service\"}, \"type\": \"phrase\", \"value\": \"service\"}, \"query\": {\"match\": {\"metricset.name\": {\"query\": \"service\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Return Codes Of Exited Services [Metricbeat System]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Return Codes Of Exited Services [Metricbeat Services]\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"process.exit_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"number\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Return Codes Of Exited Services [Metricbeat System]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"9c69cad0-f9b0-11e9-90e8-1fb18e796788","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:18.402Z","version":"WzMyNTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top Services By Memory Usage [Metricbeat System]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"5af08c50-f998-11e9-ac67-272468589910\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"system.service.resources.memory.usage.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.service.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top Services By Memory Usage [Metricbeat System]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8c071e20-f999-11e9-90e8-1fb18e796788","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:18.402Z","version":"WzMyNTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top Services By Task Count [Metricbeat System]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"3aeae000-f997-11e9-ac67-272468589910\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"system.service.resources.tasks.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.service.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top Services By Task Count [Metricbeat System]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4b254630-f998-11e9-90e8-1fb18e796788","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:18.402Z","version":"WzMyNTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Service Memory Use Over Time [Metricbeat System]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"system.service.resources.memory.usage.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.service.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Service Memory Use Over Time [Metricbeat System]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d3f51850-f9b6-11e9-90e8-1fb18e796788","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:18.402Z","version":"WzMyNjAsMV0="} +{"attributes":{"description":"Overview of services on an individual host.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"023b7623-9610-47ee-a10c-64ee8d2ccfa1\",\"w\":14,\"x\":0,\"y\":0},\"panelIndex\":\"023b7623-9610-47ee-a10c-64ee8d2ccfa1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Running Services\",\"panelRefName\":\"panel_023b7623-9610-47ee-a10c-64ee8d2ccfa1\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"40ebab84-f48f-4060-a7af-3ffdf833ad3a\",\"w\":12,\"x\":14,\"y\":0},\"panelIndex\":\"40ebab84-f48f-4060-a7af-3ffdf833ad3a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Service States\",\"panelRefName\":\"panel_40ebab84-f48f-4060-a7af-3ffdf833ad3a\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"0ad1caa8-2a3f-4429-9631-42d1c57a9e64\",\"w\":12,\"x\":26,\"y\":0},\"panelIndex\":\"0ad1caa8-2a3f-4429-9631-42d1c57a9e64\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Service Sub-State\",\"panelRefName\":\"panel_0ad1caa8-2a3f-4429-9631-42d1c57a9e64\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"9e37921b-da6f-464d-9683-5c9bd550640b\",\"w\":10,\"x\":38,\"y\":0},\"panelIndex\":\"9e37921b-da6f-464d-9683-5c9bd550640b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Return Codes Of Exited Services\",\"panelRefName\":\"panel_9e37921b-da6f-464d-9683-5c9bd550640b\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"e3ec1fe3-a03a-466e-8bc2-69136e3e6302\",\"w\":24,\"x\":0,\"y\":11},\"panelIndex\":\"e3ec1fe3-a03a-466e-8bc2-69136e3e6302\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Services By Memory Usage\",\"panelRefName\":\"panel_e3ec1fe3-a03a-466e-8bc2-69136e3e6302\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"cc928f52-22c9-402d-a7a1-4f32720a4290\",\"w\":24,\"x\":24,\"y\":11},\"panelIndex\":\"cc928f52-22c9-402d-a7a1-4f32720a4290\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Services By Task Count\",\"panelRefName\":\"panel_cc928f52-22c9-402d-a7a1-4f32720a4290\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"c83f16cd-286f-411b-bae9-bade176a8db2\",\"w\":48,\"x\":0,\"y\":22},\"panelIndex\":\"c83f16cd-286f-411b-bae9-bade176a8db2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Service Memory Use Over Time\",\"panelRefName\":\"panel_c83f16cd-286f-411b-bae9-bade176a8db2\"}]","timeRestore":false,"title":"[Metricbeat System] Host Services Overview","version":1},"coreMigrationVersion":"8.0.0","id":"c431f410-f9ac-11e9-90e8-1fb18e796788","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a30871f0-f98f-11e9-90e8-1fb18e796788","name":"023b7623-9610-47ee-a10c-64ee8d2ccfa1:panel_023b7623-9610-47ee-a10c-64ee8d2ccfa1","type":"visualization"},{"id":"bb3a8720-f991-11e9-90e8-1fb18e796788","name":"40ebab84-f48f-4060-a7af-3ffdf833ad3a:panel_40ebab84-f48f-4060-a7af-3ffdf833ad3a","type":"visualization"},{"id":"e6e639e0-f992-11e9-90e8-1fb18e796788","name":"0ad1caa8-2a3f-4429-9631-42d1c57a9e64:panel_0ad1caa8-2a3f-4429-9631-42d1c57a9e64","type":"visualization"},{"id":"9c69cad0-f9b0-11e9-90e8-1fb18e796788","name":"9e37921b-da6f-464d-9683-5c9bd550640b:panel_9e37921b-da6f-464d-9683-5c9bd550640b","type":"visualization"},{"id":"8c071e20-f999-11e9-90e8-1fb18e796788","name":"e3ec1fe3-a03a-466e-8bc2-69136e3e6302:panel_e3ec1fe3-a03a-466e-8bc2-69136e3e6302","type":"visualization"},{"id":"4b254630-f998-11e9-90e8-1fb18e796788","name":"cc928f52-22c9-402d-a7a1-4f32720a4290:panel_cc928f52-22c9-402d-a7a1-4f32720a4290","type":"visualization"},{"id":"d3f51850-f9b6-11e9-90e8-1fb18e796788","name":"c83f16cd-286f-411b-bae9-bade176a8db2:panel_c83f16cd-286f-411b-bae9-bade176a8db2","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:18.402Z","version":"WzMyNTMsMV0="} diff --git a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-containers-overview.json b/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-containers-overview.json deleted file mode 100644 index 75bfe06ab6f..00000000000 --- a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-containers-overview.json +++ /dev/null @@ -1,539 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Container CPU usage [Metricbeat System] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "CPU user", - "field": "system.process.cgroup.cpuacct.stats.user.ns" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "CPU quota", - "field": "system.process.cgroup.cpu.cfs.quota.us" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Container ID", - "field": "system.process.cgroup.id", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "CPU throttling", - "field": "system.process.cgroup.cpu.stats.throttled.ns" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "CPU kernel", - "field": "system.process.cgroup.cpuacct.stats.system.ns" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "Process name", - "field": "process.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Container CPU usage [Metricbeat System] ECS", - "type": "table" - } - }, - "id": "Container-CPU-usage-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "System Navigation [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[System Overview](#/dashboard/Metricbeat-system-overview-ecs) | [Host Overview](#/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs) |\n[Containers overview](#/dashboard/CPU-slash-Memory-per-container-ecs)" - }, - "title": "System Navigation [Metricbeat System] ECS", - "type": "markdown" - } - }, - "id": "System-Navigation-ecs", - "type": "visualization", - "version": 3 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Container Memory stats [Metricbeat System] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "13", - "params": { - "customLabel": "Usage", - "field": "system.process.cgroup.memory.mem.usage.bytes" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "14", - "params": { - "customLabel": "Max usage", - "field": "system.process.cgroup.memory.mem.usage.max.bytes" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Page faults", - "field": "system.process.cgroup.memory.stats.page_faults" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Pages in memory", - "field": "system.process.cgroup.memory.stats.pages_in" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Pages out of memory", - "field": "system.process.cgroup.memory.stats.pages_out" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Container ID", - "field": "system.process.cgroup.id", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Inactive files", - "field": "system.process.cgroup.memory.stats.inactive_file.bytes" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "# Major page faults", - "field": "system.process.cgroup.memory.stats.major_page_faults" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "8", - "params": { - "customLabel": "Process name", - "field": "process.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "12", - "params": { - "customLabel": "Failures", - "field": "system.process.cgroup.memory.mem.failures" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "10", - "params": { - "customLabel": "TCP buffers", - "field": "system.process.cgroup.memory.kmem_tcp.usage.bytes" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "11", - "params": { - "customLabel": "Huge pages", - "field": "system.process.cgroup.memory.stats.rss_huge.bytes" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "7", - "params": { - "customLabel": "Swap caches", - "field": "system.process.cgroup.memory.stats.rss.bytes" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "15", - "params": { - "customLabel": "Swap usage", - "field": "system.process.cgroup.memory.stats.swap.bytes" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "16", - "params": { - "customLabel": "Block I/O", - "field": "system.process.cgroup.blkio.total.ios" - }, - "schema": "metric", - "type": "avg" - } - ], - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Container Memory stats [Metricbeat System] ECS", - "type": "table" - } - }, - "id": "Container-Memory-stats-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Container Block IO [Metricbeat System] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Total", - "field": "system.process.cgroup.blkio.total.bytes" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "I/O", - "field": "system.process.cgroup.blkio.total.ios" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Container ID", - "field": "system.process.cgroup.id", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Process name", - "field": "process.name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Container Block IO [Metricbeat System] ECS", - "type": "table" - } - }, - "id": "Container-Block-IO-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "Overview of container metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "Container-CPU-usage-ecs", - "panelIndex": 2, - "row": 2, - "size_x": 12, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "System-Navigation-ecs", - "panelIndex": 3, - "row": 1, - "size_x": 12, - "size_y": 1, - "type": "visualization" - }, - { - "col": 1, - "id": "Container-Memory-stats-ecs", - "panelIndex": 4, - "row": 5, - "size_x": 12, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "Container-Block-IO-ecs", - "panelIndex": 5, - "row": 8, - "size_x": 12, - "size_y": 4, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Metricbeat System] Containers overview ECS", - "uiStateJSON": { - "P-2": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-4": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-5": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - } - }, - "version": 1 - }, - "id": "CPU-slash-Memory-per-container-ecs", - "type": "dashboard", - "version": 1 - } - ], - "version": "6.0.0-rc1-SNAPSHOT" -} diff --git a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-containers-overview.ndjson b/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-containers-overview.ndjson new file mode 100644 index 00000000000..07762658e5b --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-containers-overview.ndjson @@ -0,0 +1,5 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Container CPU usage [Metricbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"CPU user\",\"field\":\"system.process.cgroup.cpuacct.stats.user.ns\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"CPU quota\",\"field\":\"system.process.cgroup.cpu.cfs.quota.us\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Container ID\",\"field\":\"system.process.cgroup.id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"CPU throttling\",\"field\":\"system.process.cgroup.cpu.stats.throttled.ns\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"CPU kernel\",\"field\":\"system.process.cgroup.cpuacct.stats.system.ns\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Process name\",\"field\":\"process.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Container CPU usage [Metricbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Container-CPU-usage-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:03.451Z","version":"WzM3MjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"System Navigation [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[System Overview](#/dashboard/Metricbeat-system-overview-ecs) | [Host Overview](#/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs) |\\n[Containers overview](#/dashboard/CPU-slash-Memory-per-container-ecs)\"},\"title\":\"System Navigation [Metricbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"System-Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Container Memory stats [Metricbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"13\",\"params\":{\"customLabel\":\"Usage\",\"field\":\"system.process.cgroup.memory.mem.usage.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"14\",\"params\":{\"customLabel\":\"Max usage\",\"field\":\"system.process.cgroup.memory.mem.usage.max.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Page faults\",\"field\":\"system.process.cgroup.memory.stats.page_faults\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Pages in memory\",\"field\":\"system.process.cgroup.memory.stats.pages_in\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Pages out of memory\",\"field\":\"system.process.cgroup.memory.stats.pages_out\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Container ID\",\"field\":\"system.process.cgroup.id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Inactive files\",\"field\":\"system.process.cgroup.memory.stats.inactive_file.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"# Major page faults\",\"field\":\"system.process.cgroup.memory.stats.major_page_faults\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"Process name\",\"field\":\"process.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"12\",\"params\":{\"customLabel\":\"Failures\",\"field\":\"system.process.cgroup.memory.mem.failures\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"10\",\"params\":{\"customLabel\":\"TCP buffers\",\"field\":\"system.process.cgroup.memory.kmem_tcp.usage.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"11\",\"params\":{\"customLabel\":\"Huge pages\",\"field\":\"system.process.cgroup.memory.stats.rss_huge.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"Swap caches\",\"field\":\"system.process.cgroup.memory.stats.rss.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"15\",\"params\":{\"customLabel\":\"Swap usage\",\"field\":\"system.process.cgroup.memory.stats.swap.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"16\",\"params\":{\"customLabel\":\"Block I/O\",\"field\":\"system.process.cgroup.blkio.total.ios\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Container Memory stats [Metricbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Container-Memory-stats-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:03.451Z","version":"WzM3MjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Container Block IO [Metricbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total\",\"field\":\"system.process.cgroup.blkio.total.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"I/O\",\"field\":\"system.process.cgroup.blkio.total.ios\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Container ID\",\"field\":\"system.process.cgroup.id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Process name\",\"field\":\"process.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Container Block IO [Metricbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Container-Block-IO-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:03.451Z","version":"WzM3MjcsMV0="} +{"attributes":{"description":"Overview of container metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":48,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":16,\"w\":48,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":28,\"w\":48,\"h\":16,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Metricbeat System] Containers overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"CPU-slash-Memory-per-container-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Container-CPU-usage-ecs","name":"2:panel_2","type":"visualization"},{"id":"System-Navigation-ecs","name":"3:panel_3","type":"visualization"},{"id":"Container-Memory-stats-ecs","name":"4:panel_4","type":"visualization"},{"id":"Container-Block-IO-ecs","name":"5:panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:03.451Z","version":"WzM3MjgsMV0="} diff --git a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-host-overview.json b/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-host-overview.json deleted file mode 100644 index 852e4bb4814..00000000000 --- a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-host-overview.json +++ /dev/null @@ -1,2755 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of host metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "host.name:\"CHANGEME_HOSTNAME\"" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "1", - "w": 24, - "x": 0, - "y": 55 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "2", - "w": 24, - "x": 24, - "y": 25 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "3", - "w": 24, - "x": 24, - "y": 55 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "4", - "w": 24, - "x": 0, - "y": 40 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "5", - "w": 24, - "x": 24, - "y": 70 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "6", - "w": 24, - "x": 0, - "y": 70 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "7", - "w": 24, - "x": 0, - "y": 25 - }, - "panelIndex": "7", - "panelRefName": "panel_6", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "8", - "w": 24, - "x": 24, - "y": 40 - }, - "panelIndex": "8", - "panelRefName": "panel_7", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "9", - "w": 8, - "x": 16, - "y": 5 - }, - "panelIndex": "9", - "panelRefName": "panel_8", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "10", - "w": 8, - "x": 0, - "y": 5 - }, - "panelIndex": "10", - "panelRefName": "panel_9", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "11", - "w": 8, - "x": 8, - "y": 5 - }, - "panelIndex": "11", - "panelRefName": "panel_10", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "12", - "w": 8, - "x": 24, - "y": 5 - }, - "panelIndex": "12", - "panelRefName": "panel_11", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "13", - "w": 8, - "x": 32, - "y": 5 - }, - "panelIndex": "13", - "panelRefName": "panel_12", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "14", - "w": 16, - "x": 32, - "y": 15 - }, - "panelIndex": "14", - "panelRefName": "panel_13", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 5, - "i": "16", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "16", - "panelRefName": "panel_14", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "21", - "w": 8, - "x": 0, - "y": 15 - }, - "panelIndex": "21", - "panelRefName": "panel_15", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "22", - "w": 8, - "x": 8, - "y": 15 - }, - "panelIndex": "22", - "panelRefName": "panel_16", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "23", - "w": 8, - "x": 24, - "y": 15 - }, - "panelIndex": "23", - "panelRefName": "panel_17", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "25", - "w": 8, - "x": 40, - "y": 5 - }, - "panelIndex": "25", - "panelRefName": "panel_18", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "27", - "w": 24, - "x": 0, - "y": 85 - }, - "panelIndex": "27", - "panelRefName": "panel_19", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "28", - "w": 24, - "x": 24, - "y": 85 - }, - "panelIndex": "28", - "panelRefName": "panel_20", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "gridData": { - "h": 10, - "i": "29", - "w": 8, - "x": 16, - "y": 15 - }, - "panelIndex": "29", - "panelRefName": "panel_21", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 5, - "i": "30", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "30", - "panelRefName": "panel_22", - "version": "7.6.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat System] Host overview ECS", - "version": 1 - }, - "id": "79ffd6e0-faa0-11e6-947f-177f697178b8-ecs", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "6b7b9a40-faa1-11e6-86b1-cd7735ff7e23-ecs", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "4d546850-1b15-11e7-b09e-037021c4f8df-ecs", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "089b85d0-1b16-11e7-b09e-037021c4f8df-ecs", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "bfa5e400-1b16-11e7-b09e-037021c4f8df-ecs", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "e0f001c0-1b18-11e7-b09e-037021c4f8df-ecs", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "2e224660-1b19-11e7-b09e-037021c4f8df-ecs", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "ab2d1e90-1b1a-11e7-b09e-037021c4f8df-ecs", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "4e4bb1e0-1b1b-11e7-b09e-037021c4f8df-ecs", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "26732e20-1b91-11e7-bec4-a5e9ec5cab8b-ecs", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "1aae9140-1b93-11e7-8ada-3df93aab833e-ecs", - "name": "panel_12", - "type": "visualization" - }, - { - "id": "34f97ee0-1b96-11e7-8ada-3df93aab833e-ecs", - "name": "panel_13", - "type": "visualization" - }, - { - "id": "System-Navigation-ecs", - "name": "panel_14", - "type": "visualization" - }, - { - "id": "19e123b0-4d5a-11e7-aee5-fdc812cc3bec-ecs", - "name": "panel_15", - "type": "visualization" - }, - { - "id": "d2e80340-4d5c-11e7-aa29-87a97a796de6-ecs", - "name": "panel_16", - "type": "visualization" - }, - { - "id": "825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs", - "name": "panel_17", - "type": "visualization" - }, - { - "id": "96976150-4d5d-11e7-aa29-87a97a796de6-ecs", - "name": "panel_18", - "type": "visualization" - }, - { - "id": "99381c80-4d60-11e7-9a4c-ed99bbcaa42b-ecs", - "name": "panel_19", - "type": "visualization" - }, - { - "id": "c5e3cf90-4d60-11e7-9a4c-ed99bbcaa42b-ecs", - "name": "panel_20", - "type": "visualization" - }, - { - "id": "590a60f0-5d87-11e7-8884-1bb4c3b890e4-ecs", - "name": "panel_21", - "type": "visualization" - }, - { - "id": "3d65d450-a9c3-11e7-af20-67db8aecb295-ecs", - "name": "panel_22", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-03-26T18:07:09.250Z", - "version": "WzY4MDMsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Network Traffic (Packets) [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "filter": { - "language": "lucene", - "query": "-system.network.name:l*" - }, - "id": "da1046f0-faa0-11e6-86b1-cd7735ff7e23", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "1", - "formatter": "0.[00]a", - "id": "da1046f1-faa0-11e6-86b1-cd7735ff7e23", - "label": "Inbound", - "line_width": "0", - "metrics": [ - { - "field": "system.network.in.packets", - "id": "da1046f2-faa0-11e6-86b1-cd7735ff7e23", - "type": "max" - }, - { - "field": "da1046f2-faa0-11e6-86b1-cd7735ff7e23", - "id": "f41f9280-faa0-11e6-86b1-cd7735ff7e23", - "type": "derivative", - "unit": "1s" - }, - { - "field": "f41f9280-faa0-11e6-86b1-cd7735ff7e23", - "id": "c0da3d80-1b93-11e7-8ada-3df93aab833e", - "type": "positive_only", - "unit": "" - }, - { - "function": "sum", - "id": "ecaad010-2c2c-11e7-be71-3162da85303f", - "type": "series_agg" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "system.network.name", - "value_template": "{{value}}/s" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(250,40,255,1)", - "fill": "1", - "formatter": "0.[00]a", - "id": "fbbd5720-faa0-11e6-86b1-cd7735ff7e23", - "label": "Outbound", - "line_width": "0", - "metrics": [ - { - "field": "system.network.out.packets", - "id": "fbbd7e30-faa0-11e6-86b1-cd7735ff7e23", - "type": "max" - }, - { - "field": "fbbd7e30-faa0-11e6-86b1-cd7735ff7e23", - "id": "fbbd7e31-faa0-11e6-86b1-cd7735ff7e23", - "type": "derivative", - "unit": "1s" - }, - { - "id": "17e597a0-faa1-11e6-86b1-cd7735ff7e23", - "script": "params.rate != null \u0026\u0026 params.rate \u003e 0 ? params.rate * -1 : null", - "type": "calculation", - "variables": [ - { - "field": "fbbd7e31-faa0-11e6-86b1-cd7735ff7e23", - "id": "1940bad0-faa1-11e6-86b1-cd7735ff7e23", - "name": "rate" - } - ] - }, - { - "function": "sum", - "id": "fe5fbdc0-2c2c-11e7-be71-3162da85303f", - "type": "series_agg" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "system.network.name", - "value_template": "{{value}}/s" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Mericbeat: Network Traffic (Packets) ECS", - "type": "metrics" - } - }, - "id": "6b7b9a40-faa1-11e6-86b1-cd7735ff7e23-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:18.996Z", - "version": "WzUxNjMsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "System Load [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "id": "f6264ad0-1b14-11e7-b09e-037021c4f8df", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": "0", - "formatter": "number", - "id": "f62671e0-1b14-11e7-b09e-037021c4f8df", - "label": "1m", - "line_width": "3", - "metrics": [ - { - "field": "system.load.1", - "id": "f62671e1-1b14-11e7-b09e-037021c4f8df", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0", - "formatter": "number", - "id": "1c324850-1b15-11e7-b09e-037021c4f8df", - "label": "5m", - "line_width": "3", - "metrics": [ - { - "field": "system.load.5", - "id": "1c324851-1b15-11e7-b09e-037021c4f8df", - "type": "avg" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,98,177,1)", - "fill": "0", - "formatter": "number", - "id": "3287e740-1b15-11e7-b09e-037021c4f8df", - "label": "15m", - "line_width": "3", - "metrics": [ - { - "field": "system.load.15", - "id": "32880e50-1b15-11e7-b09e-037021c4f8df", - "type": "avg" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "System Load [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "4d546850-1b15-11e7-b09e-037021c4f8df-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:18.996Z", - "version": "WzUxNjQsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Network Traffic (Bytes) [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "filter": { - "language": "lucene", - "query": "-system.network.name:l*" - }, - "id": "da1046f0-faa0-11e6-86b1-cd7735ff7e23", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "1", - "formatter": "bytes", - "id": "da1046f1-faa0-11e6-86b1-cd7735ff7e23", - "label": "Inbound ", - "line_width": "0", - "metrics": [ - { - "field": "system.network.in.bytes", - "id": "da1046f2-faa0-11e6-86b1-cd7735ff7e23", - "type": "max" - }, - { - "field": "da1046f2-faa0-11e6-86b1-cd7735ff7e23", - "id": "f41f9280-faa0-11e6-86b1-cd7735ff7e23", - "type": "derivative", - "unit": "1s" - }, - { - "field": "f41f9280-faa0-11e6-86b1-cd7735ff7e23", - "id": "a87398e0-1b93-11e7-8ada-3df93aab833e", - "type": "positive_only", - "unit": "" - }, - { - "function": "sum", - "id": "2d533df0-2c2d-11e7-be71-3162da85303f", - "type": "series_agg" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "system.network.name", - "value_template": "{{value}}/s" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(250,40,255,1)", - "fill": "1", - "formatter": "bytes", - "id": "fbbd5720-faa0-11e6-86b1-cd7735ff7e23", - "label": "Outbound ", - "line_width": "0", - "metrics": [ - { - "field": "system.network.out.bytes", - "id": "fbbd7e30-faa0-11e6-86b1-cd7735ff7e23", - "type": "max" - }, - { - "field": "fbbd7e30-faa0-11e6-86b1-cd7735ff7e23", - "id": "fbbd7e31-faa0-11e6-86b1-cd7735ff7e23", - "type": "derivative", - "unit": "1s" - }, - { - "id": "17e597a0-faa1-11e6-86b1-cd7735ff7e23", - "script": "params.rate != null \u0026\u0026 params.rate \u003e 0 ? params.rate * -1 : null", - "type": "calculation", - "variables": [ - { - "field": "fbbd7e31-faa0-11e6-86b1-cd7735ff7e23", - "id": "1940bad0-faa1-11e6-86b1-cd7735ff7e23", - "name": "rate" - } - ] - }, - { - "function": "sum", - "id": "533da9b0-2c2d-11e7-be71-3162da85303f", - "type": "series_agg" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "system.network.name", - "value_template": "{{value}}/s" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Mericbeat: Network Traffic (Bytes) ECS", - "type": "metrics" - } - }, - "id": "089b85d0-1b16-11e7-b09e-037021c4f8df-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:18.996Z", - "version": "WzUxNjUsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Memory Usage [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "id": "32f46f40-1b16-11e7-b09e-037021c4f8df", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": "1", - "formatter": "bytes", - "id": "4ff61fd0-1b16-11e7-b09e-037021c4f8df", - "label": "Used", - "line_width": 1, - "metrics": [ - { - "field": "system.memory.actual.used.bytes", - "id": "4ff61fd1-1b16-11e7-b09e-037021c4f8df", - "type": "avg" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "stacked" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "1", - "formatter": "bytes", - "id": "753a6080-1b16-11e7-b09e-037021c4f8df", - "label": "Cache", - "line_width": 1, - "metrics": [ - { - "field": "system.memory.actual.used.bytes", - "id": "753a6081-1b16-11e7-b09e-037021c4f8df", - "type": "avg" - }, - { - "field": "system.memory.used.bytes", - "id": "7c9d3f00-1b16-11e7-b09e-037021c4f8df", - "type": "avg" - }, - { - "id": "869cc160-1b16-11e7-b09e-037021c4f8df", - "script": "params.actual != null \u0026\u0026 params.used != null ? params.used - params.actual : null", - "type": "calculation", - "variables": [ - { - "field": "753a6081-1b16-11e7-b09e-037021c4f8df", - "id": "890f9620-1b16-11e7-b09e-037021c4f8df", - "name": "actual" - }, - { - "field": "7c9d3f00-1b16-11e7-b09e-037021c4f8df", - "id": "8f3ab7f0-1b16-11e7-b09e-037021c4f8df", - "name": "used" - } - ] - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "stacked" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "1", - "formatter": "bytes", - "id": "32f46f41-1b16-11e7-b09e-037021c4f8df", - "label": "Free", - "line_width": 1, - "metrics": [ - { - "field": "system.memory.free", - "id": "32f46f42-1b16-11e7-b09e-037021c4f8df", - "type": "avg" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "stacked" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Memory Usage [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "bfa5e400-1b16-11e7-b09e-037021c4f8df-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:18.996Z", - "version": "WzUxNjYsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top Processes By CPU [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "bar_color": "rgba(104,188,0,1)", - "id": "60e11be0-1b18-11e7-b09e-037021c4f8df", - "operator": "gte", - "value": 0 - } - ], - "drilldown_url": "", - "filter": "", - "id": "5f5b8d50-1b18-11e7-b09e-037021c4f8df", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "percent", - "id": "5f5b8d51-1b18-11e7-b09e-037021c4f8df", - "line_width": 1, - "metrics": [ - { - "field": "system.process.cpu.total.pct", - "id": "5f5b8d52-1b18-11e7-b09e-037021c4f8df", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "process.name", - "terms_order_by": "5f5b8d52-1b18-11e7-b09e-037021c4f8df" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "Top Processes By CPU [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "e0f001c0-1b18-11e7-b09e-037021c4f8df-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:18.996Z", - "version": "WzUxNjcsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Processes By Memory [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "bar_color": "rgba(104,188,0,1)", - "id": "efb9b660-1b18-11e7-b09e-037021c4f8df", - "operator": "gte", - "value": 0 - }, - { - "bar_color": "rgba(254,146,0,1)", - "id": "17fcb820-1b19-11e7-b09e-037021c4f8df", - "operator": "gte", - "value": 0.7 - }, - { - "bar_color": "rgba(211,49,21,1)", - "id": "1dd61070-1b19-11e7-b09e-037021c4f8df", - "operator": "gte", - "value": 0.85 - } - ], - "drilldown_url": "", - "filter": "", - "id": "edfceb30-1b18-11e7-b09e-037021c4f8df", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "percent", - "id": "edfceb31-1b18-11e7-b09e-037021c4f8df", - "line_width": 1, - "metrics": [ - { - "field": "system.process.memory.rss.pct", - "id": "edfceb32-1b18-11e7-b09e-037021c4f8df", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "process.name", - "terms_order_by": "edfceb32-1b18-11e7-b09e-037021c4f8df" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "Processes By Memory [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "2e224660-1b19-11e7-b09e-037021c4f8df-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:18.996Z", - "version": "WzUxNjgsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "CPU Usage [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "id": "80a04950-1b19-11e7-b09e-037021c4f8df", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "1", - "formatter": "percent", - "id": "80a04951-1b19-11e7-b09e-037021c4f8df", - "label": "user", - "line_width": 1, - "metrics": [ - { - "field": "system.cpu.user.pct", - "id": "80a04952-1b19-11e7-b09e-037021c4f8df", - "type": "avg" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "stacked" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": "1", - "formatter": "percent", - "id": "993acf30-1b19-11e7-b09e-037021c4f8df", - "label": "system", - "line_width": 1, - "metrics": [ - { - "field": "system.cpu.system.pct", - "id": "993acf31-1b19-11e7-b09e-037021c4f8df", - "type": "avg" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "stacked" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(123,100,255,1)", - "fill": "1", - "formatter": "percent", - "id": "65ca35e0-1b1a-11e7-b09e-037021c4f8df", - "label": "nice", - "line_width": 1, - "metrics": [ - { - "field": "system.cpu.nice.pct", - "id": "65ca5cf0-1b1a-11e7-b09e-037021c4f8df", - "type": "avg" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "stacked" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(226,115,0,1)", - "fill": "1", - "formatter": "percent", - "id": "741b5f20-1b1a-11e7-b09e-037021c4f8df", - "label": "irq", - "line_width": 1, - "metrics": [ - { - "field": "system.cpu.irq.pct", - "id": "741b5f21-1b1a-11e7-b09e-037021c4f8df", - "type": "avg" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "stacked" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(176,188,0,1)", - "fill": "1", - "formatter": "percent", - "id": "2efc5d40-1b1a-11e7-b09e-037021c4f8df", - "label": "softirq", - "line_width": 1, - "metrics": [ - { - "field": "system.cpu.softirq.pct", - "id": "2efc5d41-1b1a-11e7-b09e-037021c4f8df", - "type": "avg" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "stacked" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(15,20,25,1)", - "fill": "1", - "formatter": "percent", - "id": "ae644a30-1b19-11e7-b09e-037021c4f8df", - "label": "iowait", - "line_width": 1, - "metrics": [ - { - "field": "system.cpu.iowait.pct", - "id": "ae644a31-1b19-11e7-b09e-037021c4f8df", - "type": "avg" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "stacked" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "CPU Usage [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "ab2d1e90-1b1a-11e7-b09e-037021c4f8df-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:18.996Z", - "version": "WzUxNjksM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Disk IO (Bytes) [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "filter": "", - "id": "d3c67db0-1b1a-11e7-b09e-037021c4f8df", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(22,165,165,1)", - "fill": "1", - "formatter": "bytes", - "id": "d3c67db1-1b1a-11e7-b09e-037021c4f8df", - "label": "reads", - "line_width": 1, - "metrics": [ - { - "field": "system.diskio.read.bytes", - "id": "d3c67db2-1b1a-11e7-b09e-037021c4f8df", - "type": "max" - }, - { - "field": "d3c67db2-1b1a-11e7-b09e-037021c4f8df", - "id": "f55b9910-1b1a-11e7-b09e-037021c4f8df", - "type": "derivative", - "unit": "1s" - }, - { - "field": "f55b9910-1b1a-11e7-b09e-037021c4f8df", - "id": "dcbbb100-1b93-11e7-8ada-3df93aab833e", - "type": "positive_only", - "unit": "" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}/s" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(251,158,0,1)", - "fill": "1", - "formatter": "bytes", - "id": "144124d0-1b1b-11e7-b09e-037021c4f8df", - "label": "writes", - "line_width": 1, - "metrics": [ - { - "field": "system.diskio.write.bytes", - "id": "144124d1-1b1b-11e7-b09e-037021c4f8df", - "type": "max" - }, - { - "field": "144124d1-1b1b-11e7-b09e-037021c4f8df", - "id": "144124d2-1b1b-11e7-b09e-037021c4f8df", - "type": "derivative", - "unit": "1s" - }, - { - "id": "144124d4-1b1b-11e7-b09e-037021c4f8df", - "script": "params.rate \u003e 0 ? params.rate * -1 : 0", - "type": "calculation", - "variables": [ - { - "field": "144124d2-1b1b-11e7-b09e-037021c4f8df", - "id": "144124d3-1b1b-11e7-b09e-037021c4f8df", - "name": "rate" - } - ] - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}/s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Disk IO (Bytes) [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "4e4bb1e0-1b1b-11e7-b09e-037021c4f8df-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:18.996Z", - "version": "WzUxNzAsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Load Gauge [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "feefabd0-1b90-11e7-bec4-a5e9ec5cab8b" - } - ], - "gauge_color_rules": [ - { - "id": "ffd94880-1b90-11e7-bec4-a5e9ec5cab8b" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "fdcc6180-1b90-11e7-bec4-a5e9ec5cab8b", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "fdcc6181-1b90-11e7-bec4-a5e9ec5cab8b", - "label": "5m Load", - "line_width": 1, - "metrics": [ - { - "field": "system.load.5", - "id": "fdcc6182-1b90-11e7-bec4-a5e9ec5cab8b", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Load Gauge [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "26732e20-1b91-11e7-bec4-a5e9ec5cab8b-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:18.996Z", - "version": "WzUxNzEsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "CPU Usage Gauge [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "filter": "", - "gauge_color_rules": [ - { - "gauge": "rgba(104,188,0,1)", - "id": "4ef2c3b0-1b91-11e7-bec4-a5e9ec5cab8b", - "operator": "gte", - "value": 0 - }, - { - "gauge": "rgba(254,146,0,1)", - "id": "e6561ae0-1b91-11e7-bec4-a5e9ec5cab8b", - "operator": "gte", - "value": 0.7 - }, - { - "gauge": "rgba(211,49,21,1)", - "id": "ec655040-1b91-11e7-bec4-a5e9ec5cab8b", - "operator": "gte", - "value": 0.85 - } - ], - "gauge_inner_width": 10, - "gauge_max": "1", - "gauge_style": "half", - "gauge_width": 10, - "id": "4c9e2550-1b91-11e7-bec4-a5e9ec5cab8b", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "percent", - "id": "4c9e2551-1b91-11e7-bec4-a5e9ec5cab8b", - "label": "CPU Usage", - "line_width": 1, - "metrics": [ - { - "field": "system.cpu.user.pct", - "id": "4c9e2552-1b91-11e7-bec4-a5e9ec5cab8b", - "type": "avg" - }, - { - "field": "system.cpu.system.pct", - "id": "225c2140-5fd7-11e7-a63a-a937b7c1a7e1", - "type": "avg" - }, - { - "field": "system.cpu.cores", - "id": "837a30c0-5fd7-11e7-a63a-a937b7c1a7e1", - "type": "avg" - }, - { - "id": "587aa510-1b91-11e7-bec4-a5e9ec5cab8b", - "script": "params.n \u003e 0 ? (params.user+params.system)/params.n : null", - "type": "calculation", - "variables": [ - { - "field": "4c9e2552-1b91-11e7-bec4-a5e9ec5cab8b", - "id": "5a19af10-1b91-11e7-bec4-a5e9ec5cab8b", - "name": "user" - }, - { - "field": "225c2140-5fd7-11e7-a63a-a937b7c1a7e1", - "id": "32b54f80-5fd7-11e7-a63a-a937b7c1a7e1", - "name": "system" - }, - { - "field": "837a30c0-5fd7-11e7-a63a-a937b7c1a7e1", - "id": "8ba6eef0-5fd7-11e7-a63a-a937b7c1a7e1", - "name": "n" - } - ] - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "CPU Usage Gauge [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:44.291Z", - "version": "WzUzODEsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Memory Usage Gauge [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "filter": "", - "gauge_color_rules": [ - { - "gauge": "rgba(104,188,0,1)", - "id": "a0d522e0-1b91-11e7-bec4-a5e9ec5cab8b", - "operator": "gte", - "value": 0 - }, - { - "gauge": "rgba(254,146,0,1)", - "id": "b45ad8f0-1b91-11e7-bec4-a5e9ec5cab8b", - "operator": "gte", - "value": 0.7 - }, - { - "gauge": "rgba(211,49,21,1)", - "id": "c06e9550-1b91-11e7-bec4-a5e9ec5cab8b", - "operator": "gte", - "value": 0.85 - } - ], - "gauge_inner_width": 10, - "gauge_max": "1", - "gauge_style": "half", - "gauge_width": 10, - "id": "9f51b730-1b91-11e7-bec4-a5e9ec5cab8b", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "percent", - "id": "9f51b731-1b91-11e7-bec4-a5e9ec5cab8b", - "label": "Memory Usage", - "line_width": 1, - "metrics": [ - { - "field": "system.memory.actual.used.pct", - "id": "9f51b732-1b91-11e7-bec4-a5e9ec5cab8b", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Memory Usage Gauge [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:44.291Z", - "version": "WzUzODAsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Inbound Traffic [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "0e346760-1b92-11e7-bec4-a5e9ec5cab8b" - } - ], - "filter": { - "language": "lucene", - "query": "-system.network.name:l*" - }, - "id": "0c761590-1b92-11e7-bec4-a5e9ec5cab8b", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "0c761591-1b92-11e7-bec4-a5e9ec5cab8b", - "label": "Inbound Traffic", - "line_width": 1, - "metrics": [ - { - "field": "system.network.in.bytes", - "id": "0c761592-1b92-11e7-bec4-a5e9ec5cab8b", - "type": "max" - }, - { - "field": "0c761592-1b92-11e7-bec4-a5e9ec5cab8b", - "id": "1d659060-1b92-11e7-bec4-a5e9ec5cab8b", - "type": "derivative", - "unit": "1s" - }, - { - "field": "1d659060-1b92-11e7-bec4-a5e9ec5cab8b", - "id": "f2074f70-1b92-11e7-a416-41f5ccdba2e6", - "type": "positive_only", - "unit": "" - }, - { - "function": "sum", - "id": "c40e18f0-2c55-11e7-a0ad-277ce466684d", - "type": "series_agg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "system.network.name", - "value_template": "{{value}}/s" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "37f70440-1b92-11e7-bec4-a5e9ec5cab8b", - "label": "Total Transferred", - "line_width": 1, - "metrics": [ - { - "field": "system.network.in.bytes", - "id": "37f72b50-1b92-11e7-bec4-a5e9ec5cab8b", - "type": "max" - }, - { - "field": "37f72b50-1b92-11e7-bec4-a5e9ec5cab8b", - "id": "37f72b51-1b92-11e7-bec4-a5e9ec5cab8b", - "type": "derivative", - "unit": "" - }, - { - "field": "37f72b51-1b92-11e7-bec4-a5e9ec5cab8b", - "id": "f9da2dd0-1b92-11e7-a416-41f5ccdba2e6", - "type": "positive_only", - "unit": "" - }, - { - "field": "f9da2dd0-1b92-11e7-a416-41f5ccdba2e6", - "function": "overall_sum", - "id": "3e63c2f0-1b92-11e7-bec4-a5e9ec5cab8b", - "sigma": "", - "type": "series_agg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "system.network.name", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric" - }, - "title": "Inbound Traffic [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:44.291Z", - "version": "WzUzNzcsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Outbound Traffic [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "0e346760-1b92-11e7-bec4-a5e9ec5cab8b" - } - ], - "filter": { - "language": "lucene", - "query": "-system.network.name:l*" - }, - "id": "0c761590-1b92-11e7-bec4-a5e9ec5cab8b", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "0c761591-1b92-11e7-bec4-a5e9ec5cab8b", - "label": "Outbound Traffic", - "line_width": 1, - "metrics": [ - { - "field": "system.network.out.bytes", - "id": "0c761592-1b92-11e7-bec4-a5e9ec5cab8b", - "type": "max" - }, - { - "field": "0c761592-1b92-11e7-bec4-a5e9ec5cab8b", - "id": "1d659060-1b92-11e7-bec4-a5e9ec5cab8b", - "type": "derivative", - "unit": "1s" - }, - { - "field": "1d659060-1b92-11e7-bec4-a5e9ec5cab8b", - "id": "f2074f70-1b92-11e7-a416-41f5ccdba2e6", - "type": "positive_only", - "unit": "" - }, - { - "function": "sum", - "id": "a1737470-2c55-11e7-a0ad-277ce466684d", - "type": "series_agg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "system.network.name", - "value_template": "{{value}}/s" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "37f70440-1b92-11e7-bec4-a5e9ec5cab8b", - "label": "Total Transferred", - "line_width": 1, - "metrics": [ - { - "field": "system.network.out.bytes", - "id": "37f72b50-1b92-11e7-bec4-a5e9ec5cab8b", - "type": "max" - }, - { - "field": "37f72b50-1b92-11e7-bec4-a5e9ec5cab8b", - "id": "37f72b51-1b92-11e7-bec4-a5e9ec5cab8b", - "type": "derivative", - "unit": "" - }, - { - "field": "37f72b51-1b92-11e7-bec4-a5e9ec5cab8b", - "id": "f9da2dd0-1b92-11e7-a416-41f5ccdba2e6", - "type": "positive_only", - "unit": "" - }, - { - "field": "f9da2dd0-1b92-11e7-a416-41f5ccdba2e6", - "function": "overall_sum", - "id": "3e63c2f0-1b92-11e7-bec4-a5e9ec5cab8b", - "sigma": "", - "type": "series_agg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "system.network.name", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric" - }, - "title": "Outbound Traffic [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "1aae9140-1b93-11e7-8ada-3df93aab833e-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:44.291Z", - "version": "WzUzNzgsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Disk Usage [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "bar_color": "rgba(104,188,0,1)", - "id": "bf525310-1b95-11e7-8ada-3df93aab833e", - "operator": "gte", - "value": 0 - }, - { - "bar_color": "rgba(254,146,0,1)", - "id": "125fc4c0-1b96-11e7-8ada-3df93aab833e", - "operator": "gte", - "value": 0.7 - }, - { - "bar_color": "rgba(211,49,21,1)", - "id": "1a5c7240-1b96-11e7-8ada-3df93aab833e", - "operator": "gte", - "value": 0.85 - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "lucene", - "query": "-system.filesystem.mount_point:\\/run* AND -system.filesystem.mount_point:\\/sys* AND -system.filesystem.mount_point:\\/dev* AND -system.filesystem.mount_point:\\/proc* AND -system.filesystem.mount_point:\\/var* AND -system.filesystem.mount_point:\\/boot" - }, - "id": "9f7e48a0-1b95-11e7-8ada-3df93aab833e", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "percent", - "id": "9f7e48a1-1b95-11e7-8ada-3df93aab833e", - "line_width": 1, - "metrics": [ - { - "agg_with": "avg", - "field": "system.filesystem.used.pct", - "id": "9f7e48a2-1b95-11e7-8ada-3df93aab833e", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "system.filesystem.mount_point" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "top_n" - }, - "title": "Disk Usage [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "34f97ee0-1b96-11e7-8ada-3df93aab833e-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-26T17:26:35.781Z", - "version": "WzY3NTEsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "System Navigation [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[System Overview](#/dashboard/Metricbeat-system-overview-ecs) | [Host Overview](#/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs) |\n[Containers overview](#/dashboard/CPU-slash-Memory-per-container-ecs)" - }, - "title": "System Navigation [Metricbeat System] ECS", - "type": "markdown" - } - }, - "id": "System-Navigation-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:44.291Z", - "version": "WzUzNzIsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Swap usage [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "filter": "", - "gauge_color_rules": [ - { - "gauge": "rgba(104,188,0,1)", - "id": "d17c1e90-4d59-11e7-aee5-fdc812cc3bec", - "operator": "gte", - "value": 0 - }, - { - "gauge": "rgba(251,158,0,1)", - "id": "fc1d3490-4d59-11e7-aee5-fdc812cc3bec", - "operator": "gte", - "value": 0.7 - }, - { - "gauge": "rgba(211,49,21,1)", - "id": "0e204240-4d5a-11e7-aee5-fdc812cc3bec", - "operator": "gte", - "value": 0.85 - } - ], - "gauge_inner_width": 10, - "gauge_max": "", - "gauge_style": "half", - "gauge_width": 10, - "id": "cee2fd20-4d59-11e7-aee5-fdc812cc3bec", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "percent", - "id": "cee2fd21-4d59-11e7-aee5-fdc812cc3bec", - "label": "Swap usage", - "line_width": 1, - "metrics": [ - { - "field": "system.memory.swap.used.pct", - "id": "cee2fd22-4d59-11e7-aee5-fdc812cc3bec", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Swap usage [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "19e123b0-4d5a-11e7-aee5-fdc812cc3bec-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:18.996Z", - "version": "WzUxNzgsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Memory usage vs total [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "6f7618b0-4d5c-11e7-aa29-87a97a796de6" - } - ], - "id": "6bc65720-4d5c-11e7-aa29-87a97a796de6", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "6bc65721-4d5c-11e7-aa29-87a97a796de6", - "label": "Memory usage", - "line_width": 1, - "metrics": [ - { - "field": "system.memory.actual.used.bytes", - "id": "6bc65722-4d5c-11e7-aa29-87a97a796de6", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "b8fe6820-4d5c-11e7-aa29-87a97a796de6", - "label": "Total Memory", - "line_width": 1, - "metrics": [ - { - "field": "system.memory.total", - "id": "b8fe6821-4d5c-11e7-aa29-87a97a796de6", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric" - }, - "title": "Memory usage vs total ECS", - "type": "metrics" - } - }, - "id": "d2e80340-4d5c-11e7-aa29-87a97a796de6-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:18.996Z", - "version": "WzUxNzksM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Disk used [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": "", - "gauge_color_rules": [ - { - "gauge": "rgba(104,188,0,1)", - "id": "51921d10-4d1d-11e7-b5f2-2b7c1895bf32", - "operator": "gte", - "value": 0 - }, - { - "gauge": "rgba(251,158,0,1)", - "id": "f26de750-4d54-11e7-b5f2-2b7c1895bf32", - "operator": "gte", - "value": 0.7 - }, - { - "gauge": "rgba(211,49,21,1)", - "id": "fa31d190-4d54-11e7-b5f2-2b7c1895bf32", - "operator": "gte", - "value": 0.85 - } - ], - "gauge_inner_width": 10, - "gauge_max": "1", - "gauge_style": "half", - "gauge_width": 10, - "id": "4e4dc780-4d1d-11e7-b5f2-2b7c1895bf32", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "percent", - "id": "4e4dee90-4d1d-11e7-b5f2-2b7c1895bf32", - "label": "Disk used", - "line_width": 1, - "metrics": [ - { - "agg_with": "avg", - "field": "system.fsstat.total_size.used", - "id": "4e4dee91-4d1d-11e7-b5f2-2b7c1895bf32", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - }, - { - "agg_with": "avg", - "field": "system.fsstat.total_size.total", - "id": "57c96ee0-4d54-11e7-b5f2-2b7c1895bf32", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - }, - { - "id": "6304cca0-4d54-11e7-b5f2-2b7c1895bf32", - "script": "params.used/params.total ", - "type": "math", - "variables": [ - { - "field": "4e4dee91-4d1d-11e7-b5f2-2b7c1895bf32", - "id": "6da10430-4d54-11e7-b5f2-2b7c1895bf32", - "name": "used" - }, - { - "field": "57c96ee0-4d54-11e7-b5f2-2b7c1895bf32", - "id": "73b8c510-4d54-11e7-b5f2-2b7c1895bf32", - "name": "total" - } - ] - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "gauge" - }, - "title": "Disk used [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-26T17:22:09.379Z", - "version": "WzY3MTksN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Packetloss [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "6ba9b1f0-4d5d-11e7-aa29-87a97a796de6" - } - ], - "id": "6984af10-4d5d-11e7-aa29-87a97a796de6", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "6984af11-4d5d-11e7-aa29-87a97a796de6", - "label": "In Packetloss", - "line_width": 1, - "metrics": [ - { - "field": "system.network.in.dropped", - "id": "6984af12-4d5d-11e7-aa29-87a97a796de6", - "type": "max" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "ac2e6b30-4d5d-11e7-aa29-87a97a796de6", - "label": "Out Packetloss", - "line_width": 1, - "metrics": [ - { - "field": "system.network.out.dropped", - "id": "ac2e6b31-4d5d-11e7-aa29-87a97a796de6", - "type": "max" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric" - }, - "title": "Packetloss [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "96976150-4d5d-11e7-aa29-87a97a796de6-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:18.996Z", - "version": "WzUxODEsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Interfaces by Incoming traffic [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "id": "44596d40-4d60-11e7-9a4c-ed99bbcaa42b" - } - ], - "id": "42ceae90-4d60-11e7-9a4c-ed99bbcaa42b", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "42ced5a0-4d60-11e7-9a4c-ed99bbcaa42b", - "label": "Interfaces by Incoming traffic", - "line_width": 1, - "metrics": [ - { - "field": "system.network.in.bytes", - "id": "42ced5a1-4d60-11e7-9a4c-ed99bbcaa42b", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "system.network.name", - "terms_order_by": "42ced5a1-4d60-11e7-9a4c-ed99bbcaa42b" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "Interfaces by Incoming traffic [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "99381c80-4d60-11e7-9a4c-ed99bbcaa42b-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:18.996Z", - "version": "WzUxODIsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Interfaces by Outgoing traffic [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "id": "9db20be0-4d60-11e7-9a4c-ed99bbcaa42b" - } - ], - "id": "9cdba910-4d60-11e7-9a4c-ed99bbcaa42b", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "9cdba911-4d60-11e7-9a4c-ed99bbcaa42b", - "label": "Interfaces by Outgoing traffic", - "line_width": 1, - "metrics": [ - { - "field": "system.network.out.bytes", - "id": "9cdba912-4d60-11e7-9a4c-ed99bbcaa42b", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "system.network.name", - "terms_order_by": "9cdba912-4d60-11e7-9a4c-ed99bbcaa42b" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "Interfaces by Outgoing traffic [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "c5e3cf90-4d60-11e7-9a4c-ed99bbcaa42b-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:18.996Z", - "version": "WzUxODMsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Number of processes [Metricbeat System] ECS", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Processes", - "field": "process.pid" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "type": "gauge" - }, - "title": "Number of processes ECS", - "type": "metric" - } - }, - "id": "590a60f0-5d87-11e7-8884-1bb4c3b890e4-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-03-03T20:18:18.996Z", - "version": "WzUxODQsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Tip [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "**TIP:** To select another host, go to the [System Overview](#/dashboard/Metricbeat-system-overview-ecs) dashboard and double-click a host name." - }, - "title": "Tip [Metricbeat System] ECS", - "type": "markdown" - } - }, - "id": "3d65d450-a9c3-11e7-af20-67db8aecb295-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:18.996Z", - "version": "WzUxODUsM10=" - } - ], - "version": "7.6.0" -} diff --git a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-host-overview.ndjson b/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-host-overview.ndjson new file mode 100644 index 00000000000..a19a9097e18 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-host-overview.ndjson @@ -0,0 +1,24 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Network Traffic (Packets) [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"language\":\"lucene\",\"query\":\"-system.network.name:l*\"},\"id\":\"da1046f0-faa0-11e6-86b1-cd7735ff7e23\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"1\",\"formatter\":\"0.[00]a\",\"id\":\"da1046f1-faa0-11e6-86b1-cd7735ff7e23\",\"label\":\"Inbound\",\"line_width\":\"0\",\"metrics\":[{\"field\":\"system.network.in.packets\",\"id\":\"da1046f2-faa0-11e6-86b1-cd7735ff7e23\",\"type\":\"max\"},{\"field\":\"da1046f2-faa0-11e6-86b1-cd7735ff7e23\",\"id\":\"f41f9280-faa0-11e6-86b1-cd7735ff7e23\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"f41f9280-faa0-11e6-86b1-cd7735ff7e23\",\"id\":\"c0da3d80-1b93-11e7-8ada-3df93aab833e\",\"type\":\"positive_only\",\"unit\":\"\"},{\"function\":\"sum\",\"id\":\"ecaad010-2c2c-11e7-be71-3162da85303f\",\"type\":\"series_agg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(250,40,255,1)\",\"fill\":\"1\",\"formatter\":\"0.[00]a\",\"id\":\"fbbd5720-faa0-11e6-86b1-cd7735ff7e23\",\"label\":\"Outbound\",\"line_width\":\"0\",\"metrics\":[{\"field\":\"system.network.out.packets\",\"id\":\"fbbd7e30-faa0-11e6-86b1-cd7735ff7e23\",\"type\":\"max\"},{\"field\":\"fbbd7e30-faa0-11e6-86b1-cd7735ff7e23\",\"id\":\"fbbd7e31-faa0-11e6-86b1-cd7735ff7e23\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"id\":\"17e597a0-faa1-11e6-86b1-cd7735ff7e23\",\"script\":\"params.rate != null && params.rate > 0 ? params.rate * -1 : null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"fbbd7e31-faa0-11e6-86b1-cd7735ff7e23\",\"id\":\"1940bad0-faa1-11e6-86b1-cd7735ff7e23\",\"name\":\"rate\"}]},{\"function\":\"sum\",\"id\":\"fe5fbdc0-2c2c-11e7-be71-3162da85303f\",\"type\":\"series_agg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Mericbeat: Network Traffic (Packets) ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6b7b9a40-faa1-11e6-86b1-cd7735ff7e23-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"System Load [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"f6264ad0-1b14-11e7-b09e-037021c4f8df\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"f62671e0-1b14-11e7-b09e-037021c4f8df\",\"label\":\"1m\",\"line_width\":\"3\",\"metrics\":[{\"field\":\"system.load.1\",\"id\":\"f62671e1-1b14-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"1c324850-1b15-11e7-b09e-037021c4f8df\",\"label\":\"5m\",\"line_width\":\"3\",\"metrics\":[{\"field\":\"system.load.5\",\"id\":\"1c324851-1b15-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,98,177,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"3287e740-1b15-11e7-b09e-037021c4f8df\",\"label\":\"15m\",\"line_width\":\"3\",\"metrics\":[{\"field\":\"system.load.15\",\"id\":\"32880e50-1b15-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"System Load [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4d546850-1b15-11e7-b09e-037021c4f8df-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Network Traffic (Bytes) [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"language\":\"lucene\",\"query\":\"-system.network.name:l*\"},\"id\":\"da1046f0-faa0-11e6-86b1-cd7735ff7e23\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"1\",\"formatter\":\"bytes\",\"id\":\"da1046f1-faa0-11e6-86b1-cd7735ff7e23\",\"label\":\"Inbound \",\"line_width\":\"0\",\"metrics\":[{\"field\":\"system.network.in.bytes\",\"id\":\"da1046f2-faa0-11e6-86b1-cd7735ff7e23\",\"type\":\"max\"},{\"field\":\"da1046f2-faa0-11e6-86b1-cd7735ff7e23\",\"id\":\"f41f9280-faa0-11e6-86b1-cd7735ff7e23\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"f41f9280-faa0-11e6-86b1-cd7735ff7e23\",\"id\":\"a87398e0-1b93-11e7-8ada-3df93aab833e\",\"type\":\"positive_only\",\"unit\":\"\"},{\"function\":\"sum\",\"id\":\"2d533df0-2c2d-11e7-be71-3162da85303f\",\"type\":\"series_agg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(250,40,255,1)\",\"fill\":\"1\",\"formatter\":\"bytes\",\"id\":\"fbbd5720-faa0-11e6-86b1-cd7735ff7e23\",\"label\":\"Outbound \",\"line_width\":\"0\",\"metrics\":[{\"field\":\"system.network.out.bytes\",\"id\":\"fbbd7e30-faa0-11e6-86b1-cd7735ff7e23\",\"type\":\"max\"},{\"field\":\"fbbd7e30-faa0-11e6-86b1-cd7735ff7e23\",\"id\":\"fbbd7e31-faa0-11e6-86b1-cd7735ff7e23\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"id\":\"17e597a0-faa1-11e6-86b1-cd7735ff7e23\",\"script\":\"params.rate != null && params.rate > 0 ? params.rate * -1 : null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"fbbd7e31-faa0-11e6-86b1-cd7735ff7e23\",\"id\":\"1940bad0-faa1-11e6-86b1-cd7735ff7e23\",\"name\":\"rate\"}]},{\"function\":\"sum\",\"id\":\"533da9b0-2c2d-11e7-be71-3162da85303f\",\"type\":\"series_agg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Mericbeat: Network Traffic (Bytes) ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"089b85d0-1b16-11e7-b09e-037021c4f8df-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Memory Usage [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"32f46f40-1b16-11e7-b09e-037021c4f8df\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"1\",\"formatter\":\"bytes\",\"id\":\"4ff61fd0-1b16-11e7-b09e-037021c4f8df\",\"label\":\"Used\",\"line_width\":1,\"metrics\":[{\"field\":\"system.memory.actual.used.bytes\",\"id\":\"4ff61fd1-1b16-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"1\",\"formatter\":\"bytes\",\"id\":\"753a6080-1b16-11e7-b09e-037021c4f8df\",\"label\":\"Cache\",\"line_width\":1,\"metrics\":[{\"field\":\"system.memory.actual.used.bytes\",\"id\":\"753a6081-1b16-11e7-b09e-037021c4f8df\",\"type\":\"avg\"},{\"field\":\"system.memory.used.bytes\",\"id\":\"7c9d3f00-1b16-11e7-b09e-037021c4f8df\",\"type\":\"avg\"},{\"id\":\"869cc160-1b16-11e7-b09e-037021c4f8df\",\"script\":\"params.actual != null && params.used != null ? params.used - params.actual : null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"753a6081-1b16-11e7-b09e-037021c4f8df\",\"id\":\"890f9620-1b16-11e7-b09e-037021c4f8df\",\"name\":\"actual\"},{\"field\":\"7c9d3f00-1b16-11e7-b09e-037021c4f8df\",\"id\":\"8f3ab7f0-1b16-11e7-b09e-037021c4f8df\",\"name\":\"used\"}]}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"1\",\"formatter\":\"bytes\",\"id\":\"32f46f41-1b16-11e7-b09e-037021c4f8df\",\"label\":\"Free\",\"line_width\":1,\"metrics\":[{\"field\":\"system.memory.free\",\"id\":\"32f46f42-1b16-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Memory Usage [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bfa5e400-1b16-11e7-b09e-037021c4f8df-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top Processes By CPU [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"60e11be0-1b18-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0},{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"147a3da2-60a6-4c32-b2c8-18a40db90c6c\",\"operator\":\"empty\",\"value\":null}],\"drilldown_url\":\"\",\"filter\":\"\",\"id\":\"5f5b8d50-1b18-11e7-b09e-037021c4f8df\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"5f5b8d51-1b18-11e7-b09e-037021c4f8df\",\"line_width\":1,\"metrics\":[{\"field\":\"system.process.cpu.total.pct\",\"id\":\"5f5b8d52-1b18-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"process.name\",\"terms_order_by\":\"5f5b8d52-1b18-11e7-b09e-037021c4f8df\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top Processes By CPU [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e0f001c0-1b18-11e7-b09e-037021c4f8df-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Processes By Memory [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"efb9b660-1b18-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0},{\"bar_color\":\"rgba(254,146,0,1)\",\"id\":\"17fcb820-1b19-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0.7},{\"bar_color\":\"rgba(211,49,21,1)\",\"id\":\"1dd61070-1b19-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0.85},{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"fe5082f5-bcdc-45e4-a4d2-37d390ec607c\",\"operator\":\"empty\",\"value\":null}],\"drilldown_url\":\"\",\"filter\":\"\",\"id\":\"edfceb30-1b18-11e7-b09e-037021c4f8df\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"edfceb31-1b18-11e7-b09e-037021c4f8df\",\"line_width\":1,\"metrics\":[{\"field\":\"system.process.memory.rss.pct\",\"id\":\"edfceb32-1b18-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"process.name\",\"terms_order_by\":\"edfceb32-1b18-11e7-b09e-037021c4f8df\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Processes By Memory [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2e224660-1b19-11e7-b09e-037021c4f8df-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"CPU Usage [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"80a04950-1b19-11e7-b09e-037021c4f8df\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"1\",\"formatter\":\"percent\",\"id\":\"80a04951-1b19-11e7-b09e-037021c4f8df\",\"label\":\"user\",\"line_width\":1,\"metrics\":[{\"field\":\"system.cpu.user.pct\",\"id\":\"80a04952-1b19-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"1\",\"formatter\":\"percent\",\"id\":\"993acf30-1b19-11e7-b09e-037021c4f8df\",\"label\":\"system\",\"line_width\":1,\"metrics\":[{\"field\":\"system.cpu.system.pct\",\"id\":\"993acf31-1b19-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(123,100,255,1)\",\"fill\":\"1\",\"formatter\":\"percent\",\"id\":\"65ca35e0-1b1a-11e7-b09e-037021c4f8df\",\"label\":\"nice\",\"line_width\":1,\"metrics\":[{\"field\":\"system.cpu.nice.pct\",\"id\":\"65ca5cf0-1b1a-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":\"1\",\"formatter\":\"percent\",\"id\":\"741b5f20-1b1a-11e7-b09e-037021c4f8df\",\"label\":\"irq\",\"line_width\":1,\"metrics\":[{\"field\":\"system.cpu.irq.pct\",\"id\":\"741b5f21-1b1a-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":\"1\",\"formatter\":\"percent\",\"id\":\"2efc5d40-1b1a-11e7-b09e-037021c4f8df\",\"label\":\"softirq\",\"line_width\":1,\"metrics\":[{\"field\":\"system.cpu.softirq.pct\",\"id\":\"2efc5d41-1b1a-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(15,20,25,1)\",\"fill\":\"1\",\"formatter\":\"percent\",\"id\":\"ae644a30-1b19-11e7-b09e-037021c4f8df\",\"label\":\"iowait\",\"line_width\":1,\"metrics\":[{\"field\":\"system.cpu.iowait.pct\",\"id\":\"ae644a31-1b19-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"CPU Usage [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ab2d1e90-1b1a-11e7-b09e-037021c4f8df-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Disk IO (Bytes) [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":\"\",\"id\":\"d3c67db0-1b1a-11e7-b09e-037021c4f8df\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"1\",\"formatter\":\"bytes\",\"id\":\"d3c67db1-1b1a-11e7-b09e-037021c4f8df\",\"label\":\"reads\",\"line_width\":1,\"metrics\":[{\"field\":\"system.diskio.read.bytes\",\"id\":\"d3c67db2-1b1a-11e7-b09e-037021c4f8df\",\"type\":\"max\"},{\"field\":\"d3c67db2-1b1a-11e7-b09e-037021c4f8df\",\"id\":\"f55b9910-1b1a-11e7-b09e-037021c4f8df\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"f55b9910-1b1a-11e7-b09e-037021c4f8df\",\"id\":\"dcbbb100-1b93-11e7-8ada-3df93aab833e\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":\"1\",\"formatter\":\"bytes\",\"id\":\"144124d0-1b1b-11e7-b09e-037021c4f8df\",\"label\":\"writes\",\"line_width\":1,\"metrics\":[{\"field\":\"system.diskio.write.bytes\",\"id\":\"144124d1-1b1b-11e7-b09e-037021c4f8df\",\"type\":\"max\"},{\"field\":\"144124d1-1b1b-11e7-b09e-037021c4f8df\",\"id\":\"144124d2-1b1b-11e7-b09e-037021c4f8df\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"id\":\"144124d4-1b1b-11e7-b09e-037021c4f8df\",\"script\":\"params.rate > 0 ? params.rate * -1 : 0\",\"type\":\"calculation\",\"variables\":[{\"field\":\"144124d2-1b1b-11e7-b09e-037021c4f8df\",\"id\":\"144124d3-1b1b-11e7-b09e-037021c4f8df\",\"name\":\"rate\"}]}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Disk IO (Bytes) [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4e4bb1e0-1b1b-11e7-b09e-037021c4f8df-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Gauge [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"feefabd0-1b90-11e7-bec4-a5e9ec5cab8b\"}],\"gauge_color_rules\":[{\"id\":\"ffd94880-1b90-11e7-bec4-a5e9ec5cab8b\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"fdcc6180-1b90-11e7-bec4-a5e9ec5cab8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"fdcc6181-1b90-11e7-bec4-a5e9ec5cab8b\",\"label\":\"5m Load\",\"line_width\":1,\"metrics\":[{\"field\":\"system.load.5\",\"id\":\"fdcc6182-1b90-11e7-bec4-a5e9ec5cab8b\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Load Gauge [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"26732e20-1b91-11e7-bec4-a5e9ec5cab8b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"CPU Usage Gauge [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":\"\",\"gauge_color_rules\":[{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"4ef2c3b0-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0},{\"gauge\":\"rgba(254,146,0,1)\",\"id\":\"e6561ae0-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(211,49,21,1)\",\"id\":\"ec655040-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0.85},{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"c0fd001c-ec63-436b-90f8-8cc93f28c76c\",\"operator\":\"empty\",\"value\":null}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"4c9e2550-1b91-11e7-bec4-a5e9ec5cab8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"4c9e2551-1b91-11e7-bec4-a5e9ec5cab8b\",\"label\":\"CPU Usage\",\"line_width\":1,\"metrics\":[{\"field\":\"system.cpu.user.pct\",\"id\":\"4c9e2552-1b91-11e7-bec4-a5e9ec5cab8b\",\"type\":\"avg\"},{\"field\":\"system.cpu.system.pct\",\"id\":\"225c2140-5fd7-11e7-a63a-a937b7c1a7e1\",\"type\":\"avg\"},{\"field\":\"system.cpu.cores\",\"id\":\"837a30c0-5fd7-11e7-a63a-a937b7c1a7e1\",\"type\":\"avg\"},{\"id\":\"587aa510-1b91-11e7-bec4-a5e9ec5cab8b\",\"script\":\"params.n > 0 ? (params.user+params.system)/params.n : null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"4c9e2552-1b91-11e7-bec4-a5e9ec5cab8b\",\"id\":\"5a19af10-1b91-11e7-bec4-a5e9ec5cab8b\",\"name\":\"user\"},{\"field\":\"225c2140-5fd7-11e7-a63a-a937b7c1a7e1\",\"id\":\"32b54f80-5fd7-11e7-a63a-a937b7c1a7e1\",\"name\":\"system\"},{\"field\":\"837a30c0-5fd7-11e7-a63a-a937b7c1a7e1\",\"id\":\"8ba6eef0-5fd7-11e7-a63a-a937b7c1a7e1\",\"name\":\"n\"}]}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"CPU Usage Gauge [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Memory Usage Gauge [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":\"\",\"gauge_color_rules\":[{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"a0d522e0-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0},{\"gauge\":\"rgba(254,146,0,1)\",\"id\":\"b45ad8f0-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(211,49,21,1)\",\"id\":\"c06e9550-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0.85},{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"4a3b1da6-e38b-4d74-82b7-cdfde708d5f5\",\"operator\":\"empty\",\"value\":null}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9f51b730-1b91-11e7-bec4-a5e9ec5cab8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"9f51b731-1b91-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Memory Usage\",\"line_width\":1,\"metrics\":[{\"field\":\"system.memory.actual.used.pct\",\"id\":\"9f51b732-1b91-11e7-bec4-a5e9ec5cab8b\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Memory Usage Gauge [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Inbound Traffic [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"0e346760-1b92-11e7-bec4-a5e9ec5cab8b\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"-system.network.name:l*\"},\"id\":\"0c761590-1b92-11e7-bec4-a5e9ec5cab8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"0c761591-1b92-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Inbound Traffic\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.in.bytes\",\"id\":\"0c761592-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"max\"},{\"field\":\"0c761592-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"1d659060-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"1d659060-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"f2074f70-1b92-11e7-a416-41f5ccdba2e6\",\"type\":\"positive_only\",\"unit\":\"\"},{\"function\":\"sum\",\"id\":\"c40e18f0-2c55-11e7-a0ad-277ce466684d\",\"type\":\"series_agg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"37f70440-1b92-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Total Transferred\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.in.bytes\",\"id\":\"37f72b50-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"max\"},{\"field\":\"37f72b50-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"37f72b51-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"37f72b51-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"f9da2dd0-1b92-11e7-a416-41f5ccdba2e6\",\"type\":\"positive_only\",\"unit\":\"\"},{\"field\":\"f9da2dd0-1b92-11e7-a416-41f5ccdba2e6\",\"function\":\"overall_sum\",\"id\":\"3e63c2f0-1b92-11e7-bec4-a5e9ec5cab8b\",\"sigma\":\"\",\"type\":\"series_agg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Inbound Traffic [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Outbound Traffic [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"0e346760-1b92-11e7-bec4-a5e9ec5cab8b\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"-system.network.name:l*\"},\"id\":\"0c761590-1b92-11e7-bec4-a5e9ec5cab8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"0c761591-1b92-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Outbound Traffic\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.out.bytes\",\"id\":\"0c761592-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"max\"},{\"field\":\"0c761592-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"1d659060-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"1d659060-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"f2074f70-1b92-11e7-a416-41f5ccdba2e6\",\"type\":\"positive_only\",\"unit\":\"\"},{\"function\":\"sum\",\"id\":\"a1737470-2c55-11e7-a0ad-277ce466684d\",\"type\":\"series_agg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"37f70440-1b92-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Total Transferred\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.out.bytes\",\"id\":\"37f72b50-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"max\"},{\"field\":\"37f72b50-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"37f72b51-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"37f72b51-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"f9da2dd0-1b92-11e7-a416-41f5ccdba2e6\",\"type\":\"positive_only\",\"unit\":\"\"},{\"field\":\"f9da2dd0-1b92-11e7-a416-41f5ccdba2e6\",\"function\":\"overall_sum\",\"id\":\"3e63c2f0-1b92-11e7-bec4-a5e9ec5cab8b\",\"sigma\":\"\",\"type\":\"series_agg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Outbound Traffic [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1aae9140-1b93-11e7-8ada-3df93aab833e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Disk Usage [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"bf525310-1b95-11e7-8ada-3df93aab833e\",\"operator\":\"gte\",\"value\":0},{\"bar_color\":\"rgba(254,146,0,1)\",\"id\":\"125fc4c0-1b96-11e7-8ada-3df93aab833e\",\"operator\":\"gte\",\"value\":0.7},{\"bar_color\":\"rgba(211,49,21,1)\",\"id\":\"1a5c7240-1b96-11e7-8ada-3df93aab833e\",\"operator\":\"gte\",\"value\":0.85},{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"0ddc5a03-77c2-4711-99fc-ce9db3b04b72\",\"operator\":\"empty\",\"value\":null}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"lucene\",\"query\":\"-system.filesystem.mount_point:\\\\/run* AND -system.filesystem.mount_point:\\\\/sys* AND -system.filesystem.mount_point:\\\\/dev* AND -system.filesystem.mount_point:\\\\/proc* AND -system.filesystem.mount_point:\\\\/var* AND -system.filesystem.mount_point:\\\\/boot\"},\"id\":\"9f7e48a0-1b95-11e7-8ada-3df93aab833e\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"9f7e48a1-1b95-11e7-8ada-3df93aab833e\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"system.filesystem.used.pct\",\"id\":\"9f7e48a2-1b95-11e7-8ada-3df93aab833e\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.filesystem.mount_point\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Disk Usage [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"34f97ee0-1b96-11e7-8ada-3df93aab833e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"System Navigation [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[System Overview](#/dashboard/Metricbeat-system-overview-ecs) | [Host Overview](#/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs) |\\n[Containers overview](#/dashboard/CPU-slash-Memory-per-container-ecs)\"},\"title\":\"System Navigation [Metricbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"System-Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Swap usage [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":\"\",\"gauge_color_rules\":[{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"d17c1e90-4d59-11e7-aee5-fdc812cc3bec\",\"operator\":\"gte\",\"value\":0},{\"gauge\":\"rgba(251,158,0,1)\",\"id\":\"fc1d3490-4d59-11e7-aee5-fdc812cc3bec\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(211,49,21,1)\",\"id\":\"0e204240-4d5a-11e7-aee5-fdc812cc3bec\",\"operator\":\"gte\",\"value\":0.85},{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"ce0c7e88-0ed8-40c3-aec1-d2587a065282\",\"operator\":\"empty\",\"value\":null}],\"gauge_inner_width\":10,\"gauge_max\":\"\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"cee2fd20-4d59-11e7-aee5-fdc812cc3bec\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"cee2fd21-4d59-11e7-aee5-fdc812cc3bec\",\"label\":\"Swap usage\",\"line_width\":1,\"metrics\":[{\"field\":\"system.memory.swap.used.pct\",\"id\":\"cee2fd22-4d59-11e7-aee5-fdc812cc3bec\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Swap usage [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"19e123b0-4d5a-11e7-aee5-fdc812cc3bec-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Memory usage vs total [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"6f7618b0-4d5c-11e7-aa29-87a97a796de6\"}],\"id\":\"6bc65720-4d5c-11e7-aa29-87a97a796de6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"6bc65721-4d5c-11e7-aa29-87a97a796de6\",\"label\":\"Memory usage\",\"line_width\":1,\"metrics\":[{\"field\":\"system.memory.actual.used.bytes\",\"id\":\"6bc65722-4d5c-11e7-aa29-87a97a796de6\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"b8fe6820-4d5c-11e7-aa29-87a97a796de6\",\"label\":\"Total Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"system.memory.total\",\"id\":\"b8fe6821-4d5c-11e7-aa29-87a97a796de6\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Memory usage vs total ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d2e80340-4d5c-11e7-aa29-87a97a796de6-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Disk used [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":\"\",\"gauge_color_rules\":[{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"51921d10-4d1d-11e7-b5f2-2b7c1895bf32\",\"operator\":\"gte\",\"value\":0},{\"gauge\":\"rgba(251,158,0,1)\",\"id\":\"f26de750-4d54-11e7-b5f2-2b7c1895bf32\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(211,49,21,1)\",\"id\":\"fa31d190-4d54-11e7-b5f2-2b7c1895bf32\",\"operator\":\"gte\",\"value\":0.85},{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"45bc0b81-534d-475f-bbda-3f48b49cd1be\",\"operator\":\"empty\",\"value\":null}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"4e4dc780-4d1d-11e7-b5f2-2b7c1895bf32\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"4e4dee90-4d1d-11e7-b5f2-2b7c1895bf32\",\"label\":\"Disk used\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"system.fsstat.total_size.used\",\"id\":\"4e4dee91-4d1d-11e7-b5f2-2b7c1895bf32\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"},{\"agg_with\":\"avg\",\"field\":\"system.fsstat.total_size.total\",\"id\":\"57c96ee0-4d54-11e7-b5f2-2b7c1895bf32\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"},{\"id\":\"6304cca0-4d54-11e7-b5f2-2b7c1895bf32\",\"script\":\"params.used/params.total \",\"type\":\"math\",\"variables\":[{\"field\":\"4e4dee91-4d1d-11e7-b5f2-2b7c1895bf32\",\"id\":\"6da10430-4d54-11e7-b5f2-2b7c1895bf32\",\"name\":\"used\"},{\"field\":\"57c96ee0-4d54-11e7-b5f2-2b7c1895bf32\",\"id\":\"73b8c510-4d54-11e7-b5f2-2b7c1895bf32\",\"name\":\"total\"}]}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Disk used [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Packetloss [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"6ba9b1f0-4d5d-11e7-aa29-87a97a796de6\"}],\"id\":\"6984af10-4d5d-11e7-aa29-87a97a796de6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"6984af11-4d5d-11e7-aa29-87a97a796de6\",\"label\":\"In Packetloss\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.in.dropped\",\"id\":\"6984af12-4d5d-11e7-aa29-87a97a796de6\",\"type\":\"max\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"ac2e6b30-4d5d-11e7-aa29-87a97a796de6\",\"label\":\"Out Packetloss\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.out.dropped\",\"id\":\"ac2e6b31-4d5d-11e7-aa29-87a97a796de6\",\"type\":\"max\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Packetloss [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"96976150-4d5d-11e7-aa29-87a97a796de6-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Interfaces by Incoming traffic [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"44596d40-4d60-11e7-9a4c-ed99bbcaa42b\"}],\"id\":\"42ceae90-4d60-11e7-9a4c-ed99bbcaa42b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"42ced5a0-4d60-11e7-9a4c-ed99bbcaa42b\",\"label\":\"Interfaces by Incoming traffic\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.in.bytes\",\"id\":\"42ced5a1-4d60-11e7-9a4c-ed99bbcaa42b\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"terms_order_by\":\"42ced5a1-4d60-11e7-9a4c-ed99bbcaa42b\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Interfaces by Incoming traffic [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"99381c80-4d60-11e7-9a4c-ed99bbcaa42b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NzEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Interfaces by Outgoing traffic [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"9db20be0-4d60-11e7-9a4c-ed99bbcaa42b\"}],\"id\":\"9cdba910-4d60-11e7-9a4c-ed99bbcaa42b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"9cdba911-4d60-11e7-9a4c-ed99bbcaa42b\",\"label\":\"Interfaces by Outgoing traffic\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.out.bytes\",\"id\":\"9cdba912-4d60-11e7-9a4c-ed99bbcaa42b\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"terms_order_by\":\"9cdba912-4d60-11e7-9a4c-ed99bbcaa42b\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Interfaces by Outgoing traffic [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c5e3cf90-4d60-11e7-9a4c-ed99bbcaa42b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Number of processes [Metricbeat System] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Processes\",\"field\":\"process.pid\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"type\":\"gauge\"},\"title\":\"Number of processes ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"590a60f0-5d87-11e7-8884-1bb4c3b890e4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Tip [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**TIP:** To select another host, go to the [System Overview](#/dashboard/Metricbeat-system-overview-ecs) dashboard and double-click a host name.\"},\"title\":\"Tip [Metricbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"3d65d450-a9c3-11e7-af20-67db8aecb295-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NzQsMV0="} +{"attributes":{"description":"Overview of host metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"host.name:\\\"CHANGEME_HOSTNAME\\\"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":55},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":25},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":24,\"y\":55},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":24,\"x\":0,\"y\":40},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":70},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":70},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":24,\"x\":0,\"y\":25},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":40},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"9\",\"w\":8,\"x\":16,\"y\":5},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"10\",\"w\":8,\"x\":0,\"y\":5},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"11\",\"w\":8,\"x\":8,\"y\":5},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"12\",\"w\":8,\"x\":24,\"y\":5},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"13\",\"w\":8,\"x\":32,\"y\":5},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"14\",\"w\":16,\"x\":32,\"y\":15},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"16\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"21\",\"w\":8,\"x\":0,\"y\":15},\"panelIndex\":\"21\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_21\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"22\",\"w\":8,\"x\":8,\"y\":15},\"panelIndex\":\"22\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_22\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"23\",\"w\":8,\"x\":24,\"y\":15},\"panelIndex\":\"23\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_23\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"25\",\"w\":8,\"x\":40,\"y\":5},\"panelIndex\":\"25\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_25\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"27\",\"w\":24,\"x\":0,\"y\":85},\"panelIndex\":\"27\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_27\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"28\",\"w\":24,\"x\":24,\"y\":85},\"panelIndex\":\"28\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_28\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"29\",\"w\":8,\"x\":16,\"y\":15},\"panelIndex\":\"29\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_29\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"30\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"30\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_30\"}]","timeRestore":false,"title":"[Metricbeat System] Host overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"79ffd6e0-faa0-11e6-947f-177f697178b8-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"6b7b9a40-faa1-11e6-86b1-cd7735ff7e23-ecs","name":"1:panel_1","type":"visualization"},{"id":"4d546850-1b15-11e7-b09e-037021c4f8df-ecs","name":"2:panel_2","type":"visualization"},{"id":"089b85d0-1b16-11e7-b09e-037021c4f8df-ecs","name":"3:panel_3","type":"visualization"},{"id":"bfa5e400-1b16-11e7-b09e-037021c4f8df-ecs","name":"4:panel_4","type":"visualization"},{"id":"e0f001c0-1b18-11e7-b09e-037021c4f8df-ecs","name":"5:panel_5","type":"visualization"},{"id":"2e224660-1b19-11e7-b09e-037021c4f8df-ecs","name":"6:panel_6","type":"visualization"},{"id":"ab2d1e90-1b1a-11e7-b09e-037021c4f8df-ecs","name":"7:panel_7","type":"visualization"},{"id":"4e4bb1e0-1b1b-11e7-b09e-037021c4f8df-ecs","name":"8:panel_8","type":"visualization"},{"id":"26732e20-1b91-11e7-bec4-a5e9ec5cab8b-ecs","name":"9:panel_9","type":"visualization"},{"id":"83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs","name":"10:panel_10","type":"visualization"},{"id":"d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs","name":"11:panel_11","type":"visualization"},{"id":"522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs","name":"12:panel_12","type":"visualization"},{"id":"1aae9140-1b93-11e7-8ada-3df93aab833e-ecs","name":"13:panel_13","type":"visualization"},{"id":"34f97ee0-1b96-11e7-8ada-3df93aab833e-ecs","name":"14:panel_14","type":"visualization"},{"id":"System-Navigation-ecs","name":"16:panel_16","type":"visualization"},{"id":"19e123b0-4d5a-11e7-aee5-fdc812cc3bec-ecs","name":"21:panel_21","type":"visualization"},{"id":"d2e80340-4d5c-11e7-aa29-87a97a796de6-ecs","name":"22:panel_22","type":"visualization"},{"id":"825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs","name":"23:panel_23","type":"visualization"},{"id":"96976150-4d5d-11e7-aa29-87a97a796de6-ecs","name":"25:panel_25","type":"visualization"},{"id":"99381c80-4d60-11e7-9a4c-ed99bbcaa42b-ecs","name":"27:panel_27","type":"visualization"},{"id":"c5e3cf90-4d60-11e7-9a4c-ed99bbcaa42b-ecs","name":"28:panel_28","type":"visualization"},{"id":"590a60f0-5d87-11e7-8884-1bb4c3b890e4-ecs","name":"29:panel_29","type":"visualization"},{"id":"3d65d450-a9c3-11e7-af20-67db8aecb295-ecs","name":"30:panel_30","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NTEsMV0="} diff --git a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-system-overview.json b/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-system-overview.json deleted file mode 100644 index 5264aeed9c5..00000000000 --- a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-system-overview.json +++ /dev/null @@ -1,1266 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of system metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 4, - "i": "9", - "w": 48, - "x": 0, - "y": 0 - }, - "panelIndex": "9", - "panelRefName": "panel_0", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "gridData": { - "h": 8, - "i": "11", - "w": 8, - "x": 0, - "y": 4 - }, - "panelIndex": "11", - "panelRefName": "panel_1", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "gridData": { - "h": 20, - "i": "12", - "w": 24, - "x": 24, - "y": 12 - }, - "panelIndex": "12", - "panelRefName": "panel_2", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 20, - "i": "13", - "w": 24, - "x": 0, - "y": 12 - }, - "panelIndex": "13", - "panelRefName": "panel_3", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "vis": { - "defaultColors": { - "0% - 15%": "rgb(247,252,245)", - "15% - 30%": "rgb(199,233,192)", - "30% - 45%": "rgb(116,196,118)", - "45% - 60%": "rgb(35,139,69)" - } - } - }, - "gridData": { - "h": 24, - "i": "14", - "w": 48, - "x": 0, - "y": 32 - }, - "panelIndex": "14", - "panelRefName": "panel_4", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "gridData": { - "h": 8, - "i": "16", - "w": 8, - "x": 32, - "y": 4 - }, - "panelIndex": "16", - "panelRefName": "panel_5", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "17", - "w": 8, - "x": 40, - "y": 4 - }, - "panelIndex": "17", - "panelRefName": "panel_6", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "18", - "w": 8, - "x": 24, - "y": 4 - }, - "panelIndex": "18", - "panelRefName": "panel_7", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "19", - "w": 8, - "x": 16, - "y": 4 - }, - "panelIndex": "19", - "panelRefName": "panel_8", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "20", - "w": 8, - "x": 8, - "y": 4 - }, - "panelIndex": "20", - "panelRefName": "panel_9", - "version": "7.6.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat System] Overview ECS", - "version": 1 - }, - "id": "Metricbeat-system-overview-ecs", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "System-Navigation-ecs", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "c6f2ffd0-4d17-11e7-a196-69b9a7a020a9-ecs", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "fe064790-1b1f-11e7-bec4-a5e9ec5cab8b-ecs", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "855899e0-1b1c-11e7-b09e-037021c4f8df-ecs", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "7cdb1330-4d1a-11e7-a196-69b9a7a020a9-ecs", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "1aae9140-1b93-11e7-8ada-3df93aab833e-ecs", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs", - "name": "panel_9", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-03-26T17:29:07.346Z", - "version": "WzY3NjMsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "System Navigation [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[System Overview](#/dashboard/Metricbeat-system-overview-ecs) | [Host Overview](#/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs) |\n[Containers overview](#/dashboard/CPU-slash-Memory-per-container-ecs)" - }, - "title": "System Navigation [Metricbeat System] ECS", - "type": "markdown" - } - }, - "id": "System-Navigation-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:44.291Z", - "version": "WzUzNzIsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Number of hosts [Metricbeat System] ECS", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Number of hosts", - "field": "host.name" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": false - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "63", - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "type": "gauge" - }, - "title": "Number of hosts [Metricbeat System] ECS", - "type": "metric" - } - }, - "id": "c6f2ffd0-4d17-11e7-a196-69b9a7a020a9-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-03-03T20:18:44.291Z", - "version": "WzUzNzMsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top Hosts By Memory (Realtime) [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "bar_color": "rgba(104,188,0,1)", - "id": "33349dd0-1b1c-11e7-b09e-037021c4f8df", - "operator": "gte", - "value": 0 - }, - { - "bar_color": "rgba(254,146,0,1)", - "id": "997dc440-1b1c-11e7-b09e-037021c4f8df", - "operator": "gte", - "value": 0.6 - }, - { - "bar_color": "rgba(211,49,21,1)", - "id": "a10d7f20-1b1c-11e7-b09e-037021c4f8df", - "operator": "gte", - "value": 0.85 - } - ], - "drilldown_url": "../app/kibana#/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs?_a=(query:(language:kuery,query:'host.name:\"{{key}}\"'))", - "filter": "", - "id": "31e5afa0-1b1c-11e7-b09e-037021c4f8df", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "percent", - "id": "31e5afa1-1b1c-11e7-b09e-037021c4f8df", - "line_width": 1, - "metrics": [ - { - "field": "system.memory.actual.used.pct", - "id": "31e5afa2-1b1c-11e7-b09e-037021c4f8df", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "host.name", - "terms_order_by": "31e5afa2-1b1c-11e7-b09e-037021c4f8df", - "terms_size": "10" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "Top Hosts By Memory (Realtime) [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "fe064790-1b1f-11e7-bec4-a5e9ec5cab8b-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:44.291Z", - "version": "WzUzNzQsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top Hosts By CPU (Realtime) [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "bar_color": "rgba(104,188,0,1)", - "id": "33349dd0-1b1c-11e7-b09e-037021c4f8df", - "operator": "gte", - "value": 0 - }, - { - "bar_color": "rgba(254,146,0,1)", - "id": "997dc440-1b1c-11e7-b09e-037021c4f8df", - "operator": "gte", - "value": 0.6 - }, - { - "bar_color": "rgba(211,49,21,1)", - "id": "a10d7f20-1b1c-11e7-b09e-037021c4f8df", - "operator": "gte", - "value": 0.85 - } - ], - "drilldown_url": "../app/kibana#/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs?_a=(query:(language:kuery,query:'host.name:\"{{key}}\"'))", - "filter": "", - "id": "31e5afa0-1b1c-11e7-b09e-037021c4f8df", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "percent", - "id": "31e5afa1-1b1c-11e7-b09e-037021c4f8df", - "line_width": 1, - "metrics": [ - { - "field": "system.cpu.user.pct", - "id": "31e5afa2-1b1c-11e7-b09e-037021c4f8df", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "host.name", - "terms_order_by": "31e5afa2-1b1c-11e7-b09e-037021c4f8df", - "terms_size": "10" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "Top Hosts By CPU (Realtime) [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "855899e0-1b1c-11e7-b09e-037021c4f8df-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:44.291Z", - "version": "WzUzNzUsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Hosts histogram by CPU usage [Metricbeat System] ECS", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0% - 5%": "rgb(247,252,245)", - "10% - 15%": "rgb(116,196,118)", - "15% - 20%": "rgb(35,139,69)", - "5% - 10%": "rgb(199,233,192)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "CPU usage", - "field": "system.cpu.user.pct" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Hosts", - "field": "host.name", - "order": "desc", - "orderBy": "1", - "size": 20 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "colorSchema": "Greens", - "colorsNumber": 4, - "colorsRange": [], - "enableHover": false, - "invertColors": false, - "legendPosition": "right", - "percentageMode": false, - "setColorRange": false, - "times": [], - "type": "heatmap", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "color": "#555", - "rotate": 0, - "show": false - }, - "scale": { - "defaultYExtents": false, - "type": "linear" - }, - "show": false, - "type": "value" - } - ] - }, - "title": "Hosts histogram by CPU usage [Metricbeat System] ECS", - "type": "heatmap" - } - }, - "id": "7cdb1330-4d1a-11e7-a196-69b9a7a020a9-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-03-03T20:18:44.291Z", - "version": "WzUzNzYsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Inbound Traffic [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "0e346760-1b92-11e7-bec4-a5e9ec5cab8b" - } - ], - "filter": { - "language": "lucene", - "query": "-system.network.name:l*" - }, - "id": "0c761590-1b92-11e7-bec4-a5e9ec5cab8b", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "0c761591-1b92-11e7-bec4-a5e9ec5cab8b", - "label": "Inbound Traffic", - "line_width": 1, - "metrics": [ - { - "field": "system.network.in.bytes", - "id": "0c761592-1b92-11e7-bec4-a5e9ec5cab8b", - "type": "max" - }, - { - "field": "0c761592-1b92-11e7-bec4-a5e9ec5cab8b", - "id": "1d659060-1b92-11e7-bec4-a5e9ec5cab8b", - "type": "derivative", - "unit": "1s" - }, - { - "field": "1d659060-1b92-11e7-bec4-a5e9ec5cab8b", - "id": "f2074f70-1b92-11e7-a416-41f5ccdba2e6", - "type": "positive_only", - "unit": "" - }, - { - "function": "sum", - "id": "c40e18f0-2c55-11e7-a0ad-277ce466684d", - "type": "series_agg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "system.network.name", - "value_template": "{{value}}/s" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "37f70440-1b92-11e7-bec4-a5e9ec5cab8b", - "label": "Total Transferred", - "line_width": 1, - "metrics": [ - { - "field": "system.network.in.bytes", - "id": "37f72b50-1b92-11e7-bec4-a5e9ec5cab8b", - "type": "max" - }, - { - "field": "37f72b50-1b92-11e7-bec4-a5e9ec5cab8b", - "id": "37f72b51-1b92-11e7-bec4-a5e9ec5cab8b", - "type": "derivative", - "unit": "" - }, - { - "field": "37f72b51-1b92-11e7-bec4-a5e9ec5cab8b", - "id": "f9da2dd0-1b92-11e7-a416-41f5ccdba2e6", - "type": "positive_only", - "unit": "" - }, - { - "field": "f9da2dd0-1b92-11e7-a416-41f5ccdba2e6", - "function": "overall_sum", - "id": "3e63c2f0-1b92-11e7-bec4-a5e9ec5cab8b", - "sigma": "", - "type": "series_agg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "system.network.name", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric" - }, - "title": "Inbound Traffic [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:44.291Z", - "version": "WzUzNzcsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Outbound Traffic [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "0e346760-1b92-11e7-bec4-a5e9ec5cab8b" - } - ], - "filter": { - "language": "lucene", - "query": "-system.network.name:l*" - }, - "id": "0c761590-1b92-11e7-bec4-a5e9ec5cab8b", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "0c761591-1b92-11e7-bec4-a5e9ec5cab8b", - "label": "Outbound Traffic", - "line_width": 1, - "metrics": [ - { - "field": "system.network.out.bytes", - "id": "0c761592-1b92-11e7-bec4-a5e9ec5cab8b", - "type": "max" - }, - { - "field": "0c761592-1b92-11e7-bec4-a5e9ec5cab8b", - "id": "1d659060-1b92-11e7-bec4-a5e9ec5cab8b", - "type": "derivative", - "unit": "1s" - }, - { - "field": "1d659060-1b92-11e7-bec4-a5e9ec5cab8b", - "id": "f2074f70-1b92-11e7-a416-41f5ccdba2e6", - "type": "positive_only", - "unit": "" - }, - { - "function": "sum", - "id": "a1737470-2c55-11e7-a0ad-277ce466684d", - "type": "series_agg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "system.network.name", - "value_template": "{{value}}/s" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "37f70440-1b92-11e7-bec4-a5e9ec5cab8b", - "label": "Total Transferred", - "line_width": 1, - "metrics": [ - { - "field": "system.network.out.bytes", - "id": "37f72b50-1b92-11e7-bec4-a5e9ec5cab8b", - "type": "max" - }, - { - "field": "37f72b50-1b92-11e7-bec4-a5e9ec5cab8b", - "id": "37f72b51-1b92-11e7-bec4-a5e9ec5cab8b", - "type": "derivative", - "unit": "" - }, - { - "field": "37f72b51-1b92-11e7-bec4-a5e9ec5cab8b", - "id": "f9da2dd0-1b92-11e7-a416-41f5ccdba2e6", - "type": "positive_only", - "unit": "" - }, - { - "field": "f9da2dd0-1b92-11e7-a416-41f5ccdba2e6", - "function": "overall_sum", - "id": "3e63c2f0-1b92-11e7-bec4-a5e9ec5cab8b", - "sigma": "", - "type": "series_agg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "system.network.name", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric" - }, - "title": "Outbound Traffic [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "1aae9140-1b93-11e7-8ada-3df93aab833e-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:44.291Z", - "version": "WzUzNzgsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Disk used [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": "", - "gauge_color_rules": [ - { - "gauge": "rgba(104,188,0,1)", - "id": "51921d10-4d1d-11e7-b5f2-2b7c1895bf32", - "operator": "gte", - "value": 0 - }, - { - "gauge": "rgba(251,158,0,1)", - "id": "f26de750-4d54-11e7-b5f2-2b7c1895bf32", - "operator": "gte", - "value": 0.7 - }, - { - "gauge": "rgba(211,49,21,1)", - "id": "fa31d190-4d54-11e7-b5f2-2b7c1895bf32", - "operator": "gte", - "value": 0.85 - } - ], - "gauge_inner_width": 10, - "gauge_max": "1", - "gauge_style": "half", - "gauge_width": 10, - "id": "4e4dc780-4d1d-11e7-b5f2-2b7c1895bf32", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "percent", - "id": "4e4dee90-4d1d-11e7-b5f2-2b7c1895bf32", - "label": "Disk used", - "line_width": 1, - "metrics": [ - { - "agg_with": "avg", - "field": "system.fsstat.total_size.used", - "id": "4e4dee91-4d1d-11e7-b5f2-2b7c1895bf32", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - }, - { - "agg_with": "avg", - "field": "system.fsstat.total_size.total", - "id": "57c96ee0-4d54-11e7-b5f2-2b7c1895bf32", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - }, - { - "id": "6304cca0-4d54-11e7-b5f2-2b7c1895bf32", - "script": "params.used/params.total ", - "type": "math", - "variables": [ - { - "field": "4e4dee91-4d1d-11e7-b5f2-2b7c1895bf32", - "id": "6da10430-4d54-11e7-b5f2-2b7c1895bf32", - "name": "used" - }, - { - "field": "57c96ee0-4d54-11e7-b5f2-2b7c1895bf32", - "id": "73b8c510-4d54-11e7-b5f2-2b7c1895bf32", - "name": "total" - } - ] - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "gauge" - }, - "title": "Disk used [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-26T17:22:09.379Z", - "version": "WzY3MTksN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Memory Usage Gauge [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "filter": "", - "gauge_color_rules": [ - { - "gauge": "rgba(104,188,0,1)", - "id": "a0d522e0-1b91-11e7-bec4-a5e9ec5cab8b", - "operator": "gte", - "value": 0 - }, - { - "gauge": "rgba(254,146,0,1)", - "id": "b45ad8f0-1b91-11e7-bec4-a5e9ec5cab8b", - "operator": "gte", - "value": 0.7 - }, - { - "gauge": "rgba(211,49,21,1)", - "id": "c06e9550-1b91-11e7-bec4-a5e9ec5cab8b", - "operator": "gte", - "value": 0.85 - } - ], - "gauge_inner_width": 10, - "gauge_max": "1", - "gauge_style": "half", - "gauge_width": 10, - "id": "9f51b730-1b91-11e7-bec4-a5e9ec5cab8b", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "percent", - "id": "9f51b731-1b91-11e7-bec4-a5e9ec5cab8b", - "label": "Memory Usage", - "line_width": 1, - "metrics": [ - { - "field": "system.memory.actual.used.pct", - "id": "9f51b732-1b91-11e7-bec4-a5e9ec5cab8b", - "type": "avg" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Memory Usage Gauge [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:44.291Z", - "version": "WzUzODAsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "CPU Usage Gauge [Metricbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "filter": "", - "gauge_color_rules": [ - { - "gauge": "rgba(104,188,0,1)", - "id": "4ef2c3b0-1b91-11e7-bec4-a5e9ec5cab8b", - "operator": "gte", - "value": 0 - }, - { - "gauge": "rgba(254,146,0,1)", - "id": "e6561ae0-1b91-11e7-bec4-a5e9ec5cab8b", - "operator": "gte", - "value": 0.7 - }, - { - "gauge": "rgba(211,49,21,1)", - "id": "ec655040-1b91-11e7-bec4-a5e9ec5cab8b", - "operator": "gte", - "value": 0.85 - } - ], - "gauge_inner_width": 10, - "gauge_max": "1", - "gauge_style": "half", - "gauge_width": 10, - "id": "4c9e2550-1b91-11e7-bec4-a5e9ec5cab8b", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "percent", - "id": "4c9e2551-1b91-11e7-bec4-a5e9ec5cab8b", - "label": "CPU Usage", - "line_width": 1, - "metrics": [ - { - "field": "system.cpu.user.pct", - "id": "4c9e2552-1b91-11e7-bec4-a5e9ec5cab8b", - "type": "avg" - }, - { - "field": "system.cpu.system.pct", - "id": "225c2140-5fd7-11e7-a63a-a937b7c1a7e1", - "type": "avg" - }, - { - "field": "system.cpu.cores", - "id": "837a30c0-5fd7-11e7-a63a-a937b7c1a7e1", - "type": "avg" - }, - { - "id": "587aa510-1b91-11e7-bec4-a5e9ec5cab8b", - "script": "params.n \u003e 0 ? (params.user+params.system)/params.n : null", - "type": "calculation", - "variables": [ - { - "field": "4c9e2552-1b91-11e7-bec4-a5e9ec5cab8b", - "id": "5a19af10-1b91-11e7-bec4-a5e9ec5cab8b", - "name": "user" - }, - { - "field": "225c2140-5fd7-11e7-a63a-a937b7c1a7e1", - "id": "32b54f80-5fd7-11e7-a63a-a937b7c1a7e1", - "name": "system" - }, - { - "field": "837a30c0-5fd7-11e7-a63a-a937b7c1a7e1", - "id": "8ba6eef0-5fd7-11e7-a63a-a937b7c1a7e1", - "name": "n" - } - ] - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "CPU Usage Gauge [Metricbeat System] ECS", - "type": "metrics" - } - }, - "id": "83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-03T20:18:44.291Z", - "version": "WzUzODEsM10=" - } - ], - "version": "7.6.0" -} diff --git a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-system-overview.ndjson b/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-system-overview.ndjson new file mode 100644 index 00000000000..9141a54d12f --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-system-overview.ndjson @@ -0,0 +1,11 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"System Navigation [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[System Overview](#/dashboard/Metricbeat-system-overview-ecs) | [Host Overview](#/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs) |\\n[Containers overview](#/dashboard/CPU-slash-Memory-per-container-ecs)\"},\"title\":\"System Navigation [Metricbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"System-Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Number of hosts [Metricbeat System] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Number of hosts\",\"field\":\"host.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":false},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"63\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"type\":\"gauge\"},\"title\":\"Number of hosts [Metricbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"c6f2ffd0-4d17-11e7-a196-69b9a7a020a9-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top Hosts By Memory (Realtime) [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"33349dd0-1b1c-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0},{\"bar_color\":\"rgba(254,146,0,1)\",\"id\":\"997dc440-1b1c-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0.6},{\"bar_color\":\"rgba(211,49,21,1)\",\"id\":\"a10d7f20-1b1c-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0.85},{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"ba3dee41-14d0-4c3a-adca-ea61021184cd\",\"operator\":\"empty\",\"value\":null}],\"drilldown_url\":\"../app/kibana#/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs?_a=(query:(language:kuery,query:'host.name:\\\"{{key}}\\\"'))\",\"filter\":\"\",\"id\":\"31e5afa0-1b1c-11e7-b09e-037021c4f8df\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"31e5afa1-1b1c-11e7-b09e-037021c4f8df\",\"line_width\":1,\"metrics\":[{\"field\":\"system.memory.actual.used.pct\",\"id\":\"31e5afa2-1b1c-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"host.name\",\"terms_order_by\":\"31e5afa2-1b1c-11e7-b09e-037021c4f8df\",\"terms_size\":\"10\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top Hosts By Memory (Realtime) [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fe064790-1b1f-11e7-bec4-a5e9ec5cab8b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top Hosts By CPU (Realtime) [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"33349dd0-1b1c-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0},{\"bar_color\":\"rgba(254,146,0,1)\",\"id\":\"997dc440-1b1c-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0.6},{\"bar_color\":\"rgba(211,49,21,1)\",\"id\":\"a10d7f20-1b1c-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0.85},{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"e62488a9-f941-4460-b527-649df900bea6\",\"operator\":\"empty\",\"value\":null}],\"drilldown_url\":\"../app/kibana#/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs?_a=(query:(language:kuery,query:'host.name:\\\"{{key}}\\\"'))\",\"filter\":\"\",\"id\":\"31e5afa0-1b1c-11e7-b09e-037021c4f8df\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"31e5afa1-1b1c-11e7-b09e-037021c4f8df\",\"line_width\":1,\"metrics\":[{\"field\":\"system.cpu.user.pct\",\"id\":\"31e5afa2-1b1c-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"host.name\",\"terms_order_by\":\"31e5afa2-1b1c-11e7-b09e-037021c4f8df\",\"terms_size\":\"10\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top Hosts By CPU (Realtime) [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"855899e0-1b1c-11e7-b09e-037021c4f8df-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Hosts histogram by CPU usage [Metricbeat System] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0% - 5%\": \"rgb(247,252,245)\", \"10% - 15%\": \"rgb(116,196,118)\", \"15% - 20%\": \"rgb(35,139,69)\", \"5% - 10%\": \"rgb(199,233,192)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"CPU usage\",\"field\":\"system.cpu.user.pct\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Hosts\",\"field\":\"host.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Greens\",\"colorsNumber\":4,\"colorsRange\":[],\"enableHover\":false,\"invertColors\":false,\"legendPosition\":\"right\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"#555\",\"rotate\":0,\"show\":false},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Hosts histogram by CPU usage [Metricbeat System] ECS\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"8.0.0","id":"7cdb1330-4d1a-11e7-a196-69b9a7a020a9-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Inbound Traffic [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"0e346760-1b92-11e7-bec4-a5e9ec5cab8b\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"-system.network.name:l*\"},\"id\":\"0c761590-1b92-11e7-bec4-a5e9ec5cab8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"0c761591-1b92-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Inbound Traffic\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.in.bytes\",\"id\":\"0c761592-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"max\"},{\"field\":\"0c761592-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"1d659060-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"1d659060-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"f2074f70-1b92-11e7-a416-41f5ccdba2e6\",\"type\":\"positive_only\",\"unit\":\"\"},{\"function\":\"sum\",\"id\":\"c40e18f0-2c55-11e7-a0ad-277ce466684d\",\"type\":\"series_agg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"37f70440-1b92-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Total Transferred\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.in.bytes\",\"id\":\"37f72b50-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"max\"},{\"field\":\"37f72b50-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"37f72b51-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"37f72b51-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"f9da2dd0-1b92-11e7-a416-41f5ccdba2e6\",\"type\":\"positive_only\",\"unit\":\"\"},{\"field\":\"f9da2dd0-1b92-11e7-a416-41f5ccdba2e6\",\"function\":\"overall_sum\",\"id\":\"3e63c2f0-1b92-11e7-bec4-a5e9ec5cab8b\",\"sigma\":\"\",\"type\":\"series_agg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Inbound Traffic [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Outbound Traffic [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"0e346760-1b92-11e7-bec4-a5e9ec5cab8b\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"-system.network.name:l*\"},\"id\":\"0c761590-1b92-11e7-bec4-a5e9ec5cab8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"0c761591-1b92-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Outbound Traffic\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.out.bytes\",\"id\":\"0c761592-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"max\"},{\"field\":\"0c761592-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"1d659060-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"1d659060-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"f2074f70-1b92-11e7-a416-41f5ccdba2e6\",\"type\":\"positive_only\",\"unit\":\"\"},{\"function\":\"sum\",\"id\":\"a1737470-2c55-11e7-a0ad-277ce466684d\",\"type\":\"series_agg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"37f70440-1b92-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Total Transferred\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.out.bytes\",\"id\":\"37f72b50-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"max\"},{\"field\":\"37f72b50-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"37f72b51-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"37f72b51-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"f9da2dd0-1b92-11e7-a416-41f5ccdba2e6\",\"type\":\"positive_only\",\"unit\":\"\"},{\"field\":\"f9da2dd0-1b92-11e7-a416-41f5ccdba2e6\",\"function\":\"overall_sum\",\"id\":\"3e63c2f0-1b92-11e7-bec4-a5e9ec5cab8b\",\"sigma\":\"\",\"type\":\"series_agg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Outbound Traffic [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1aae9140-1b93-11e7-8ada-3df93aab833e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Disk used [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":\"\",\"gauge_color_rules\":[{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"51921d10-4d1d-11e7-b5f2-2b7c1895bf32\",\"operator\":\"gte\",\"value\":0},{\"gauge\":\"rgba(251,158,0,1)\",\"id\":\"f26de750-4d54-11e7-b5f2-2b7c1895bf32\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(211,49,21,1)\",\"id\":\"fa31d190-4d54-11e7-b5f2-2b7c1895bf32\",\"operator\":\"gte\",\"value\":0.85},{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"45bc0b81-534d-475f-bbda-3f48b49cd1be\",\"operator\":\"empty\",\"value\":null}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"4e4dc780-4d1d-11e7-b5f2-2b7c1895bf32\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"4e4dee90-4d1d-11e7-b5f2-2b7c1895bf32\",\"label\":\"Disk used\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"system.fsstat.total_size.used\",\"id\":\"4e4dee91-4d1d-11e7-b5f2-2b7c1895bf32\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"},{\"agg_with\":\"avg\",\"field\":\"system.fsstat.total_size.total\",\"id\":\"57c96ee0-4d54-11e7-b5f2-2b7c1895bf32\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"},{\"id\":\"6304cca0-4d54-11e7-b5f2-2b7c1895bf32\",\"script\":\"params.used/params.total \",\"type\":\"math\",\"variables\":[{\"field\":\"4e4dee91-4d1d-11e7-b5f2-2b7c1895bf32\",\"id\":\"6da10430-4d54-11e7-b5f2-2b7c1895bf32\",\"name\":\"used\"},{\"field\":\"57c96ee0-4d54-11e7-b5f2-2b7c1895bf32\",\"id\":\"73b8c510-4d54-11e7-b5f2-2b7c1895bf32\",\"name\":\"total\"}]}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Disk used [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Memory Usage Gauge [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":\"\",\"gauge_color_rules\":[{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"a0d522e0-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0},{\"gauge\":\"rgba(254,146,0,1)\",\"id\":\"b45ad8f0-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(211,49,21,1)\",\"id\":\"c06e9550-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0.85},{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"4a3b1da6-e38b-4d74-82b7-cdfde708d5f5\",\"operator\":\"empty\",\"value\":null}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9f51b730-1b91-11e7-bec4-a5e9ec5cab8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"9f51b731-1b91-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Memory Usage\",\"line_width\":1,\"metrics\":[{\"field\":\"system.memory.actual.used.pct\",\"id\":\"9f51b732-1b91-11e7-bec4-a5e9ec5cab8b\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Memory Usage Gauge [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"CPU Usage Gauge [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":\"\",\"gauge_color_rules\":[{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"4ef2c3b0-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0},{\"gauge\":\"rgba(254,146,0,1)\",\"id\":\"e6561ae0-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(211,49,21,1)\",\"id\":\"ec655040-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0.85},{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"c0fd001c-ec63-436b-90f8-8cc93f28c76c\",\"operator\":\"empty\",\"value\":null}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"4c9e2550-1b91-11e7-bec4-a5e9ec5cab8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"4c9e2551-1b91-11e7-bec4-a5e9ec5cab8b\",\"label\":\"CPU Usage\",\"line_width\":1,\"metrics\":[{\"field\":\"system.cpu.user.pct\",\"id\":\"4c9e2552-1b91-11e7-bec4-a5e9ec5cab8b\",\"type\":\"avg\"},{\"field\":\"system.cpu.system.pct\",\"id\":\"225c2140-5fd7-11e7-a63a-a937b7c1a7e1\",\"type\":\"avg\"},{\"field\":\"system.cpu.cores\",\"id\":\"837a30c0-5fd7-11e7-a63a-a937b7c1a7e1\",\"type\":\"avg\"},{\"id\":\"587aa510-1b91-11e7-bec4-a5e9ec5cab8b\",\"script\":\"params.n > 0 ? (params.user+params.system)/params.n : null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"4c9e2552-1b91-11e7-bec4-a5e9ec5cab8b\",\"id\":\"5a19af10-1b91-11e7-bec4-a5e9ec5cab8b\",\"name\":\"user\"},{\"field\":\"225c2140-5fd7-11e7-a63a-a937b7c1a7e1\",\"id\":\"32b54f80-5fd7-11e7-a63a-a937b7c1a7e1\",\"name\":\"system\"},{\"field\":\"837a30c0-5fd7-11e7-a63a-a937b7c1a7e1\",\"id\":\"8ba6eef0-5fd7-11e7-a63a-a937b7c1a7e1\",\"name\":\"n\"}]}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"CPU Usage Gauge [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjUsMV0="} +{"attributes":{"description":"Overview of system metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"9\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"11\",\"w\":8,\"x\":0,\"y\":4},\"panelIndex\":\"11\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"12\",\"w\":24,\"x\":24,\"y\":12},\"panelIndex\":\"12\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"13\",\"w\":24,\"x\":0,\"y\":12},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":24,\"i\":\"14\",\"w\":48,\"x\":0,\"y\":32},\"panelIndex\":\"14\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0% - 15%\":\"rgb(247,252,245)\",\"15% - 30%\":\"rgb(199,233,192)\",\"30% - 45%\":\"rgb(116,196,118)\",\"45% - 60%\":\"rgb(35,139,69)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"16\",\"w\":8,\"x\":32,\"y\":4},\"panelIndex\":\"16\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"17\",\"w\":8,\"x\":40,\"y\":4},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"18\",\"w\":8,\"x\":24,\"y\":4},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"19\",\"w\":8,\"x\":16,\"y\":4},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"20\",\"w\":8,\"x\":8,\"y\":4},\"panelIndex\":\"20\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_20\"}]","timeRestore":false,"title":"[Metricbeat System] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Metricbeat-system-overview-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"System-Navigation-ecs","name":"9:panel_9","type":"visualization"},{"id":"c6f2ffd0-4d17-11e7-a196-69b9a7a020a9-ecs","name":"11:panel_11","type":"visualization"},{"id":"fe064790-1b1f-11e7-bec4-a5e9ec5cab8b-ecs","name":"12:panel_12","type":"visualization"},{"id":"855899e0-1b1c-11e7-b09e-037021c4f8df-ecs","name":"13:panel_13","type":"visualization"},{"id":"7cdb1330-4d1a-11e7-a196-69b9a7a020a9-ecs","name":"14:panel_14","type":"visualization"},{"id":"522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs","name":"16:panel_16","type":"visualization"},{"id":"1aae9140-1b93-11e7-8ada-3df93aab833e-ecs","name":"17:panel_17","type":"visualization"},{"id":"825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs","name":"18:panel_18","type":"visualization"},{"id":"d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs","name":"19:panel_19","type":"visualization"},{"id":"83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs","name":"20:panel_20","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNTUsMV0="} diff --git a/metricbeat/module/system/hostnamechange_test.go b/metricbeat/module/system/hostnamechange_test.go index aa1dc0e666f..f0023a01125 100644 --- a/metricbeat/module/system/hostnamechange_test.go +++ b/metricbeat/module/system/hostnamechange_test.go @@ -27,7 +27,7 @@ import ( // that the dashboard loader code magically changes to the hostname on which the Beat // is running. func TestHostDashboardHasChangeableHost(t *testing.T) { - dashPath := "_meta/kibana/7/dashboard/Metricbeat-host-overview.json" + dashPath := "_meta/kibana/7/dashboard/Metricbeat-host-overview.ndjson" contents, err := ioutil.ReadFile(dashPath) if err != nil { t.Fatalf("Error reading file %s: %v", dashPath, err) diff --git a/metricbeat/module/system/module.yml b/metricbeat/module/system/module.yml index 1cb7bc8f4b2..94fbb940953 100644 --- a/metricbeat/module/system/module.yml +++ b/metricbeat/module/system/module.yml @@ -1,9 +1,9 @@ dashboards: - id: Metricbeat-system-overview - file: Metricbeat-system-overview.json + file: Metricbeat-system-overview.ndjson - id: 79ffd6e0-faa0-11e6-947f-177f697178b8 - file: Metricbeat-host-overview.json + file: Metricbeat-host-overview.ndjson - id: CPU-slash-Memory-per-container - file: Metricbeat-containers-overview.json + file: Metricbeat-containers-overview.ndjson diff --git a/metricbeat/module/uwsgi/_meta/kibana/7/dashboard/Metricbeat-uwsgi-overview.json b/metricbeat/module/uwsgi/_meta/kibana/7/dashboard/Metricbeat-uwsgi-overview.json deleted file mode 100644 index 49cd8c6f6c6..00000000000 --- a/metricbeat/module/uwsgi/_meta/kibana/7/dashboard/Metricbeat-uwsgi-overview.json +++ /dev/null @@ -1,188 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Overview [Metricbeat uWSGI] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "params": { - "expression": ".es(metric=avg:uwsgi.status.total.requests).derivative().label('Requests').title('Overview of requests per period'),\n.es(metric=avg:uwsgi.status.total.exceptions).derivative().label('Exceptions'),\n.es(metric=max:uwsgi.status.worker.avg_rt).label('Average response time').yaxis(2)", - "interval": "15s" - }, - "title": "Overview [Metricbeat uWSGI] ECS", - "type": "timelion" - } - }, - "id": "a5058e70-f0ae-11e7-b9ff-9f96241065de-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Memory usage [Metricbeat uWSGI] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "params": { - "expression": ".es(metric=max:uwsgi.status.worker.rss).label('Currently used (rss)').title('Memory usage'),\n.es(metric=max:uwsgi.status.worker.vsz).label('Assigned (vsz)').yaxis(2)", - "interval": "15s" - }, - "title": "Memory usage [Metricbeat uWSGI] ECS", - "type": "timelion" - } - }, - "id": "ac7194b0-f0ae-11e7-b9ff-9f96241065de-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Workers [Metricbeat uWSGI] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "params": { - "expression": ".es(split=uwsgi.status.core.id:16,metric=max:uwsgi.status.core.requests.total).derivative().bars().title('Requests handled by each thread (core) per period')", - "interval": "15s" - }, - "title": "Workers [Metricbeat uWSGI] ECS", - "type": "timelion" - } - }, - "id": "8c5f96e0-f0ae-11e7-b9ff-9f96241065de-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Errors [Metricbeat uWSGI] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "params": { - "expression": ".es(metric=max:uwsgi.status.total.read_errors).label('Read errors').title('Errors'),\n.es(metric=max:uwsgi.status.total.write_errors).label('Write errors'),\n.es(metric=max:uwsgi.status.worker.harakiri_count).label('Timeouted requests')", - "interval": "15s" - }, - "title": "Errors [Metricbeat uWSGI] ECS", - "type": "timelion" - } - }, - "id": "ba4a80b0-f0ae-11e7-b9ff-9f96241065de-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "event.module: uwsgi" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Metricbeat uWSGI status-ecs ECS", - "version": 1 - }, - "id": "Metricbeat uWSGI status-ecs ECS", - "type": "search", - "version": 1 - }, - { - "attributes": { - "description": "Overview of uWSGI service metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "a5058e70-f0ae-11e7-b9ff-9f96241065de-ecs", - "panelIndex": 1, - "row": 1, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 7, - "id": "ac7194b0-f0ae-11e7-b9ff-9f96241065de-ecs", - "panelIndex": 2, - "row": 1, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "8c5f96e0-f0ae-11e7-b9ff-9f96241065de-ecs", - "panelIndex": 3, - "row": 4, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 7, - "id": "ba4a80b0-f0ae-11e7-b9ff-9f96241065de-ecs", - "panelIndex": 4, - "row": 4, - "size_x": 6, - "size_y": 3, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Metricbeat uWSGI] Overview ECS", - "uiStateJSON": {}, - "version": 1 - }, - "id": "32fca290-f0af-11e7-b9ff-9f96241065de-ecs", - "type": "dashboard", - "version": 1 - } - ], - "version": "6.0.0-rc1" -} diff --git a/metricbeat/module/uwsgi/_meta/kibana/7/dashboard/Metricbeat-uwsgi-overview.ndjson b/metricbeat/module/uwsgi/_meta/kibana/7/dashboard/Metricbeat-uwsgi-overview.ndjson new file mode 100644 index 00000000000..b87beee5b6c --- /dev/null +++ b/metricbeat/module/uwsgi/_meta/kibana/7/dashboard/Metricbeat-uwsgi-overview.ndjson @@ -0,0 +1,5 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Overview [Metricbeat uWSGI] ECS","uiStateJSON":"{}","version":1,"visState":"{\"params\":{\"expression\":\".es(metric=avg:uwsgi.status.total.requests).derivative().label('Requests').title('Overview of requests per period'),\\n.es(metric=avg:uwsgi.status.total.exceptions).derivative().label('Exceptions'),\\n.es(metric=max:uwsgi.status.worker.avg_rt).label('Average response time').yaxis(2)\",\"interval\":\"15s\"},\"title\":\"Overview [Metricbeat uWSGI] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"a5058e70-f0ae-11e7-b9ff-9f96241065de-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:52.731Z","version":"WzQxNjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Memory usage [Metricbeat uWSGI] ECS","uiStateJSON":"{}","version":1,"visState":"{\"params\":{\"expression\":\".es(metric=max:uwsgi.status.worker.rss).label('Currently used (rss)').title('Memory usage'),\\n.es(metric=max:uwsgi.status.worker.vsz).label('Assigned (vsz)').yaxis(2)\",\"interval\":\"15s\"},\"title\":\"Memory usage [Metricbeat uWSGI] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"ac7194b0-f0ae-11e7-b9ff-9f96241065de-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:52.731Z","version":"WzQxNjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Workers [Metricbeat uWSGI] ECS","uiStateJSON":"{}","version":1,"visState":"{\"params\":{\"expression\":\".es(split=uwsgi.status.core.id:16,metric=max:uwsgi.status.core.requests.total).derivative().bars().title('Requests handled by each thread (core) per period')\",\"interval\":\"15s\"},\"title\":\"Workers [Metricbeat uWSGI] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"8c5f96e0-f0ae-11e7-b9ff-9f96241065de-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:52.731Z","version":"WzQxNjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Errors [Metricbeat uWSGI] ECS","uiStateJSON":"{}","version":1,"visState":"{\"params\":{\"expression\":\".es(metric=max:uwsgi.status.total.read_errors).label('Read errors').title('Errors'),\\n.es(metric=max:uwsgi.status.total.write_errors).label('Write errors'),\\n.es(metric=max:uwsgi.status.worker.harakiri_count).label('Timeouted requests')\",\"interval\":\"15s\"},\"title\":\"Errors [Metricbeat uWSGI] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"ba4a80b0-f0ae-11e7-b9ff-9f96241065de-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:52.731Z","version":"WzQxNjksMV0="} +{"attributes":{"description":"Overview of uWSGI service metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":24,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":0,\"w\":24,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":24,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":12,\"w\":24,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Metricbeat uWSGI] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"32fca290-f0af-11e7-b9ff-9f96241065de-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a5058e70-f0ae-11e7-b9ff-9f96241065de-ecs","name":"1:panel_1","type":"visualization"},{"id":"ac7194b0-f0ae-11e7-b9ff-9f96241065de-ecs","name":"2:panel_2","type":"visualization"},{"id":"8c5f96e0-f0ae-11e7-b9ff-9f96241065de-ecs","name":"3:panel_3","type":"visualization"},{"id":"ba4a80b0-f0ae-11e7-b9ff-9f96241065de-ecs","name":"4:panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:52.731Z","version":"WzQxNzEsMV0="} diff --git a/metricbeat/module/uwsgi/module.yml b/metricbeat/module/uwsgi/module.yml index a22a7fe0a2c..2a2713aa8bc 100644 --- a/metricbeat/module/uwsgi/module.yml +++ b/metricbeat/module/uwsgi/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 32fca290-f0af-11e7-b9ff-9f96241065de - file: Metricbeat-uwsgi-overview.json + file: Metricbeat-uwsgi-overview.ndjson diff --git a/metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-host.json b/metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-host.json deleted file mode 100644 index b650881c503..00000000000 --- a/metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-host.json +++ /dev/null @@ -1,1286 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of VSphere host and cluster metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "5a175530-7b6d-4d40-af46-5c0c518a97bb", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "5a175530-7b6d-4d40-af46-5c0c518a97bb", - "panelRefName": "panel_0", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "39b334e1-c61e-42c3-8e2f-ac534a19a986", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "39b334e1-c61e-42c3-8e2f-ac534a19a986", - "panelRefName": "panel_1", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "5eb32eda-4f81-490e-a86f-6fc65ea3892a", - "w": 24, - "x": 0, - "y": 15 - }, - "panelIndex": "5eb32eda-4f81-490e-a86f-6fc65ea3892a", - "panelRefName": "panel_2", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 20, - "i": "1c91b931-f2ec-4284-90eb-4b257f6f7904", - "w": 48, - "x": 0, - "y": 30 - }, - "panelIndex": "1c91b931-f2ec-4284-90eb-4b257f6f7904", - "panelRefName": "panel_3", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 18, - "i": "712d4e28-54ad-452f-9f00-525764d4850d", - "w": 48, - "x": 0, - "y": 50 - }, - "panelIndex": "712d4e28-54ad-452f-9f00-525764d4850d", - "panelRefName": "panel_4", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 18, - "i": "b8b5096a-30e1-4249-b8ca-eb4509b4ba59", - "w": 48, - "x": 0, - "y": 68 - }, - "panelIndex": "b8b5096a-30e1-4249-b8ca-eb4509b4ba59", - "panelRefName": "panel_5", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "e561ff05-9f8f-4412-a2e1-d656cb965e96", - "w": 24, - "x": 24, - "y": 15 - }, - "panelIndex": "e561ff05-9f8f-4412-a2e1-d656cb965e96", - "panelRefName": "panel_6", - "version": "7.4.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat VSphere] Hosts Overview ECS", - "version": 1 - }, - "id": "0ebd0be0-f049-11e9-aaf3-15199b632da7", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "ab07c5d0-f03f-11e9-aaf3-15199b632da7", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "47125df0-f040-11e9-aaf3-15199b632da7", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "783f2c50-f040-11e9-aaf3-15199b632da7", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "867e0c70-f048-11e9-aaf3-15199b632da7", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "5f74c330-f048-11e9-aaf3-15199b632da7", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "79dcd290-f047-11e9-aaf3-15199b632da7", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "d6370680-f049-11e9-aaf3-15199b632da7", - "name": "panel_6", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-10-19T09:21:42.191Z", - "version": "WzY4NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Free vs Used CPU on Cluster stacked [Metricbeat VSphere] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Free", - "field": "vsphere.host.cpu.free.mhz" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "2", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "timeRange": { - "from": "now-15m", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Used", - "field": "vsphere.host.cpu.used.mhz" - }, - "schema": "metric", - "type": "max" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "dimensions": { - "x": { - "accessor": 0, - "aggType": "date_histogram", - "format": { - "id": "date", - "params": { - "pattern": "HH:mm:ss" - } - }, - "params": { - "bounds": { - "max": "2019-10-16T18:04:26.629Z", - "min": "2019-10-16T17:49:26.629Z" - }, - "date": true, - "format": "HH:mm:ss", - "interval": "PT30S" - } - }, - "y": [ - { - "accessor": 1, - "aggType": "max", - "format": { - "id": "number" - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "max", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "grid": { - "categoryLines": false - }, - "labels": {}, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Free" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "3", - "label": "Used" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#34130C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Free" - }, - "type": "value" - } - ] - }, - "title": "Free vs Used CPU on Cluster stacked [Metricbeat VSphere] ECS", - "type": "area" - } - }, - "id": "ab07c5d0-f03f-11e9-aaf3-15199b632da7", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "1411b690-f017-11e9-aaf3-15199b632da7", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-19T09:14:27.107Z", - "version": "WzMwNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Cluster Memory free vs used stacked [Metricbeat VSphere] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Used", - "field": "vsphere.host.memory.used.bytes" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "3", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "timeRange": { - "from": "now-15m", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Free", - "field": "vsphere.host.memory.free.bytes" - }, - "schema": "metric", - "type": "max" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "dimensions": { - "x": { - "accessor": 0, - "aggType": "date_histogram", - "format": { - "id": "date", - "params": { - "pattern": "HH:mm:ss" - } - }, - "params": { - "bounds": { - "max": "2019-10-16T18:10:00.451Z", - "min": "2019-10-16T17:55:00.451Z" - }, - "date": true, - "format": "HH:mm:ss", - "interval": "PT30S" - } - }, - "y": [ - { - "accessor": 1, - "aggType": "max", - "format": { - "id": "bytes" - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "max", - "format": { - "id": "bytes" - }, - "params": {} - } - ] - }, - "grid": { - "categoryLines": false - }, - "labels": {}, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "2", - "label": "Used" - }, - "drawLinesBetweenPoints": true, - "interpolate": "cardinal", - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "1", - "label": "Free" - }, - "drawLinesBetweenPoints": true, - "interpolate": "cardinal", - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#34130C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "" - }, - "type": "value" - } - ] - }, - "title": "Cluster Memory free vs used stacked [Metricbeat VSphere] ECS", - "type": "area" - } - }, - "id": "47125df0-f040-11e9-aaf3-15199b632da7", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "1411b690-f017-11e9-aaf3-15199b632da7", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-19T09:14:27.107Z", - "version": "WzMwOCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Free vs Used Datastore [Metricbeat VSphere] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Used", - "field": "vsphere.datastore.capacity.used.bytes" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "3", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "timeRange": { - "from": "now-15m", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Free", - "field": "vsphere.datastore.capacity.free.bytes" - }, - "schema": "metric", - "type": "max" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "dimensions": { - "x": { - "accessor": 0, - "aggType": "date_histogram", - "format": { - "id": "date", - "params": { - "pattern": "HH:mm:ss" - } - }, - "params": { - "bounds": { - "max": "2019-10-16T18:11:40.605Z", - "min": "2019-10-16T17:56:40.605Z" - }, - "date": true, - "format": "HH:mm:ss", - "interval": "PT30S" - } - }, - "y": [ - { - "accessor": 1, - "aggType": "max", - "format": { - "id": "bytes" - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "max", - "format": { - "id": "bytes" - }, - "params": {} - } - ] - }, - "grid": { - "categoryLines": false - }, - "labels": {}, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "2", - "label": "Used" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "1", - "label": "Free" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#34130C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Free" - }, - "type": "value" - } - ] - }, - "title": "Free vs Used Datastore [Metricbeat VSphere] ECS", - "type": "area" - } - }, - "id": "783f2c50-f040-11e9-aaf3-15199b632da7", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "1411b690-f017-11e9-aaf3-15199b632da7", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-19T09:14:27.107Z", - "version": "WzMwOSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Host top RAM util [Metricbeat VSphere] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "event.module : \"vsphere\" " - }, - "gauge_color_rules": [ - { - "gauge": "rgba(252,220,0,1)", - "id": "3e4e64a0-f047-11e9-8ffe-6377df51c23d", - "operator": "gt", - "value": 0.35 - }, - { - "gauge": "rgba(251,158,0,1)", - "id": "8e4a5090-f047-11e9-8ffe-6377df51c23d", - "operator": "gte", - "value": 0.7 - }, - { - "gauge": "rgba(159,5,0,1)", - "id": "93d7d2d0-f047-11e9-8ffe-6377df51c23d", - "operator": "gte", - "text": null, - "value": 0.95 - } - ], - "gauge_inner_width": 10, - "gauge_max": "1", - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(59,244,64,1)", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "percent", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "vsphere.host.memory.total.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "vsphere.host.memory.free.bytes", - "id": "51de05c0-f047-11e9-8ffe-6377df51c23d", - "type": "max" - }, - { - "id": "5e69b140-f047-11e9-8ffe-6377df51c23d", - "script": "params.used / params.total", - "type": "calculation", - "variables": [ - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "5fadf110-f047-11e9-8ffe-6377df51c23d", - "name": "total" - }, - { - "field": "51de05c0-f047-11e9-8ffe-6377df51c23d", - "id": "61c84590-f047-11e9-8ffe-6377df51c23d", - "name": "used" - } - ] - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "vsphere.host.name", - "terms_order_by": "51de05c0-f047-11e9-8ffe-6377df51c23d" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "gauge" - }, - "title": "Host top RAM util [Metricbeat VSphere] ECS", - "type": "metrics" - } - }, - "id": "867e0c70-f048-11e9-aaf3-15199b632da7", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-19T09:14:27.107Z", - "version": "WzMxMCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Host top CPU util [Metricbeat VSphere] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "event.module : \"vsphere\" " - }, - "gauge_color_rules": [ - { - "gauge": "rgba(252,220,0,1)", - "id": "3e4e64a0-f047-11e9-8ffe-6377df51c23d", - "operator": "gt", - "value": 0.35 - }, - { - "gauge": "rgba(251,158,0,1)", - "id": "8e4a5090-f047-11e9-8ffe-6377df51c23d", - "operator": "gte", - "value": 0.7 - }, - { - "gauge": "rgba(159,5,0,1)", - "id": "93d7d2d0-f047-11e9-8ffe-6377df51c23d", - "operator": "gte", - "text": null, - "value": 0.95 - } - ], - "gauge_inner_width": 10, - "gauge_max": "1", - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(59,244,64,1)", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "percent", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "vsphere.host.cpu.total.mhz", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "vsphere.host.cpu.used.mhz", - "id": "51de05c0-f047-11e9-8ffe-6377df51c23d", - "type": "max" - }, - { - "id": "5e69b140-f047-11e9-8ffe-6377df51c23d", - "script": "params.used / params.total", - "type": "calculation", - "variables": [ - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "5fadf110-f047-11e9-8ffe-6377df51c23d", - "name": "total" - }, - { - "field": "51de05c0-f047-11e9-8ffe-6377df51c23d", - "id": "61c84590-f047-11e9-8ffe-6377df51c23d", - "name": "used" - } - ] - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "vsphere.host.name", - "terms_order_by": "51de05c0-f047-11e9-8ffe-6377df51c23d" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "gauge" - }, - "title": "Host top CPU util [Metricbeat VSphere] ECS", - "type": "metrics" - } - }, - "id": "5f74c330-f048-11e9-aaf3-15199b632da7", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-19T09:14:27.107Z", - "version": "WzMxMSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top Datastore Used [Metricbeat VSphere] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "event.module : \"vsphere\" " - }, - "gauge_color_rules": [ - { - "gauge": "rgba(252,220,0,1)", - "id": "3e4e64a0-f047-11e9-8ffe-6377df51c23d", - "operator": "gt", - "value": 0.35 - }, - { - "gauge": "rgba(251,158,0,1)", - "id": "8e4a5090-f047-11e9-8ffe-6377df51c23d", - "operator": "gte", - "value": 0.7 - }, - { - "gauge": "rgba(159,5,0,1)", - "id": "93d7d2d0-f047-11e9-8ffe-6377df51c23d", - "operator": "gte", - "text": null, - "value": 0.95 - } - ], - "gauge_inner_width": 10, - "gauge_max": "1", - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(59,244,64,1)", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "percent", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "vsphere.datastore.capacity.total.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "vsphere.datastore.capacity.used.bytes", - "id": "51de05c0-f047-11e9-8ffe-6377df51c23d", - "type": "max" - }, - { - "field": "vsphere.datastore.capacity.used.pct", - "id": "5aec7160-f047-11e9-8ffe-6377df51c23d", - "type": "max" - }, - { - "id": "5e69b140-f047-11e9-8ffe-6377df51c23d", - "script": "params.used / params.total", - "type": "calculation", - "variables": [ - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "5fadf110-f047-11e9-8ffe-6377df51c23d", - "name": "total" - }, - { - "field": "51de05c0-f047-11e9-8ffe-6377df51c23d", - "id": "61c84590-f047-11e9-8ffe-6377df51c23d", - "name": "used" - } - ] - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "vsphere.datastore.name", - "terms_order_by": "5aec7160-f047-11e9-8ffe-6377df51c23d" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "gauge" - }, - "title": "Top Datastore Used [Metricbeat VSphere] ECS", - "type": "metrics" - } - }, - "id": "79dcd290-f047-11e9-aaf3-15199b632da7", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-19T09:14:27.107Z", - "version": "WzMxMiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Datastore Types [Metricbeat VSphere] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "vsphere.datastore.fstype", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "metric": { - "accessor": 0, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Datastore types [Metricbeat VSphere] ECS", - "type": "pie" - } - }, - "id": "d6370680-f049-11e9-aaf3-15199b632da7", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "1411b690-f017-11e9-aaf3-15199b632da7", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-19T09:14:27.107Z", - "version": "WzMxMywxXQ==" - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.module: \"vsphere\" " - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "search for event module vsphere [Metricbeat VSphere] ECS", - "version": 1 - }, - "id": "1411b690-f017-11e9-aaf3-15199b632da7", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2019-10-19T09:14:27.107Z", - "version": "WzMwNiwxXQ==" - } - ], - "version": "7.4.0" -} diff --git a/metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-host.ndjson b/metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-host.ndjson new file mode 100644 index 00000000000..5cc2d4f0655 --- /dev/null +++ b/metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-host.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.module: \\\"vsphere\\\" \"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"search for event module [Metricbeat VSphere] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"1411b690-f017-11e9-aaf3-15199b632da7","migrationVersion":{"search":"7.9.3"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:31:59.928Z","version":"WzQyMjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Free vs Used CPU on Cluster stacked [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Free\",\"field\":\"vsphere.host.cpu.free.mhz\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Used\",\"field\":\"vsphere.host.cpu.used.mhz\"},\"schema\":\"metric\",\"type\":\"max\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"HH:mm:ss\"}},\"params\":{\"bounds\":{\"max\":\"2019-10-16T18:04:26.629Z\",\"min\":\"2019-10-16T17:49:26.629Z\"},\"date\":true,\"format\":\"HH:mm:ss\",\"interval\":\"PT30S\"}},\"y\":[{\"accessor\":1,\"aggType\":\"max\",\"format\":{\"id\":\"number\"},\"params\":{}},{\"accessor\":2,\"aggType\":\"max\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Free\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Used\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#34130C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Free\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Free vs Used CPU on Cluster stacked [Metricbeat VSphere] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"ab07c5d0-f03f-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1411b690-f017-11e9-aaf3-15199b632da7","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:58.868Z","version":"WzQyMTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Cluster Memory free vs used stacked [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Used\",\"field\":\"vsphere.host.memory.used.bytes\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Free\",\"field\":\"vsphere.host.memory.free.bytes\"},\"schema\":\"metric\",\"type\":\"max\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"HH:mm:ss\"}},\"params\":{\"bounds\":{\"max\":\"2019-10-16T18:10:00.451Z\",\"min\":\"2019-10-16T17:55:00.451Z\"},\"date\":true,\"format\":\"HH:mm:ss\",\"interval\":\"PT30S\"}},\"y\":[{\"accessor\":1,\"aggType\":\"max\",\"format\":{\"id\":\"bytes\"},\"params\":{}},{\"accessor\":2,\"aggType\":\"max\",\"format\":{\"id\":\"bytes\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"2\",\"label\":\"Used\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"1\",\"label\":\"Free\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#34130C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Cluster Memory free vs used stacked [Metricbeat VSphere] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"47125df0-f040-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1411b690-f017-11e9-aaf3-15199b632da7","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:58.868Z","version":"WzQyMTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Free vs Used Datastore [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Used\",\"field\":\"vsphere.datastore.capacity.used.bytes\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Free\",\"field\":\"vsphere.datastore.capacity.free.bytes\"},\"schema\":\"metric\",\"type\":\"max\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"HH:mm:ss\"}},\"params\":{\"bounds\":{\"max\":\"2019-10-16T18:11:40.605Z\",\"min\":\"2019-10-16T17:56:40.605Z\"},\"date\":true,\"format\":\"HH:mm:ss\",\"interval\":\"PT30S\"}},\"y\":[{\"accessor\":1,\"aggType\":\"max\",\"format\":{\"id\":\"bytes\"},\"params\":{}},{\"accessor\":2,\"aggType\":\"max\",\"format\":{\"id\":\"bytes\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"2\",\"label\":\"Used\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"1\",\"label\":\"Free\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#34130C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Free\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Free vs Used Datastore [Metricbeat VSphere] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"783f2c50-f040-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1411b690-f017-11e9-aaf3-15199b632da7","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:58.868Z","version":"WzQyMTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Host top RAM util [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module : \\\"vsphere\\\" \"},\"gauge_color_rules\":[{\"gauge\":\"rgba(252,220,0,1)\",\"id\":\"3e4e64a0-f047-11e9-8ffe-6377df51c23d\",\"operator\":\"gt\",\"value\":0.35},{\"gauge\":\"rgba(251,158,0,1)\",\"id\":\"8e4a5090-f047-11e9-8ffe-6377df51c23d\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(159,5,0,1)\",\"id\":\"93d7d2d0-f047-11e9-8ffe-6377df51c23d\",\"operator\":\"gte\",\"text\":null,\"value\":0.95}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(59,244,64,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"vsphere.host.memory.total.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"vsphere.host.memory.free.bytes\",\"id\":\"51de05c0-f047-11e9-8ffe-6377df51c23d\",\"type\":\"max\"},{\"id\":\"5e69b140-f047-11e9-8ffe-6377df51c23d\",\"script\":\"params.used / params.total\",\"type\":\"calculation\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"5fadf110-f047-11e9-8ffe-6377df51c23d\",\"name\":\"total\"},{\"field\":\"51de05c0-f047-11e9-8ffe-6377df51c23d\",\"id\":\"61c84590-f047-11e9-8ffe-6377df51c23d\",\"name\":\"used\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"vsphere.host.name\",\"terms_order_by\":\"51de05c0-f047-11e9-8ffe-6377df51c23d\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Host top RAM util [Metricbeat VSphere] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"867e0c70-f048-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:58.868Z","version":"WzQyMTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Host top CPU util [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module : \\\"vsphere\\\" \"},\"gauge_color_rules\":[{\"gauge\":\"rgba(252,220,0,1)\",\"id\":\"3e4e64a0-f047-11e9-8ffe-6377df51c23d\",\"operator\":\"gt\",\"value\":0.35},{\"gauge\":\"rgba(251,158,0,1)\",\"id\":\"8e4a5090-f047-11e9-8ffe-6377df51c23d\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(159,5,0,1)\",\"id\":\"93d7d2d0-f047-11e9-8ffe-6377df51c23d\",\"operator\":\"gte\",\"text\":null,\"value\":0.95}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(59,244,64,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"vsphere.host.cpu.total.mhz\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"vsphere.host.cpu.used.mhz\",\"id\":\"51de05c0-f047-11e9-8ffe-6377df51c23d\",\"type\":\"max\"},{\"id\":\"5e69b140-f047-11e9-8ffe-6377df51c23d\",\"script\":\"params.used / params.total\",\"type\":\"calculation\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"5fadf110-f047-11e9-8ffe-6377df51c23d\",\"name\":\"total\"},{\"field\":\"51de05c0-f047-11e9-8ffe-6377df51c23d\",\"id\":\"61c84590-f047-11e9-8ffe-6377df51c23d\",\"name\":\"used\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"vsphere.host.name\",\"terms_order_by\":\"51de05c0-f047-11e9-8ffe-6377df51c23d\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Host top CPU util [Metricbeat VSphere] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5f74c330-f048-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:58.868Z","version":"WzQyMTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top Datastore Used [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module : \\\"vsphere\\\" \"},\"gauge_color_rules\":[{\"gauge\":\"rgba(252,220,0,1)\",\"id\":\"3e4e64a0-f047-11e9-8ffe-6377df51c23d\",\"operator\":\"gt\",\"value\":0.35},{\"gauge\":\"rgba(251,158,0,1)\",\"id\":\"8e4a5090-f047-11e9-8ffe-6377df51c23d\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(159,5,0,1)\",\"id\":\"93d7d2d0-f047-11e9-8ffe-6377df51c23d\",\"operator\":\"gte\",\"text\":null,\"value\":0.95}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(59,244,64,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"vsphere.datastore.capacity.total.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"vsphere.datastore.capacity.used.bytes\",\"id\":\"51de05c0-f047-11e9-8ffe-6377df51c23d\",\"type\":\"max\"},{\"field\":\"vsphere.datastore.capacity.used.pct\",\"id\":\"5aec7160-f047-11e9-8ffe-6377df51c23d\",\"type\":\"max\"},{\"id\":\"5e69b140-f047-11e9-8ffe-6377df51c23d\",\"script\":\"params.used / params.total\",\"type\":\"calculation\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"5fadf110-f047-11e9-8ffe-6377df51c23d\",\"name\":\"total\"},{\"field\":\"51de05c0-f047-11e9-8ffe-6377df51c23d\",\"id\":\"61c84590-f047-11e9-8ffe-6377df51c23d\",\"name\":\"used\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"vsphere.datastore.name\",\"terms_order_by\":\"5aec7160-f047-11e9-8ffe-6377df51c23d\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top Datastore Used [Metricbeat VSphere] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"79dcd290-f047-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:58.868Z","version":"WzQyMTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Datastore Types [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"vsphere.datastore.fstype\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Datastore types [Metricbeat VSphere] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"d6370680-f049-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1411b690-f017-11e9-aaf3-15199b632da7","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:58.868Z","version":"WzQyMTYsMV0="} +{"attributes":{"description":"Overview of VSphere host and cluster metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5a175530-7b6d-4d40-af46-5c0c518a97bb\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"5a175530-7b6d-4d40-af46-5c0c518a97bb\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5a175530-7b6d-4d40-af46-5c0c518a97bb\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"39b334e1-c61e-42c3-8e2f-ac534a19a986\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"39b334e1-c61e-42c3-8e2f-ac534a19a986\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_39b334e1-c61e-42c3-8e2f-ac534a19a986\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5eb32eda-4f81-490e-a86f-6fc65ea3892a\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"5eb32eda-4f81-490e-a86f-6fc65ea3892a\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5eb32eda-4f81-490e-a86f-6fc65ea3892a\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"1c91b931-f2ec-4284-90eb-4b257f6f7904\",\"w\":48,\"x\":0,\"y\":30},\"panelIndex\":\"1c91b931-f2ec-4284-90eb-4b257f6f7904\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1c91b931-f2ec-4284-90eb-4b257f6f7904\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"712d4e28-54ad-452f-9f00-525764d4850d\",\"w\":48,\"x\":0,\"y\":50},\"panelIndex\":\"712d4e28-54ad-452f-9f00-525764d4850d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_712d4e28-54ad-452f-9f00-525764d4850d\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"b8b5096a-30e1-4249-b8ca-eb4509b4ba59\",\"w\":48,\"x\":0,\"y\":68},\"panelIndex\":\"b8b5096a-30e1-4249-b8ca-eb4509b4ba59\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_b8b5096a-30e1-4249-b8ca-eb4509b4ba59\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"e561ff05-9f8f-4412-a2e1-d656cb965e96\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"e561ff05-9f8f-4412-a2e1-d656cb965e96\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_e561ff05-9f8f-4412-a2e1-d656cb965e96\"}]","timeRestore":false,"title":"[Metricbeat VSphere] Hosts Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"0ebd0be0-f049-11e9-aaf3-15199b632da7","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"ab07c5d0-f03f-11e9-aaf3-15199b632da7","name":"5a175530-7b6d-4d40-af46-5c0c518a97bb:panel_5a175530-7b6d-4d40-af46-5c0c518a97bb","type":"visualization"},{"id":"47125df0-f040-11e9-aaf3-15199b632da7","name":"39b334e1-c61e-42c3-8e2f-ac534a19a986:panel_39b334e1-c61e-42c3-8e2f-ac534a19a986","type":"visualization"},{"id":"783f2c50-f040-11e9-aaf3-15199b632da7","name":"5eb32eda-4f81-490e-a86f-6fc65ea3892a:panel_5eb32eda-4f81-490e-a86f-6fc65ea3892a","type":"visualization"},{"id":"867e0c70-f048-11e9-aaf3-15199b632da7","name":"1c91b931-f2ec-4284-90eb-4b257f6f7904:panel_1c91b931-f2ec-4284-90eb-4b257f6f7904","type":"visualization"},{"id":"5f74c330-f048-11e9-aaf3-15199b632da7","name":"712d4e28-54ad-452f-9f00-525764d4850d:panel_712d4e28-54ad-452f-9f00-525764d4850d","type":"visualization"},{"id":"79dcd290-f047-11e9-aaf3-15199b632da7","name":"b8b5096a-30e1-4249-b8ca-eb4509b4ba59:panel_b8b5096a-30e1-4249-b8ca-eb4509b4ba59","type":"visualization"},{"id":"d6370680-f049-11e9-aaf3-15199b632da7","name":"e561ff05-9f8f-4412-a2e1-d656cb965e96:panel_e561ff05-9f8f-4412-a2e1-d656cb965e96","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:58.868Z","version":"WzQyMDksMV0="} diff --git a/metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-vm.json b/metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-vm.json deleted file mode 100644 index 693d8045725..00000000000 --- a/metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-vm.json +++ /dev/null @@ -1,850 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of the VSphere virtualmachine metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 18, - "i": "80c96802-a5b2-4196-91b7-9e39f59f472b", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "80c96802-a5b2-4196-91b7-9e39f59f472b", - "panelRefName": "panel_0", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 18, - "i": "948b7896-98e3-4260-b06e-78ac354bed69", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "948b7896-98e3-4260-b06e-78ac354bed69", - "panelRefName": "panel_1", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 19, - "i": "b6d0ae24-0b52-4d16-bbcd-a9d6143054d2", - "w": 24, - "x": 0, - "y": 18 - }, - "panelIndex": "b6d0ae24-0b52-4d16-bbcd-a9d6143054d2", - "panelRefName": "panel_2", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 19, - "i": "52f8ef2e-3fa3-4494-bdb4-179737fc2fda", - "w": 24, - "x": 24, - "y": 18 - }, - "panelIndex": "52f8ef2e-3fa3-4494-bdb4-179737fc2fda", - "panelRefName": "panel_3", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "vis": null - }, - "gridData": { - "h": 35, - "i": "dfc089db-6bab-4410-962d-14cc622d7681", - "w": 48, - "x": 0, - "y": 37 - }, - "panelIndex": "dfc089db-6bab-4410-962d-14cc622d7681", - "panelRefName": "panel_4", - "version": "7.4.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat VSphere] VMs overview ECS", - "version": 1 - }, - "id": "8a2d1540-f049-11e9-aaf3-15199b632da7", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "dae93d90-f041-11e9-aaf3-15199b632da7", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "a6026680-f017-11e9-aaf3-15199b632da7", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "5c6a93a0-f04c-11e9-aaf3-15199b632da7", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "9afddd20-f04c-11e9-aaf3-15199b632da7", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "e3a3e080-f018-11e9-aaf3-15199b632da7", - "name": "panel_4", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-10-19T09:21:58.142Z", - "version": "WzY4NywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "CPU/RAM/Network per VM [Metricbeat VSphere] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Name", - "field": "vsphere.virtualmachine.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 50 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Used CPU", - "field": "vsphere.virtualmachine.cpu.used.mhz", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderAgg": { - "enabled": true, - "id": "5-orderAgg", - "params": { - "field": "vsphere.virtualmachine.cpu.used.mhz" - }, - "schema": "orderAgg", - "type": "max" - }, - "orderBy": "custom", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Total RAM", - "field": "vsphere.virtualmachine.memory.total.guest.bytes", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderAgg": { - "enabled": true, - "id": "3-orderAgg", - "params": { - "field": "vsphere.virtualmachine.memory.total.guest.bytes" - }, - "schema": "orderAgg", - "type": "max" - }, - "orderBy": "custom", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Networks", - "field": "vsphere.virtualmachine.network_names", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "number", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "bytes", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 3, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 4, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "CPU/RAM/Network per VM [Metricbeat VSphere] ECS", - "type": "table" - } - }, - "id": "dae93d90-f041-11e9-aaf3-15199b632da7", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "1411b690-f017-11e9-aaf3-15199b632da7", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-19T09:14:27.107Z", - "version": "WzQ2MCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "OS Distribution [Metricbeat VSphere] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Operating Systems", - "field": "vsphere.virtualmachine.os", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "OS Pie [Metricbeat VSphere] ECS", - "type": "pie" - } - }, - "id": "a6026680-f017-11e9-aaf3-15199b632da7", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "1411b690-f017-11e9-aaf3-15199b632da7", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-19T09:14:27.107Z", - "version": "WzQ2MSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Networks from virtualmachine [Metricbeat VSphere] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Networks", - "field": "vsphere.virtualmachine.network_names", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Networks from virtualmachine [Metricbeat VSphere] ECS", - "type": "pie" - } - }, - "id": "5c6a93a0-f04c-11e9-aaf3-15199b632da7", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "1411b690-f017-11e9-aaf3-15199b632da7", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-19T09:14:27.107Z", - "version": "WzQ2MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "VMs per ESXI host [Metricbeat VSphere] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "VM ESXi Host", - "field": "vsphere.virtualmachine.host.hostname", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "how many VMs run on a ESXI host [Metricbeat VSphere] ECS", - "type": "pie" - } - }, - "id": "9afddd20-f04c-11e9-aaf3-15199b632da7", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "1411b690-f017-11e9-aaf3-15199b632da7", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-19T09:14:27.107Z", - "version": "WzQ2MywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "VM placements on ESXi Hosts[Metricbeat VSphere] ECS", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 40": "rgb(247,252,245)", - "120 - 160": "rgb(35,139,69)", - "40 - 80": "rgb(199,233,192)", - "80 - 120": "rgb(116,196,118)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "VM Name", - "field": "vsphere.virtualmachine.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 50 - }, - "schema": "group", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "ESXi Host", - "field": "vsphere.virtualmachine.host.hostname", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "colorSchema": "Greens", - "colorsNumber": 4, - "colorsRange": [], - "dimensions": { - "series": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "x": { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - "y": [ - { - "accessor": 2, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "enableHover": false, - "invertColors": false, - "legendPosition": "right", - "percentageMode": false, - "setColorRange": false, - "times": [], - "type": "heatmap", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "color": "black", - "overwriteColor": false, - "rotate": 0, - "show": false - }, - "scale": { - "defaultYExtents": false, - "type": "linear" - }, - "show": false, - "type": "value" - } - ] - }, - "title": "VM placements on ESXi Hosts[Metricbeat VSphere] ECS", - "type": "heatmap" - } - }, - "id": "e3a3e080-f018-11e9-aaf3-15199b632da7", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "1411b690-f017-11e9-aaf3-15199b632da7", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-19T09:14:27.107Z", - "version": "WzQ2NCwxXQ==" - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.module: \"vsphere\" " - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "search for event module [Metricbeat VSphere] ECS", - "version": 1 - }, - "id": "1411b690-f017-11e9-aaf3-15199b632da7", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2019-10-19T09:14:27.107Z", - "version": "WzMwNiwxXQ==" - } - ], - "version": "7.4.0" -} diff --git a/metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-vm.ndjson b/metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-vm.ndjson new file mode 100644 index 00000000000..b66daee8b25 --- /dev/null +++ b/metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-vm.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.module: \\\"vsphere\\\" \"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"search for event module [Metricbeat VSphere] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"1411b690-f017-11e9-aaf3-15199b632da7","migrationVersion":{"search":"7.9.3"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:31:59.928Z","version":"WzQyMjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"CPU/RAM/Network per VM [Metricbeat VSphere] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Name\",\"field\":\"vsphere.virtualmachine.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Used CPU\",\"field\":\"vsphere.virtualmachine.cpu.used.mhz\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderAgg\":{\"enabled\":true,\"id\":\"5-orderAgg\",\"params\":{\"field\":\"vsphere.virtualmachine.cpu.used.mhz\"},\"schema\":\"orderAgg\",\"type\":\"max\"},\"orderBy\":\"custom\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Total RAM\",\"field\":\"vsphere.virtualmachine.memory.total.guest.bytes\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderAgg\":{\"enabled\":true,\"id\":\"3-orderAgg\",\"params\":{\"field\":\"vsphere.virtualmachine.memory.total.guest.bytes\"},\"schema\":\"orderAgg\",\"type\":\"max\"},\"orderBy\":\"custom\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Networks\",\"field\":\"vsphere.virtualmachine.network_names\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"number\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"bytes\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"CPU/RAM/Network per VM [Metricbeat VSphere] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"dae93d90-f041-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1411b690-f017-11e9-aaf3-15199b632da7","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:59.928Z","version":"WzQyMTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"OS Distribution [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Operating Systems\",\"field\":\"vsphere.virtualmachine.os\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"OS Pie [Metricbeat VSphere] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"a6026680-f017-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1411b690-f017-11e9-aaf3-15199b632da7","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:59.928Z","version":"WzQyMjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Networks from virtualmachine [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Networks\",\"field\":\"vsphere.virtualmachine.network_names\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Networks from virtualmachine [Metricbeat VSphere] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"5c6a93a0-f04c-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1411b690-f017-11e9-aaf3-15199b632da7","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:59.928Z","version":"WzQyMjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"VMs per ESXI host [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"VM ESXi Host\",\"field\":\"vsphere.virtualmachine.host.hostname\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"how many VMs run on a ESXI host [Metricbeat VSphere] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"9afddd20-f04c-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1411b690-f017-11e9-aaf3-15199b632da7","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:59.928Z","version":"WzQyMjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"VM placements on ESXi Hosts[Metricbeat VSphere] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 40\": \"rgb(247,252,245)\", \"120 - 160\": \"rgb(35,139,69)\", \"40 - 80\": \"rgb(199,233,192)\", \"80 - 120\": \"rgb(116,196,118)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"VM Name\",\"field\":\"vsphere.virtualmachine.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":50},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"ESXi Host\",\"field\":\"vsphere.virtualmachine.host.hostname\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Greens\",\"colorsNumber\":4,\"colorsRange\":[],\"dimensions\":{\"series\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"x\":{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"enableHover\":false,\"invertColors\":false,\"legendPosition\":\"right\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"black\",\"overwriteColor\":false,\"rotate\":0,\"show\":false},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"VM placements on ESXi Hosts[Metricbeat VSphere] ECS\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"8.0.0","id":"e3a3e080-f018-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1411b690-f017-11e9-aaf3-15199b632da7","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:59.928Z","version":"WzQyMjMsMV0="} +{"attributes":{"description":"Overview of the VSphere virtualmachine metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"80c96802-a5b2-4196-91b7-9e39f59f472b\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"80c96802-a5b2-4196-91b7-9e39f59f472b\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_80c96802-a5b2-4196-91b7-9e39f59f472b\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"948b7896-98e3-4260-b06e-78ac354bed69\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"948b7896-98e3-4260-b06e-78ac354bed69\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_948b7896-98e3-4260-b06e-78ac354bed69\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"b6d0ae24-0b52-4d16-bbcd-a9d6143054d2\",\"w\":24,\"x\":0,\"y\":18},\"panelIndex\":\"b6d0ae24-0b52-4d16-bbcd-a9d6143054d2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_b6d0ae24-0b52-4d16-bbcd-a9d6143054d2\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"52f8ef2e-3fa3-4494-bdb4-179737fc2fda\",\"w\":24,\"x\":24,\"y\":18},\"panelIndex\":\"52f8ef2e-3fa3-4494-bdb4-179737fc2fda\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_52f8ef2e-3fa3-4494-bdb4-179737fc2fda\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":35,\"i\":\"dfc089db-6bab-4410-962d-14cc622d7681\",\"w\":48,\"x\":0,\"y\":37},\"panelIndex\":\"dfc089db-6bab-4410-962d-14cc622d7681\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"panelRefName\":\"panel_dfc089db-6bab-4410-962d-14cc622d7681\"}]","timeRestore":false,"title":"[Metricbeat VSphere] VMs overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"8a2d1540-f049-11e9-aaf3-15199b632da7","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"dae93d90-f041-11e9-aaf3-15199b632da7","name":"80c96802-a5b2-4196-91b7-9e39f59f472b:panel_80c96802-a5b2-4196-91b7-9e39f59f472b","type":"visualization"},{"id":"a6026680-f017-11e9-aaf3-15199b632da7","name":"948b7896-98e3-4260-b06e-78ac354bed69:panel_948b7896-98e3-4260-b06e-78ac354bed69","type":"visualization"},{"id":"5c6a93a0-f04c-11e9-aaf3-15199b632da7","name":"b6d0ae24-0b52-4d16-bbcd-a9d6143054d2:panel_b6d0ae24-0b52-4d16-bbcd-a9d6143054d2","type":"visualization"},{"id":"9afddd20-f04c-11e9-aaf3-15199b632da7","name":"52f8ef2e-3fa3-4494-bdb4-179737fc2fda:panel_52f8ef2e-3fa3-4494-bdb4-179737fc2fda","type":"visualization"},{"id":"e3a3e080-f018-11e9-aaf3-15199b632da7","name":"dfc089db-6bab-4410-962d-14cc622d7681:panel_dfc089db-6bab-4410-962d-14cc622d7681","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:59.928Z","version":"WzQyMTgsMV0="} diff --git a/metricbeat/module/vsphere/module.yml b/metricbeat/module/vsphere/module.yml index 0fe75d87b3d..13996ec04e5 100644 --- a/metricbeat/module/vsphere/module.yml +++ b/metricbeat/module/vsphere/module.yml @@ -1,5 +1,5 @@ dashboards: - id: 0ebd0be0-f049-11e9-aaf3-15199b632da7 - file: metricbeat-vsphere-host.json + file: metricbeat-vsphere-host.ndjson - id: 8a2d1540-f049-11e9-aaf3-15199b632da7 - file: metricbeat-vsphere-vm.json \ No newline at end of file + file: metricbeat-vsphere-vm.ndjson \ No newline at end of file diff --git a/metricbeat/module/windows/_meta/kibana/7/dashboard/metricbeat-windows-service.json b/metricbeat/module/windows/_meta/kibana/7/dashboard/metricbeat-windows-service.json deleted file mode 100644 index 23e0fb6afb4..00000000000 --- a/metricbeat/module/windows/_meta/kibana/7/dashboard/metricbeat-windows-service.json +++ /dev/null @@ -1,760 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Service States [Metricbeat Windows] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "aggregate": "concat", - "customLabel": "Latest Report", - "field": "@timestamp", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Service", - "field": "windows.service.display_name", - "order": "asc", - "orderBy": "_term", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Host", - "field": "host.name", - "order": "desc", - "orderBy": "_term", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "State", - "field": "windows.service.state", - "order": "desc", - "orderAgg": { - "enabled": true, - "id": "3-orderAgg", - "params": { - "field": "@timestamp" - }, - "schema": { - "aggFilter": [ - "!top_hits", - "!percentiles", - "!median", - "!std_dev", - "!derivative", - "!moving_avg", - "!serial_diff", - "!cumulative_sum", - "!avg_bucket", - "!max_bucket", - "!min_bucket", - "!sum_bucket" - ], - "deprecate": false, - "editor": false, - "group": "none", - "hideCustomLabel": true, - "max": null, - "min": 0, - "name": "orderAgg", - "params": [], - "title": "Order Agg" - }, - "type": "max" - }, - "orderBy": "custom", - "size": 1 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Startup Type", - "field": "windows.service.start_type", - "order": "desc", - "orderAgg": { - "enabled": true, - "id": "4-orderAgg", - "params": { - "field": "@timestamp" - }, - "schema": { - "aggFilter": [ - "!top_hits", - "!percentiles", - "!median", - "!std_dev", - "!derivative", - "!moving_avg", - "!serial_diff", - "!cumulative_sum", - "!avg_bucket", - "!max_bucket", - "!min_bucket", - "!sum_bucket" - ], - "deprecate": false, - "editor": false, - "group": "none", - "hideCustomLabel": true, - "max": null, - "min": 0, - "name": "orderAgg", - "params": [], - "title": "Order Agg" - }, - "type": "max" - }, - "orderBy": "custom", - "size": 1 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Service States [Metricbeat Windows] ECS", - "type": "table" - } - }, - "id": "eb8277d0-c98c-11e7-9835-2f31fe08873b-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs", - "title": "Hosts [Metricbeat Windows] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Total Services", - "field": "windows.service.id" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Host", - "field": "host.name", - "order": "desc", - "orderBy": "1", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Hosts [Metricbeat Windows] ECS", - "type": "table" - } - }, - "id": "23a5fff0-c98e-11e7-9835-2f31fe08873b-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs", - "title": "Startup States [Metricbeat Windows] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Service Count", - "field": "windows.service.id" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Startup Type", - "field": "windows.service.start_type", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "State", - "field": "windows.service.state", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right", - "type": "pie" - }, - "title": "Startup States [Metricbeat Windows] ECS", - "type": "pie" - } - }, - "id": "830c45f0-c991-11e7-9835-2f31fe08873b-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs", - "title": "Unique Services [Metricbeat Windows] ECS", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Services", - "field": "windows.service.id" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": false - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "type": "gauge" - }, - "title": "Unique Services [Metricbeat Windows] ECS", - "type": "metric" - } - }, - "id": "35f5ad60-c996-11e7-9835-2f31fe08873b-ecs", - "type": "visualization", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "windows.service.exit_code" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "metricbeat-*", - "key": "windows.service.exit_code", - "negate": false, - "type": "exists", - "value": "exists" - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "metricbeat-*", - "key": "windows.service.exit_code", - "negate": true, - "params": { - "query": "0", - "type": "phrase" - }, - "type": "phrase", - "value": "0" - }, - "query": { - "match": { - "windows.service.exit_code": { - "query": "0", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "metricbeat-*", - "key": "windows.service.exit_code", - "negate": true, - "params": { - "query": "ERROR_SERVICE_NEVER_STARTED", - "type": "phrase" - }, - "type": "phrase", - "value": "ERROR_SERVICE_NEVER_STARTED" - }, - "query": { - "match": { - "windows.service.exit_code": { - "query": "ERROR_SERVICE_NEVER_STARTED", - "type": "phrase" - } - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs", - "title": "Non-zero Service Exit Codes [Metricbeat Windows] ECS", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Non-zero Exit Codes", - "field": "windows.service.id" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": false - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "type": "gauge" - }, - "title": "Non-zero Service Exit Codes [Metricbeat Windows] ECS", - "type": "metric" - } - }, - "id": "c36b2ba0-ca29-11e7-9835-2f31fe08873b-ecs", - "type": "visualization", - "version": 1 - }, - { - "attributes": { - "columns": [ - "host.name", - "windows.service.display_name", - "windows.service.state", - "windows.service.start_type", - "windows.service.uptime.ms", - "windows.service.pid", - "windows.service.exit_code" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "metricbeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "windows", - "type": "phrase" - }, - "type": "phrase", - "value": "windows" - }, - "query": { - "match": { - "event.module": { - "query": "windows", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "metricbeat-*", - "key": "metricset.name", - "negate": false, - "params": { - "query": "service", - "type": "phrase" - }, - "type": "phrase", - "value": "service" - }, - "query": { - "match": { - "metricset.name": { - "query": "service", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Services [Metricbeat Windows] ECS", - "version": 1 - }, - "id": "b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs", - "type": "search", - "version": 2 - }, - { - "attributes": { - "description": "Overview of the Windows Service States", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 4, - "id": "eb8277d0-c98c-11e7-9835-2f31fe08873b-ecs", - "panelIndex": 1, - "row": 4, - "size_x": 9, - "size_y": 5, - "type": "visualization" - }, - { - "col": 1, - "id": "23a5fff0-c98e-11e7-9835-2f31fe08873b-ecs", - "panelIndex": 2, - "row": 4, - "size_x": 3, - "size_y": 5, - "type": "visualization" - }, - { - "col": 1, - "id": "830c45f0-c991-11e7-9835-2f31fe08873b-ecs", - "panelIndex": 3, - "row": 1, - "size_x": 4, - "size_y": 3, - "type": "visualization" - }, - { - "col": 5, - "id": "35f5ad60-c996-11e7-9835-2f31fe08873b-ecs", - "panelIndex": 4, - "row": 1, - "size_x": 4, - "size_y": 3, - "type": "visualization" - }, - { - "col": 9, - "id": "c36b2ba0-ca29-11e7-9835-2f31fe08873b-ecs", - "panelIndex": 5, - "row": 1, - "size_x": 4, - "size_y": 3, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Metricbeat Windows] Services ECS", - "uiStateJSON": { - "P-1": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-2": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-4": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "P-5": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - } - }, - "version": 1 - }, - "id": "d9eba730-c991-11e7-9835-2f31fe08873b-ecs", - "type": "dashboard", - "version": 6 - } - ], - "version": "6.0.0" -} \ No newline at end of file diff --git a/metricbeat/module/windows/_meta/kibana/7/dashboard/metricbeat-windows-service.ndjson b/metricbeat/module/windows/_meta/kibana/7/dashboard/metricbeat-windows-service.ndjson new file mode 100644 index 00000000000..d1e860c36f0 --- /dev/null +++ b/metricbeat/module/windows/_meta/kibana/7/dashboard/metricbeat-windows-service.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Service States [Metricbeat Windows] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Latest Report\",\"field\":\"@timestamp\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Service\",\"field\":\"windows.service.display_name\",\"order\":\"asc\",\"orderBy\":\"_term\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Host\",\"field\":\"host.name\",\"order\":\"desc\",\"orderBy\":\"_term\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"State\",\"field\":\"windows.service.state\",\"order\":\"desc\",\"orderAgg\":{\"enabled\":true,\"id\":\"3-orderAgg\",\"params\":{\"field\":\"@timestamp\"},\"schema\":\"orderAgg\",\"type\":\"max\"},\"orderBy\":\"custom\",\"size\":1},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Startup Type\",\"field\":\"windows.service.start_type\",\"order\":\"desc\",\"orderAgg\":{\"enabled\":true,\"id\":\"4-orderAgg\",\"params\":{\"field\":\"@timestamp\"},\"schema\":\"orderAgg\",\"type\":\"max\"},\"orderBy\":\"custom\",\"size\":1},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Service States [Metricbeat Windows] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"eb8277d0-c98c-11e7-9835-2f31fe08873b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:32:00.935Z","version":"WzQyMjUsMV0="} +{"attributes":{"columns":["host.name","windows.service.display_name","windows.service.state","windows.service.start_type","windows.service.uptime.ms","windows.service.pid","windows.service.exit_code"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"windows\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"windows\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"windows\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"metricset.name\",\"negate\":false,\"params\":{\"query\":\"service\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"service\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"metricset.name\":{\"query\":\"service\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Services [Metricbeat Windows] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:32:00.935Z","version":"WzQyMzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Hosts [Metricbeat Windows] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total Services\",\"field\":\"windows.service.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Host\",\"field\":\"host.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Hosts [Metricbeat Windows] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"23a5fff0-c98e-11e7-9835-2f31fe08873b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:32:00.935Z","version":"WzQyMjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Startup States [Metricbeat Windows] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Service Count\",\"field\":\"windows.service.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Startup Type\",\"field\":\"windows.service.start_type\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"State\",\"field\":\"windows.service.state\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Startup States [Metricbeat Windows] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"830c45f0-c991-11e7-9835-2f31fe08873b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:32:00.935Z","version":"WzQyMjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Unique Services [Metricbeat Windows] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Services\",\"field\":\"windows.service.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":false},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"type\":\"gauge\"},\"title\":\"Unique Services [Metricbeat Windows] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"35f5ad60-c996-11e7-9835-2f31fe08873b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:32:00.935Z","version":"WzQyMjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"windows.service.exit_code\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"windows.service.exit_code\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"windows.service.exit_code\",\"negate\":true,\"params\":{\"query\":\"0\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"0\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"windows.service.exit_code\":{\"query\":\"0\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"windows.service.exit_code\",\"negate\":true,\"params\":{\"query\":\"ERROR_SERVICE_NEVER_STARTED\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"ERROR_SERVICE_NEVER_STARTED\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\"},\"query\":{\"match\":{\"windows.service.exit_code\":{\"query\":\"ERROR_SERVICE_NEVER_STARTED\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Non-zero Service Exit Codes [Metricbeat Windows] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Non-zero Exit Codes\",\"field\":\"windows.service.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":false},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"type\":\"gauge\"},\"title\":\"Non-zero Service Exit Codes [Metricbeat Windows] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"c36b2ba0-ca29-11e7-9835-2f31fe08873b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:32:00.935Z","version":"WzQyMjksMV0="} +{"attributes":{"description":"Overview of the Windows Service States","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":12,\"y\":12,\"w\":36,\"h\":20,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":12,\"h\":20,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":16,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":0,\"w\":16,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":0,\"w\":16,\"h\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Metricbeat Windows] Services ECS","version":1},"coreMigrationVersion":"8.0.0","id":"d9eba730-c991-11e7-9835-2f31fe08873b-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"eb8277d0-c98c-11e7-9835-2f31fe08873b-ecs","name":"1:panel_1","type":"visualization"},{"id":"23a5fff0-c98e-11e7-9835-2f31fe08873b-ecs","name":"2:panel_2","type":"visualization"},{"id":"830c45f0-c991-11e7-9835-2f31fe08873b-ecs","name":"3:panel_3","type":"visualization"},{"id":"35f5ad60-c996-11e7-9835-2f31fe08873b-ecs","name":"4:panel_4","type":"visualization"},{"id":"c36b2ba0-ca29-11e7-9835-2f31fe08873b-ecs","name":"5:panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:32:00.935Z","version":"WzQyMzEsMV0="} diff --git a/metricbeat/module/windows/module.yml b/metricbeat/module/windows/module.yml index e585b0abf93..74cff8d766a 100644 --- a/metricbeat/module/windows/module.yml +++ b/metricbeat/module/windows/module.yml @@ -1,3 +1,3 @@ dashboards: - id: d9eba730-c991-11e7-9835-2f31fe08873b - file: metricbeat-windows-service.json + file: metricbeat-windows-service.ndjson diff --git a/metricbeat/module/zookeeper/_meta/kibana/7/dashboard/Metricbeat-zookeeper-overview.json b/metricbeat/module/zookeeper/_meta/kibana/7/dashboard/Metricbeat-zookeeper-overview.json deleted file mode 100644 index f9307b4c4e6..00000000000 --- a/metricbeat/module/zookeeper/_meta/kibana/7/dashboard/Metricbeat-zookeeper-overview.json +++ /dev/null @@ -1,504 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Approximate data size [Metricbeat Zookeeper] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Approximate data size", - "line_width": 1, - "metrics": [ - { - "field": "zookeeper.mntr.approximate_data_size", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Approximate data size [Metricbeat Zookeeper] ECS", - "type": "metrics" - } - }, - "id": "8d3b7770-2319-11e9-bb66-8baac426dfd4-ecs", - "type": "visualization", - "updated_at": "2019-01-30T13:29:19.163Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Latency [Metricbeat Zookeeper] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "ms,ms,2", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Latency", - "line_width": 1, - "metrics": [ - { - "field": "zookeeper.mntr.latency.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Latency [Metricbeat Zookeeper] ECS", - "type": "metrics" - } - }, - "id": "c0be43c0-2319-11e9-bb66-8baac426dfd4-ecs", - "type": "visualization", - "updated_at": "2019-01-30T13:29:05.974Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Alive Connections [Metricbeat Zookeeper] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "0,0.[00]", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Alive connections", - "line_width": 1, - "metrics": [ - { - "field": "zookeeper.mntr.num_alive_connections", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Alive Connections [Metricbeat Zookeeper] ECS", - "type": "metrics" - } - }, - "id": "1c2f8930-231a-11e9-bb66-8baac426dfd4-ecs", - "type": "visualization", - "updated_at": "2019-01-30T13:28:52.034Z", - "version": 3 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Used file descriptors [Metricbeat Zookeeper] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_min": "0", - "axis_position": "left", - "chart_type": "line", - "color": "#68BC00", - "fill": "0.1", - "formatter": "percent", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Used file descriptors", - "line_width": 1, - "metrics": [ - { - "field": "zookeeper.mntr.open_file_descriptor_count", - "id": "b92e4550-231a-11e9-9e57-679640dc0c7c", - "metric_agg": "avg", - "type": "avg" - }, - { - "field": "zookeeper.mntr.max_file_descriptor_count", - "id": "918d0c60-231b-11e9-9e57-679640dc0c7c", - "type": "avg" - }, - { - "id": "7e4d11e0-231b-11e9-9e57-679640dc0c7c", - "script": "params.a/params.b", - "type": "math", - "variables": [ - { - "field": "b92e4550-231a-11e9-9e57-679640dc0c7c", - "id": "81c03fa0-231b-11e9-9e57-679640dc0c7c", - "name": "a" - }, - { - "field": "918d0c60-231b-11e9-9e57-679640dc0c7c", - "id": "8a3af6c0-231b-11e9-9e57-679640dc0c7c", - "name": "b" - } - ] - } - ], - "point_size": 1, - "separate_axis": 1, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_min": "0", - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,98,177,1)", - "fill": "0", - "formatter": "0,0.[00]", - "id": "dffaffe0-23cc-11e9-b1ff-37c851471450", - "label": "Open file descriptors", - "line_width": "1", - "metrics": [ - { - "field": "zookeeper.mntr.open_file_descriptor_count", - "id": "dffaffe1-23cc-11e9-b1ff-37c851471450", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 1, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Used file descriptors [Metricbeat Zookeeper] ECS", - "type": "metrics" - } - }, - "id": "ddb13c60-231b-11e9-bb66-8baac426dfd4-ecs", - "type": "visualization", - "updated_at": "2019-01-30T13:28:22.583Z", - "version": 5 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Packets received / sent [Metricbeat Zookeeper] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "0,0.[00]", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Packets received", - "line_width": "2", - "metrics": [ - { - "field": "zookeeper.mntr.packets.received", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "34949540-231c-11e9-9707-f128cdaa3bf2", - "type": "derivative", - "unit": "" - } - ], - "point_size": "0", - "separate_axis": 0, - "split_filters": [ - { - "color": "#68BC00", - "id": "5811d190-231c-11e9-9707-f128cdaa3bf2" - } - ], - "split_mode": "terms", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": "0", - "formatter": "0,0.[00]", - "id": "753b2e60-231c-11e9-9707-f128cdaa3bf2", - "label": "Packets sent", - "line_width": "2", - "metrics": [ - { - "field": "zookeeper.mntr.packets.sent", - "id": "753b2e61-231c-11e9-9707-f128cdaa3bf2", - "type": "avg" - }, - { - "field": "753b2e61-231c-11e9-9707-f128cdaa3bf2", - "id": "7ed33c60-231c-11e9-9707-f128cdaa3bf2", - "type": "derivative", - "unit": "" - } - ], - "point_size": "0", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Packets received / sent [Metricbeat Zookeeper] ECS", - "type": "metrics" - } - }, - "id": "d2f52b50-231c-11e9-bb66-8baac426dfd4-ecs", - "type": "visualization", - "updated_at": "2019-01-30T13:26:42.583Z", - "version": 3 - }, - { - "attributes": { - "description": "Overview of Zookeeper", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "1", - "w": 15, - "x": 0, - "y": 15 - }, - "id": "8d3b7770-2319-11e9-bb66-8baac426dfd4-ecs", - "panelIndex": "1", - "title": "Approximate data size", - "type": "visualization", - "version": "7.0.0-alpha2" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "2", - "w": 17, - "x": 15, - "y": 15 - }, - "id": "c0be43c0-2319-11e9-bb66-8baac426dfd4-ecs", - "panelIndex": "2", - "title": "Latency", - "type": "visualization", - "version": "7.0.0-alpha2" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "3", - "w": 16, - "x": 32, - "y": 15 - }, - "id": "1c2f8930-231a-11e9-bb66-8baac426dfd4-ecs", - "panelIndex": "3", - "title": "Alive Connections", - "type": "visualization", - "version": "7.0.0-alpha2" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "4", - "w": 25, - "x": 23, - "y": 0 - }, - "id": "ddb13c60-231b-11e9-bb66-8baac426dfd4-ecs", - "panelIndex": "4", - "title": "Used file descriptors", - "type": "visualization", - "version": "7.0.0-alpha2" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "5", - "w": 23, - "x": 0, - "y": 0 - }, - "id": "d2f52b50-231c-11e9-bb66-8baac426dfd4-ecs", - "panelIndex": "5", - "title": "Packets received / sent", - "type": "visualization", - "version": "7.0.0-alpha2" - } - ], - "timeRestore": false, - "title": "[Metricbeat Zookeeper] Overview ECS", - "version": 1 - }, - "id": "467207a0-231e-11e9-bb66-8baac426dfd4-ecs", - "type": "dashboard", - "updated_at": "2019-01-30T13:34:01.235Z", - "version": 6 - } - ], - "version": "7.0.0-alpha2" -} diff --git a/metricbeat/module/zookeeper/_meta/kibana/7/dashboard/Metricbeat-zookeeper-overview.ndjson b/metricbeat/module/zookeeper/_meta/kibana/7/dashboard/Metricbeat-zookeeper-overview.ndjson new file mode 100644 index 00000000000..29a93a2bb72 --- /dev/null +++ b/metricbeat/module/zookeeper/_meta/kibana/7/dashboard/Metricbeat-zookeeper-overview.ndjson @@ -0,0 +1,6 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Approximate data size [Metricbeat Zookeeper] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Approximate data size\",\"line_width\":1,\"metrics\":[{\"field\":\"zookeeper.mntr.approximate_data_size\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Approximate data size [Metricbeat Zookeeper] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8d3b7770-2319-11e9-bb66-8baac426dfd4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:53.758Z","version":"WzQxNzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Latency [Metricbeat Zookeeper] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"ms,ms,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Latency\",\"line_width\":1,\"metrics\":[{\"field\":\"zookeeper.mntr.latency.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Latency [Metricbeat Zookeeper] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c0be43c0-2319-11e9-bb66-8baac426dfd4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:53.758Z","version":"WzQxNzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Alive Connections [Metricbeat Zookeeper] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"0,0.[00]\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Alive connections\",\"line_width\":1,\"metrics\":[{\"field\":\"zookeeper.mntr.num_alive_connections\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Alive Connections [Metricbeat Zookeeper] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1c2f8930-231a-11e9-bb66-8baac426dfd4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:53.758Z","version":"WzQxNzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Used file descriptors [Metricbeat Zookeeper] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_min\":\"0\",\"axis_position\":\"left\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Used file descriptors\",\"line_width\":1,\"metrics\":[{\"field\":\"zookeeper.mntr.open_file_descriptor_count\",\"id\":\"b92e4550-231a-11e9-9e57-679640dc0c7c\",\"metric_agg\":\"avg\",\"type\":\"avg\"},{\"field\":\"zookeeper.mntr.max_file_descriptor_count\",\"id\":\"918d0c60-231b-11e9-9e57-679640dc0c7c\",\"type\":\"avg\"},{\"id\":\"7e4d11e0-231b-11e9-9e57-679640dc0c7c\",\"script\":\"params.a/params.b\",\"type\":\"math\",\"variables\":[{\"field\":\"b92e4550-231a-11e9-9e57-679640dc0c7c\",\"id\":\"81c03fa0-231b-11e9-9e57-679640dc0c7c\",\"name\":\"a\"},{\"field\":\"918d0c60-231b-11e9-9e57-679640dc0c7c\",\"id\":\"8a3af6c0-231b-11e9-9e57-679640dc0c7c\",\"name\":\"b\"}]}],\"point_size\":1,\"separate_axis\":1,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_min\":\"0\",\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,98,177,1)\",\"fill\":\"0\",\"formatter\":\"0,0.[00]\",\"id\":\"dffaffe0-23cc-11e9-b1ff-37c851471450\",\"label\":\"Open file descriptors\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"zookeeper.mntr.open_file_descriptor_count\",\"id\":\"dffaffe1-23cc-11e9-b1ff-37c851471450\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":1,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Used file descriptors [Metricbeat Zookeeper] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ddb13c60-231b-11e9-bb66-8baac426dfd4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:53.758Z","version":"WzQxNzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Packets received / sent [Metricbeat Zookeeper] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"0,0.[00]\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Packets received\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"zookeeper.mntr.packets.received\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"34949540-231c-11e9-9707-f128cdaa3bf2\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"5811d190-231c-11e9-9707-f128cdaa3bf2\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"formatter\":\"0,0.[00]\",\"id\":\"753b2e60-231c-11e9-9707-f128cdaa3bf2\",\"label\":\"Packets sent\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"zookeeper.mntr.packets.sent\",\"id\":\"753b2e61-231c-11e9-9707-f128cdaa3bf2\",\"type\":\"avg\"},{\"field\":\"753b2e61-231c-11e9-9707-f128cdaa3bf2\",\"id\":\"7ed33c60-231c-11e9-9707-f128cdaa3bf2\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Packets received / sent [Metricbeat Zookeeper] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d2f52b50-231c-11e9-bb66-8baac426dfd4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:53.758Z","version":"WzQxNzYsMV0="} +{"attributes":{"description":"Overview of Zookeeper","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":15,\"x\":0,\"y\":15},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Approximate data size\",\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":17,\"x\":15,\"y\":15},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Latency\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":16,\"x\":32,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Alive Connections\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":25,\"x\":23,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Used file descriptors\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":23,\"x\":0,\"y\":0},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets received / sent\",\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Metricbeat Zookeeper] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"467207a0-231e-11e9-bb66-8baac426dfd4-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"8d3b7770-2319-11e9-bb66-8baac426dfd4-ecs","name":"panel_0","type":"visualization"},{"id":"c0be43c0-2319-11e9-bb66-8baac426dfd4-ecs","name":"panel_1","type":"visualization"},{"id":"1c2f8930-231a-11e9-bb66-8baac426dfd4-ecs","name":"panel_2","type":"visualization"},{"id":"ddb13c60-231b-11e9-bb66-8baac426dfd4-ecs","name":"panel_3","type":"visualization"},{"id":"d2f52b50-231c-11e9-bb66-8baac426dfd4-ecs","name":"panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:53.758Z","version":"WzQxNzcsMV0="} diff --git a/metricbeat/tests/system/test_base.py b/metricbeat/tests/system/test_base.py index db7d37f6320..644d19814c8 100644 --- a/metricbeat/tests/system/test_base.py +++ b/metricbeat/tests/system/test_base.py @@ -1,6 +1,8 @@ import os import pytest import re +import requests +import semver import shutil import sys import unittest @@ -62,6 +64,10 @@ def test_dashboards(self): """ Test that the dashboards can be loaded with `setup --dashboards` """ + if self.is_saved_object_api_available(): + raise unittest.SkipTest( + "Kibana Saved Objects API is used since 7.15") + shutil.copytree(self.kibana_dir(), os.path.join(self.working_dir, "kibana")) es = Elasticsearch([self.get_elasticsearch_url()]) @@ -112,3 +118,16 @@ def get_kibana_url(self): def kibana_dir(self): return os.path.join(self.beat_path, "build", "kibana") + + def is_saved_object_api_available(self): + kibana_semver = semver.VersionInfo.parse(self.get_version()) + return kibana_semver.major == 7 and kibana_semver.minor < 15 or kibana_semver.major >= 8 + + def get_version(self): + url = self.get_kibana_url() + "/api/status" + + r = requests.get(url) + body = r.json() + version = body["version"]["number"] + + return version diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-cassandra.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-cassandra.json deleted file mode 100644 index a8f3c2a4cf8..00000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-cassandra.json +++ /dev/null @@ -1,1067 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", - "title": "Cassandra ResponseKeyspace [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "cassandra.response.result.rows.meta.keyspace", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "cassandra.response.result.rows.meta.table", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right", - "shareYAxis": true - }, - "title": "Cassandra ResponseKeyspace ECS", - "type": "pie" - } - }, - "id": "Cassandra-ResponseKeyspace-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:20.964Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", - "title": "Cassandra ResponseType [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "cassandra.response.result.type", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "legendPosition": "right", - "shareYAxis": true - }, - "title": "Cassandra ResponseType ECS", - "type": "pie" - } - }, - "id": "Cassandra-ResponseType-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:20.964Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", - "title": "Cassandra ResponseTime [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "event.duration", - "percents": [ - 5, - 25, - 50, - 75, - 95 - ] - }, - "schema": "metric", - "type": "percentiles" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": 9, - "scale": "square root", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Percentiles of event.duration" - }, - "drawLinesBetweenPoints": true, - "interpolate": "cardinal", - "mode": "normal", - "radiusRatio": 9, - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "showCircles": true, - "smoothLines": true, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "square root" - }, - "show": true, - "style": {}, - "title": { - "text": "Percentiles of event.duration" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Cassandra ResponseTime [Packetbeat] ECS", - "type": "line" - } - }, - "id": "Cassandra-ResponseTime-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:20.964Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", - "title": "Cassandra RequestCount [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": 9, - "scale": "square root", - "setYExtents": false, - "shareYAxis": true, - "showCircles": true, - "smoothLines": true, - "times": [], - "yAxis": {} - }, - "title": "Cassandra RequestCount ECS", - "type": "line" - } - }, - "id": "Cassandra-RequestCount-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:20.964Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", - "title": "Cassandra Ops [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "cassandra.request.headers.op", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "cassandra.response.headers.op", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right", - "shareYAxis": true - }, - "title": "Cassandra Ops ECS", - "type": "pie" - } - }, - "id": "Cassandra-Ops-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:20.964Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", - "title": "Cassandra RequestCountStackByType [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "cassandra.request.headers.op", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "shareYAxis": true, - "times": [], - "yAxis": {} - }, - "title": "Cassandra RequestCountStackByType ECS", - "type": "histogram" - } - }, - "id": "Cassandra-RequestCountStackByType-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:20.964Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", - "title": "Cassandra ResponseCountStackByType [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "cassandra.response.headers.op", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "shareYAxis": true, - "times": [], - "yAxis": {} - }, - "title": "Cassandra ResponseCountStackByType ECS", - "type": "histogram" - } - }, - "id": "Cassandra-ResponseCountStackByType-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:20.964Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", - "title": "Cassandra RequestCountByType [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "cassandra.request.headers.op", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "group", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": {}, - "schema": "radius", - "type": "count" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "drawLinesBetweenPoints": false, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": "13", - "scale": "log", - "setYExtents": false, - "shareYAxis": true, - "showCircles": true, - "smoothLines": true, - "times": [], - "yAxis": {} - }, - "title": "Cassandra RequestCountByType ECS", - "type": "line" - } - }, - "id": "Cassandra-RequestCountByType-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:20.964Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", - "title": "Cassandra ResponseCountByType [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "id": "3", - "params": { - "field": "cassandra.response.headers.op", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "group", - "type": "terms" - }, - { - "id": "4", - "params": {}, - "schema": "radius", - "type": "count" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "drawLinesBetweenPoints": false, - "interpolate": "linear", - "radiusRatio": "15", - "scale": "log", - "setYExtents": false, - "shareYAxis": true, - "showCircles": true, - "smoothLines": true, - "times": [], - "yAxis": {} - }, - "title": "Cassandra: ResponseCountByType ECS", - "type": "line" - } - }, - "id": "Cassandra-ResponseCountByType-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:20.964Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### Packetbeat:\n\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\n\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\n\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\n\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\n\n[TLS Overview](#/dashboard/tls-sessions-ecs)\n\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\n\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\n\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\n\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)", - "openLinksInNewTab": false - }, - "title": "Navigation [Packetbeat] ECS", - "type": "markdown" - } - }, - "id": "Navigation-ecs", - "type": "visualization", - "updated_at": "2019-01-19T00:18:59.372Z", - "version": 11 - }, - { - "attributes": { - "columns": [ - "cassandra.request.query", - "cassandra.response.result.rows.meta.keyspace", - "cassandra.response.result.rows.meta.table", - "cassandra.response.result.rows.num_rows" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "cassandra.request.headers.op", - "negate": false, - "params": { - "query": "QUERY", - "type": "phrase" - }, - "type": "phrase", - "value": "QUERY" - }, - "query": { - "match": { - "cassandra.request.headers.op": { - "query": "QUERY", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "cassandra.response.headers.op", - "negate": true, - "params": { - "query": "ERROR", - "type": "phrase" - }, - "type": "phrase", - "value": "ERROR" - }, - "query": { - "match": { - "cassandra.response.headers.op": { - "query": "ERROR", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Cassandra Query Search [Packetbeat] ECS", - "version": 1 - }, - "id": "Cassandra-QueryView-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:20.964Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "cassandra", - "type": "phrase" - }, - "type": "phrase", - "value": "cassandra" - }, - "query": { - "match": { - "event.dataset": { - "query": "cassandra", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Cassandra Search [Packetbeat] ECS", - "version": 1 - }, - "id": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:20.964Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 10, - "id": "Cassandra-ResponseKeyspace-ecs", - "panelIndex": 3, - "row": 3, - "size_x": 3, - "size_y": 2, - "type": "visualization" - }, - { - "col": 7, - "id": "Cassandra-ResponseType-ecs", - "panelIndex": 4, - "row": 3, - "size_x": 3, - "size_y": 2, - "type": "visualization" - }, - { - "col": 1, - "id": "Cassandra-ResponseTime-ecs", - "panelIndex": 9, - "row": 5, - "size_x": 12, - "size_y": 2, - "type": "visualization" - }, - { - "col": 4, - "id": "Cassandra-RequestCount-ecs", - "panelIndex": 10, - "row": 1, - "size_x": 9, - "size_y": 2, - "type": "visualization" - }, - { - "col": 4, - "id": "Cassandra-Ops-ecs", - "panelIndex": 11, - "row": 3, - "size_x": 3, - "size_y": 2, - "type": "visualization" - }, - { - "col": 1, - "id": "Cassandra-RequestCountStackByType-ecs", - "panelIndex": 15, - "row": 7, - "size_x": 12, - "size_y": 2, - "type": "visualization" - }, - { - "col": 1, - "id": "Cassandra-ResponseCountStackByType-ecs", - "panelIndex": 16, - "row": 9, - "size_x": 12, - "size_y": 2, - "type": "visualization" - }, - { - "col": 1, - "id": "Cassandra-RequestCountByType-ecs", - "panelIndex": 17, - "row": 11, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 7, - "id": "Cassandra-ResponseCountByType-ecs", - "panelIndex": 18, - "row": 11, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "Navigation-ecs", - "panelIndex": 19, - "row": 1, - "size_x": 3, - "size_y": 4, - "type": "visualization" - }, - { - "col": 1, - "columns": [ - "cassandra.request.query", - "cassandra.response.result.rows.meta.keyspace", - "cassandra.response.result.rows.meta.table", - "cassandra.response.result.rows.num_rows" - ], - "id": "Cassandra-QueryView-ecs", - "panelIndex": 20, - "row": 14, - "size_x": 12, - "size_y": 3, - "sort": [ - "@timestamp", - "desc" - ], - "type": "search" - } - ], - "timeRestore": false, - "title": "[Packetbeat] Cassandra ECS", - "uiStateJSON": { - "P-10": { - "vis": { - "legendOpen": false - } - }, - "P-17": { - "vis": { - "legendOpen": false - } - }, - "P-18": { - "vis": { - "legendOpen": false - } - } - }, - "version": 1 - }, - "id": "Packetbeat-Cassandra-ecs", - "type": "dashboard", - "updated_at": "2019-01-18T23:49:20.964Z", - "version": 1 - } - ], - "version": "7.0.0-SNAPSHOT" -} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-cassandra.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-cassandra.ndjson new file mode 100644 index 00000000000..ce046083481 --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-cassandra.ndjson @@ -0,0 +1,13 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"cassandra\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"cassandra\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"cassandra\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Cassandra Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Cassandra ResponseKeyspace [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"cassandra.response.result.rows.meta.keyspace\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cassandra.response.result.rows.meta.table\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Cassandra ResponseKeyspace ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Cassandra-ResponseKeyspace-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Cassandra ResponseType [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"cassandra.response.result.type\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Cassandra ResponseType ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Cassandra-ResponseType-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Cassandra ResponseTime [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[5,25,50,75,95]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"square root\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Percentiles of event.duration\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"square root\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Percentiles of event.duration\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Cassandra ResponseTime [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Cassandra-ResponseTime-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Cassandra RequestCount [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"square root\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Cassandra RequestCount ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Cassandra-RequestCount-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Cassandra Ops [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"cassandra.request.headers.op\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cassandra.response.headers.op\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Cassandra Ops ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Cassandra-Ops-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Cassandra RequestCountStackByType [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cassandra.request.headers.op\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Cassandra RequestCountStackByType ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Cassandra-RequestCountStackByType-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Cassandra ResponseCountStackByType [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cassandra.response.headers.op\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Cassandra ResponseCountStackByType ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Cassandra-ResponseCountStackByType-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Cassandra RequestCountByType [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cassandra.request.headers.op\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{},\"schema\":\"radius\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":false,\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":\"13\",\"scale\":\"log\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Cassandra RequestCountByType ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Cassandra-RequestCountByType-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Cassandra ResponseCountByType [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"id\":\"3\",\"params\":{\"field\":\"cassandra.response.headers.op\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"},{\"id\":\"4\",\"params\":{},\"schema\":\"radius\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":false,\"interpolate\":\"linear\",\"radiusRatio\":\"15\",\"scale\":\"log\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Cassandra: ResponseCountByType ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Cassandra-ResponseCountByType-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} +{"attributes":{"columns":["cassandra.request.query","cassandra.response.result.rows.meta.keyspace","cassandra.response.result.rows.meta.table","cassandra.response.result.rows.num_rows"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"cassandra.request.headers.op\",\"negate\":false,\"params\":{\"query\":\"QUERY\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"QUERY\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"cassandra.request.headers.op\":{\"query\":\"QUERY\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"cassandra.response.headers.op\",\"negate\":true,\"params\":{\"query\":\"ERROR\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"ERROR\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"cassandra.response.headers.op\":{\"query\":\"ERROR\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Cassandra Query Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Cassandra-QueryView-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMTcsMV0="} +{"attributes":{"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":36,\"y\":8,\"w\":12,\"h\":8,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":8,\"w\":12,\"h\":8,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":16,\"w\":48,\"h\":8,\"i\":\"9\"},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":12,\"y\":0,\"w\":36,\"h\":8,\"i\":\"10\"},\"panelIndex\":\"10\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":12,\"y\":8,\"w\":12,\"h\":8,\"i\":\"11\"},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":24,\"w\":48,\"h\":8,\"i\":\"15\"},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":32,\"w\":48,\"h\":8,\"i\":\"16\"},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":40,\"w\":24,\"h\":12,\"i\":\"17\"},\"panelIndex\":\"17\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":40,\"w\":24,\"h\":12,\"i\":\"18\"},\"panelIndex\":\"18\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":12,\"h\":16,\"i\":\"19\"},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":52,\"w\":48,\"h\":12,\"i\":\"20\"},\"panelIndex\":\"20\",\"embeddableConfig\":{\"columns\":[\"cassandra.request.query\",\"cassandra.response.result.rows.meta.keyspace\",\"cassandra.response.result.rows.meta.table\",\"cassandra.response.result.rows.num_rows\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_20\"}]","timeRestore":false,"title":"[Packetbeat] Cassandra ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-Cassandra-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Cassandra-ResponseKeyspace-ecs","name":"3:panel_3","type":"visualization"},{"id":"Cassandra-ResponseType-ecs","name":"4:panel_4","type":"visualization"},{"id":"Cassandra-ResponseTime-ecs","name":"9:panel_9","type":"visualization"},{"id":"Cassandra-RequestCount-ecs","name":"10:panel_10","type":"visualization"},{"id":"Cassandra-Ops-ecs","name":"11:panel_11","type":"visualization"},{"id":"Cassandra-RequestCountStackByType-ecs","name":"15:panel_15","type":"visualization"},{"id":"Cassandra-ResponseCountStackByType-ecs","name":"16:panel_16","type":"visualization"},{"id":"Cassandra-RequestCountByType-ecs","name":"17:panel_17","type":"visualization"},{"id":"Cassandra-ResponseCountByType-ecs","name":"18:panel_18","type":"visualization"},{"id":"Navigation-ecs","name":"19:panel_19","type":"visualization"},{"id":"Cassandra-QueryView-ecs","name":"20:panel_20","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMTksMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dhcpv4.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dhcpv4.json deleted file mode 100644 index 465dd064e35..00000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dhcpv4.json +++ /dev/null @@ -1,659 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Message Types over Time [Packetbeat DHCPv4] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "c2cf4410-8ba8-11e8-ae15-bdcba81344e6" - } - ], - "drop_last_bucket": 1, - "filter": "type:dhcpv4", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "ignore_global_filter": 0, - "index_pattern": "packetbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": "NOT dhcpv4.option.message_type:nak NOT dhcpv4.option.message_type:decline", - "formatter": "number", - "id": "8abe6eb0-8ba9-11e8-ae15-bdcba81344e6", - "label": "Response", - "line_width": 1, - "metrics": [ - { - "id": "8abe6eb1-8ba9-11e8-ae15-bdcba81344e6", - "type": "count" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "dhcpv4.option.message_type" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": 0.5, - "filter": "dhcpv4.option.message_type:nak", - "formatter": "number", - "id": "ae5610d0-8ba9-11e8-ae15-bdcba81344e6", - "label": "nak", - "line_width": "4", - "metrics": [ - { - "id": "ae5610d1-8ba9-11e8-ae15-bdcba81344e6", - "type": "count" - } - ], - "point_size": "3", - "seperate_axis": 0, - "series_drop_last_bucket": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": 0.5, - "filter": "dhcpv4.option.message_type:decline", - "formatter": "number", - "id": "cf7ba180-8ba9-11e8-ae15-bdcba81344e6", - "label": "decline", - "line_width": "4", - "metrics": [ - { - "id": "cf7ba181-8ba9-11e8-ae15-bdcba81344e6", - "type": "count" - } - ], - "point_size": "3", - "seperate_axis": 0, - "series_drop_last_bucket": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Message Types over Time [Packetbeat DHCPv4] ECS", - "type": "metrics" - } - }, - "id": "8460fcd0-8baa-11e8-9676-ef67484126fb-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:22.006Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "dhcpv4.option.message_type:nak OR dhcpv4.option.message_type:decline" - } - } - }, - "savedSearchId": "b8992150-8ba8-11e8-9676-ef67484126fb-ecs", - "title": "NAK and Decline Count [Packetbeat DHCPv4] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 57, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "NAK and Decline Count [Packetbeat DHCPv4] ECS", - "type": "metric" - } - }, - "id": "4ad9db20-8bab-11e8-9676-ef67484126fb-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:22.006Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "b8992150-8ba8-11e8-9676-ef67484126fb-ecs", - "title": "Message Types [Packetbeat DHCPv4] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Op Code", - "field": "dhcpv4.op_code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Message Type", - "field": "dhcpv4.option.message_type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Message Types [Packetbeat DHCPv4] ECS", - "type": "pie" - } - }, - "id": "418dfbe0-8bac-11e8-9676-ef67484126fb-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:22.006Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "dhcpv4.transaction_id", - "dhcpv4.op_code", - "dhcpv4.option.message_type", - "source.ip", - "destination.ip", - "dhcpv4.client_mac", - "dhcpv4.option.hostname", - "dhcpv4.option.class_identifier" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "dhcpv4", - "type": "phrase" - }, - "type": "phrase", - "value": "dhcpv4" - }, - "query": { - "match": { - "event.dataset": { - "query": "dhcpv4", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "DHCPv4 [Packetbeat] ECS", - "version": 1 - }, - "id": "b8992150-8ba8-11e8-9676-ef67484126fb-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:22.006Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "b8992150-8ba8-11e8-9676-ef67484126fb-ecs", - "title": "Transaction Count [Packetbeat DHCPv4] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Unique Transactions", - "field": "dhcpv4.transaction_id" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Transaction Count [Packetbeat DHCPv4] ECS", - "type": "metric" - } - }, - "id": "d0120dc0-8bac-11e8-9676-ef67484126fb-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:22.006Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "b8992150-8ba8-11e8-9676-ef67484126fb-ecs", - "title": "Client Count [Packetbeat DHCPv4] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Unique MACs", - "field": "dhcpv4.client_mac" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Client Count [Packetbeat DHCPv4] ECS", - "type": "metric" - } - }, - "id": "11d33ea0-8bad-11e8-9676-ef67484126fb-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:22.006Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "b8992150-8ba8-11e8-9676-ef67484126fb-ecs", - "title": "Data Transfer [Packetbeat DHCPv4] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Requests", - "field": "client.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Responses", - "field": "server.bytes" - }, - "schema": "metric", - "type": "sum" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 24, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Data Transfer [Packetbeat DHCPv4] ECS", - "type": "metric" - } - }, - "id": "f43a8f20-8bb5-11e8-9676-ef67484126fb-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:22.006Z", - "version": 1 - }, - { - "attributes": { - "description": "DHCPv4 Overview", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "1", - "w": 48, - "x": 0, - "y": 7 - }, - "id": "8460fcd0-8baa-11e8-9676-ef67484126fb-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "6.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "2", - "w": 8, - "x": 0, - "y": 0 - }, - "id": "4ad9db20-8bab-11e8-9676-ef67484126fb-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "6.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "3", - "w": 11, - "x": 37, - "y": 0 - }, - "id": "418dfbe0-8bac-11e8-9676-ef67484126fb-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "6.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "5", - "w": 48, - "x": 0, - "y": 16 - }, - "id": "b8992150-8ba8-11e8-9676-ef67484126fb-ecs", - "panelIndex": "5", - "type": "search", - "version": "6.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "6", - "w": 8, - "x": 8, - "y": 0 - }, - "id": "d0120dc0-8bac-11e8-9676-ef67484126fb-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "6.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "7", - "w": 8, - "x": 16, - "y": 0 - }, - "id": "11d33ea0-8bad-11e8-9676-ef67484126fb-ecs", - "panelIndex": "7", - "type": "visualization", - "version": "6.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "8", - "w": 13, - "x": 24, - "y": 0 - }, - "id": "f43a8f20-8bb5-11e8-9676-ef67484126fb-ecs", - "panelIndex": "8", - "type": "visualization", - "version": "6.3.0" - } - ], - "timeRestore": false, - "title": "[Packetbeat] DHCPv4 ECS", - "version": 1 - }, - "id": "a7b35890-8baa-11e8-9676-ef67484126fb-ecs", - "type": "dashboard", - "updated_at": "2019-01-18T23:49:22.006Z", - "version": 1 - } - ], - "version": "7.0.0-SNAPSHOT" -} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dhcpv4.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dhcpv4.ndjson new file mode 100644 index 00000000000..cdeefd52295 --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dhcpv4.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Message Types over Time [Packetbeat DHCPv4] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"c2cf4410-8ba8-11e8-ae15-bdcba81344e6\"}],\"drop_last_bucket\":1,\"filter\":{\"query\":\"type:dhcpv4\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"ignore_global_filter\":0,\"index_pattern\":\"packetbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"query\":\"NOT dhcpv4.option.message_type:nak NOT dhcpv4.option.message_type:decline\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"8abe6eb0-8ba9-11e8-ae15-bdcba81344e6\",\"label\":\"Response\",\"line_width\":1,\"metrics\":[{\"id\":\"8abe6eb1-8ba9-11e8-ae15-bdcba81344e6\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"dhcpv4.option.message_type\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"filter\":{\"query\":\"dhcpv4.option.message_type:nak\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"ae5610d0-8ba9-11e8-ae15-bdcba81344e6\",\"label\":\"nak\",\"line_width\":\"4\",\"metrics\":[{\"id\":\"ae5610d1-8ba9-11e8-ae15-bdcba81344e6\",\"type\":\"count\"}],\"point_size\":\"3\",\"seperate_axis\":0,\"series_drop_last_bucket\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"filter\":{\"query\":\"dhcpv4.option.message_type:decline\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"cf7ba180-8ba9-11e8-ae15-bdcba81344e6\",\"label\":\"decline\",\"line_width\":\"4\",\"metrics\":[{\"id\":\"cf7ba181-8ba9-11e8-ae15-bdcba81344e6\",\"type\":\"count\"}],\"point_size\":\"3\",\"seperate_axis\":0,\"series_drop_last_bucket\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Message Types over Time [Packetbeat DHCPv4] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8460fcd0-8baa-11e8-9676-ef67484126fb-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:36.983Z","version":"WzMxMjAsMV0="} +{"attributes":{"columns":["dhcpv4.transaction_id","dhcpv4.op_code","dhcpv4.option.message_type","source.ip","destination.ip","dhcpv4.client_mac","dhcpv4.option.hostname","dhcpv4.option.class_identifier"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"dhcpv4\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"dhcpv4\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"dhcpv4\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"DHCPv4 [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"b8992150-8ba8-11e8-9676-ef67484126fb-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:36.983Z","version":"WzMxMjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"dhcpv4.option.message_type:nak OR dhcpv4.option.message_type:decline\"}}"},"savedSearchRefName":"search_0","title":"NAK and Decline Count [Packetbeat DHCPv4] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":57,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"NAK and Decline Count [Packetbeat DHCPv4] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"4ad9db20-8bab-11e8-9676-ef67484126fb-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b8992150-8ba8-11e8-9676-ef67484126fb-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:36.983Z","version":"WzMxMjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Message Types [Packetbeat DHCPv4] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Op Code\",\"field\":\"dhcpv4.op_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Message Type\",\"field\":\"dhcpv4.option.message_type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Message Types [Packetbeat DHCPv4] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"418dfbe0-8bac-11e8-9676-ef67484126fb-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b8992150-8ba8-11e8-9676-ef67484126fb-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:36.983Z","version":"WzMxMjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Transaction Count [Packetbeat DHCPv4] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique Transactions\",\"field\":\"dhcpv4.transaction_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Transaction Count [Packetbeat DHCPv4] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"d0120dc0-8bac-11e8-9676-ef67484126fb-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b8992150-8ba8-11e8-9676-ef67484126fb-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:36.983Z","version":"WzMxMjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Client Count [Packetbeat DHCPv4] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique MACs\",\"field\":\"dhcpv4.client_mac\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Client Count [Packetbeat DHCPv4] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"11d33ea0-8bad-11e8-9676-ef67484126fb-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b8992150-8ba8-11e8-9676-ef67484126fb-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:36.983Z","version":"WzMxMjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Data Transfer [Packetbeat DHCPv4] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Requests\",\"field\":\"client.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Responses\",\"field\":\"server.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":24,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Data Transfer [Packetbeat DHCPv4] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"f43a8f20-8bb5-11e8-9676-ef67484126fb-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b8992150-8ba8-11e8-9676-ef67484126fb-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:36.983Z","version":"WzMxMjYsMV0="} +{"attributes":{"description":"DHCPv4 Overview","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1\",\"w\":48,\"x\":0,\"y\":7},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"2\",\"w\":8,\"x\":0,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"3\",\"w\":11,\"x\":37,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":14,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":16},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"6\",\"w\":8,\"x\":8,\"y\":0},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"7\",\"w\":8,\"x\":16,\"y\":0},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"8\",\"w\":13,\"x\":24,\"y\":0},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Packetbeat] DHCPv4 ECS","version":1},"coreMigrationVersion":"8.0.0","id":"a7b35890-8baa-11e8-9676-ef67484126fb-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"8460fcd0-8baa-11e8-9676-ef67484126fb-ecs","name":"1:panel_1","type":"visualization"},{"id":"4ad9db20-8bab-11e8-9676-ef67484126fb-ecs","name":"2:panel_2","type":"visualization"},{"id":"418dfbe0-8bac-11e8-9676-ef67484126fb-ecs","name":"3:panel_3","type":"visualization"},{"id":"b8992150-8ba8-11e8-9676-ef67484126fb-ecs","name":"5:panel_5","type":"search"},{"id":"d0120dc0-8bac-11e8-9676-ef67484126fb-ecs","name":"6:panel_6","type":"visualization"},{"id":"11d33ea0-8bad-11e8-9676-ef67484126fb-ecs","name":"7:panel_7","type":"visualization"},{"id":"f43a8f20-8bb5-11e8-9676-ef67484126fb-ecs","name":"8:panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:36.983Z","version":"WzMxMjcsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-overview.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-overview.json deleted file mode 100644 index e405997a9d1..00000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-overview.json +++ /dev/null @@ -1,975 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", - "title": "DNS Query Summary [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Client Bytes", - "field": "source.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Server Bytes", - "field": "destination.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Avg Response Time (ns)", - "field": "event.duration" - }, - "schema": "metric", - "type": "avg" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "fontSize": "17", - "handleNoResults": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 28, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "DNS Query Summary [Packetbeat] ECS", - "type": "metric" - } - }, - "id": "DNS-Query-Summary-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:24.089Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", - "title": "DNS Request Status Over Time [Packetbeat] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "Error": "#890F02", - "OK": "#0A50A1" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "status", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "interpolate": "cardinal", - "mode": "stacked", - "show": "true", - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": false, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "DNS Request Status Over Time [Packetbeat] ECS", - "type": "area" - } - }, - "id": "DNS-Request-Status-Over-Time-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:24.089Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", - "title": "DNS Question Types [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "dns.question.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "shareYAxis": true, - "type": "pie" - }, - "title": "DNS Question Types [Packetbeat] ECS", - "type": "pie" - } - }, - "id": "DNS-Question-Types-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:24.089Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "status", - "negate": false, - "params": { - "query": "OK", - "type": "phrase" - }, - "type": "phrase", - "value": "OK" - }, - "query": { - "match": { - "status": { - "query": "OK", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", - "title": "DNS Top 10 Questions [Packetbeat] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Question", - "field": "dns.question.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 30 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "DNS Top 10 Questions [Packetbeat] ECS", - "type": "table" - } - }, - "id": "DNS-Top-10-Questions-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:24.089Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", - "title": "DNS Response Codes [Packetbeat] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Response Code", - "field": "dns.response_code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "DNS Response Codes [Packetbeat] ECS", - "type": "table" - } - }, - "id": "DNS-Response-Codes-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:24.089Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", - "title": "DNS Min/Max/Avg Response Time Histogram [Packetbeat] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "Avg Response Time (ns)": "#629E51", - "Max Response Time (ns)": "#E24D42", - "Min Response Time (ns)": "#70DBED" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Min Response Time (ns)", - "field": "event.duration" - }, - "schema": "metric", - "type": "min" - }, - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Avg Response Time (ns)", - "field": "event.duration" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Max Response Time (ns)", - "field": "event.duration" - }, - "schema": "metric", - "type": "max" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "4", - "label": "Min Response Time (ns)" - }, - "drawLinesBetweenPoints": true, - "interpolate": "cardinal", - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "1", - "label": "Avg Response Time (ns)" - }, - "drawLinesBetweenPoints": true, - "interpolate": "cardinal", - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "3", - "label": "Max Response Time (ns)" - }, - "drawLinesBetweenPoints": true, - "interpolate": "cardinal", - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Average event.duration" - }, - "type": "value" - } - ] - }, - "title": "DNS Min/Max/Avg Response Time Histogram [Packetbeat] ECS", - "type": "area" - } - }, - "id": "735d25c0-1459-11e9-9de0-f98d1808db8e-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:24.089Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", - "title": "DNS Client and Servers Pie Chart [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Server", - "field": "destination.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Client", - "field": "source.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "DNS Client and Servers Pie Chart [Packetbeat] ECS", - "type": "pie" - } - }, - "id": "bacb6ed0-1459-11e9-9de0-f98d1808db8e-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:24.089Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "server.ip", - "destination.ip", - "dns.question.name", - "status" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "network.protocol", - "negate": false, - "params": { - "query": "dns", - "type": "phrase" - }, - "type": "phrase", - "value": "dns" - }, - "query": { - "match": { - "network.protocol": { - "query": "dns", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "DNS Protocol [Packetbeat] ECS", - "version": 1 - }, - "id": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:24.089Z", - "version": 2 - }, - { - "attributes": { - "description": "Overview of DNS request and response metrics.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "1", - "w": 24, - "x": 0, - "y": 0 - }, - "id": "DNS-Query-Summary-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "2", - "w": 24, - "x": 24, - "y": 0 - }, - "id": "DNS-Request-Status-Over-Time-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "3", - "w": 13, - "x": 0, - "y": 15 - }, - "id": "DNS-Question-Types-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "5", - "w": 24, - "x": 0, - "y": 30 - }, - "id": "DNS-Top-10-Questions-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "6", - "w": 24, - "x": 24, - "y": 30 - }, - "id": "DNS-Response-Codes-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "7", - "w": 24, - "x": 24, - "y": 15 - }, - "id": "735d25c0-1459-11e9-9de0-f98d1808db8e-ecs", - "panelIndex": "7", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "8", - "w": 11, - "x": 13, - "y": 15 - }, - "id": "bacb6ed0-1459-11e9-9de0-f98d1808db8e-ecs", - "panelIndex": "8", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Packetbeat] DNS Overview ECS", - "version": 1 - }, - "id": "65120940-1454-11e9-9de0-f98d1808db8e-ecs", - "type": "dashboard", - "updated_at": "2019-01-18T23:49:24.089Z", - "version": 1 - } - ], - "version": "7.0.0-SNAPSHOT" -} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-overview.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-overview.ndjson new file mode 100644 index 00000000000..fd6ef3ff8b2 --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"columns":["server.ip","destination.ip","dns.question.name","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"network.protocol\",\"negate\":false,\"params\":{\"query\":\"dns\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"dns\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"network.protocol\":{\"query\":\"dns\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"DNS Protocol [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"DNS Query Summary [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Client Bytes\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Server Bytes\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Avg Response Time (ns)\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"17\",\"handleNoResults\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":28,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"DNS Query Summary [Packetbeat] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"DNS-Query-Summary-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.010Z","version":"WzMxMjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"DNS Request Status Over Time [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Error\": \"#890F02\", \"OK\": \"#0A50A1\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"status\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"DNS Request Status Over Time [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"DNS-Request-Status-Over-Time-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.010Z","version":"WzMxMjksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"DNS Question Types [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"dns.question.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"DNS Question Types [Packetbeat] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"DNS-Question-Types-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.010Z","version":"WzMxMzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"status\",\"negate\":false,\"params\":{\"query\":\"OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"status\":{\"query\":\"OK\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"DNS Top 10 Questions [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Question\",\"field\":\"dns.question.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":30},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"DNS Top 10 Questions [Packetbeat] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"DNS-Top-10-Questions-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.010Z","version":"WzMxMzEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"DNS Response Codes [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Response Code\",\"field\":\"dns.response_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"DNS Response Codes [Packetbeat] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"DNS-Response-Codes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.010Z","version":"WzMxMzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"DNS Min/Max/Avg Response Time Histogram [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Avg Response Time (ns)\": \"#629E51\", \"Max Response Time (ns)\": \"#E24D42\", \"Min Response Time (ns)\": \"#70DBED\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Min Response Time (ns)\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"min\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Avg Response Time (ns)\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Max Response Time (ns)\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"max\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"4\",\"label\":\"Min Response Time (ns)\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"1\",\"label\":\"Avg Response Time (ns)\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Max Response Time (ns)\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Average event.duration\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"DNS Min/Max/Avg Response Time Histogram [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"735d25c0-1459-11e9-9de0-f98d1808db8e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.010Z","version":"WzMxMzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"DNS Client and Servers Pie Chart [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Server\",\"field\":\"destination.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Client\",\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"DNS Client and Servers Pie Chart [Packetbeat] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"bacb6ed0-1459-11e9-9de0-f98d1808db8e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.010Z","version":"WzMxMzQsMV0="} +{"attributes":{"description":"Overview of DNS request and response metrics.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":13,\"x\":0,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":11,\"x\":13,\"y\":15},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Packetbeat] DNS Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"65120940-1454-11e9-9de0-f98d1808db8e-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"DNS-Query-Summary-ecs","name":"panel_0","type":"visualization"},{"id":"DNS-Request-Status-Over-Time-ecs","name":"panel_1","type":"visualization"},{"id":"DNS-Question-Types-ecs","name":"panel_2","type":"visualization"},{"id":"DNS-Top-10-Questions-ecs","name":"panel_3","type":"visualization"},{"id":"DNS-Response-Codes-ecs","name":"panel_4","type":"visualization"},{"id":"735d25c0-1459-11e9-9de0-f98d1808db8e-ecs","name":"panel_5","type":"visualization"},{"id":"bacb6ed0-1459-11e9-9de0-f98d1808db8e-ecs","name":"panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:38.010Z","version":"WzMxMzYsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-tunneling.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-tunneling.json deleted file mode 100644 index af6a32a08d5..00000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-tunneling.json +++ /dev/null @@ -1,589 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", - "title": "Unique FQDNs per eTLD+1 ECS", - "uiStateJSON": { - "vis": { - "colors": { - "Count": "#1F78C1", - "Unique count of dns.question.name": "#E0752D" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Unique Subdomain Count", - "field": "dns.question.name" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Domains", - "field": "dns.question.etld_plus_one", - "order": "desc", - "orderBy": "1", - "size": 20 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": true, - "legendPosition": "right", - "mode": "grouped", - "scale": "linear", - "setYExtents": false, - "shareYAxis": true, - "times": [], - "yAxis": {} - }, - "title": "Unique FQDNs per eTLD+1 ECS", - "type": "histogram" - } - }, - "id": "Unique-FQDNs-per-eTLD 1-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:23.036Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", - "title": "Unique FQDNs per eTLD+1 Table ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "ETLD+1", - "field": "dns.question.etld_plus_one", - "order": "desc", - "orderBy": "1", - "size": 20 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Unique Domains", - "field": "dns.question.name" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Unique FQDNs per eTLD+1 Table ECS", - "type": "table" - } - }, - "id": "Unique-FQDNs-per-eTLD 1-Table-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:23.036Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", - "title": "Bytes Transferred per Domain ECS", - "uiStateJSON": { - "vis": { - "colors": { - "Bytes In": "#F2C96D", - "Bytes Out": "#629E51", - "Count": "#1F78C1", - "Unique count of dns.question.name": "#E0752D" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes Out", - "field": "destination.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Domains", - "field": "dns.question.etld_plus_one", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Bytes In", - "field": "source.bytes" - }, - "schema": "metric", - "type": "sum" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "mode": "grouped", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Bytes Out" - }, - "mode": "normal", - "show": "true", - "type": "histogram", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "3", - "label": "Bytes In" - }, - "mode": "normal", - "show": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": true, - "mode": "grouped", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Bytes Transferred per Domain ECS", - "type": "histogram" - } - }, - "id": "Bytes-Transferred-per-Domain-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:23.036Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "type:dns" - } - } - }, - "title": "Top Domains by Data Volume ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes In", - "field": "source.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "ETLD+1", - "field": "dns.question.etld_plus_one", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "3", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Bytes Out", - "field": "destination.bytes" - }, - "schema": "metric", - "type": "sum" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top Domains by Data Volume ECS", - "type": "table" - } - }, - "id": "dc743240-1665-11e7-a6de-cbac1a3d0a7d-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:23.036Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "server.ip", - "destination.ip", - "dns.question.name", - "status" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "network.protocol", - "negate": false, - "params": { - "query": "dns", - "type": "phrase" - }, - "type": "phrase", - "value": "dns" - }, - "query": { - "match": { - "network.protocol": { - "query": "dns", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "DNS Protocol [Packetbeat] ECS", - "version": 1 - }, - "id": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:24.089Z", - "version": 2 - }, - { - "attributes": { - "description": "Detecting tunneling over DNS.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "NOT dns.question.type:PTR" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "embeddableConfig": { - "spy": { - "mode": { - "fill": false, - "name": null - } - }, - "vis": { - "colors": { - "Count": "#1F78C1", - "Unique Subdomain Count": "#EF843C", - "Unique count of dns.question.name": "#E0752D" - }, - "legendOpen": false - } - }, - "gridData": { - "h": 20, - "i": "1", - "w": 48, - "x": 0, - "y": 0 - }, - "id": "Unique-FQDNs-per-eTLD 1-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 20, - "i": "2", - "w": 24, - "x": 0, - "y": 35 - }, - "id": "Unique-FQDNs-per-eTLD 1-Table-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 15, - "i": "4", - "w": 48, - "x": 0, - "y": 20 - }, - "id": "Bytes-Transferred-per-Domain-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 20, - "i": "5", - "w": 24, - "x": 24, - "y": 35 - }, - "id": "dc743240-1665-11e7-a6de-cbac1a3d0a7d-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Packetbeat] DNS Tunneling ECS", - "version": 1 - }, - "id": "DNS-Unique-Domains-ecs", - "type": "dashboard", - "updated_at": "2019-01-18T23:49:23.036Z", - "version": 1 - } - ], - "version": "7.0.0-SNAPSHOT" -} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-tunneling.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-tunneling.ndjson new file mode 100644 index 00000000000..ea14a301d9b --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-tunneling.ndjson @@ -0,0 +1,6 @@ +{"attributes":{"columns":["server.ip","destination.ip","dns.question.name","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"network.protocol\",\"negate\":false,\"params\":{\"query\":\"dns\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"dns\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"network.protocol\":{\"query\":\"dns\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"DNS Protocol [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Unique FQDNs per eTLD+1 ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Count\": \"#1F78C1\", \"Unique count of dns.question.name\": \"#E0752D\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique Subdomain Count\",\"field\":\"dns.question.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Domains\",\"field\":\"dns.question.etld_plus_one\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":true,\"legendPosition\":\"right\",\"mode\":\"grouped\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Unique FQDNs per eTLD+1 ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Unique-FQDNs-per-eTLD 1-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.960Z","version":"WzMxMzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Unique FQDNs per eTLD+1 Table ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"ETLD+1\",\"field\":\"dns.question.etld_plus_one\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Unique Domains\",\"field\":\"dns.question.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Unique FQDNs per eTLD+1 Table ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Unique-FQDNs-per-eTLD 1-Table-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.960Z","version":"WzMxMzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Bytes Transferred per Domain ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Bytes In\": \"#F2C96D\", \"Bytes Out\": \"#629E51\", \"Count\": \"#1F78C1\", \"Unique count of dns.question.name\": \"#E0752D\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes Out\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Domains\",\"field\":\"dns.question.etld_plus_one\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Bytes In\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"grouped\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Bytes Out\"},\"mode\":\"normal\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Bytes In\"},\"mode\":\"normal\",\"show\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":true,\"mode\":\"grouped\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Bytes Transferred per Domain ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Bytes-Transferred-per-Domain-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.960Z","version":"WzMxMzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"type:dns\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Top Domains by Data Volume ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes In\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"ETLD+1\",\"field\":\"dns.question.etld_plus_one\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"3\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Bytes Out\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Domains by Data Volume ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"dc743240-1665-11e7-a6de-cbac1a3d0a7d-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.960Z","version":"WzMxNDAsMV0="} +{"attributes":{"description":"Detecting tunneling over DNS.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"NOT dns.question.type:PTR\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"spy\":{\"mode\":{\"fill\":false,\"name\":null}},\"vis\":{\"colors\":{\"Count\":\"#1F78C1\",\"Unique Subdomain Count\":\"#EF843C\",\"Unique count of dns.question.name\":\"#E0752D\"},\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"2\",\"w\":24,\"x\":0,\"y\":35},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":48,\"x\":0,\"y\":20},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":35},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"}]","timeRestore":false,"title":"[Packetbeat] DNS Tunneling ECS","version":1},"coreMigrationVersion":"8.0.0","id":"DNS-Unique-Domains-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Unique-FQDNs-per-eTLD 1-ecs","name":"panel_0","type":"visualization"},{"id":"Unique-FQDNs-per-eTLD 1-Table-ecs","name":"panel_1","type":"visualization"},{"id":"Bytes-Transferred-per-Domain-ecs","name":"panel_2","type":"visualization"},{"id":"dc743240-1665-11e7-a6de-cbac1a3d0a7d-ecs","name":"panel_3","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:38.960Z","version":"WzMxNDIsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-flows.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-flows.json deleted file mode 100644 index 1f28f6bf919..00000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-flows.json +++ /dev/null @@ -1,718 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "Packetbeat-Flows-Search-ecs", - "title": "Top Hosts Creating Traffic [Packetbeat Flows] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Source Bytes", - "field": "source.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Source IP", - "field": "source.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Source Bytes" - }, - "interpolate": "cardinal", - "mode": "stacked", - "show": "true", - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": true, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Top Hosts Creating Traffic [Packetbeat Flows] ECS", - "type": "area" - } - }, - "id": "Top-hosts-creating-traffic-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:25.168Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### Packetbeat:\n\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\n\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\n\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\n\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\n\n[TLS Overview](#/dashboard/tls-sessions-ecs)\n\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\n\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\n\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\n\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)", - "openLinksInNewTab": false - }, - "title": "Navigation [Packetbeat] ECS", - "type": "markdown" - } - }, - "id": "Navigation-ecs", - "type": "visualization", - "updated_at": "2019-01-19T00:18:59.372Z", - "version": 11 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "Packetbeat-Flows-Search-ecs", - "title": "Connections over time [Packetbeat Flows] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Unique Flows", - "field": "flow.id" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Unique Flows" - }, - "interpolate": "cardinal", - "mode": "stacked", - "show": "true", - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": true, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Connections over time [Packetbeat Flows] ECS", - "type": "area" - } - }, - "id": "Connections-over-time-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:25.168Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "Packetbeat-Flows-Search-ecs", - "title": "Top Hosts Receiving Traffic [Packetbeat Flows] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Destination Bytes", - "field": "destination.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Destination IP", - "field": "destination.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Destination Bytes" - }, - "interpolate": "cardinal", - "mode": "stacked", - "show": "true", - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": true, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Top Hosts Receiving Traffic [Packetbeat Flows] ECS", - "type": "area" - } - }, - "id": "Top-hosts-receiving-traffic-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:25.168Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "Packetbeat-Flows-Search-ecs", - "title": "Network Traffic Between Hosts [Packetbeat Flows] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Source Bytes", - "field": "source.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Destination Bytes", - "field": "destination.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Source IP", - "field": "source.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Destination IP", - "field": "destination.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Network Traffic Between Hosts [Packetbeat Flows] ECS", - "type": "table" - } - }, - "id": "Network-traffic-between-your-hosts-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:25.168Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "type", - "event.start", - "event.end", - "source.ip", - "source.port", - "destination.ip", - "destination.port", - "source.bytes", - "destination.bytes" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "type: flow" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Flows Search [Packetbeat] ECS", - "version": 1 - }, - "id": "Packetbeat-Flows-Search-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:25.168Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "gridData": { - "h": 35, - "i": "1", - "w": 24, - "x": 0, - "y": 25 - }, - "id": "Top-hosts-creating-traffic-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 20, - "i": "2", - "w": 12, - "x": 0, - "y": 0 - }, - "id": "Navigation-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 25, - "i": "3", - "w": 36, - "x": 12, - "y": 0 - }, - "id": "Connections-over-time-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 35, - "i": "4", - "w": 24, - "x": 24, - "y": 25 - }, - "id": "Top-hosts-receiving-traffic-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 35, - "i": "5", - "w": 48, - "x": 0, - "y": 60 - }, - "id": "Network-traffic-between-your-hosts-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Packetbeat] Flows ECS", - "version": 1 - }, - "id": "Packetbeat-Flows-ecs", - "type": "dashboard", - "updated_at": "2019-01-18T23:49:25.168Z", - "version": 1 - } - ], - "version": "7.0.0-SNAPSHOT" -} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-flows.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-flows.ndjson new file mode 100644 index 00000000000..29c42a1b36f --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-flows.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"columns":["type","event.start","event.end","source.ip","source.port","destination.ip","destination.port","source.bytes","destination.bytes"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"type: flow\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Flows Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-Flows-Search-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:39.992Z","version":"WzMxNDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Top Hosts Creating Traffic [Packetbeat Flows] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Source Bytes\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source IP\",\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Source Bytes\"},\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Top Hosts Creating Traffic [Packetbeat Flows] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"Top-hosts-creating-traffic-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Packetbeat-Flows-Search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:39.992Z","version":"WzMxNDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Connections over time [Packetbeat Flows] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique Flows\",\"field\":\"flow.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Unique Flows\"},\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Connections over time [Packetbeat Flows] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"Connections-over-time-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Packetbeat-Flows-Search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:39.992Z","version":"WzMxNDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Top Hosts Receiving Traffic [Packetbeat Flows] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Destination Bytes\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Destination IP\",\"field\":\"destination.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Destination Bytes\"},\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Top Hosts Receiving Traffic [Packetbeat Flows] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"Top-hosts-receiving-traffic-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Packetbeat-Flows-Search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:39.992Z","version":"WzMxNDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Network Traffic Between Hosts [Packetbeat Flows] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Source Bytes\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Bytes\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source IP\",\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination IP\",\"field\":\"destination.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Network Traffic Between Hosts [Packetbeat Flows] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Network-traffic-between-your-hosts-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Packetbeat-Flows-Search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:39.992Z","version":"WzMxNDcsMV0="} +{"attributes":{"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":35,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":25},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"2\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":25,\"i\":\"3\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":35,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":25},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":35,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":60},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Packetbeat] Flows ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-Flows-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Top-hosts-creating-traffic-ecs","name":"panel_0","type":"visualization"},{"id":"Navigation-ecs","name":"panel_1","type":"visualization"},{"id":"Connections-over-time-ecs","name":"panel_2","type":"visualization"},{"id":"Top-hosts-receiving-traffic-ecs","name":"panel_3","type":"visualization"},{"id":"Network-traffic-between-your-hosts-ecs","name":"panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:39.992Z","version":"WzMxNDksMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-http.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-http.json deleted file mode 100644 index c5f32d9438a..00000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-http.json +++ /dev/null @@ -1,952 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs", - "title": "HTTP Transactions [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": false, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "mode": "stacked", - "show": "true", - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "HTTP Transactions [Packetbeat] ECS", - "type": "histogram" - } - }, - "id": "Web-transactions-ecs", - "type": "visualization", - "updated_at": "2019-01-19T00:21:31.922Z", - "version": 3 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "type", - "negate": false, - "params": { - "query": "http", - "type": "phrase" - }, - "type": "phrase", - "value": "http" - }, - "query": { - "match": { - "network.protocol": { - "query": "http", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ] - }, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "http.response.status_code >= 300" - } - } - }, - "title": "HTTP error codes [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "type" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "HTTP Status Code", - "field": "http.response.status_code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": false, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Unique count of type" - }, - "mode": "stacked", - "show": "true", - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "HTTP error codes [Packetbeat] ECS", - "type": "histogram" - } - }, - "id": "HTTP-error-codes-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:26.207Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "network.protocol", - "negate": false, - "params": { - "query": "http", - "type": "phrase" - }, - "type": "phrase", - "value": "http" - }, - "query": { - "match": { - "network.protocol": { - "query": "http", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "http.response.status_code", - "negate": true, - "params": { - "gte": 200, - "lt": 299 - }, - "type": "range", - "value": "200 to 299" - }, - "range": { - "http.response.status_code": { - "gte": 200, - "lte": 299 - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ] - }, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "HTTP error codes evolution [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "HTTP Status Code", - "field": "http.response.status_code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": 9, - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "normal", - "radiusRatio": 9, - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "showCircles": true, - "smoothLines": false, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "HTTP error codes evolution [Packetbeat] ECS", - "type": "line" - } - }, - "id": "HTTP-error-codes-evolution-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:26.207Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### Packetbeat:\n\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\n\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\n\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\n\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\n\n[TLS Overview](#/dashboard/tls-sessions-ecs)\n\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\n\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\n\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\n\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)", - "openLinksInNewTab": false - }, - "title": "Navigation [Packetbeat] ECS", - "type": "markdown" - } - }, - "id": "Navigation-ecs", - "type": "visualization", - "updated_at": "2019-01-19T00:18:59.372Z", - "version": 11 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs", - "title": "Total number of HTTP transactions [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "fontSize": "37", - "handleNoResults": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Total number of HTTP transactions [Packetbeat] ECS", - "type": "metric" - } - }, - "id": "Total-number-of-HTTP-transactions-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:26.207Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs", - "title": "HTTP status codes for the top queries [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "HTTP Query", - "field": "query", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "row": false, - "size": 5 - }, - "schema": "split", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "HTTP Status Code", - "field": "http.response.status_code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "shareYAxis": true, - "type": "pie" - }, - "title": "HTTP status codes for the top queries [Packetbeat] ECS", - "type": "pie" - } - }, - "id": "HTTP-codes-for-the-top-queries-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:26.207Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs", - "title": "Top 10 HTTP requests [Packetbeat] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "url.full", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top 10 HTTP requests [Packetbeat] ECS", - "type": "table" - } - }, - "id": "Top-10-HTTP-requests-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:26.207Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "network.protocol", - "negate": false, - "params": { - "query": "http", - "type": "phrase" - }, - "type": "phrase", - "value": "http" - }, - "query": { - "match": { - "network.protocol": { - "query": "http", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "HTTP Transactions Search [Packetbeat] ECS", - "version": 1 - }, - "id": "71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs", - "type": "search", - "updated_at": "2019-01-19T00:21:43.886Z", - "version": 3 - }, - { - "attributes": { - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "gridData": { - "h": 20, - "i": "1", - "w": 36, - "x": 12, - "y": 0 - }, - "id": "Web-transactions-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 15, - "i": "2", - "w": 24, - "x": 0, - "y": 35 - }, - "id": "HTTP-error-codes-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 15, - "i": "3", - "w": 24, - "x": 24, - "y": 35 - }, - "id": "HTTP-error-codes-evolution-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 20, - "i": "4", - "w": 12, - "x": 0, - "y": 0 - }, - "id": "Navigation-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "gridData": { - "h": 15, - "i": "5", - "w": 12, - "x": 0, - "y": 20 - }, - "id": "Total-number-of-HTTP-transactions-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 15, - "i": "6", - "w": 36, - "x": 12, - "y": 20 - }, - "id": "HTTP-codes-for-the-top-queries-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 25, - "i": "7", - "w": 48, - "x": 0, - "y": 50 - }, - "id": "Top-10-HTTP-requests-ecs", - "panelIndex": "7", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Packetbeat] HTTP ECS", - "version": 1 - }, - "id": "Packetbeat-HTTP-ecs", - "type": "dashboard", - "updated_at": "2019-01-18T23:49:26.207Z", - "version": 1 - } - ], - "version": "7.0.0-SNAPSHOT" -} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-http.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-http.ndjson new file mode 100644 index 00000000000..16cfb415955 --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-http.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"network.protocol\",\"negate\":false,\"params\":{\"query\":\"http\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"http\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"network.protocol\":{\"query\":\"http\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"HTTP Transactions Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"HTTP Transactions [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"HTTP Transactions [Packetbeat] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Web-transactions-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMxOTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"type\",\"negate\":false,\"params\":{\"query\":\"http\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"http\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"network.protocol\":{\"query\":\"http\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"query\":{\"language\":\"kuery\",\"query\":\"http.response.status_code >= 300\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"HTTP error codes [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"type\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"HTTP Status Code\",\"field\":\"http.response.status_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Unique count of type\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"HTTP error codes [Packetbeat] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"HTTP-error-codes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:28:41.048Z","version":"WzMxNTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"network.protocol\",\"negate\":false,\"params\":{\"query\":\"http\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"http\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"network.protocol\":{\"query\":\"http\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"http.response.status_code\",\"negate\":true,\"params\":{\"gte\":200,\"lt\":299},\"type\":\"range\",\"value\":\"200 to 299\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"range\":{\"http.response.status_code\":{\"gte\":200,\"lte\":299}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"HTTP error codes evolution [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"HTTP Status Code\",\"field\":\"http.response.status_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"HTTP error codes evolution [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"HTTP-error-codes-evolution-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:28:41.048Z","version":"WzMxNTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Total number of HTTP transactions [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"37\",\"handleNoResults\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total number of HTTP transactions [Packetbeat] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"Total-number-of-HTTP-transactions-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:41.048Z","version":"WzMxNTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"HTTP status codes for the top queries [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"HTTP Query\",\"field\":\"query\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"HTTP Status Code\",\"field\":\"http.response.status_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"shareYAxis\":true,\"type\":\"pie\",\"row\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"HTTP status codes for the top queries [Packetbeat] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"HTTP-codes-for-the-top-queries-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:41.048Z","version":"WzMxNTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Top 10 HTTP requests [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"url.full\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 10 HTTP requests [Packetbeat] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Top-10-HTTP-requests-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:41.048Z","version":"WzMxNTYsMV0="} +{"attributes":{"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":0,\"y\":35},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":24,\"y\":35},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"4\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":12,\"x\":0,\"y\":20},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":36,\"x\":12,\"y\":20},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":25,\"i\":\"7\",\"w\":48,\"x\":0,\"y\":50},\"panelIndex\":\"7\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Packetbeat] HTTP ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-HTTP-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Web-transactions-ecs","name":"panel_0","type":"visualization"},{"id":"HTTP-error-codes-ecs","name":"panel_1","type":"visualization"},{"id":"HTTP-error-codes-evolution-ecs","name":"panel_2","type":"visualization"},{"id":"Navigation-ecs","name":"panel_3","type":"visualization"},{"id":"Total-number-of-HTTP-transactions-ecs","name":"panel_4","type":"visualization"},{"id":"HTTP-codes-for-the-top-queries-ecs","name":"panel_5","type":"visualization"},{"id":"Top-10-HTTP-requests-ecs","name":"panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:41.048Z","version":"WzMxNTgsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-mongodb.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-mongodb.json deleted file mode 100644 index 1d63607382d..00000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-mongodb.json +++ /dev/null @@ -1,1402 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### Packetbeat:\n\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\n\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\n\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\n\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\n\n[TLS Overview](#/dashboard/tls-sessions-ecs)\n\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\n\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\n\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\n\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)", - "openLinksInNewTab": false - }, - "title": "Navigation [Packetbeat] ECS", - "type": "markdown" - } - }, - "id": "Navigation-ecs", - "type": "visualization", - "updated_at": "2019-01-19T00:18:59.372Z", - "version": 11 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "651fd6d0-88d0-11e7-ad9c-db80de0bf8d3-ecs", - "title": "MongoDB errors [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "resource", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "row": true, - "size": 3 - }, - "schema": "split", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "field": "method", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": 9, - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "normal", - "radiusRatio": 9, - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "showCircles": true, - "smoothLines": false, - "spyPerPage": 10, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "MongoDB errors [Packetbeat] ECS", - "type": "line" - } - }, - "id": "MongoDB-errors-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:27.239Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "MongoDB-transactions-ecs", - "title": "MongoDB Commands [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "method", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "mode": "silhouette", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "interpolate": "cardinal", - "mode": "stacked", - "show": "true", - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": true, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "silhouette", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "MongoDB Commands [Packetbeat] ECS", - "type": "area" - } - }, - "id": "MongoDB-commands-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:27.239Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "651fd6d0-88d0-11e7-ad9c-db80de0bf8d3-ecs", - "title": "MongoDB errors per collection [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "resource", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": 9, - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "normal", - "radiusRatio": 9, - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "showCircles": true, - "smoothLines": false, - "spyPerPage": 10, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "MongoDB errors per collection [Packetbeat] ECS", - "type": "line" - } - }, - "id": "MongoDB-errors-per-collection-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:27.239Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "MongoDB-transactions-ecs", - "title": "MongoDB in/out throughput [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "source.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "4", - "params": { - "field": "destination.bytes" - }, - "schema": "metric", - "type": "sum" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": 9, - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Sum of source.bytes" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "normal", - "radiusRatio": 9, - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "4", - "label": "Sum of destination.bytes" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "normal", - "show": true, - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "showCircles": true, - "smoothLines": false, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "MongoDB in/out throughput [Packetbeat] ECS", - "type": "line" - } - }, - "id": "MongoDB-in-slash-out-throughput-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:27.239Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "MongoDB-transactions-ecs", - "title": "MongoDB response times by collection [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "event.duration", - "percents": [ - 99 - ] - }, - "schema": "metric", - "type": "percentiles" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "resource", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": {}, - "schema": "radius", - "type": "count" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": "9", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Percentiles of event.duration" - }, - "drawLinesBetweenPoints": false, - "interpolate": "linear", - "mode": "normal", - "radiusRatio": "9", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "showCircles": true, - "smoothLines": false, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Percentiles of event.duration" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "MongoDB response times by collection [Packetbeat] ECS", - "type": "line" - } - }, - "id": "MongoDB-response-times-by-collection-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:27.239Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "MongoDB-transactions-ecs", - "title": "Top slowest MongoDB queries [Packetbeat] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "event.duration", - "percents": [ - 99 - ] - }, - "schema": "metric", - "type": "percentiles" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "query", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top slowest MongoDB queries [Packetbeat] ECS", - "type": "table" - } - }, - "id": "Top-slowest-MongoDB-queries-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:27.239Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "MongoDB-transactions-with-write-concern-0-ecs", - "title": "Number of MongoDB transactions with writeConcern w=0 [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": {}, - "schema": "radius", - "type": "count" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": 9, - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "normal", - "radiusRatio": 9, - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "showCircles": true, - "smoothLines": false, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Number of MongoDB transactions with writeConcern w=0 [Packetbeat] ECS", - "type": "line" - } - }, - "id": "Number-of-MongoDB-transactions-with-writeConcern-w-equal-0-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:27.239Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "type", - "negate": false, - "params": { - "query": "mongodb", - "type": "phrase" - }, - "type": "phrase", - "value": "mongodb" - }, - "query": { - "match": { - "type": { - "query": "mongodb", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "status", - "negate": true, - "params": { - "query": "OK", - "type": "phrase" - }, - "type": "phrase", - "value": "OK" - }, - "query": { - "match": { - "status": { - "query": "OK", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "MongoDB errors [Packetbeat] ECS", - "version": 1 - }, - "id": "651fd6d0-88d0-11e7-ad9c-db80de0bf8d3-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:27.239Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "method", - "type", - "path", - "event.duration", - "status", - "query" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "mongodb", - "type": "phrase" - }, - "type": "phrase", - "value": "mongodb" - }, - "query": { - "match": { - "event.dataset": { - "query": "mongodb", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ] - }, - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "MongoDB Transaction Search [Packetbeat] ECS", - "version": 1 - }, - "id": "MongoDB-transactions-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:27.239Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "method", - "type", - "path", - "event.duration", - "status", - "query" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "mongodb", - "type": "phrase" - }, - "type": "phrase", - "value": "mongodb" - }, - "query": { - "match": { - "event.dataset": { - "query": "mongodb", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ] - }, - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "request: \"writeConcern w 0\"" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "MongoDB transactions with write concern 0 [Packetbeat] ECS", - "version": 1 - }, - "id": "MongoDB-transactions-with-write-concern-0-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:27.239Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "gridData": { - "h": 20, - "i": "1", - "w": 12, - "x": 0, - "y": 0 - }, - "id": "Navigation-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 20, - "i": "2", - "w": 20, - "x": 12, - "y": 0 - }, - "id": "MongoDB-errors-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 20, - "i": "3", - "w": 16, - "x": 32, - "y": 0 - }, - "id": "MongoDB-commands-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 15, - "i": "4", - "w": 16, - "x": 0, - "y": 20 - }, - "id": "MongoDB-errors-per-collection-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 15, - "i": "5", - "w": 16, - "x": 16, - "y": 20 - }, - "id": "MongoDB-in-slash-out-throughput-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 25, - "i": "6", - "w": 32, - "x": 0, - "y": 35 - }, - "id": "MongoDB-response-times-by-collection-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 25, - "i": "7", - "w": 16, - "x": 32, - "y": 35 - }, - "id": "Top-slowest-MongoDB-queries-ecs", - "panelIndex": "7", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 15, - "i": "8", - "w": 16, - "x": 32, - "y": 20 - }, - "id": "Number-of-MongoDB-transactions-with-writeConcern-w-equal-0-ecs", - "panelIndex": "8", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Packetbeat] MongoDB ECS", - "version": 1 - }, - "id": "Packetbeat-MongoDB-performance-ecs", - "type": "dashboard", - "updated_at": "2019-01-18T23:49:27.239Z", - "version": 1 - } - ], - "version": "7.0.0-SNAPSHOT" -} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-mongodb.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-mongodb.ndjson new file mode 100644 index 00000000000..0c50d922561 --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-mongodb.ndjson @@ -0,0 +1,12 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"type\",\"negate\":false,\"params\":{\"query\":\"mongodb\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"mongodb\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"type\":{\"query\":\"mongodb\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"status\",\"negate\":true,\"params\":{\"query\":\"OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"status\":{\"query\":\"OK\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"MongoDB errors [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"651fd6d0-88d0-11e7-ad9c-db80de0bf8d3-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"MongoDB errors [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"resource\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":3},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"method\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"spyPerPage\":10,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"row\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MongoDB errors [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-errors-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"651fd6d0-88d0-11e7-ad9c-db80de0bf8d3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjAsMV0="} +{"attributes":{"columns":["method","type","path","event.duration","status","query"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"mongodb\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"mongodb\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"mongodb\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"MongoDB Transaction Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"MongoDB-transactions-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"MongoDB Commands [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"method\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"silhouette\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"silhouette\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MongoDB Commands [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-commands-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"MongoDB errors per collection [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"resource\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"spyPerPage\":10,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MongoDB errors per collection [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-errors-per-collection-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"651fd6d0-88d0-11e7-ad9c-db80de0bf8d3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"MongoDB in/out throughput [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Sum of source.bytes\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"4\",\"label\":\"Sum of destination.bytes\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MongoDB in/out throughput [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-in-slash-out-throughput-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"MongoDB response times by collection [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[99]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"resource\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{},\"schema\":\"radius\",\"type\":\"count\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":\"9\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Percentiles of event.duration\"},\"drawLinesBetweenPoints\":false,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":\"9\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Percentiles of event.duration\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MongoDB response times by collection [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-response-times-by-collection-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Top slowest MongoDB queries [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[99]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"query\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top slowest MongoDB queries [Packetbeat] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Top-slowest-MongoDB-queries-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjUsMV0="} +{"attributes":{"columns":["method","type","path","event.duration","status","query"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"mongodb\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"mongodb\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"mongodb\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"request: \\\"writeConcern w 0\\\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"MongoDB transactions with write concern 0 [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"MongoDB-transactions-with-write-concern-0-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Number of MongoDB transactions with writeConcern w=0 [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{},\"schema\":\"radius\",\"type\":\"count\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Number of MongoDB transactions with writeConcern w=0 [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Number-of-MongoDB-transactions-with-writeConcern-w-equal-0-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-transactions-with-write-concern-0-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjYsMV0="} +{"attributes":{"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"2\",\"w\":20,\"x\":12,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"3\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":16,\"x\":0,\"y\":20},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":16,\"x\":16,\"y\":20},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":25,\"i\":\"6\",\"w\":32,\"x\":0,\"y\":35},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":25,\"i\":\"7\",\"w\":16,\"x\":32,\"y\":35},\"panelIndex\":\"7\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":16,\"x\":32,\"y\":20},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Packetbeat] MongoDB ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-MongoDB-performance-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Navigation-ecs","name":"panel_0","type":"visualization"},{"id":"MongoDB-errors-ecs","name":"panel_1","type":"visualization"},{"id":"MongoDB-commands-ecs","name":"panel_2","type":"visualization"},{"id":"MongoDB-errors-per-collection-ecs","name":"panel_3","type":"visualization"},{"id":"MongoDB-in-slash-out-throughput-ecs","name":"panel_4","type":"visualization"},{"id":"MongoDB-response-times-by-collection-ecs","name":"panel_5","type":"visualization"},{"id":"Top-slowest-MongoDB-queries-ecs","name":"panel_6","type":"visualization"},{"id":"Number-of-MongoDB-transactions-with-writeConcern-w-equal-0-ecs","name":"panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNzAsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-mysql.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-mysql.json deleted file mode 100644 index 7fd2a0cdfe7..00000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-mysql.json +++ /dev/null @@ -1,1169 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "MySQL-errors-ecs", - "title": "MySQL Errors [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": false, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": false, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "MySQL Errors [Packetbeat] ECS", - "type": "area" - } - }, - "id": "MySQL-Errors-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:28.266Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "MySQL-Transactions-ecs", - "title": "MySQL Methods [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "method", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "mode": "wiggle", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": false, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "wiggle", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "MySQL Methods [Packetbeat] ECS", - "type": "area" - } - }, - "id": "MySQL-Methods-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:28.266Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### Packetbeat:\n\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\n\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\n\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\n\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\n\n[TLS Overview](#/dashboard/tls-sessions-ecs)\n\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\n\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\n\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\n\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)", - "openLinksInNewTab": false - }, - "title": "Navigation [Packetbeat] ECS", - "type": "markdown" - } - }, - "id": "Navigation-ecs", - "type": "visualization", - "updated_at": "2019-01-19T00:18:59.372Z", - "version": 11 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "MySQL-Transactions-ecs", - "title": "MySQL throughput [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "destination.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "source.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "4", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Sum of destination.bytes" - }, - "mode": "normal", - "show": "true", - "type": "line", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "3", - "label": "Sum of source.bytes" - }, - "mode": "normal", - "show": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "shareYAxis": true, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "MySQL throughput [Packetbeat] ECS", - "type": "line" - } - }, - "id": "MySQL-throughput-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:28.266Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "MySQL-Transactions-ecs", - "title": "Most frequent MySQL queries ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "id": "2", - "params": { - "field": "query", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false - }, - "title": "Most frequent MySQL queries ECS", - "type": "table" - } - }, - "id": "Most-frequent-MySQL-queries-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:28.266Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "MySQL-Transactions-ecs", - "title": "Slowest MySQL queries ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Avg Response Time", - "field": "event.duration" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "query", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Slowest MySQL queries ECS", - "type": "table" - } - }, - "id": "Slowest-MySQL-queries-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:28.266Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "MySQL-Transactions-ecs", - "title": "Mysql response times percentiles [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "event.duration", - "percents": [ - 75, - 99, - 99.5 - ] - }, - "schema": "metric", - "type": "percentiles" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Percentiles of event.duration" - }, - "mode": "normal", - "show": "true", - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "shareYAxis": true, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Percentiles of event.duration" - }, - "type": "value" - } - ] - }, - "title": "Mysql response times percentiles [Packetbeat] ECS", - "type": "line" - } - }, - "id": "Mysql-response-times-percentiles-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:28.266Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "MySQL-Transactions-ecs", - "title": "MySQL Reads vs Writes [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "filters": [ - { - "input": { - "query": "method: SELECT" - } - }, - { - "input": { - "query": "method: INSERT OR method: UPDATE OR method: DELETE" - } - } - ] - }, - "schema": "group", - "type": "filters" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "@timestamp per 30 seconds" - }, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": false, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "MySQL Reads vs Writes [Packetbeat] ECS", - "type": "area" - } - }, - "id": "MySQL-Reads-vs-Writes-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:28.266Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "method", - "type", - "path", - "event.duration", - "status" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "status", - "negate": true, - "params": { - "query": "OK", - "type": "phrase" - }, - "type": "phrase", - "value": "OK" - }, - "query": { - "match": { - "status": { - "query": "OK", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "mysql", - "type": "phrase" - }, - "type": "phrase", - "value": "mysql" - }, - "query": { - "match": { - "event.dataset": { - "query": "mysql", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ] - }, - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "MySQL Errors Search [Packetbeat] ECS", - "version": 1 - }, - "id": "MySQL-errors-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:28.266Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "method", - "type", - "path", - "event.duration", - "status" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "type", - "negate": false, - "params": { - "query": "mysql", - "type": "phrase" - }, - "type": "phrase", - "value": "mysql" - }, - "query": { - "match": { - "type": { - "query": "mysql", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ] - }, - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "MySQL Transactions [Packetbeat] ECS", - "version": 1 - }, - "id": "MySQL-Transactions-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:28.266Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "gridData": { - "h": 20, - "i": "1", - "w": 20, - "x": 12, - "y": 0 - }, - "id": "MySQL-Errors-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 20, - "i": "2", - "w": 16, - "x": 32, - "y": 0 - }, - "id": "MySQL-Methods-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 20, - "i": "3", - "w": 12, - "x": 0, - "y": 0 - }, - "id": "Navigation-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 15, - "i": "4", - "w": 24, - "x": 24, - "y": 35 - }, - "id": "MySQL-throughput-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 30, - "i": "5", - "w": 24, - "x": 0, - "y": 50 - }, - "id": "Most-frequent-MySQL-queries-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 30, - "i": "6", - "w": 24, - "x": 24, - "y": 50 - }, - "id": "Slowest-MySQL-queries-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 15, - "i": "7", - "w": 48, - "x": 0, - "y": 20 - }, - "id": "Mysql-response-times-percentiles-ecs", - "panelIndex": "7", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 15, - "i": "8", - "w": 24, - "x": 0, - "y": 35 - }, - "id": "MySQL-Reads-vs-Writes-ecs", - "panelIndex": "8", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Packetbeat] MySQL performance ECS", - "version": 1 - }, - "id": "Packetbeat-MySQL-performance-ecs", - "type": "dashboard", - "updated_at": "2019-01-18T23:49:28.266Z", - "version": 1 - } - ], - "version": "7.0.0-SNAPSHOT" -} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-mysql.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-mysql.ndjson new file mode 100644 index 00000000000..3549efd73a4 --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-mysql.ndjson @@ -0,0 +1,11 @@ +{"attributes":{"columns":["method","type","path","event.duration","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"status\",\"negate\":true,\"params\":{\"query\":\"OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"status\":{\"query\":\"OK\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"mysql\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"mysql\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"mysql\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"MySQL Errors Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"MySQL-errors-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxNzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"MySQL Errors [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MySQL Errors [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"MySQL-Errors-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MySQL-errors-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxNzEsMV0="} +{"attributes":{"columns":["method","type","path","event.duration","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"type\",\"negate\":false,\"params\":{\"query\":\"mysql\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"mysql\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"type\":{\"query\":\"mysql\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"MySQL Transactions [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"MySQL-Transactions-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxODAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"MySQL Methods [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"method\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"wiggle\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"wiggle\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MySQL Methods [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"MySQL-Methods-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MySQL-Transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxNzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"MySQL throughput [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Sum of destination.bytes\"},\"mode\":\"normal\",\"show\":\"true\",\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Sum of source.bytes\"},\"mode\":\"normal\",\"show\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"shareYAxis\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MySQL throughput [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"MySQL-throughput-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MySQL-Transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxNzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Most frequent MySQL queries ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"field\":\"query\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":true},\"title\":\"Most frequent MySQL queries ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Most-frequent-MySQL-queries-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MySQL-Transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxNzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Slowest MySQL queries ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Avg Response Time\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"query\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Slowest MySQL queries ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Slowest-MySQL-queries-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MySQL-Transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxNzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Mysql response times percentiles [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[75,99,99.5]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Percentiles of event.duration\"},\"mode\":\"normal\",\"show\":\"true\",\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"shareYAxis\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Percentiles of event.duration\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Mysql response times percentiles [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Mysql-response-times-percentiles-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MySQL-Transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxNzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"MySQL Reads vs Writes [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"filters\":[{\"input\":{\"query\":\"method: SELECT\",\"language\":\"lucene\"}},{\"input\":{\"query\":\"method: INSERT OR method: UPDATE OR method: DELETE\",\"language\":\"lucene\"}}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per 30 seconds\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MySQL Reads vs Writes [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"MySQL-Reads-vs-Writes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MySQL-Transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxNzgsMV0="} +{"attributes":{"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":20,\"x\":12,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"2\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"3\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":35},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":30,\"i\":\"5\",\"w\":24,\"x\":0,\"y\":50},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":30,\"i\":\"6\",\"w\":24,\"x\":24,\"y\":50},\"panelIndex\":\"6\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":48,\"x\":0,\"y\":20},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":24,\"x\":0,\"y\":35},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Packetbeat] MySQL performance ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-MySQL-performance-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"MySQL-Errors-ecs","name":"panel_0","type":"visualization"},{"id":"MySQL-Methods-ecs","name":"panel_1","type":"visualization"},{"id":"Navigation-ecs","name":"panel_2","type":"visualization"},{"id":"MySQL-throughput-ecs","name":"panel_3","type":"visualization"},{"id":"Most-frequent-MySQL-queries-ecs","name":"panel_4","type":"visualization"},{"id":"Slowest-MySQL-queries-ecs","name":"panel_5","type":"visualization"},{"id":"Mysql-response-times-percentiles-ecs","name":"panel_6","type":"visualization"},{"id":"MySQL-Reads-vs-Writes-ecs","name":"panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxODEsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-nfs.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-nfs.json deleted file mode 100644 index 5530e30965e..00000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-nfs.json +++ /dev/null @@ -1,1206 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "nfs-ecs", - "title": "NFS clients pie chart [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "rpc.cred.machinename", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 16 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "shareYAxis": true, - "type": "pie" - }, - "title": "NFS clients pie chart [Packetbeat] ECS", - "type": "pie" - } - }, - "id": "NFS-clients-pie-chart-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:29.316Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "nfs-ecs", - "title": "NFS operations area chart ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "id": "2", - "params": { - "field": "nfs.opcode", - "order": "desc", - "orderBy": "1", - "size": 16 - }, - "schema": "group", - "type": "terms" - }, - { - "id": "3", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "interpolate": "linear", - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "shareYAxis": true, - "smoothLines": true, - "times": [], - "yAxis": {} - }, - "title": "NFS operations area chart ECS", - "type": "area" - } - }, - "id": "NFS-operations-area-chart-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:29.316Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "nfs-ecs", - "title": "NFS top group pie chart [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "rpc.cred.gid", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 16 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "shareYAxis": true, - "type": "pie" - }, - "title": "NFS top group pie chart [Packetbeat] ECS", - "type": "pie" - } - }, - "id": "NFS-top-group-pie-chart-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:29.316Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "nfs-ecs", - "title": "NFS top users pie chart [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "rpc.cred.uid", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 16 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "shareYAxis": true, - "type": "pie" - }, - "title": "NFS top users pie chart [Packetbeat] ECS", - "type": "pie" - } - }, - "id": "NFS-top-users-pie-chart-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:29.316Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "nfs-ecs", - "title": "NFS response times [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "event.duration", - "percents": [ - 50 - ] - }, - "schema": "metric", - "type": "median" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": true, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": "9", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Median event.duration" - }, - "drawLinesBetweenPoints": true, - "interpolate": "cardinal", - "mode": "normal", - "radiusRatio": "9", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "showCircles": true, - "smoothLines": true, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": true, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Median event.duration" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "NFS response times [Packetbeat] ECS", - "type": "line" - } - }, - "id": "NFS-response-times-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:29.316Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "NFS-errors-search-ecs", - "title": "NFS errors [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "nfs.status", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 12 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": false, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "NFS errors [Packetbeat] ECS", - "type": "area" - } - }, - "id": "NFS-errors-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:29.316Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "nfs-ecs", - "title": "NFS operation table [Packetbeat] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Avg Response Time", - "field": "event.duration" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Opcode", - "field": "nfs.opcode", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 16 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": {}, - "schema": "metric", - "type": "count" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "NFS operation table [Packetbeat] ECS", - "type": "table" - } - }, - "id": "NFS-operation-table-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:29.316Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "nfs-ecs", - "title": "NFS Request / Response Sizes [Packetbeat] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "Sum of rpc.reply_size": "#7EB26D" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Request Size", - "field": "source.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Response Size", - "field": "destination.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "3", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": 9, - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Request Size" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "normal", - "radiusRatio": 9, - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "2", - "label": "Response Size" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "normal", - "show": true, - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "showCircles": true, - "smoothLines": false, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "NFS Request / Response Sizes [Packetbeat] ECS", - "type": "line" - } - }, - "id": "NFS-bytes-in-slash-out-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:29.316Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### Packetbeat:\n\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\n\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\n\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\n\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\n\n[TLS Overview](#/dashboard/tls-sessions-ecs)\n\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\n\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\n\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\n\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)", - "openLinksInNewTab": false - }, - "title": "Navigation [Packetbeat] ECS", - "type": "markdown" - } - }, - "id": "Navigation-ecs", - "type": "visualization", - "updated_at": "2019-01-19T00:18:59.372Z", - "version": 11 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "nfs-ecs", - "type": "phrase" - }, - "type": "phrase", - "value": "nfs-ecs" - }, - "query": { - "match": { - "event.dataset": { - "query": "nfs-ecs", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "NFS Search [Packetbeat] ECS", - "version": 1 - }, - "id": "nfs-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:29.316Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "nfs.status", - "negate": true, - "params": { - "query": "NFSERR_NOENT", - "type": "phrase" - }, - "type": "phrase", - "value": "NFSERR_NOENT" - }, - "query": { - "match": { - "nfs.status": { - "query": "NFSERR_NOENT", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "nfs.status", - "negate": true, - "params": { - "query": "NFS_OK", - "type": "phrase" - }, - "type": "phrase", - "value": "NFS_OK" - }, - "query": { - "match": { - "nfs.status": { - "query": "NFS_OK", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "nfs-ecs", - "type": "phrase" - }, - "type": "phrase", - "value": "nfs-ecs" - }, - "query": { - "match": { - "event.dataset": { - "query": "nfs-ecs", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "NFS Error Search [Packetbeat] ECS", - "version": 1 - }, - "id": "NFS-errors-search-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:29.316Z", - "version": 1 - }, - { - "attributes": { - "description": "NFSv3 and NFSv4 transactions over TCP.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "embeddableConfig": { - "vis": { - "legendOpen": true - } - }, - "gridData": { - "h": 25, - "i": "1", - "w": 16, - "x": 16, - "y": 0 - }, - "id": "NFS-clients-pie-chart-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 20, - "i": "3", - "w": 24, - "x": 0, - "y": 55 - }, - "id": "NFS-operations-area-chart-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "spy": { - "mode": { - "fill": false, - "name": null - } - }, - "vis": { - "legendOpen": true - } - }, - "gridData": { - "h": 10, - "i": "4", - "w": 16, - "x": 32, - "y": 0 - }, - "id": "NFS-top-group-pie-chart-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "vis": { - "legendOpen": true - } - }, - "gridData": { - "h": 15, - "i": "5", - "w": 16, - "x": 32, - "y": 10 - }, - "id": "NFS-top-users-pie-chart-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 15, - "i": "6", - "w": 24, - "x": 24, - "y": 25 - }, - "id": "NFS-response-times-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 15, - "i": "7", - "w": 24, - "x": 24, - "y": 40 - }, - "id": "NFS-errors-ecs", - "panelIndex": "7", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 20, - "i": "8", - "w": 24, - "x": 24, - "y": 55 - }, - "id": "NFS-operation-table-ecs", - "panelIndex": "8", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "vis": { - "legendOpen": true - } - }, - "gridData": { - "h": 30, - "i": "9", - "w": 24, - "x": 0, - "y": 25 - }, - "id": "NFS-bytes-in-slash-out-ecs", - "panelIndex": "9", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 25, - "i": "10", - "w": 16, - "x": 0, - "y": 0 - }, - "id": "Navigation-ecs", - "panelIndex": "10", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Packetbeat] NFS ECS", - "version": 1 - }, - "id": "Packetbeat-NFS-ecs", - "type": "dashboard", - "updated_at": "2019-01-18T23:49:29.316Z", - "version": 1 - } - ], - "version": "7.0.0-SNAPSHOT" -} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-nfs.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-nfs.ndjson new file mode 100644 index 00000000000..5233b79d4fd --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-nfs.ndjson @@ -0,0 +1,12 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"nfs-ecs\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"nfs-ecs\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"nfs-ecs\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"NFS Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"nfs-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxOTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"NFS clients pie chart [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"rpc.cred.machinename\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":16},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"NFS clients pie chart [Packetbeat] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"NFS-clients-pie-chart-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"nfs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxODIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"NFS operations area chart ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"field\":\"nfs.opcode\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":16},\"schema\":\"group\",\"type\":\"terms\"},{\"id\":\"3\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"yAxis\":{}},\"title\":\"NFS operations area chart ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"NFS-operations-area-chart-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"nfs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxODMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"NFS top group pie chart [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"rpc.cred.gid\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":16},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"NFS top group pie chart [Packetbeat] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"NFS-top-group-pie-chart-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"nfs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxODQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"NFS top users pie chart [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"rpc.cred.uid\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":16},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"NFS top users pie chart [Packetbeat] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"NFS-top-users-pie-chart-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"nfs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxODUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"NFS response times [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[50]},\"schema\":\"metric\",\"type\":\"median\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":true,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":\"9\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Median event.duration\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"normal\",\"radiusRatio\":\"9\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":true,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Median event.duration\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"NFS response times [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"NFS-response-times-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"nfs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxODYsMV0="} +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"nfs.status\",\"negate\":true,\"params\":{\"query\":\"NFSERR_NOENT\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"NFSERR_NOENT\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"nfs.status\":{\"query\":\"NFSERR_NOENT\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"nfs.status\",\"negate\":true,\"params\":{\"query\":\"NFS_OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"NFS_OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"nfs.status\":{\"query\":\"NFS_OK\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"nfs-ecs\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"nfs-ecs\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"nfs-ecs\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"NFS Error Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"NFS-errors-search-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxOTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"NFS errors [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"nfs.status\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":12},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"NFS errors [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"NFS-errors-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"NFS-errors-search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxODcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"NFS operation table [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Avg Response Time\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Opcode\",\"field\":\"nfs.opcode\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":16},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"NFS operation table [Packetbeat] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"NFS-operation-table-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"nfs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxODgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"NFS Request / Response Sizes [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Sum of rpc.reply_size\": \"#7EB26D\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Request Size\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Response Size\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Request Size\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"2\",\"label\":\"Response Size\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"NFS Request / Response Sizes [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"NFS-bytes-in-slash-out-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"nfs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxODksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} +{"attributes":{"description":"NFSv3 and NFSv4 transactions over TCP.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":25,\"i\":\"1\",\"w\":16,\"x\":16,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":55},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"4\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"spy\":{\"mode\":{\"fill\":false,\"name\":null}},\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":16,\"x\":32,\"y\":10},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":24,\"x\":24,\"y\":25},\"panelIndex\":\"6\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":40},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":55},\"panelIndex\":\"8\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":30,\"i\":\"9\",\"w\":24,\"x\":0,\"y\":25},\"panelIndex\":\"9\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":25,\"i\":\"10\",\"w\":16,\"x\":0,\"y\":0},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Packetbeat] NFS ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-NFS-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"NFS-clients-pie-chart-ecs","name":"panel_0","type":"visualization"},{"id":"NFS-operations-area-chart-ecs","name":"panel_1","type":"visualization"},{"id":"NFS-top-group-pie-chart-ecs","name":"panel_2","type":"visualization"},{"id":"NFS-top-users-pie-chart-ecs","name":"panel_3","type":"visualization"},{"id":"NFS-response-times-ecs","name":"panel_4","type":"visualization"},{"id":"NFS-errors-ecs","name":"panel_5","type":"visualization"},{"id":"NFS-operation-table-ecs","name":"panel_6","type":"visualization"},{"id":"NFS-bytes-in-slash-out-ecs","name":"panel_7","type":"visualization"},{"id":"Navigation-ecs","name":"panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxOTMsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-overview.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-overview.json deleted file mode 100644 index 52e25b02c7b..00000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-overview.json +++ /dev/null @@ -1,1902 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs", - "title": "HTTP Transactions [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": false, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "mode": "stacked", - "show": "true", - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "HTTP Transactions [Packetbeat] ECS", - "type": "histogram" - } - }, - "id": "Web-transactions-ecs", - "type": "visualization", - "updated_at": "2019-01-19T00:21:31.922Z", - "version": 3 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "event.type", - "negate": true, - "params": { - "query": "flow", - "type": "phrase" - }, - "type": "phrase", - "value": "flow" - }, - "query": { - "match": { - "event.type": { - "query": "flow", - "type": "phrase" - } - } - } - } - ], - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Transaction Types [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "event.dataset", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "mode": "stacked", - "show": "true", - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Transaction Types [Packetbeat] ECS", - "type": "histogram" - } - }, - "id": "DB-transactions-ecs", - "type": "visualization", - "updated_at": "2019-01-19T00:20:54.634Z", - "version": 3 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "Packetbeat-Search-ecs", - "title": "Response times percentiles [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "event.duration", - "percents": [ - 75, - 95, - 99 - ] - }, - "schema": "metric", - "type": "percentiles" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": 9, - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Percentiles of event.duration" - }, - "drawLinesBetweenPoints": true, - "interpolate": "cardinal", - "mode": "normal", - "radiusRatio": 9, - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "showCircles": true, - "smoothLines": true, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Percentiles of event.duration" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Response times percentiles [Packetbeat] ECS", - "type": "line" - } - }, - "id": "Response-times-percentiles-ecs", - "type": "visualization", - "updated_at": "2019-01-19T00:01:49.340Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Transactions-errors-ecs", - "title": "Errors count over time ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "id": "2", - "params": { - "customInterval": "30s", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "custom", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "id": "3", - "params": { - "field": "type", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "shareYAxis": true, - "times": [], - "yAxis": {} - }, - "title": "New Visualization ECS", - "type": "histogram" - } - }, - "id": "Errors-count-over-time-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:30.350Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "Packetbeat-Search-ecs", - "title": "Errors vs successful transactions [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "status", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "mode": "percentage", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "mode": "stacked", - "show": "true", - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "percentage", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Errors vs successful transactions [Packetbeat] ECS", - "type": "histogram" - } - }, - "id": "Errors-vs-successful-transactions-ecs", - "type": "visualization", - "updated_at": "2019-01-19T00:02:24.071Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "Packetbeat-Search-ecs", - "title": "Latency Histogram [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "extended_bounds": {}, - "field": "event.duration", - "interval": 10000000 - }, - "schema": "segment", - "type": "histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "interpolate": "cardinal", - "mode": "stacked", - "show": "true", - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": true, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Latency Histogram [Packetbeat] ECS", - "type": "area" - } - }, - "id": "Latency-histogram-ecs", - "type": "visualization", - "updated_at": "2019-01-19T00:03:54.084Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Client IP Locations (requires GeoIP enrichment) [Packetbeat] ECS", - "uiStateJSON": { - "mapCenter": [ - 0, - -0.17578125 - ] - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "client.geo.location", - "isFilteredByCollar": true, - "mapBounds": { - "bottom_right": { - "lat": -84.0160220686566, - "lon": 259.80468750000006 - }, - "top_left": { - "lat": 83.97925949886205, - "lon": -259.80468750000006 - } - }, - "mapCenter": { - "lat": -0.17578097424708533, - "lon": 0 - }, - "mapZoom": 2, - "precision": 2, - "useGeocentroid": true - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "params": { - "addTooltip": true, - "colorSchema": "Yellow to Red", - "heatBlur": 15, - "heatClusterSize": 1.5, - "heatMaxZoom": 16, - "heatMinOpacity": 0.1, - "heatNormalizeData": true, - "heatRadius": 25, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 15, - 5 - ], - "mapType": "Scaled Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "attribution": "Maps provided by USGS", - "format": "image/png", - "layers": "0", - "styles": "", - "transparent": true, - "version": "1.3.0" - }, - "selectedTmsLayer": { - "attribution": "\u003cp\u003e\u0026#169; \u003ca href=\"http://www.openstreetmap.org/copyright\"\u003eOpenStreetMap\u003c/a\u003e contributors | \u003ca href=\"https://www.elastic.co/elastic-maps-service\"\u003eElastic Maps Service\u003c/a\u003e\u003c/p\u003e\u0026#10;", - "id": "road_map", - "maxZoom": 18, - "minZoom": 0, - "origin": "elastic_maps_service" - }, - "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" - } - }, - "title": "Client IP Locations (requires GeoIP enrichment) [Packetbeat] ECS", - "type": "tile_map" - } - }, - "id": "Client-locations-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:52:42.404Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "Packetbeat-Search-ecs", - "title": "Response times repartition [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "extended_bounds": {}, - "field": "event.duration", - "interval": 10000000 - }, - "schema": "group", - "type": "histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "mode": "stacked", - "show": "true", - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Response times repartition [Packetbeat] ECS", - "type": "histogram" - } - }, - "id": "Response-times-repartition-ecs", - "type": "visualization", - "updated_at": "2019-01-19T00:00:32.530Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### Packetbeat:\n\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\n\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\n\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\n\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\n\n[TLS Overview](#/dashboard/tls-sessions-ecs)\n\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\n\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\n\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\n\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)", - "openLinksInNewTab": false - }, - "title": "Navigation [Packetbeat] ECS", - "type": "markdown" - } - }, - "id": "Navigation-ecs", - "type": "visualization", - "updated_at": "2019-01-19T00:18:59.372Z", - "version": 11 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", - "title": "DNS Transactions [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Avg Response Time", - "field": "event.duration" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": {}, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Avg Response Time" - }, - "drawLinesBetweenPoints": true, - "interpolate": "cardinal", - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "3", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "cardinal", - "lineWidth": 3.5, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-2" - } - ], - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Avg Response Time" - }, - "type": "value" - }, - { - "id": "ValueAxis-2", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "RightAxis-1", - "position": "right", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "DNS Transactions [Packetbeat] ECS", - "type": "area" - } - }, - "id": "e3f09730-1b80-11e9-83df-75eebb35951e-ecs", - "type": "visualization", - "updated_at": "2019-01-19T00:29:49.161Z", - "version": 3 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs", - "title": "TLS Sessions [Packetbeat] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "false": "#E24D42", - "true": "#7EB26D" - }, - "legendOpen": false - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "customLabel": "Sessions per minute", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Handshake completed", - "field": "tls.established", - "json": "", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - }, - "valueAxis": "ValueAxis-1" - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "TLS Sessions ECS", - "type": "histogram" - } - }, - "id": "059fe5e0-d2dd-11e7-9914-4982455b3063-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "network.protocol", - "negate": false, - "params": { - "query": "http", - "type": "phrase" - }, - "type": "phrase", - "value": "http" - }, - "query": { - "match": { - "network.protocol": { - "query": "http", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "HTTP Transactions Search [Packetbeat] ECS", - "version": 1 - }, - "id": "71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs", - "type": "search", - "updated_at": "2019-01-19T00:21:43.886Z", - "version": 3 - }, - { - "attributes": { - "columns": [ - "client.ip", - "client.port", - "server.ip", - "server.port", - "event.dataset", - "query", - "method", - "event.duration", - "status" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "event.dataset", - "negate": true, - "params": { - "query": "flow", - "type": "phrase" - }, - "type": "phrase", - "value": "flow" - }, - "query": { - "match": { - "event.dataset": { - "query": "flow", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Packetbeat Search ECS", - "version": 1 - }, - "id": "Packetbeat-Search-ecs", - "type": "search", - "updated_at": "2019-01-19T00:01:10.720Z", - "version": 2 - }, - { - "attributes": { - "columns": [ - "client.ip", - "client.port", - "server.ip", - "server.port", - "event.dataset", - "query", - "method", - "event.duration", - "status" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "event.dataset", - "negate": true, - "params": { - "query": "flow", - "type": "phrase" - }, - "type": "phrase", - "value": "flow" - }, - "query": { - "match": { - "event.dataset": { - "query": "flow", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "status", - "negate": true, - "params": { - "query": "OK", - "type": "phrase" - }, - "type": "phrase", - "value": "OK" - }, - "query": { - "match": { - "status": { - "query": "OK", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Transactions Errors Search [Packetbeat] ECS", - "version": 1 - }, - "id": "Transactions-errors-ecs", - "type": "search", - "updated_at": "2019-01-19T00:05:18.965Z", - "version": 3 - }, - { - "attributes": { - "columns": [ - "server.ip", - "destination.ip", - "dns.question.name", - "status" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "network.protocol", - "negate": false, - "params": { - "query": "dns", - "type": "phrase" - }, - "type": "phrase", - "value": "dns" - }, - "query": { - "match": { - "network.protocol": { - "query": "dns", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "fragment_size": 2147483647, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ], - "require_field_match": false - }, - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "DNS Protocol [Packetbeat] ECS", - "version": 1 - }, - "id": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:24.089Z", - "version": 2 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "tls.established" - }, - "meta": { - "alias": "TLS sessions", - "disabled": false, - "index": "packetbeat-*", - "key": "tls.established", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "TLS Sessions [Packetbeat] ECS", - "version": 1 - }, - "id": "ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "description": "Packetbeat overview dashboard.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "gridData": { - "h": 10, - "i": "1", - "w": 12, - "x": 12, - "y": 20 - }, - "id": "Web-transactions-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 10, - "i": "2", - "w": 12, - "x": 36, - "y": 20 - }, - "id": "DB-transactions-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 15, - "i": "5", - "w": 24, - "x": 0, - "y": 45 - }, - "id": "Response-times-percentiles-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 15, - "i": "6", - "w": 24, - "x": 0, - "y": 60 - }, - "id": "Errors-count-over-time-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 15, - "i": "7", - "w": 24, - "x": 24, - "y": 45 - }, - "id": "Errors-vs-successful-transactions-ecs", - "panelIndex": "7", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 15, - "i": "8", - "w": 24, - "x": 24, - "y": 60 - }, - "id": "Latency-histogram-ecs", - "panelIndex": "8", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "mapBounds": { - "bottom_right": { - "lat": -54.97761367069625, - "lon": 153.984375 - }, - "top_left": { - "lat": 54.97761367069628, - "lon": -153.984375 - } - }, - "mapCollar": { - "bottom_right": { - "lat": -90, - "lon": 180 - }, - "top_left": { - "lat": 90, - "lon": -180 - }, - "zoom": 2 - }, - "mapZoom": 2 - }, - "gridData": { - "h": 20, - "i": "9", - "w": 36, - "x": 12, - "y": 0 - }, - "id": "Client-locations-ecs", - "panelIndex": "9", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 15, - "i": "10", - "w": 48, - "x": 0, - "y": 30 - }, - "id": "Response-times-repartition-ecs", - "panelIndex": "10", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 20, - "i": "11", - "w": 12, - "x": 0, - "y": 0 - }, - "id": "Navigation-ecs", - "panelIndex": "11", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "12", - "w": 12, - "x": 0, - "y": 20 - }, - "id": "e3f09730-1b80-11e9-83df-75eebb35951e-ecs", - "panelIndex": "12", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "13", - "w": 12, - "x": 24, - "y": 20 - }, - "id": "059fe5e0-d2dd-11e7-9914-4982455b3063-ecs", - "panelIndex": "13", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Packetbeat] Overview ECS", - "version": 1 - }, - "id": "Packetbeat-Dashboard-ecs", - "type": "dashboard", - "updated_at": "2019-01-19T00:31:53.357Z", - "version": 5 - } - ], - "version": "7.0.0-SNAPSHOT" -} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-overview.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-overview.ndjson new file mode 100644 index 00000000000..c8fe2e7cc9d --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-overview.ndjson @@ -0,0 +1,17 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"network.protocol\",\"negate\":false,\"params\":{\"query\":\"http\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"http\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"network.protocol\":{\"query\":\"http\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"HTTP Transactions Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"HTTP Transactions [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"HTTP Transactions [Packetbeat] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Web-transactions-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMxOTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.type\",\"negate\":true,\"params\":{\"query\":\"flow\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"flow\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.type\":{\"query\":\"flow\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Transaction Types [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.dataset\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Transaction Types [Packetbeat] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"DB-transactions-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMxOTUsMV0="} +{"attributes":{"columns":["client.ip","client.port","server.ip","server.port","event.dataset","query","method","event.duration","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":true,\"params\":{\"query\":\"flow\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"flow\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"flow\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Packetbeat Search ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-Search-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Response times percentiles [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[75,95,99]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Percentiles of event.duration\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Percentiles of event.duration\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Response times percentiles [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Response-times-percentiles-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Packetbeat-Search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMxOTYsMV0="} +{"attributes":{"columns":["client.ip","client.port","server.ip","server.port","event.dataset","query","method","event.duration","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":true,\"params\":{\"query\":\"flow\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"flow\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"flow\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"status\",\"negate\":true,\"params\":{\"query\":\"OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"status\":{\"query\":\"OK\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Transactions Errors Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Transactions-errors-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Errors count over time ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"30s\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"id\":\"3\",\"params\":{\"field\":\"type\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"New Visualization ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Errors-count-over-time-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Transactions-errors-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMxOTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Errors vs successful transactions [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"status\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"percentage\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"percentage\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Errors vs successful transactions [Packetbeat] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Errors-vs-successful-transactions-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Packetbeat-Search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMxOTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Latency Histogram [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"event.duration\",\"interval\":10000000},\"schema\":\"segment\",\"type\":\"histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Latency Histogram [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"Latency-histogram-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Packetbeat-Search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMxOTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Client IP Locations (requires GeoIP enrichment) [Packetbeat] ECS","uiStateJSON":"{\"mapCenter\": [0, -0.17578125]}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"client.geo.location\",\"isFilteredByCollar\":true,\"mapBounds\":{\"bottom_right\":{\"lat\":-84.0160220686566,\"lon\":259.80468750000006},\"top_left\":{\"lat\":83.97925949886205,\"lon\":-259.80468750000006}},\"mapCenter\":{\"lat\":-0.17578097424708533,\"lon\":0},\"mapZoom\":2,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatBlur\":15,\"heatClusterSize\":1.5,\"heatMaxZoom\":16,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[15,5],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"selectedTmsLayer\":{\"attribution\":\"

© OpenStreetMap contributors | Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"origin\":\"elastic_maps_service\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Client IP Locations (requires GeoIP enrichment) [Packetbeat] ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"Client-locations-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Response times repartition [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"extended_bounds\":{},\"field\":\"event.duration\",\"interval\":10000000},\"schema\":\"group\",\"type\":\"histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Response times repartition [Packetbeat] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Response-times-repartition-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Packetbeat-Search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} +{"attributes":{"columns":["server.ip","destination.ip","dns.question.name","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"network.protocol\",\"negate\":false,\"params\":{\"query\":\"dns\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"dns\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"network.protocol\":{\"query\":\"dns\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"DNS Protocol [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"DNS Transactions [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Avg Response Time\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Avg Response Time\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"lineWidth\":3.5,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-2\"}],\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Avg Response Time\"},\"type\":\"value\"},{\"id\":\"ValueAxis-2\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"RightAxis-1\",\"position\":\"right\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"DNS Transactions [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"e3f09730-1b80-11e9-83df-75eebb35951e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDMsMV0="} +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.established\"},\"meta\":{\"alias\":\"TLS sessions\",\"disabled\":false,\"key\":\"tls.established\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"TLS Sessions [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Sessions [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"false\": \"#E24D42\", \"true\": \"#7EB26D\"}, \"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Sessions per minute\",\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Handshake completed\",\"field\":\"tls.established\",\"json\":\"\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"},\"valueAxis\":\"ValueAxis-1\"},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"TLS Sessions ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"059fe5e0-d2dd-11e7-9914-4982455b3063-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzMsMV0="} +{"attributes":{"description":"Packetbeat overview dashboard.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"1\",\"w\":12,\"x\":12,\"y\":20},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"2\",\"w\":12,\"x\":36,\"y\":20},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":24,\"x\":0,\"y\":45},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":60},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":45},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":60},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"9\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"9\",\"embeddableConfig\":{\"mapBounds\":{\"bottom_right\":{\"lat\":-54.97761367069625,\"lon\":153.984375},\"top_left\":{\"lat\":54.97761367069628,\"lon\":-153.984375}},\"mapCollar\":{\"bottom_right\":{\"lat\":-90,\"lon\":180},\"top_left\":{\"lat\":90,\"lon\":-180},\"zoom\":2},\"mapZoom\":2,\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"10\",\"w\":48,\"x\":0,\"y\":30},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"11\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"12\",\"w\":12,\"x\":0,\"y\":20},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"13\",\"w\":12,\"x\":24,\"y\":20},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"}]","timeRestore":false,"title":"[Packetbeat] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-Dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Web-transactions-ecs","name":"panel_0","type":"visualization"},{"id":"DB-transactions-ecs","name":"panel_1","type":"visualization"},{"id":"Response-times-percentiles-ecs","name":"panel_2","type":"visualization"},{"id":"Errors-count-over-time-ecs","name":"panel_3","type":"visualization"},{"id":"Errors-vs-successful-transactions-ecs","name":"panel_4","type":"visualization"},{"id":"Latency-histogram-ecs","name":"panel_5","type":"visualization"},{"id":"Client-locations-ecs","name":"panel_6","type":"visualization"},{"id":"Response-times-repartition-ecs","name":"panel_7","type":"visualization"},{"id":"Navigation-ecs","name":"panel_8","type":"visualization"},{"id":"e3f09730-1b80-11e9-83df-75eebb35951e-ecs","name":"panel_9","type":"visualization"},{"id":"059fe5e0-d2dd-11e7-9914-4982455b3063-ecs","name":"panel_10","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMTAsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-pgsql.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-pgsql.json deleted file mode 100644 index 77022b5a8d7..00000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-pgsql.json +++ /dev/null @@ -1,1193 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### Packetbeat:\n\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\n\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\n\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\n\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\n\n[TLS Overview](#/dashboard/tls-sessions-ecs)\n\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\n\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\n\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\n\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)", - "openLinksInNewTab": false - }, - "title": "Navigation [Packetbeat] ECS", - "type": "markdown" - } - }, - "id": "Navigation-ecs", - "type": "visualization", - "updated_at": "2019-01-19T00:18:59.372Z", - "version": 11 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "PgSQL-errors-ecs", - "title": "PgSQL Errors [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": false, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": false, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "PgSQL Errors [Packetbeat] ECS", - "type": "area" - } - }, - "id": "PgSQL-Errors-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:31.386Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "PgSQL-transactions-ecs", - "title": "PgSQL Methods [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "method", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "mode": "wiggle", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": false, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "wiggle", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "PgSQL Methods [Packetbeat] ECS", - "type": "area" - } - }, - "id": "PgSQL-Methods-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:31.386Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "PgSQL-transactions-ecs", - "title": "PgSQL response times percentiles [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "event.duration", - "percents": [ - 75, - 99, - 99.5 - ] - }, - "schema": "metric", - "type": "percentiles" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Percentiles of event.duration" - }, - "mode": "normal", - "show": "true", - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "shareYAxis": true, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Percentiles of event.duration" - }, - "type": "value" - } - ] - }, - "title": "PgSQL response times percentiles [Packetbeat] ECS", - "type": "line" - } - }, - "id": "PgSQL-response-times-percentiles-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:31.386Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "PgSQL-transactions-ecs", - "title": "PgSQL Throughput [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "destination.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "source.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "3", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Sum of destination.bytes" - }, - "mode": "normal", - "show": "true", - "type": "line", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "2", - "label": "Sum of source.bytes" - }, - "mode": "normal", - "show": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "shareYAxis": true, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "PgSQL Throughput [Packetbeat] ECS", - "type": "line" - } - }, - "id": "PgSQL-throughput-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:31.386Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "PgSQL-transactions-ecs", - "title": "PgSQL Reads vs Writes [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "filters": [ - { - "input": { - "query": "method: SELECT" - } - }, - { - "input": { - "query": "method: INSERT OR method: UPDATE OR method: DELETE" - } - } - ] - }, - "schema": "group", - "type": "filters" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "@timestamp per 30 seconds" - }, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "smoothLines": false, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "PgSQL Reads vs Writes [Packetbeat] ECS", - "type": "area" - } - }, - "id": "PgSQL-Reads-vs-Writes-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:31.386Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "PgSQL-transactions-ecs", - "title": "Most frequent PgSQL queries [Packetbeat] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "query", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Most frequent PgSQL queries [Packetbeat] ECS", - "type": "table" - } - }, - "id": "Most-frequent-PgSQL-queries-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:31.386Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "PgSQL-transactions-ecs", - "title": "Slowest PgSQL Queries [Packetbeat] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Average Response Time (ns)", - "field": "event.duration" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "query", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Slowest PgSQL Queries [Packetbeat] ECS", - "type": "table" - } - }, - "id": "Slowest-PgSQL-queries-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:31.386Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "method", - "type", - "path", - "event.duration", - "status" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "status", - "negate": true, - "params": { - "query": "OK", - "type": "phrase" - }, - "type": "phrase", - "value": "OK" - }, - "query": { - "match": { - "status": { - "query": "OK", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "pgsql", - "type": "phrase" - }, - "type": "phrase", - "value": "pgsql" - }, - "query": { - "match": { - "event.dataset": { - "query": "pgsql", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ] - }, - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "PgSQL Errors Search [Packetbeat] ECS", - "version": 1 - }, - "id": "PgSQL-errors-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:31.386Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "method", - "type", - "path", - "event.duration", - "status" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "pgsql", - "type": "phrase" - }, - "type": "phrase", - "value": "pgsql" - }, - "query": { - "match": { - "event.dataset": { - "query": "pgsql", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ] - }, - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "PgSQL Transactions [Packetbeat] ECS", - "version": 1 - }, - "id": "PgSQL-transactions-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:31.386Z", - "version": 1 - }, - { - "attributes": { - "description": "Postgres database query performance.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "gridData": { - "h": 20, - "i": "1", - "w": 12, - "x": 0, - "y": 0 - }, - "id": "Navigation-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 20, - "i": "2", - "w": 20, - "x": 12, - "y": 0 - }, - "id": "PgSQL-Errors-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 20, - "i": "3", - "w": 16, - "x": 32, - "y": 0 - }, - "id": "PgSQL-Methods-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 15, - "i": "4", - "w": 48, - "x": 0, - "y": 20 - }, - "id": "PgSQL-response-times-percentiles-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 15, - "i": "5", - "w": 24, - "x": 24, - "y": 35 - }, - "id": "PgSQL-throughput-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 15, - "i": "6", - "w": 24, - "x": 0, - "y": 35 - }, - "id": "PgSQL-Reads-vs-Writes-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 30, - "i": "7", - "w": 24, - "x": 0, - "y": 50 - }, - "id": "Most-frequent-PgSQL-queries-ecs", - "panelIndex": "7", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 30, - "i": "8", - "w": 24, - "x": 24, - "y": 50 - }, - "id": "Slowest-PgSQL-queries-ecs", - "panelIndex": "8", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Packetbeat] PgSQL performance ECS", - "version": 1 - }, - "id": "Packetbeat-PgSQL-performance-ecs", - "type": "dashboard", - "updated_at": "2019-01-18T23:49:31.386Z", - "version": 1 - } - ], - "version": "7.0.0-SNAPSHOT" -} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-pgsql.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-pgsql.ndjson new file mode 100644 index 00000000000..17cf931d848 --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-pgsql.ndjson @@ -0,0 +1,11 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} +{"attributes":{"columns":["method","type","path","event.duration","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"status\",\"negate\":true,\"params\":{\"query\":\"OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"status\":{\"query\":\"OK\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"pgsql\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"pgsql\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"pgsql\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"PgSQL Errors Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"PgSQL-errors-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"PgSQL Errors [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"PgSQL Errors [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"PgSQL-Errors-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"PgSQL-errors-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMTIsMV0="} +{"attributes":{"columns":["method","type","path","event.duration","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"pgsql\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"pgsql\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"pgsql\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"PgSQL Transactions [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"PgSQL-transactions-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"PgSQL Methods [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"method\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"wiggle\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"wiggle\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"PgSQL Methods [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"PgSQL-Methods-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"PgSQL-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"PgSQL response times percentiles [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[75,99,99.5]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Percentiles of event.duration\"},\"mode\":\"normal\",\"show\":\"true\",\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"shareYAxis\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Percentiles of event.duration\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"PgSQL response times percentiles [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"PgSQL-response-times-percentiles-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"PgSQL-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"PgSQL Throughput [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Sum of destination.bytes\"},\"mode\":\"normal\",\"show\":\"true\",\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"2\",\"label\":\"Sum of source.bytes\"},\"mode\":\"normal\",\"show\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"shareYAxis\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"PgSQL Throughput [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"PgSQL-throughput-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"PgSQL-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"PgSQL Reads vs Writes [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"filters\":[{\"input\":{\"query\":\"method: SELECT\",\"language\":\"lucene\"}},{\"input\":{\"query\":\"method: INSERT OR method: UPDATE OR method: DELETE\",\"language\":\"lucene\"}}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per 30 seconds\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"PgSQL Reads vs Writes [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"PgSQL-Reads-vs-Writes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"PgSQL-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Most frequent PgSQL queries [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"query\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Most frequent PgSQL queries [Packetbeat] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Most-frequent-PgSQL-queries-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"PgSQL-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Slowest PgSQL Queries [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Average Response Time (ns)\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"query\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Slowest PgSQL Queries [Packetbeat] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Slowest-PgSQL-queries-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"PgSQL-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMTgsMV0="} +{"attributes":{"description":"Postgres database query performance.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"2\",\"w\":20,\"x\":12,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"3\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":48,\"x\":0,\"y\":20},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":35},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":35},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":30,\"i\":\"7\",\"w\":24,\"x\":0,\"y\":50},\"panelIndex\":\"7\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":30,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":50},\"panelIndex\":\"8\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Packetbeat] PgSQL performance ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-PgSQL-performance-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Navigation-ecs","name":"panel_0","type":"visualization"},{"id":"PgSQL-Errors-ecs","name":"panel_1","type":"visualization"},{"id":"PgSQL-Methods-ecs","name":"panel_2","type":"visualization"},{"id":"PgSQL-response-times-percentiles-ecs","name":"panel_3","type":"visualization"},{"id":"PgSQL-throughput-ecs","name":"panel_4","type":"visualization"},{"id":"PgSQL-Reads-vs-Writes-ecs","name":"panel_5","type":"visualization"},{"id":"Most-frequent-PgSQL-queries-ecs","name":"panel_6","type":"visualization"},{"id":"Slowest-PgSQL-queries-ecs","name":"panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMjEsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-thrift.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-thrift.json deleted file mode 100644 index 26569a1081f..00000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-thrift.json +++ /dev/null @@ -1,725 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### Packetbeat:\n\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\n\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\n\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\n\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\n\n[TLS Overview](#/dashboard/tls-sessions-ecs)\n\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\n\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\n\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\n\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)", - "openLinksInNewTab": false - }, - "title": "Navigation [Packetbeat] ECS", - "type": "markdown" - } - }, - "id": "Navigation-ecs", - "type": "visualization", - "updated_at": "2019-01-19T00:18:59.372Z", - "version": 11 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Thrift-transactions-ecs", - "title": "Thrift requests per minute [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "m", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "shareYAxis": true, - "times": [], - "yAxis": {} - }, - "title": "Thrift requests per minute ECS", - "type": "histogram" - } - }, - "id": "Thrift-requests-per-minute-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:32.418Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Thrift-errors-ecs", - "title": "Thrift RPC Errors [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "id": "2", - "params": { - "customInterval": "2h", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "interpolate": "linear", - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "shareYAxis": true, - "smoothLines": false, - "times": [], - "yAxis": {} - }, - "title": "Thrift RPC Errors ECS", - "type": "area" - } - }, - "id": "Thrift-RPC-Errors-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:32.418Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "Thrift-transactions-ecs", - "title": "Slowest Thrift RPC methods [Packetbeat] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "event.duration" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "method", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Slowest Thrift RPC methods [Packetbeat] ECS", - "type": "table" - } - }, - "id": "Slowest-Thrift-RPC-methods-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:32.418Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "Thrift-transactions-ecs", - "title": "Thrift response times percentiles [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "event.duration", - "percents": [ - 75, - 99, - 99.5 - ] - }, - "schema": "metric", - "type": "percentiles" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Percentiles of event.duration" - }, - "mode": "normal", - "show": "true", - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "shareYAxis": true, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Percentiles of event.duration" - }, - "type": "value" - } - ] - }, - "title": "Thrift response times percentiles [Packetbeat] ECS", - "type": "line" - } - }, - "id": "Thrift-response-times-percentiles-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:32.418Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Thrift-transactions-ecs", - "title": "Top Thrift-RPC methods [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "id": "2", - "params": { - "field": "method", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTimeMarker": false, - "addTooltip": true, - "defaultYExtents": false, - "mode": "stacked", - "scale": "linear", - "setYExtents": false, - "shareYAxis": true, - "times": [], - "yAxis": {} - }, - "title": "Top Thrift-RPC methods ECS", - "type": "histogram" - } - }, - "id": "Top-Thrift-RPC-methods-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:32.418Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchId": "Thrift-errors-ecs", - "title": "Top Thrift-RPC calls with errors [Packetbeat] ECS", - "version": 1, - "visState": { - "aggs": [ - { - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "id": "2", - "params": { - "field": "method", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "defaultYExtents": false, - "mode": "stacked", - "shareYAxis": true - }, - "type": "histogram" - } - }, - "id": "Top-Thrift-RPC-calls-with-errors-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:32.418Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "method", - "type", - "path", - "event.duration", - "status" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "thrift", - "type": "phrase" - }, - "type": "phrase", - "value": "thrift" - }, - "query": { - "match": { - "event.dataset": { - "query": "thrift", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ] - }, - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "type: thrift" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Thrift Transactions Search [Packetbeat] ECS", - "version": 1 - }, - "id": "Thrift-transactions-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:32.418Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "method", - "type", - "path", - "event.duration", - "status" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "status", - "negate": true, - "params": { - "query": "OK", - "type": "phrase" - }, - "type": "phrase", - "value": "OK" - }, - "query": { - "match": { - "status": { - "query": "OK", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "thrift", - "type": "phrase" - }, - "type": "phrase", - "value": "thrift" - }, - "query": { - "match": { - "event.dataset": { - "query": "thrift", - "type": "phrase" - } - } - } - } - ], - "highlight": { - "fields": { - "*": {} - }, - "post_tags": [ - "@/kibana-highlighted-field@" - ], - "pre_tags": [ - "@kibana-highlighted-field@" - ] - }, - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "type: thrift" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Thrift Errors [Packetbeat] ECS", - "version": 1 - }, - "id": "Thrift-errors-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:32.418Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "id": "Navigation-ecs", - "panelIndex": 1, - "row": 1, - "size_x": 3, - "size_y": 4, - "type": "visualization" - }, - { - "col": 4, - "id": "Thrift-requests-per-minute-ecs", - "panelIndex": 2, - "row": 1, - "size_x": 5, - "size_y": 4, - "type": "visualization" - }, - { - "col": 9, - "id": "Thrift-RPC-Errors-ecs", - "panelIndex": 3, - "row": 1, - "size_x": 4, - "size_y": 4, - "type": "visualization" - }, - { - "col": 1, - "id": "Slowest-Thrift-RPC-methods-ecs", - "panelIndex": 4, - "row": 5, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 7, - "id": "Thrift-response-times-percentiles-ecs", - "panelIndex": 5, - "row": 5, - "size_x": 6, - "size_y": 3, - "type": "visualization" - }, - { - "col": 1, - "id": "Top-Thrift-RPC-methods-ecs", - "panelIndex": 6, - "row": 8, - "size_x": 6, - "size_y": 4, - "type": "visualization" - }, - { - "col": 7, - "id": "Top-Thrift-RPC-calls-with-errors-ecs", - "panelIndex": 7, - "row": 8, - "size_x": 6, - "size_y": 4, - "type": "visualization" - } - ], - "timeRestore": false, - "title": "[Packetbeat] Thrift performance ECS", - "uiStateJSON": { - "P-4": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - } - }, - "version": 1 - }, - "id": "Packetbeat-Thrift-performance-ecs", - "type": "dashboard", - "updated_at": "2019-01-18T23:49:32.418Z", - "version": 1 - } - ], - "version": "7.0.0-SNAPSHOT" -} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-thrift.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-thrift.ndjson new file mode 100644 index 00000000000..a3c02c4df1b --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-thrift.ndjson @@ -0,0 +1,10 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} +{"attributes":{"columns":["method","type","path","event.duration","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"thrift\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"thrift\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"thrift\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"type: thrift\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Thrift Transactions Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Thrift-transactions-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:47.238Z","version":"WzMyMjksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Thrift requests per minute [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"m\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Thrift requests per minute ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Thrift-requests-per-minute-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Thrift-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:47.238Z","version":"WzMyMjMsMV0="} +{"attributes":{"columns":["method","type","path","event.duration","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"status\",\"negate\":true,\"params\":{\"query\":\"OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"status\":{\"query\":\"OK\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"thrift\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"thrift\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"thrift\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"type: thrift\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Thrift Errors [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Thrift-errors-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:47.238Z","version":"WzMyMzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Thrift RPC Errors [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"yAxis\":{}},\"title\":\"Thrift RPC Errors ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"Thrift-RPC-Errors-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Thrift-errors-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:47.238Z","version":"WzMyMjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Slowest Thrift RPC methods [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"method\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Slowest Thrift RPC methods [Packetbeat] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Slowest-Thrift-RPC-methods-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Thrift-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:47.238Z","version":"WzMyMjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Thrift response times percentiles [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[75,99,99.5]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Percentiles of event.duration\"},\"mode\":\"normal\",\"show\":\"true\",\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"shareYAxis\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Percentiles of event.duration\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Thrift response times percentiles [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Thrift-response-times-percentiles-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Thrift-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:47.238Z","version":"WzMyMjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Top Thrift-RPC methods [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"field\":\"method\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Top Thrift-RPC methods ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Top-Thrift-RPC-methods-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Thrift-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:47.238Z","version":"WzMyMjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Top Thrift-RPC calls with errors [Packetbeat] ECS","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"field\":\"method\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"mode\":\"stacked\",\"shareYAxis\":true},\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Top-Thrift-RPC-calls-with-errors-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Thrift-errors-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:47.238Z","version":"WzMyMjgsMV0="} +{"attributes":{"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":12,\"h\":16,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":12,\"y\":0,\"w\":20,\"h\":16,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":0,\"w\":16,\"h\":16,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":16,\"w\":24,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":16,\"w\":24,\"h\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":28,\"w\":24,\"h\":16,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":28,\"w\":24,\"h\":16,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Packetbeat] Thrift performance ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-Thrift-performance-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Navigation-ecs","name":"1:panel_1","type":"visualization"},{"id":"Thrift-requests-per-minute-ecs","name":"2:panel_2","type":"visualization"},{"id":"Thrift-RPC-Errors-ecs","name":"3:panel_3","type":"visualization"},{"id":"Slowest-Thrift-RPC-methods-ecs","name":"4:panel_4","type":"visualization"},{"id":"Thrift-response-times-percentiles-ecs","name":"5:panel_5","type":"visualization"},{"id":"Top-Thrift-RPC-methods-ecs","name":"6:panel_6","type":"visualization"},{"id":"Top-Thrift-RPC-calls-with-errors-ecs","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:47.238Z","version":"WzMyMzEsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-tls.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-tls.json deleted file mode 100644 index 74256ffe95e..00000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-tls.json +++ /dev/null @@ -1,1605 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### Packetbeat:\n\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\n\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\n\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\n\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\n\n[TLS Overview](#/dashboard/tls-sessions-ecs)\n\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\n\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\n\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\n\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)", - "openLinksInNewTab": false - }, - "title": "Navigation [Packetbeat] ECS", - "type": "markdown" - } - }, - "id": "Navigation-ecs", - "type": "visualization", - "updated_at": "2019-01-19T00:18:59.372Z", - "version": 11 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs", - "title": "TLS Sessions [Packetbeat] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "false": "#E24D42", - "true": "#7EB26D" - }, - "legendOpen": false - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "customLabel": "Sessions per minute", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Handshake completed", - "field": "tls.established", - "json": "", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - }, - "valueAxis": "ValueAxis-1" - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "TLS Sessions ECS", - "type": "histogram" - } - }, - "id": "059fe5e0-d2dd-11e7-9914-4982455b3063-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "query", - "negate": false, - "type": "custom", - "value": "{\"exists\":{\"field\":\"tls\"}}" - }, - "query": { - "exists": { - "field": "tls" - } - } - } - ], - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "TLS Alerts [Packetbeat] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "None": "#7EB26D", - "handshake_failure": "#E24D42" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "tls.detailed.alert_types", - "include": ".*", - "json": "{\"missing\": \"None\"}", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right", - "type": "pie" - }, - "title": "TLS Alerts ECS", - "type": "pie" - } - }, - "id": "c14377a0-d353-11e7-9914-4982455b3063-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "tls.established" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "tls.established", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Total Number of TLS Sessions [Packetbeat] ECS", - "uiStateJSON": { - "P-5": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "P-7": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Total Number of TLS Sessions ECS", - "type": "metric" - } - }, - "id": "061de380-d361-11e7-9914-4982455b3063-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "94908e80-d2d8-11e7-9914-4982455b3063-ecs", - "title": "TLS Server Name Indication [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Server Name Indication", - "field": "tls.client.server_name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "hideLabel": false, - "maxFontSize": 64, - "minFontSize": 14, - "orientation": "single", - "scale": "linear" - }, - "title": "TLS Server Name Indication ECS", - "type": "tagcloud" - } - }, - "id": "a28d09d0-d361-11e7-9914-4982455b3063-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "bf3d23b0-d37c-11e7-9914-4982455b3063-ecs", - "title": "TLS Versions [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "TLS version", - "field": "tls.detailed.version", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right", - "type": "pie" - }, - "title": "TLS Versions ECS", - "type": "pie" - } - }, - "id": "0af0b790-d37d-11e7-9914-4982455b3063-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "8f0ff590-d37d-11e7-9914-4982455b3063-ecs", - "title": "TLS Server Public Key Size [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Public Key Size", - "field": "tls.detailed.server_certificate.public_key_size", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right", - "type": "pie" - }, - "title": "Server Public Key Size ECS", - "type": "pie" - } - }, - "id": "ae6e33c0-d37d-11e7-9914-4982455b3063-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs", - "title": "TLS Session Resume [Packetbeat] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "exclude": "", - "field": "tls.detailed.resumption_method", - "json": "{\n\"missing\": \"none\"\n}", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "TLS Session Resume [Packetbeat] ECS", - "type": "pie" - } - }, - "id": "2c467370-d392-11e7-8fa0-232aa9259081-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs", - "title": "TLS Server Certificates [Packetbeat] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Subject Common Name", - "field": "tls.detailed.server_certificate.subject.common_name", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Organization", - "field": "tls.detailed.server_certificate.subject.organization", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "TLS Server Certificates ECS", - "type": "table" - } - }, - "id": "0958a910-d396-11e7-8fa0-232aa9259081-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs", - "title": "TLS Client Certificates [Packetbeat] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Subject Common Name", - "field": "tls.detailed.client_certificate.subject.common_name", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Signature Algorithm", - "field": "tls.detailed.client_certificate.signature_algorithm", - "json": "{ \"missing\": \"N/A\" }", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "TLS Client Certificates ECS", - "type": "table" - } - }, - "id": "86743f90-d396-11e7-8fa0-232aa9259081-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs", - "title": "TLS Cipher [Packetbeat] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Cipher", - "field": "tls.cipher", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "TLS Cipher ECS", - "type": "table" - } - }, - "id": "463d2bf0-d3a8-11e7-9081-ab2af08e9961-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "6b1b1360-d49d-11e7-996f-bd7c1ca4591b-ecs", - "title": "TLS Fingerprint [Packetbeat] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "JA3 Fingerprint", - "field": "tls.client.ja3", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "TLS Fingerprint ECS", - "type": "table" - } - }, - "id": "ad2a8b50-d49d-11e7-996f-bd7c1ca4591b-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "event.duration", - "negate": false, - "params": { - "gte": 0, - "lt": 1000000000 - }, - "type": "range", - "value": "0 to 1,000,000,000" - }, - "range": { - "event.duration": { - "gte": 0, - "lt": 1000000000 - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "8e2af860-d520-11e7-9fff-7b1ebf397ba9-ecs", - "title": "TLS Handshake Latency [Packetbeat] ECS", - "uiStateJSON": { - "vis": { - "legendOpen": false - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Handshake Latency (ns)", - "extended_bounds": {}, - "field": "event.duration", - "interval": 2000000 - }, - "schema": "segment", - "type": "histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "TLS Handshake Latency ECS", - "type": "area" - } - }, - "id": "d2e15950-d560-11e7-9fff-7b1ebf397ba9-ecs", - "type": "visualization", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "tls.established" - }, - "meta": { - "alias": "TLS sessions", - "disabled": false, - "index": "packetbeat-*", - "key": "tls.established", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "TLS Sessions [Packetbeat] ECS", - "version": 1 - }, - "id": "ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "tls.client.server_name" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "tls.client.server_name", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "TLS Server Name Indication [Packetbeat] ECS", - "version": 1 - }, - "id": "94908e80-d2d8-11e7-9914-4982455b3063-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "tls.detailed.version" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "tls.detailed.version", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "TLS Version [Packetbeat] ECS", - "version": 1 - }, - "id": "bf3d23b0-d37c-11e7-9914-4982455b3063-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "tls.detailed.server_certificate.public_key_size" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "tls.detailed.server_certificate.public_key_size", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Server Public Key Size ECS", - "version": 1 - }, - "id": "8f0ff590-d37d-11e7-9914-4982455b3063-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "tls.client.ja3" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "tls.client.ja3", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "TLS Fingerprint [Packetbeat] ECS", - "version": 1 - }, - "id": "6b1b1360-d49d-11e7-996f-bd7c1ca4591b-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "tls.established" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "tls.established", - "negate": false, - "type": "exists", - "value": "exists" - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "event.duration" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "packetbeat-*", - "key": "event.duration", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "highlightAll": true, - "index": "packetbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "TLS Handshake Latency [Packetbeat] ECS", - "version": 1 - }, - "id": "8e2af860-d520-11e7-9fff-7b1ebf397ba9-ecs", - "type": "search", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - }, - { - "attributes": { - "description": "TLS Sessions ECS", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "useMargins": false - }, - "panelsJSON": [ - { - "gridData": { - "h": 4, - "i": "4", - "w": 3, - "x": 0, - "y": 0 - }, - "id": "Navigation-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 4, - "i": "8", - "w": 9, - "x": 3, - "y": 0 - }, - "id": "059fe5e0-d2dd-11e7-9914-4982455b3063-ecs", - "panelIndex": "8", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "9", - "w": 3, - "x": 3, - "y": 7 - }, - "id": "c14377a0-d353-11e7-9914-4982455b3063-ecs", - "panelIndex": "9", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "10", - "w": 3, - "x": 0, - "y": 4 - }, - "id": "061de380-d361-11e7-9914-4982455b3063-ecs", - "panelIndex": "10", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "11", - "w": 12, - "x": 0, - "y": 10 - }, - "id": "a28d09d0-d361-11e7-9914-4982455b3063-ecs", - "panelIndex": "11", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "12", - "w": 3, - "x": 6, - "y": 7 - }, - "id": "0af0b790-d37d-11e7-9914-4982455b3063-ecs", - "panelIndex": "12", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "13", - "w": 3, - "x": 9, - "y": 7 - }, - "id": "ae6e33c0-d37d-11e7-9914-4982455b3063-ecs", - "panelIndex": "13", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "14", - "w": 3, - "x": 0, - "y": 7 - }, - "id": "2c467370-d392-11e7-8fa0-232aa9259081-ecs", - "panelIndex": "14", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "15", - "w": 6, - "x": 0, - "y": 13 - }, - "id": "0958a910-d396-11e7-8fa0-232aa9259081-ecs", - "panelIndex": "15", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "16", - "w": 6, - "x": 0, - "y": 16 - }, - "id": "86743f90-d396-11e7-8fa0-232aa9259081-ecs", - "panelIndex": "16", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "17", - "w": 6, - "x": 6, - "y": 13 - }, - "id": "463d2bf0-d3a8-11e7-9081-ab2af08e9961-ecs", - "panelIndex": "17", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "18", - "w": 6, - "x": 6, - "y": 16 - }, - "id": "ad2a8b50-d49d-11e7-996f-bd7c1ca4591b-ecs", - "panelIndex": "18", - "type": "visualization", - "version": "6.2.4" - }, - { - "gridData": { - "h": 3, - "i": "19", - "w": 9, - "x": 3, - "y": 4 - }, - "id": "d2e15950-d560-11e7-9fff-7b1ebf397ba9-ecs", - "panelIndex": "19", - "type": "visualization", - "version": "6.2.4" - } - ], - "timeRestore": false, - "title": "[Packetbeat] TLS Sessions ECS", - "uiStateJSON": { - "P-15": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-16": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-17": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-18": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-5": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "P-7": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - } - }, - "version": 1 - }, - "id": "tls-sessions-ecs", - "type": "dashboard", - "updated_at": "2019-01-18T23:49:33.441Z", - "version": 1 - } - ], - "version": "7.0.0-SNAPSHOT" -} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-tls.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-tls.ndjson new file mode 100644 index 00000000000..266f1f6a85d --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-tls.ndjson @@ -0,0 +1,20 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.established\"},\"meta\":{\"alias\":\"TLS sessions\",\"disabled\":false,\"key\":\"tls.established\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"TLS Sessions [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Sessions [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"false\": \"#E24D42\", \"true\": \"#7EB26D\"}, \"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Sessions per minute\",\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Handshake completed\",\"field\":\"tls.established\",\"json\":\"\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"},\"valueAxis\":\"ValueAxis-1\"},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"TLS Sessions ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"059fe5e0-d2dd-11e7-9914-4982455b3063-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"query\",\"negate\":false,\"type\":\"custom\",\"value\":\"{\\\"exists\\\":{\\\"field\\\":\\\"tls\\\"}}\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"exists\":{\"field\":\"tls\"}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"TLS Alerts [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"None\": \"#7EB26D\", \"handshake_failure\": \"#E24D42\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"tls.detailed.alert_types\",\"include\":\".*\",\"json\":\"{\\\"missing\\\": \\\"None\\\"}\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"TLS Alerts ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"c14377a0-d353-11e7-9914-4982455b3063-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.established\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"tls.established\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Total Number of TLS Sessions [Packetbeat] ECS","uiStateJSON":"{\"P-5\": {\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}, \"P-7\": {\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total Number of TLS Sessions ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"061de380-d361-11e7-9914-4982455b3063-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzUsMV0="} +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.client.server_name\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"tls.client.server_name\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"TLS Server Name Indication [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"94908e80-d2d8-11e7-9914-4982455b3063-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Server Name Indication [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Server Name Indication\",\"field\":\"tls.client.server_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"hideLabel\":false,\"maxFontSize\":64,\"minFontSize\":14,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"TLS Server Name Indication ECS\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"a28d09d0-d361-11e7-9914-4982455b3063-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"94908e80-d2d8-11e7-9914-4982455b3063-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzYsMV0="} +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.detailed.version\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"tls.detailed.version\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"TLS Version [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"bf3d23b0-d37c-11e7-9914-4982455b3063-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Versions [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"TLS version\",\"field\":\"tls.detailed.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"TLS Versions ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0af0b790-d37d-11e7-9914-4982455b3063-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"bf3d23b0-d37c-11e7-9914-4982455b3063-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzcsMV0="} +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.detailed.server_certificate.public_key_size\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"tls.detailed.server_certificate.public_key_size\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Server Public Key Size ECS","version":1},"coreMigrationVersion":"8.0.0","id":"8f0ff590-d37d-11e7-9914-4982455b3063-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Server Public Key Size [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Public Key Size\",\"field\":\"tls.detailed.server_certificate.public_key_size\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Server Public Key Size ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"ae6e33c0-d37d-11e7-9914-4982455b3063-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"8f0ff590-d37d-11e7-9914-4982455b3063-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Session Resume [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"exclude\":\"\",\"field\":\"tls.detailed.resumption_method\",\"json\":\"{\\n\\\"missing\\\": \\\"none\\\"\\n}\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"TLS Session Resume [Packetbeat] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"2c467370-d392-11e7-8fa0-232aa9259081-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Server Certificates [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Subject Common Name\",\"field\":\"tls.detailed.server_certificate.subject.common_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Organization\",\"field\":\"tls.detailed.server_certificate.subject.organization\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"TLS Server Certificates ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"0958a910-d396-11e7-8fa0-232aa9259081-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Client Certificates [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Subject Common Name\",\"field\":\"tls.detailed.client_certificate.subject.common_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Signature Algorithm\",\"field\":\"tls.detailed.client_certificate.signature_algorithm\",\"json\":\"{ \\\"missing\\\": \\\"N/A\\\" }\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"TLS Client Certificates ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"86743f90-d396-11e7-8fa0-232aa9259081-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Cipher [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Cipher\",\"field\":\"tls.cipher\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"TLS Cipher ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"463d2bf0-d3a8-11e7-9081-ab2af08e9961-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDIsMV0="} +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.client.ja3\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"tls.client.ja3\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"TLS Fingerprint [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"6b1b1360-d49d-11e7-996f-bd7c1ca4591b-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Fingerprint [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"JA3 Fingerprint\",\"field\":\"tls.client.ja3\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"TLS Fingerprint ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"ad2a8b50-d49d-11e7-996f-bd7c1ca4591b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6b1b1360-d49d-11e7-996f-bd7c1ca4591b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDMsMV0="} +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.established\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"tls.established\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}},{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"event.duration\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.duration\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"TLS Handshake Latency [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"8e2af860-d520-11e7-9fff-7b1ebf397ba9-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.duration\",\"negate\":false,\"params\":{\"gte\":0,\"lt\":1000000000},\"type\":\"range\",\"value\":\"0 to 1,000,000,000\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"range\":{\"event.duration\":{\"gte\":0,\"lt\":1000000000}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Handshake Latency [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Handshake Latency (ns)\",\"extended_bounds\":{},\"field\":\"event.duration\",\"interval\":2000000},\"schema\":\"segment\",\"type\":\"histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"TLS Handshake Latency ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"d2e15950-d560-11e7-9fff-7b1ebf397ba9-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"8e2af860-d520-11e7-9fff-7b1ebf397ba9-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDQsMV0="} +{"attributes":{"description":"TLS Sessions ECS","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":16,\"x\":0,\"y\":0,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":36,\"h\":16,\"x\":12,\"y\":0,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":12,\"x\":12,\"y\":28,\"i\":\"9\"},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":12,\"x\":0,\"y\":16,\"i\":\"10\"},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":48,\"h\":12,\"x\":0,\"y\":40,\"i\":\"11\"},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":12,\"x\":24,\"y\":28,\"i\":\"12\"},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":12,\"x\":36,\"y\":28,\"i\":\"13\"},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":12,\"x\":0,\"y\":28,\"i\":\"14\"},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":52,\"i\":\"15\"},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":64,\"i\":\"16\"},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":52,\"i\":\"17\"},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":64,\"i\":\"18\"},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":36,\"h\":12,\"x\":12,\"y\":16,\"i\":\"19\"},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"}]","timeRestore":false,"title":"[Packetbeat] TLS Sessions ECS","version":1},"coreMigrationVersion":"8.0.0","id":"tls-sessions-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Navigation-ecs","name":"4:panel_4","type":"visualization"},{"id":"059fe5e0-d2dd-11e7-9914-4982455b3063-ecs","name":"8:panel_8","type":"visualization"},{"id":"c14377a0-d353-11e7-9914-4982455b3063-ecs","name":"9:panel_9","type":"visualization"},{"id":"061de380-d361-11e7-9914-4982455b3063-ecs","name":"10:panel_10","type":"visualization"},{"id":"a28d09d0-d361-11e7-9914-4982455b3063-ecs","name":"11:panel_11","type":"visualization"},{"id":"0af0b790-d37d-11e7-9914-4982455b3063-ecs","name":"12:panel_12","type":"visualization"},{"id":"ae6e33c0-d37d-11e7-9914-4982455b3063-ecs","name":"13:panel_13","type":"visualization"},{"id":"2c467370-d392-11e7-8fa0-232aa9259081-ecs","name":"14:panel_14","type":"visualization"},{"id":"0958a910-d396-11e7-8fa0-232aa9259081-ecs","name":"15:panel_15","type":"visualization"},{"id":"86743f90-d396-11e7-8fa0-232aa9259081-ecs","name":"16:panel_16","type":"visualization"},{"id":"463d2bf0-d3a8-11e7-9081-ab2af08e9961-ecs","name":"17:panel_17","type":"visualization"},{"id":"ad2a8b50-d49d-11e7-996f-bd7c1ca4591b-ecs","name":"18:panel_18","type":"visualization"},{"id":"d2e15950-d560-11e7-9fff-7b1ebf397ba9-ecs","name":"19:panel_19","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNTEsMV0="} diff --git a/winlogbeat/_meta/kibana/7/dashboard/Winlogbeat-overview.json b/winlogbeat/_meta/kibana/7/dashboard/Winlogbeat-overview.json deleted file mode 100644 index 55e59e35814..00000000000 --- a/winlogbeat/_meta/kibana/7/dashboard/Winlogbeat-overview.json +++ /dev/null @@ -1,675 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of all Windows Event Logs.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "gridData": { - "h": 20, - "i": "1", - "w": 36, - "x": 12, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 20, - "i": "3", - "w": 12, - "x": 0, - "y": 0 - }, - "panelIndex": "3", - "panelRefName": "panel_1", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 20, - "i": "4", - "w": 16, - "x": 16, - "y": 20 - }, - "panelIndex": "4", - "panelRefName": "panel_2", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 20, - "i": "5", - "w": 16, - "x": 32, - "y": 20 - }, - "panelIndex": "5", - "panelRefName": "panel_3", - "version": "7.0.0-SNAPSHOT" - }, - { - "gridData": { - "h": 20, - "i": "6", - "w": 16, - "x": 0, - "y": 20 - }, - "panelIndex": "6", - "panelRefName": "panel_4", - "version": "7.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Winlogbeat] Overview", - "version": 1 - }, - "id": "Winlogbeat-Dashboard-ecs", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "Number-of-Events-Over-Time-By-Event-Log-ecs", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "Number-of-Events-ecs", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "Top-Event-IDs-ecs", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "Event-Levels-ecs", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "Sources-ecs", - "name": "panel_4", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-02-05T19:56:19.932Z", - "version": 7 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Number of Events Over Time By Channel [Winlogbeat Overview]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "timeRange": { - "from": "now-15d", - "mode": "relative", - "to": "now" - }, - "time_zone": "America/Montreal", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Channel", - "field": "winlog.channel", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 6 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "dimensions": { - "series": [ - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "x": { - "accessor": 0, - "aggType": "date_histogram", - "format": { - "id": "date", - "params": { - "pattern": "YYYY-MM-DD HH:mm" - } - }, - "params": { - "bounds": { - "max": "2019-02-05T04:30:25.961Z", - "min": "2019-01-21T04:30:25.961Z" - }, - "date": true, - "format": "YYYY-MM-DD HH:mm", - "interval": 43200000 - } - }, - "y": [ - { - "accessor": 2, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "mode": "stacked", - "show": "true", - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "shareYAxis": true, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "yAxis": {} - }, - "title": "Number of Events Over Time By Channel [Winlogbeat Overview]", - "type": "histogram" - } - }, - "id": "Number-of-Events-Over-Time-By-Event-Log-ecs", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-02-05T19:56:19.932Z", - "version": 7 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Number of Events [Winlogbeat Overview]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - } - ], - "listeners": {}, - "params": { - "fontSize": 60 - }, - "type": "metric" - } - }, - "id": "Number-of-Events-ecs", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-02-05T19:56:19.932Z", - "version": 7 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top Event IDs [Winlogbeat Overview]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Event IDs", - "field": "winlog.event_id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top Event IDs [Winlogbeat Overview]", - "type": "table" - } - }, - "id": "Top-Event-IDs-ecs", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-02-05T19:56:19.932Z", - "version": 7 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Event Levels [Winlogbeat Overview]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Log Levels", - "field": "log.level", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Event Levels [Winlogbeat Overview]", - "type": "table" - } - }, - "id": "Event-Levels-ecs", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-02-05T19:56:19.932Z", - "version": 7 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Sources (Provider Names) [Winlogbeat Overview]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "winlog.provider_name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 7 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "shareYAxis": true, - "type": "pie" - }, - "title": "Sources (Provider Names) [Winlogbeat Overview]", - "type": "pie" - } - }, - "id": "Sources-ecs", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-02-05T19:56:19.932Z", - "version": 7 - } - ], - "version": "7.0.0-SNAPSHOT" -} diff --git a/winlogbeat/_meta/kibana/7/dashboard/Winlogbeat-overview.ndjson b/winlogbeat/_meta/kibana/7/dashboard/Winlogbeat-overview.ndjson new file mode 100644 index 00000000000..5c2f3cb6dca --- /dev/null +++ b/winlogbeat/_meta/kibana/7/dashboard/Winlogbeat-overview.ndjson @@ -0,0 +1,6 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Number of Events Over Time By Channel [Winlogbeat Overview]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15d\",\"mode\":\"relative\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Channel\",\"field\":\"winlog.channel\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":6},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"params\":{\"bounds\":{\"max\":\"2019-02-05T04:30:25.961Z\",\"min\":\"2019-01-21T04:30:25.961Z\"},\"date\":true,\"format\":\"YYYY-MM-DD HH:mm\",\"interval\":43200000}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Number of Events Over Time By Channel [Winlogbeat Overview]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"7.14.0","id":"Number-of-Events-Over-Time-By-Event-Log-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:52.287Z","version":"WzIxNzQsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Number of Events [Winlogbeat Overview]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"fontSize\":60},\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"Number-of-Events-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:52.287Z","version":"WzIxNzUsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top Event IDs [Winlogbeat Overview]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Event IDs\",\"field\":\"winlog.event_id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Event IDs [Winlogbeat Overview]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"Top-Event-IDs-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:52.287Z","version":"WzIxNzYsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Event Levels [Winlogbeat Overview]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Log Levels\",\"field\":\"log.level\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Event Levels [Winlogbeat Overview]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"Event-Levels-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:52.287Z","version":"WzIxNzcsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Sources (Provider Names) [Winlogbeat Overview]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"winlog.provider_name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":7},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Sources (Provider Names) [Winlogbeat Overview]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"Sources-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:52.287Z","version":"WzIxNzgsMl0="} +{"attributes":{"description":"Overview of all Windows Event Logs.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"3\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"4\",\"w\":16,\"x\":16,\"y\":20},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"5\",\"w\":16,\"x\":32,\"y\":20},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"6\",\"w\":16,\"x\":0,\"y\":20},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Winlogbeat] Overview","version":1},"coreMigrationVersion":"7.14.0","id":"Winlogbeat-Dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Number-of-Events-Over-Time-By-Event-Log-ecs","name":"panel_0","type":"visualization"},{"id":"Number-of-Events-ecs","name":"panel_1","type":"visualization"},{"id":"Top-Event-IDs-ecs","name":"panel_2","type":"visualization"},{"id":"Event-Levels-ecs","name":"panel_3","type":"visualization"},{"id":"Sources-ecs","name":"panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-11T13:18:52.287Z","version":"WzIxNzMsMl0="} diff --git a/winlogbeat/magefile.go b/winlogbeat/magefile.go index 65bb92af96e..002176ba1f4 100644 --- a/winlogbeat/magefile.go +++ b/winlogbeat/magefile.go @@ -50,3 +50,8 @@ func init() { // Update is an alias for update:all. This is a workaround for // https://github.com/magefile/mage/issues/217. func Update() { mg.Deps(winlogbeat.Update.All) } + +// Dashboards collects all the dashboards and generates index patterns. +func Dashboards() error { + return devtools.KibanaDashboards() +} diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-host-dashboard.json b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-host-dashboard.json deleted file mode 100644 index c3294edb8bb..00000000000 --- a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-host-dashboard.json +++ /dev/null @@ -1,829 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "system", - "type": "phrase" - }, - "type": "phrase", - "value": "system" - }, - "query": { - "match": { - "event.module": { - "query": "system", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Host Count [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Hosts", - "field": "host.id" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Host Count [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "cf8aa0a0-18ca-11e9-9094-c50574723088-ecs", - "type": "visualization", - "updated_at": "2019-02-03T20:37:18.796Z", - "version": 22 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "host", - "type": "phrase" - }, - "type": "phrase", - "value": "host" - }, - "query": { - "match": { - "event.dataset": { - "query": "host", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "OS Distribution [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "system.audit.host.id" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "OS", - "field": "system.audit.host.os.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "system.audit.host.os.version", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "OS Distribution [Auditbeat System] ECS", - "type": "pie" - } - }, - "id": "9dd991a0-18cb-11e9-9094-c50574723088-ecs", - "type": "visualization", - "updated_at": "2019-01-21T11:37:35.796Z", - "version": 24 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "host", - "type": "phrase" - }, - "type": "phrase", - "value": "host" - }, - "query": { - "match": { - "event.dataset": { - "query": "host", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Average Uptime [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Average Uptime in days", - "field": "system.audit.host.uptime" - }, - "schema": "metric", - "type": "avg" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Average Uptime [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "4d0485f0-18da-11e9-9094-c50574723088-ecs", - "type": "visualization", - "updated_at": "2019-01-21T11:57:55.023Z", - "version": 23 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "host", - "type": "phrase" - }, - "type": "phrase", - "value": "host" - }, - "query": { - "match": { - "event.dataset": { - "query": "host", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Host Documents [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Host States" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "time_zone": "Europe/London", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Host States" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Host States" - }, - "type": "value" - } - ] - }, - "title": "Host Documents [Auditbeat System] ECS", - "type": "histogram" - } - }, - "id": "eea92ad0-18d7-11e9-9094-c50574723088-ecs", - "type": "visualization", - "updated_at": "2019-02-04T09:26:47.877Z", - "version": 22 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "host", - "type": "phrase" - }, - "type": "phrase", - "value": "host" - }, - "query": { - "match": { - "event.dataset": { - "query": "host", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Host List [Auditbeat System] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": 1, - "direction": "asc" - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Hostname", - "field": "system.audit.host.hostname", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "aggregate": "max", - "customLabel": "Uptime (days)", - "field": "system.audit.host.uptime", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - }, - { - "enabled": true, - "id": "3", - "params": { - "aggregate": "concat", - "customLabel": "OS", - "field": "system.audit.host.os.name", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - }, - { - "enabled": true, - "id": "4", - "params": { - "aggregate": "concat", - "customLabel": "Version", - "field": "system.audit.host.os.version", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - }, - { - "enabled": true, - "id": "1", - "params": { - "aggregate": "concat", - "customLabel": "Host ID", - "field": "system.audit.host.id", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - }, - { - "enabled": true, - "id": "6", - "params": { - "aggregate": "concat", - "customLabel": "Status", - "field": "message", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Host List [Auditbeat System] ECS", - "type": "table" - } - }, - "id": "91962a30-1901-11e9-9094-c50574723088-ecs", - "type": "visualization", - "updated_at": "2019-01-21T11:58:22.519Z", - "version": 25 - }, - { - "attributes": { - "columns": [ - "system.audit.host.hostname", - "event.action", - "message" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "dfce2b60-18c7-11e9-9094-c50574723088", - "key": "event.dataset", - "negate": false, - "params": { - "query": "host", - "type": "phrase" - }, - "type": "phrase", - "value": "host" - }, - "query": { - "match": { - "event.dataset": { - "query": "host", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Host Events [Auditbeat System] ECS", - "version": 1 - }, - "id": "abe78cd0-18ca-11e9-9094-c50574723088-ecs", - "type": "search", - "updated_at": "2019-02-04T09:31:20.533Z", - "version": 6 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboard Links [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)", - "openLinksInNewTab": false - }, - "title": "Dashboard Links [Auditbeat System] ECS", - "type": "markdown" - } - }, - "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-04T11:37:25.234Z", - "version": 3 - }, - { - "attributes": { - "description": "System Hosts", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "1", - "w": 15, - "x": 0, - "y": 4 - }, - "id": "cf8aa0a0-18ca-11e9-9094-c50574723088-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "2", - "w": 17, - "x": 31, - "y": 4 - }, - "id": "9dd991a0-18cb-11e9-9094-c50574723088-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "4", - "w": 16, - "x": 15, - "y": 4 - }, - "id": "4d0485f0-18da-11e9-9094-c50574723088-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "5", - "w": 48, - "x": 0, - "y": 14 - }, - "id": "eea92ad0-18d7-11e9-9094-c50574723088-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "6", - "w": 48, - "x": 0, - "y": 21 - }, - "id": "91962a30-1901-11e9-9094-c50574723088-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 16, - "i": "7", - "w": 48, - "x": 0, - "y": 33 - }, - "id": "abe78cd0-18ca-11e9-9094-c50574723088-ecs", - "panelIndex": "7", - "type": "search", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 4, - "i": "8", - "w": 48, - "x": 0, - "y": 0 - }, - "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "8", - "type": "visualization", - "version": "7.0.0" - } - ], - "timeRestore": false, - "title": "[Auditbeat System] Host Dashboard ECS", - "version": 1 - }, - "id": "dfe62590-18da-11e9-9094-c50574723088-ecs", - "type": "dashboard", - "updated_at": "2019-02-04T11:25:58.146Z", - "version": 28 - } - ], - "version": "7.0.0" -} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-host-dashboard.ndjson b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-host-dashboard.ndjson new file mode 100644 index 00000000000..ae9fd00e4fc --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-host-dashboard.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"system\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"system\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"system\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Host Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Hosts\",\"field\":\"host.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Host Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"cf8aa0a0-18ca-11e9-9094-c50574723088-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"host\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"host\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"host\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"OS Distribution [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"system.audit.host.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"OS\",\"field\":\"system.audit.host.os.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"system.audit.host.os.version\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"OS Distribution [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"9dd991a0-18cb-11e9-9094-c50574723088-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"host\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"host\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"host\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Average Uptime [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Average Uptime in days\",\"field\":\"system.audit.host.uptime\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Average Uptime [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"4d0485f0-18da-11e9-9094-c50574723088-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:00.890Z","version":"WzQ5ODYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"host\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"host\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"host\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Host Documents [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Host States\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Host States\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Host States\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Host Documents [Auditbeat System] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"eea92ad0-18d7-11e9-9094-c50574723088-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:00.890Z","version":"WzQ5ODcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"host\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"host\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"host\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Host List [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 1, \"direction\": \"asc\"}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Hostname\",\"field\":\"system.audit.host.hostname\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"aggregate\":\"max\",\"customLabel\":\"Uptime (days)\",\"field\":\"system.audit.host.uptime\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"OS\",\"field\":\"system.audit.host.os.name\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Version\",\"field\":\"system.audit.host.os.version\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Host ID\",\"field\":\"system.audit.host.id\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Status\",\"field\":\"message\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Host List [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"91962a30-1901-11e9-9094-c50574723088-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMTYsMV0="} +{"attributes":{"columns":["system.audit.host.hostname","event.action","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"host\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"host\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"host\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Host Events [Auditbeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"abe78cd0-18ca-11e9-9094-c50574723088-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:36:00.890Z","version":"WzQ5ODksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Dashboard Links [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard Links [Auditbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTgsMV0="} +{"attributes":{"description":"System Hosts","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1\",\"w\":15,\"x\":0,\"y\":4},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"2\",\"w\":17,\"x\":31,\"y\":4},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"4\",\"w\":16,\"x\":15,\"y\":4},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":14},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":21},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":16,\"i\":\"7\",\"w\":48,\"x\":0,\"y\":33},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"8\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Auditbeat System] Host Dashboard ECS","version":1},"coreMigrationVersion":"8.0.0","id":"dfe62590-18da-11e9-9094-c50574723088-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"cf8aa0a0-18ca-11e9-9094-c50574723088-ecs","name":"1:panel_1","type":"visualization"},{"id":"9dd991a0-18cb-11e9-9094-c50574723088-ecs","name":"2:panel_2","type":"visualization"},{"id":"4d0485f0-18da-11e9-9094-c50574723088-ecs","name":"4:panel_4","type":"visualization"},{"id":"eea92ad0-18d7-11e9-9094-c50574723088-ecs","name":"5:panel_5","type":"visualization"},{"id":"91962a30-1901-11e9-9094-c50574723088-ecs","name":"6:panel_6","type":"visualization"},{"id":"abe78cd0-18ca-11e9-9094-c50574723088-ecs","name":"7:panel_7","type":"search"},{"id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","name":"8:panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:36:00.890Z","version":"WzQ5OTEsMV0="} diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-login-dashboard.json b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-login-dashboard.json deleted file mode 100644 index 9f0962a44c1..00000000000 --- a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-login-dashboard.json +++ /dev/null @@ -1,931 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "login", - "type": "phrase" - }, - "type": "phrase", - "value": "login" - }, - "query": { - "match": { - "event.dataset": { - "query": "login", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Login Count [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Login Events" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Login Count [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "8d63c420-27f4-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T20:44:50.914Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "login", - "type": "phrase" - }, - "type": "phrase", - "value": "login" - }, - "query": { - "match": { - "event.dataset": { - "query": "login", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Login Actions [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Login Actions [Auditbeat System] ECS", - "type": "pie" - } - }, - "id": "593df9b0-27f7-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T21:04:51.914Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "login", - "type": "phrase" - }, - "type": "phrase", - "value": "login" - }, - "query": { - "match": { - "event.dataset": { - "query": "login", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.outcome", - "negate": false, - "params": { - "query": "success", - "type": "phrase" - }, - "type": "phrase", - "value": "success" - }, - "query": { - "match": { - "event.outcome": { - "query": "success", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Login Success Table [Auditbeat System] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Successful Logins" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "User", - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 8, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Login Success Table [Auditbeat System] ECS", - "type": "table" - } - }, - "id": "5eb5f250-285e-11e9-805f-43bf57dfa519-ecs", - "type": "visualization", - "updated_at": "2019-02-04T09:22:44.444Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "login", - "type": "phrase" - }, - "type": "phrase", - "value": "login" - }, - "query": { - "match": { - "event.dataset": { - "query": "login", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.outcome", - "negate": false, - "params": { - "query": "failure", - "type": "phrase" - }, - "type": "phrase", - "value": "failure" - }, - "query": { - "match": { - "event.outcome": { - "query": "failure", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Login Failures Table [Auditbeat System] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Failed Logins" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "User", - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 8, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Login Failures Table [Auditbeat System] ECS", - "type": "table" - } - }, - "id": "a1951650-285e-11e9-805f-43bf57dfa519-ecs", - "type": "visualization", - "updated_at": "2019-02-04T09:24:11.445Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "login", - "type": "phrase" - }, - "type": "phrase", - "value": "login" - }, - "query": { - "match": { - "event.dataset": { - "query": "login", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Login Event Histogram [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "time_zone": "Europe/London", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Login Event Histogram [Auditbeat System] ECS", - "type": "histogram" - } - }, - "id": "e4d25fe0-285e-11e9-805f-43bf57dfa519-ecs", - "type": "visualization", - "updated_at": "2019-02-04T09:26:04.254Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "host.hostname", - "user.name", - "event.outcome", - "message" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "login", - "type": "phrase" - }, - "type": "phrase", - "value": "login" - }, - "query": { - "match": { - "event.dataset": { - "query": "login", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Login Events [Auditbeat System] ECS", - "version": 1 - }, - "id": "2e04c720-285f-11e9-805f-43bf57dfa519-ecs", - "type": "search", - "updated_at": "2019-02-04T09:28:07.058Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "login", - "type": "phrase" - }, - "type": "phrase", - "value": "login" - }, - "query": { - "match": { - "event.dataset": { - "query": "login", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Login OS Distribution [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "host.id" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "OS", - "field": "host.os.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "host.os.version", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Login OS Distribution [Auditbeat System] ECS", - "type": "pie" - } - }, - "id": "e8eb58a0-2860-11e9-805f-43bf57dfa519-ecs", - "type": "visualization", - "updated_at": "2019-02-04T09:40:30.122Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboard Links [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)", - "openLinksInNewTab": false - }, - "title": "Dashboard Links [Auditbeat System] ECS", - "type": "markdown" - } - }, - "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-04T11:37:25.234Z", - "version": 3 - }, - { - "attributes": { - "description": "System Logins", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "1", - "w": 8, - "x": 0, - "y": 4 - }, - "id": "8d63c420-27f4-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "2", - "w": 10, - "x": 8, - "y": 4 - }, - "id": "593df9b0-27f7-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "4", - "w": 10, - "x": 28, - "y": 4 - }, - "id": "5eb5f250-285e-11e9-805f-43bf57dfa519-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "5", - "w": 10, - "x": 38, - "y": 4 - }, - "id": "a1951650-285e-11e9-805f-43bf57dfa519-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "6", - "w": 48, - "x": 0, - "y": 14 - }, - "id": "e4d25fe0-285e-11e9-805f-43bf57dfa519-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 26, - "i": "7", - "w": 48, - "x": 0, - "y": 23 - }, - "id": "2e04c720-285f-11e9-805f-43bf57dfa519-ecs", - "panelIndex": "7", - "type": "search", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "8", - "w": 10, - "x": 18, - "y": 4 - }, - "id": "e8eb58a0-2860-11e9-805f-43bf57dfa519-ecs", - "panelIndex": "8", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 4, - "i": "9", - "w": 48, - "x": 0, - "y": 0 - }, - "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "9", - "type": "visualization", - "version": "7.0.0" - } - ], - "timeRestore": false, - "title": "[Auditbeat System] Login Dashboard ECS", - "version": 1 - }, - "id": "2a17f200-285e-11e9-805f-43bf57dfa519-ecs", - "type": "dashboard", - "updated_at": "2019-02-04T11:38:50.007Z", - "version": 6 - } - ], - "version": "7.0.0" -} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-login-dashboard.ndjson b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-login-dashboard.ndjson new file mode 100644 index 00000000000..742ebca4ab0 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-login-dashboard.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Login Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Login Events\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Login Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"8d63c420-27f4-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Login Actions [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Login Actions [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"593df9b0-27f7-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.outcome\",\"negate\":false,\"params\":{\"query\":\"success\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"success\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.outcome\":{\"query\":\"success\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Login Success Table [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Successful Logins\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"User\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":8,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Login Success Table [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"5eb5f250-285e-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:01.915Z","version":"WzQ5OTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.outcome\",\"negate\":false,\"params\":{\"query\":\"failure\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"failure\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.outcome\":{\"query\":\"failure\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Login Failures Table [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Failed Logins\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"User\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":8,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Login Failures Table [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"a1951650-285e-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:01.915Z","version":"WzQ5OTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Login Event Histogram [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Login Event Histogram [Auditbeat System] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"e4d25fe0-285e-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:01.915Z","version":"WzQ5OTYsMV0="} +{"attributes":{"columns":["host.hostname","user.name","event.outcome","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Login Events [Auditbeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"2e04c720-285f-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:36:01.915Z","version":"WzQ5OTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Login OS Distribution [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"host.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"OS\",\"field\":\"host.os.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"host.os.version\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Login OS Distribution [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"e8eb58a0-2860-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:01.915Z","version":"WzQ5OTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Dashboard Links [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard Links [Auditbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTgsMV0="} +{"attributes":{"description":"System Logins","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1\",\"w\":8,\"x\":0,\"y\":4},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"2\",\"w\":10,\"x\":8,\"y\":4},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"4\",\"w\":10,\"x\":28,\"y\":4},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"5\",\"w\":10,\"x\":38,\"y\":4},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":14},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":26,\"i\":\"7\",\"w\":48,\"x\":0,\"y\":23},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"8\",\"w\":10,\"x\":18,\"y\":4},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"9\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"}]","timeRestore":false,"title":"[Auditbeat System] Login Dashboard ECS","version":1},"coreMigrationVersion":"8.0.0","id":"2a17f200-285e-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"8d63c420-27f4-11e9-89af-fd12d59dac90-ecs","name":"1:panel_1","type":"visualization"},{"id":"593df9b0-27f7-11e9-89af-fd12d59dac90-ecs","name":"2:panel_2","type":"visualization"},{"id":"5eb5f250-285e-11e9-805f-43bf57dfa519-ecs","name":"4:panel_4","type":"visualization"},{"id":"a1951650-285e-11e9-805f-43bf57dfa519-ecs","name":"5:panel_5","type":"visualization"},{"id":"e4d25fe0-285e-11e9-805f-43bf57dfa519-ecs","name":"6:panel_6","type":"visualization"},{"id":"2e04c720-285f-11e9-805f-43bf57dfa519-ecs","name":"7:panel_7","type":"search"},{"id":"e8eb58a0-2860-11e9-805f-43bf57dfa519-ecs","name":"8:panel_8","type":"visualization"},{"id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","name":"9:panel_9","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:36:01.915Z","version":"WzUwMDAsMV0="} diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-overview-dashboard.json b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-overview-dashboard.json deleted file mode 100644 index 9f9caede566..00000000000 --- a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-overview-dashboard.json +++ /dev/null @@ -1,2361 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "system", - "type": "phrase" - }, - "type": "phrase", - "value": "system" - }, - "query": { - "match": { - "event.module": { - "query": "system", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Host Count [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Hosts", - "field": "host.id" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Host Count [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "cf8aa0a0-18ca-11e9-9094-c50574723088-ecs", - "type": "visualization", - "updated_at": "2019-02-03T20:37:18.796Z", - "version": 22 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "process", - "type": "phrase" - }, - "type": "phrase", - "value": "process" - }, - "query": { - "match": { - "event.dataset": { - "query": "process", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Process Count [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Processes", - "field": "process.entity_id" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Process Count [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "bb0d1870-27f1-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T20:24:39.030Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "socket", - "type": "phrase" - }, - "type": "phrase", - "value": "socket" - }, - "query": { - "match": { - "event.dataset": { - "query": "socket", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Socket Count [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Sockets", - "field": "socket.entity_id" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Socket Count [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "7323dd90-27f2-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T20:29:47.881Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "user", - "type": "phrase" - }, - "type": "phrase", - "value": "user" - }, - "query": { - "match": { - "event.dataset": { - "query": "user", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "User Count [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Users", - "field": "user.entity_id" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "User Count [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "e9225120-27f2-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T20:35:48.640Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "package", - "type": "phrase" - }, - "type": "phrase", - "value": "package" - }, - "query": { - "match": { - "event.dataset": { - "query": "package", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Package Count [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Packages", - "field": "system.audit.package.entity_id" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Package Count [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "f664fb20-27f3-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T20:40:37.585Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "login", - "type": "phrase" - }, - "type": "phrase", - "value": "login" - }, - "query": { - "match": { - "event.dataset": { - "query": "login", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Login Count [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Login Events" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Login Count [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "8d63c420-27f4-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T20:44:50.914Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "host", - "type": "phrase" - }, - "type": "phrase", - "value": "host" - }, - "query": { - "match": { - "event.dataset": { - "query": "host", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "OS Distribution [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "system.audit.host.id" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "OS", - "field": "system.audit.host.os.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "system.audit.host.os.version", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "OS Distribution [Auditbeat System] ECS", - "type": "pie" - } - }, - "id": "9dd991a0-18cb-11e9-9094-c50574723088-ecs", - "type": "visualization", - "updated_at": "2019-01-21T11:37:35.796Z", - "version": 24 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "login", - "type": "phrase" - }, - "type": "phrase", - "value": "login" - }, - "query": { - "match": { - "event.dataset": { - "query": "login", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Login Actions [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Login Actions [Auditbeat System] ECS", - "type": "pie" - } - }, - "id": "593df9b0-27f7-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T21:04:51.914Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "user", - "type": "phrase" - }, - "type": "phrase", - "value": "user" - }, - "query": { - "match": { - "event.dataset": { - "query": "user", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.action", - "negate": true, - "params": { - "query": "existing_user", - "type": "phrase" - }, - "type": "phrase", - "value": "existing_user" - }, - "query": { - "match": { - "event.action": { - "query": "existing_user", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "User Changes [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "User Changes" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "User Changes [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "00fa0d20-27fc-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T21:38:11.314Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "process", - "type": "phrase" - }, - "type": "phrase", - "value": "process" - }, - "query": { - "match": { - "event.dataset": { - "query": "process", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.action", - "negate": false, - "params": { - "query": "process_started", - "type": "phrase" - }, - "type": "phrase", - "value": "process_started" - }, - "query": { - "match": { - "event.action": { - "query": "process_started", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Process Starts [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Started" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Process Starts [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "0db90830-27fd-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T21:45:42.195Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.action", - "negate": false, - "params": { - "query": "process_stopped", - "type": "phrase" - }, - "type": "phrase", - "value": "process_stopped" - }, - "query": { - "match": { - "event.action": { - "query": "process_stopped", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "process", - "type": "phrase" - }, - "type": "phrase", - "value": "process" - }, - "query": { - "match": { - "event.dataset": { - "query": "process", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Process Stops [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Stopped" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Process Stops [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "b885dae0-27fd-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T21:50:28.750Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "socket", - "type": "phrase" - }, - "type": "phrase", - "value": "socket" - }, - "query": { - "match": { - "event.dataset": { - "query": "socket", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.action", - "negate": false, - "params": { - "query": "socket_opened", - "type": "phrase" - }, - "type": "phrase", - "value": "socket_opened" - }, - "query": { - "match": { - "event.action": { - "query": "socket_opened", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Sockets Opened [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Opened" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Sockets Opened [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "295905e0-27fd-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T21:47:58.605Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "socket", - "type": "phrase" - }, - "type": "phrase", - "value": "socket" - }, - "query": { - "match": { - "event.dataset": { - "query": "socket", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.action", - "negate": false, - "params": { - "query": "socket_closed", - "type": "phrase" - }, - "type": "phrase", - "value": "socket_closed" - }, - "query": { - "match": { - "event.action": { - "query": "socket_closed", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Sockets Closed [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Closed" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Sockets Closed [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "82d46ec0-27fd-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T21:48:58.668Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "package", - "type": "phrase" - }, - "type": "phrase", - "value": "package" - }, - "query": { - "match": { - "event.dataset": { - "query": "package", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.action", - "negate": true, - "params": { - "query": "existing_package", - "type": "phrase" - }, - "type": "phrase", - "value": "existing_package" - }, - "query": { - "match": { - "event.action": { - "query": "existing_package", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Package Changes [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Changes" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Package Changes [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "bdf9c530-27fe-11e9-805f-43bf57dfa519-ecs", - "type": "visualization", - "updated_at": "2019-02-04T10:44:06.826Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "system", - "type": "phrase" - }, - "type": "phrase", - "value": "system" - }, - "query": { - "match": { - "event.module": { - "query": "system", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.kind", - "negate": false, - "params": { - "query": "event", - "type": "phrase" - }, - "type": "phrase", - "value": "event" - }, - "query": { - "match": { - "event.kind": { - "query": "event", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "System Event Histogram [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "time_zone": "Europe/London", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "System Event Histogram [Auditbeat System] ECS", - "type": "histogram" - } - }, - "id": "54135e50-27ff-11e9-805f-43bf57dfa519-ecs", - "type": "visualization", - "updated_at": "2019-02-03T22:01:59.221Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "host", - "type": "phrase" - }, - "type": "phrase", - "value": "host" - }, - "query": { - "match": { - "event.dataset": { - "query": "host", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Host List [Auditbeat System] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": 1, - "direction": "asc" - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Hostname", - "field": "system.audit.host.hostname", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "aggregate": "max", - "customLabel": "Uptime (days)", - "field": "system.audit.host.uptime", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - }, - { - "enabled": true, - "id": "3", - "params": { - "aggregate": "concat", - "customLabel": "OS", - "field": "system.audit.host.os.name", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - }, - { - "enabled": true, - "id": "4", - "params": { - "aggregate": "concat", - "customLabel": "Version", - "field": "system.audit.host.os.version", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - }, - { - "enabled": true, - "id": "1", - "params": { - "aggregate": "concat", - "customLabel": "Host ID", - "field": "system.audit.host.id", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - }, - { - "enabled": true, - "id": "6", - "params": { - "aggregate": "concat", - "customLabel": "Status", - "field": "message", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Host List [Auditbeat System] ECS", - "type": "table" - } - }, - "id": "91962a30-1901-11e9-9094-c50574723088-ecs", - "type": "visualization", - "updated_at": "2019-01-21T11:58:22.519Z", - "version": 25 - }, - { - "attributes": { - "columns": [ - "host.hostname", - "event.dataset", - "event.action", - "message" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "system", - "type": "phrase" - }, - "type": "phrase", - "value": "system" - }, - "query": { - "match": { - "event.module": { - "query": "system", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.kind", - "negate": false, - "params": { - "query": "event", - "type": "phrase" - }, - "type": "phrase", - "value": "event" - }, - "query": { - "match": { - "event.kind": { - "query": "event", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "System Events [Auditbeat System] ECS", - "version": 1 - }, - "id": "d08ebd30-27ff-11e9-805f-43bf57dfa519-ecs", - "type": "search", - "updated_at": "2019-02-03T22:17:10.090Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboard Links [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)", - "openLinksInNewTab": false - }, - "title": "Dashboard Links [Auditbeat System] ECS", - "type": "markdown" - } - }, - "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-04T11:37:25.234Z", - "version": 3 - }, - { - "attributes": { - "description": "Overview of System Information.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": "Host", - "disabled": true, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "host", - "type": "phrase" - }, - "type": "phrase", - "value": "host" - }, - "query": { - "match": { - "event.dataset": { - "query": "host", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": "Login", - "disabled": true, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "login", - "type": "phrase" - }, - "type": "phrase", - "value": "login" - }, - "query": { - "match": { - "event.dataset": { - "query": "login", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": "User", - "disabled": true, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "user", - "type": "phrase" - }, - "type": "phrase", - "value": "user" - }, - "query": { - "match": { - "event.dataset": { - "query": "user", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": "Process", - "disabled": true, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "process", - "type": "phrase" - }, - "type": "phrase", - "value": "process" - }, - "query": { - "match": { - "event.dataset": { - "query": "process", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": "Socket", - "disabled": true, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "socket", - "type": "phrase" - }, - "type": "phrase", - "value": "socket" - }, - "query": { - "match": { - "event.dataset": { - "query": "socket", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": "Package", - "disabled": true, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "package", - "type": "phrase" - }, - "type": "phrase", - "value": "package" - }, - "query": { - "match": { - "event.dataset": { - "query": "package", - "type": "phrase" - } - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "1", - "w": 8, - "x": 0, - "y": 4 - }, - "id": "cf8aa0a0-18ca-11e9-9094-c50574723088-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "2", - "w": 8, - "x": 24, - "y": 4 - }, - "id": "bb0d1870-27f1-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "3", - "w": 8, - "x": 32, - "y": 4 - }, - "id": "7323dd90-27f2-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "4", - "w": 8, - "x": 16, - "y": 4 - }, - "id": "e9225120-27f2-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "5", - "w": 8, - "x": 40, - "y": 4 - }, - "id": "f664fb20-27f3-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "6", - "w": 8, - "x": 8, - "y": 4 - }, - "id": "8d63c420-27f4-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "8", - "w": 8, - "x": 0, - "y": 12 - }, - "id": "9dd991a0-18cb-11e9-9094-c50574723088-ecs", - "panelIndex": "8", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "9", - "w": 8, - "x": 8, - "y": 12 - }, - "id": "593df9b0-27f7-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "9", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "10", - "w": 8, - "x": 16, - "y": 12 - }, - "id": "00fa0d20-27fc-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "10", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "11", - "w": 8, - "x": 24, - "y": 12 - }, - "id": "0db90830-27fd-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "11", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "12", - "w": 8, - "x": 24, - "y": 19 - }, - "id": "b885dae0-27fd-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "12", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "13", - "w": 8, - "x": 32, - "y": 12 - }, - "id": "295905e0-27fd-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "13", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "14", - "w": 8, - "x": 32, - "y": 19 - }, - "id": "82d46ec0-27fd-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "14", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "15", - "w": 8, - "x": 40, - "y": 12 - }, - "id": "bdf9c530-27fe-11e9-805f-43bf57dfa519-ecs", - "panelIndex": "15", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "16", - "w": 48, - "x": 0, - "y": 26 - }, - "id": "54135e50-27ff-11e9-805f-43bf57dfa519-ecs", - "panelIndex": "16", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 19, - "i": "17", - "w": 24, - "x": 0, - "y": 34 - }, - "id": "91962a30-1901-11e9-9094-c50574723088-ecs", - "panelIndex": "17", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 19, - "i": "18", - "w": 24, - "x": 24, - "y": 34 - }, - "id": "d08ebd30-27ff-11e9-805f-43bf57dfa519-ecs", - "panelIndex": "18", - "type": "search", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 4, - "i": "19", - "w": 48, - "x": 0, - "y": 0 - }, - "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "19", - "type": "visualization", - "version": "7.0.0" - } - ], - "timeRestore": false, - "title": "[Auditbeat System] System Overview ECS", - "version": 1 - }, - "id": "2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs", - "type": "dashboard", - "updated_at": "2019-02-04T09:32:32.325Z", - "version": 9 - } - ], - "version": "7.0.0" -} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-overview-dashboard.ndjson b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-overview-dashboard.ndjson new file mode 100644 index 00000000000..f77b6678046 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-overview-dashboard.ndjson @@ -0,0 +1,19 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"system\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"system\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"system\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Host Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Hosts\",\"field\":\"host.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Host Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"cf8aa0a0-18ca-11e9-9094-c50574723088-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Processes\",\"field\":\"process.entity_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Process Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"bb0d1870-27f1-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMjksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Socket Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Sockets\",\"field\":\"socket.entity_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Socket Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"7323dd90-27f2-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"User Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Users\",\"field\":\"user.entity_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"User Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"e9225120-27f2-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Package Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Packages\",\"field\":\"system.audit.package.entity_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Package Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"f664fb20-27f3-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Login Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Login Events\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Login Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"8d63c420-27f4-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"host\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"host\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"host\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"OS Distribution [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"system.audit.host.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"OS\",\"field\":\"system.audit.host.os.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"system.audit.host.os.version\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"OS Distribution [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"9dd991a0-18cb-11e9-9094-c50574723088-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Login Actions [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Login Actions [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"593df9b0-27f7-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":true,\"params\":{\"query\":\"existing_user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"existing_user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"existing_user\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"User Changes [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"User Changes\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"User Changes [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"00fa0d20-27fc-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"process_started\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process_started\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"process_started\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process Starts [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Started\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Process Starts [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"0db90830-27fd-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"process_stopped\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process_stopped\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"process_stopped\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process Stops [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Stopped\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Process Stops [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"b885dae0-27fd-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"socket_opened\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket_opened\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"socket_opened\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Sockets Opened [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Opened\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Sockets Opened [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"295905e0-27fd-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"socket_closed\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket_closed\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"socket_closed\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Sockets Closed [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Closed\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Sockets Closed [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"82d46ec0-27fd-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":true,\"params\":{\"query\":\"existing_package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"existing_package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"existing_package\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Package Changes [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Changes\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Package Changes [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"bdf9c530-27fe-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"system\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"system\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"system\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.kind\",\"negate\":false,\"params\":{\"query\":\"event\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"event\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.kind\":{\"query\":\"event\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"System Event Histogram [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"System Event Histogram [Auditbeat System] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"54135e50-27ff-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"host\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"host\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"host\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Host List [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 1, \"direction\": \"asc\"}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Hostname\",\"field\":\"system.audit.host.hostname\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"aggregate\":\"max\",\"customLabel\":\"Uptime (days)\",\"field\":\"system.audit.host.uptime\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"OS\",\"field\":\"system.audit.host.os.name\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Version\",\"field\":\"system.audit.host.os.version\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Host ID\",\"field\":\"system.audit.host.id\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Status\",\"field\":\"message\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Host List [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"91962a30-1901-11e9-9094-c50574723088-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMTYsMV0="} +{"attributes":{"columns":["host.hostname","event.dataset","event.action","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"system\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"system\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"system\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.kind\",\"negate\":false,\"params\":{\"query\":\"event\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"event\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.kind\":{\"query\":\"event\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"System Events [Auditbeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"d08ebd30-27ff-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Dashboard Links [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard Links [Auditbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTgsMV0="} +{"attributes":{"description":"Overview of System Information.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":\"Host\",\"disabled\":true,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"host\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"host\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"host\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":\"Login\",\"disabled\":true,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":\"User\",\"disabled\":true,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":\"Process\",\"disabled\":true,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":\"Socket\",\"disabled\":true,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[4].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":\"Package\",\"disabled\":true,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[5].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"1\",\"w\":8,\"x\":0,\"y\":4},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"2\",\"w\":8,\"x\":24,\"y\":4},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"3\",\"w\":8,\"x\":32,\"y\":4},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"4\",\"w\":8,\"x\":16,\"y\":4},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"5\",\"w\":8,\"x\":40,\"y\":4},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"6\",\"w\":8,\"x\":8,\"y\":4},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"8\",\"w\":8,\"x\":0,\"y\":12},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"9\",\"w\":8,\"x\":8,\"y\":12},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"10\",\"w\":8,\"x\":16,\"y\":12},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"11\",\"w\":8,\"x\":24,\"y\":12},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"12\",\"w\":8,\"x\":24,\"y\":19},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"13\",\"w\":8,\"x\":32,\"y\":12},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"14\",\"w\":8,\"x\":32,\"y\":19},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"15\",\"w\":8,\"x\":40,\"y\":12},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"16\",\"w\":48,\"x\":0,\"y\":26},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"17\",\"w\":24,\"x\":0,\"y\":34},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":19,\"i\":\"18\",\"w\":24,\"x\":24,\"y\":34},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"19\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"}]","timeRestore":false,"title":"[Auditbeat System] System Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[4].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[5].meta.index","type":"index-pattern"},{"id":"cf8aa0a0-18ca-11e9-9094-c50574723088-ecs","name":"1:panel_1","type":"visualization"},{"id":"bb0d1870-27f1-11e9-89af-fd12d59dac90-ecs","name":"2:panel_2","type":"visualization"},{"id":"7323dd90-27f2-11e9-89af-fd12d59dac90-ecs","name":"3:panel_3","type":"visualization"},{"id":"e9225120-27f2-11e9-89af-fd12d59dac90-ecs","name":"4:panel_4","type":"visualization"},{"id":"f664fb20-27f3-11e9-89af-fd12d59dac90-ecs","name":"5:panel_5","type":"visualization"},{"id":"8d63c420-27f4-11e9-89af-fd12d59dac90-ecs","name":"6:panel_6","type":"visualization"},{"id":"9dd991a0-18cb-11e9-9094-c50574723088-ecs","name":"8:panel_8","type":"visualization"},{"id":"593df9b0-27f7-11e9-89af-fd12d59dac90-ecs","name":"9:panel_9","type":"visualization"},{"id":"00fa0d20-27fc-11e9-89af-fd12d59dac90-ecs","name":"10:panel_10","type":"visualization"},{"id":"0db90830-27fd-11e9-89af-fd12d59dac90-ecs","name":"11:panel_11","type":"visualization"},{"id":"b885dae0-27fd-11e9-89af-fd12d59dac90-ecs","name":"12:panel_12","type":"visualization"},{"id":"295905e0-27fd-11e9-89af-fd12d59dac90-ecs","name":"13:panel_13","type":"visualization"},{"id":"82d46ec0-27fd-11e9-89af-fd12d59dac90-ecs","name":"14:panel_14","type":"visualization"},{"id":"bdf9c530-27fe-11e9-805f-43bf57dfa519-ecs","name":"15:panel_15","type":"visualization"},{"id":"54135e50-27ff-11e9-805f-43bf57dfa519-ecs","name":"16:panel_16","type":"visualization"},{"id":"91962a30-1901-11e9-9094-c50574723088-ecs","name":"17:panel_17","type":"visualization"},{"id":"d08ebd30-27ff-11e9-805f-43bf57dfa519-ecs","name":"18:panel_18","type":"search"},{"id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","name":"19:panel_19","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMTksMV0="} diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-package-dashboard.json b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-package-dashboard.json deleted file mode 100644 index c34fc4dbc16..00000000000 --- a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-package-dashboard.json +++ /dev/null @@ -1,919 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboard Links [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)", - "openLinksInNewTab": false - }, - "title": "Dashboard Links [Auditbeat System] ECS", - "type": "markdown" - } - }, - "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-04T11:37:25.234Z", - "version": 3 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "package", - "type": "phrase" - }, - "type": "phrase", - "value": "package" - }, - "query": { - "match": { - "event.dataset": { - "query": "package", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Package Count [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Packages", - "field": "system.audit.package.entity_id" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Package Count [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "f664fb20-27f3-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T20:40:37.585Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "package", - "type": "phrase" - }, - "type": "phrase", - "value": "package" - }, - "query": { - "match": { - "event.dataset": { - "query": "package", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.action", - "negate": true, - "params": { - "query": "existing_package", - "type": "phrase" - }, - "type": "phrase", - "value": "existing_package" - }, - "query": { - "match": { - "event.action": { - "query": "existing_package", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Package Changes [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Changes" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Package Changes [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "bdf9c530-27fe-11e9-805f-43bf57dfa519-ecs", - "type": "visualization", - "updated_at": "2019-02-04T10:44:06.826Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "package", - "type": "phrase" - }, - "type": "phrase", - "value": "package" - }, - "query": { - "match": { - "event.dataset": { - "query": "package", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Package OS Distribution [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "host.id" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "OS", - "field": "host.os.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "host.os.version", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Package OS Distribution [Auditbeat System] ECS", - "type": "pie" - } - }, - "id": "6ed51940-2868-11e9-9d21-0be348776e6c-ecs", - "type": "visualization", - "updated_at": "2019-02-04T10:34:21.268Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "package", - "type": "phrase" - }, - "type": "phrase", - "value": "package" - }, - "query": { - "match": { - "event.dataset": { - "query": "package", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.kind", - "negate": false, - "params": { - "query": "event", - "type": "phrase" - }, - "type": "phrase", - "value": "event" - }, - "query": { - "match": { - "event.kind": { - "query": "event", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Package Change Actions [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Package Change Actions [Auditbeat System] ECS", - "type": "pie" - } - }, - "id": "fe23f530-2868-11e9-9d21-0be348776e6c-ecs", - "type": "visualization", - "updated_at": "2019-02-04T10:38:21.699Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "package", - "type": "phrase" - }, - "type": "phrase", - "value": "package" - }, - "query": { - "match": { - "event.dataset": { - "query": "package", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Package Document Histogram [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "time_zone": "Europe/London", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Package Document Histogram [Auditbeat System] ECS", - "type": "histogram" - } - }, - "id": "4e7701d0-2869-11e9-9d21-0be348776e6c-ecs", - "type": "visualization", - "updated_at": "2019-02-04T10:40:36.461Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "host.hostname", - "event.action", - "message" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "package", - "type": "phrase" - }, - "type": "phrase", - "value": "package" - }, - "query": { - "match": { - "event.dataset": { - "query": "package", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Package Documents [Auditbeat System] ECS", - "version": 1 - }, - "id": "391ef230-2868-11e9-9d21-0be348776e6c-ecs", - "type": "search", - "updated_at": "2019-02-04T10:32:51.155Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "package", - "type": "phrase" - }, - "type": "phrase", - "value": "package" - }, - "query": { - "match": { - "event.dataset": { - "query": "package", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Package Names [Auditbeat System] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "system.audit.package.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 25 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 5, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Package Names [Auditbeat System] ECS", - "type": "table" - } - }, - "id": "8dc55df0-2869-11e9-9d21-0be348776e6c-ecs", - "type": "visualization", - "updated_at": "2019-02-04T10:45:22.440Z", - "version": 2 - }, - { - "attributes": { - "description": "System Packages", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 4, - "i": "1", - "w": 48, - "x": 0, - "y": 0 - }, - "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "2", - "w": 6, - "x": 0, - "y": 4 - }, - "id": "f664fb20-27f3-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "3", - "w": 5, - "x": 6, - "y": 4 - }, - "id": "bdf9c530-27fe-11e9-805f-43bf57dfa519-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "4", - "w": 13, - "x": 24, - "y": 4 - }, - "id": "6ed51940-2868-11e9-9d21-0be348776e6c-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "5", - "w": 13, - "x": 11, - "y": 4 - }, - "id": "fe23f530-2868-11e9-9d21-0be348776e6c-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "6", - "w": 48, - "x": 0, - "y": 15 - }, - "id": "4e7701d0-2869-11e9-9d21-0be348776e6c-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 26, - "i": "7", - "w": 48, - "x": 0, - "y": 23 - }, - "id": "391ef230-2868-11e9-9d21-0be348776e6c-ecs", - "panelIndex": "7", - "type": "search", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "8", - "w": 11, - "x": 37, - "y": 4 - }, - "id": "8dc55df0-2869-11e9-9d21-0be348776e6c-ecs", - "panelIndex": "8", - "type": "visualization", - "version": "7.0.0" - } - ], - "timeRestore": false, - "title": "[Auditbeat System] Package Dashboard ECS", - "version": 1 - }, - "id": "137c52f0-286a-11e9-9d21-0be348776e6c-ecs", - "type": "dashboard", - "updated_at": "2019-02-04T11:03:23.945Z", - "version": 2 - } - ], - "version": "7.0.0" -} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-package-dashboard.ndjson b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-package-dashboard.ndjson new file mode 100644 index 00000000000..6c2e6f2a945 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-package-dashboard.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Dashboard Links [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard Links [Auditbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Package Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Packages\",\"field\":\"system.audit.package.entity_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Package Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"f664fb20-27f3-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":true,\"params\":{\"query\":\"existing_package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"existing_package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"existing_package\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Package Changes [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Changes\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Package Changes [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"bdf9c530-27fe-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Package OS Distribution [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"host.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"OS\",\"field\":\"host.os.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"host.os.version\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Package OS Distribution [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"6ed51940-2868-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.kind\",\"negate\":false,\"params\":{\"query\":\"event\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"event\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.kind\":{\"query\":\"event\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Package Change Actions [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Package Change Actions [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"fe23f530-2868-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Package Document Histogram [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Package Document Histogram [Auditbeat System] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"4e7701d0-2869-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjUsMV0="} +{"attributes":{"columns":["host.hostname","event.action","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Package Documents [Auditbeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"391ef230-2868-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Package Names [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"system.audit.package.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":5,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Package Names [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"8dc55df0-2869-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjcsMV0="} +{"attributes":{"description":"System Packages","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"1\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"2\",\"w\":6,\"x\":0,\"y\":4},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"3\",\"w\":5,\"x\":6,\"y\":4},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"4\",\"w\":13,\"x\":24,\"y\":4},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"5\",\"w\":13,\"x\":11,\"y\":4},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":15},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":26,\"i\":\"7\",\"w\":48,\"x\":0,\"y\":23},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"8\",\"w\":11,\"x\":37,\"y\":4},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Auditbeat System] Package Dashboard ECS","version":1},"coreMigrationVersion":"8.0.0","id":"137c52f0-286a-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","name":"1:panel_1","type":"visualization"},{"id":"f664fb20-27f3-11e9-89af-fd12d59dac90-ecs","name":"2:panel_2","type":"visualization"},{"id":"bdf9c530-27fe-11e9-805f-43bf57dfa519-ecs","name":"3:panel_3","type":"visualization"},{"id":"6ed51940-2868-11e9-9d21-0be348776e6c-ecs","name":"4:panel_4","type":"visualization"},{"id":"fe23f530-2868-11e9-9d21-0be348776e6c-ecs","name":"5:panel_5","type":"visualization"},{"id":"4e7701d0-2869-11e9-9d21-0be348776e6c-ecs","name":"6:panel_6","type":"visualization"},{"id":"391ef230-2868-11e9-9d21-0be348776e6c-ecs","name":"7:panel_7","type":"search"},{"id":"8dc55df0-2869-11e9-9d21-0be348776e6c-ecs","name":"8:panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjgsMV0="} diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-process-dashboard.json b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-process-dashboard.json deleted file mode 100644 index eb2f14e8ac5..00000000000 --- a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-process-dashboard.json +++ /dev/null @@ -1,1036 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "process", - "type": "phrase" - }, - "type": "phrase", - "value": "process" - }, - "query": { - "match": { - "event.dataset": { - "query": "process", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Process Count [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Processes", - "field": "process.entity_id" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Process Count [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "bb0d1870-27f1-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T20:24:39.030Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "process", - "type": "phrase" - }, - "type": "phrase", - "value": "process" - }, - "query": { - "match": { - "event.dataset": { - "query": "process", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.action", - "negate": false, - "params": { - "query": "process_started", - "type": "phrase" - }, - "type": "phrase", - "value": "process_started" - }, - "query": { - "match": { - "event.action": { - "query": "process_started", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Process Starts [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Started" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Process Starts [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "0db90830-27fd-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T21:45:42.195Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.action", - "negate": false, - "params": { - "query": "process_stopped", - "type": "phrase" - }, - "type": "phrase", - "value": "process_stopped" - }, - "query": { - "match": { - "event.action": { - "query": "process_stopped", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "process", - "type": "phrase" - }, - "type": "phrase", - "value": "process" - }, - "query": { - "match": { - "event.dataset": { - "query": "process", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Process Stops [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Stopped" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Process Stops [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "b885dae0-27fd-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T21:50:28.750Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "host.hostname", - "user.name", - "event.action", - "process.pid", - "process.name" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "process", - "type": "phrase" - }, - "type": "phrase", - "value": "process" - }, - "query": { - "match": { - "event.dataset": { - "query": "process", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Process Events [Auditbeat System] ECS", - "version": 1 - }, - "id": "0f9611b0-2862-11e9-97cb-474beda9f119-ecs", - "type": "search", - "updated_at": "2019-02-04T09:48:44.490Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "process", - "type": "phrase" - }, - "type": "phrase", - "value": "process" - }, - "query": { - "match": { - "event.dataset": { - "query": "process", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Process OS Distribution [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "host.id" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "OS", - "field": "host.os.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "host.os.version", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Process OS Distribution [Auditbeat System] ECS", - "type": "pie" - } - }, - "id": "91708fd0-2862-11e9-97cb-474beda9f119-ecs", - "type": "visualization", - "updated_at": "2019-02-04T09:52:22.349Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "process", - "type": "phrase" - }, - "type": "phrase", - "value": "process" - }, - "query": { - "match": { - "event.dataset": { - "query": "process", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Process Event Histogram [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "time_zone": "Europe/London", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Process Event Histogram [Auditbeat System] ECS", - "type": "histogram" - } - }, - "id": "b1e2af00-2862-11e9-97cb-474beda9f119-ecs", - "type": "visualization", - "updated_at": "2019-02-04T09:53:16.784Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "process", - "type": "phrase" - }, - "type": "phrase", - "value": "process" - }, - "query": { - "match": { - "event.dataset": { - "query": "process", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Process Names [Auditbeat System] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Process", - "field": "process.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 8 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - } - ], - "params": { - "perPage": 8, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Process Names [Auditbeat System] ECS", - "type": "table" - } - }, - "id": "f1d365a0-2862-11e9-97cb-474beda9f119-ecs", - "type": "visualization", - "updated_at": "2019-02-04T09:56:33.249Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "process", - "type": "phrase" - }, - "type": "phrase", - "value": "process" - }, - "query": { - "match": { - "event.dataset": { - "query": "process", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Process Users [Auditbeat System] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Process", - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 8 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - } - ], - "params": { - "perPage": 8, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Process Users [Auditbeat System] ECS", - "type": "table" - } - }, - "id": "30936470-2863-11e9-97cb-474beda9f119-ecs", - "type": "visualization", - "updated_at": "2019-02-04T09:56:49.335Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboard Links [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)", - "openLinksInNewTab": false - }, - "title": "Dashboard Links [Auditbeat System] ECS", - "type": "markdown" - } - }, - "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-04T11:37:25.234Z", - "version": 3 - }, - { - "attributes": { - "description": "System Processes", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "1", - "w": 11, - "x": 0, - "y": 4 - }, - "id": "bb0d1870-27f1-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "2", - "w": 11, - "x": 11, - "y": 4 - }, - "id": "0db90830-27fd-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "3", - "w": 11, - "x": 22, - "y": 4 - }, - "id": "b885dae0-27fd-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "4", - "w": 48, - "x": 0, - "y": 38 - }, - "id": "0f9611b0-2862-11e9-97cb-474beda9f119-ecs", - "panelIndex": "4", - "type": "search", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "5", - "w": 15, - "x": 33, - "y": 4 - }, - "id": "91708fd0-2862-11e9-97cb-474beda9f119-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "6", - "w": 48, - "x": 0, - "y": 29 - }, - "id": "b1e2af00-2862-11e9-97cb-474beda9f119-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "7", - "w": 24, - "x": 0, - "y": 14 - }, - "id": "f1d365a0-2862-11e9-97cb-474beda9f119-ecs", - "panelIndex": "7", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "8", - "w": 24, - "x": 24, - "y": 14 - }, - "id": "30936470-2863-11e9-97cb-474beda9f119-ecs", - "panelIndex": "8", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 4, - "i": "9", - "w": 48, - "x": 0, - "y": 0 - }, - "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "9", - "type": "visualization", - "version": "7.0.0" - } - ], - "timeRestore": false, - "title": "[Auditbeat System] Process Dashboard ECS", - "version": 1 - }, - "id": "4c68f110-2863-11e9-97cb-474beda9f119-ecs", - "type": "dashboard", - "updated_at": "2019-02-04T10:13:58.155Z", - "version": 2 - } - ], - "version": "7.0.0" -} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-process-dashboard.ndjson b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-process-dashboard.ndjson new file mode 100644 index 00000000000..34f6c89c525 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-process-dashboard.ndjson @@ -0,0 +1,10 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Processes\",\"field\":\"process.entity_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Process Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"bb0d1870-27f1-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMjksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"process_started\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process_started\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"process_started\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process Starts [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Started\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Process Starts [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"0db90830-27fd-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"process_stopped\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process_stopped\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"process_stopped\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process Stops [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Stopped\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Process Stops [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"b885dae0-27fd-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzEsMV0="} +{"attributes":{"columns":["host.hostname","user.name","event.action","process.pid","process.name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Process Events [Auditbeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"0f9611b0-2862-11e9-97cb-474beda9f119-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process OS Distribution [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"host.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"OS\",\"field\":\"host.os.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"host.os.version\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Process OS Distribution [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"91708fd0-2862-11e9-97cb-474beda9f119-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process Event Histogram [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Process Event Histogram [Auditbeat System] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"b1e2af00-2862-11e9-97cb-474beda9f119-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process Names [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Process\",\"field\":\"process.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":8},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"perPage\":8,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Process Names [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"f1d365a0-2862-11e9-97cb-474beda9f119-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process Users [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Process\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":8},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"perPage\":8,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Process Users [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"30936470-2863-11e9-97cb-474beda9f119-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Dashboard Links [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard Links [Auditbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTgsMV0="} +{"attributes":{"description":"System Processes","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1\",\"w\":11,\"x\":0,\"y\":4},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"2\",\"w\":11,\"x\":11,\"y\":4},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3\",\"w\":11,\"x\":22,\"y\":4},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":14,\"i\":\"4\",\"w\":48,\"x\":0,\"y\":38},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"5\",\"w\":15,\"x\":33,\"y\":4},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":29},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":24,\"x\":0,\"y\":14},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":14},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"9\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"}]","timeRestore":false,"title":"[Auditbeat System] Process Dashboard ECS","version":1},"coreMigrationVersion":"8.0.0","id":"4c68f110-2863-11e9-97cb-474beda9f119-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"bb0d1870-27f1-11e9-89af-fd12d59dac90-ecs","name":"1:panel_1","type":"visualization"},{"id":"0db90830-27fd-11e9-89af-fd12d59dac90-ecs","name":"2:panel_2","type":"visualization"},{"id":"b885dae0-27fd-11e9-89af-fd12d59dac90-ecs","name":"3:panel_3","type":"visualization"},{"id":"0f9611b0-2862-11e9-97cb-474beda9f119-ecs","name":"4:panel_4","type":"search"},{"id":"91708fd0-2862-11e9-97cb-474beda9f119-ecs","name":"5:panel_5","type":"visualization"},{"id":"b1e2af00-2862-11e9-97cb-474beda9f119-ecs","name":"6:panel_6","type":"visualization"},{"id":"f1d365a0-2862-11e9-97cb-474beda9f119-ecs","name":"7:panel_7","type":"visualization"},{"id":"30936470-2863-11e9-97cb-474beda9f119-ecs","name":"8:panel_8","type":"visualization"},{"id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","name":"9:panel_9","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzgsMV0="} diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-socket-dashboard.json b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-socket-dashboard.json deleted file mode 100644 index 8c026219dd3..00000000000 --- a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-socket-dashboard.json +++ /dev/null @@ -1,1238 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboard Links [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)", - "openLinksInNewTab": false - }, - "title": "Dashboard Links [Auditbeat System] ECS", - "type": "markdown" - } - }, - "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-04T11:37:25.234Z", - "version": 3 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "socket", - "type": "phrase" - }, - "type": "phrase", - "value": "socket" - }, - "query": { - "match": { - "event.dataset": { - "query": "socket", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Socket Count [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Sockets", - "field": "socket.entity_id" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Socket Count [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "7323dd90-27f2-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T20:29:47.881Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "socket", - "type": "phrase" - }, - "type": "phrase", - "value": "socket" - }, - "query": { - "match": { - "event.dataset": { - "query": "socket", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.action", - "negate": false, - "params": { - "query": "socket_opened", - "type": "phrase" - }, - "type": "phrase", - "value": "socket_opened" - }, - "query": { - "match": { - "event.action": { - "query": "socket_opened", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Sockets Opened [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Opened" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Sockets Opened [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "295905e0-27fd-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T21:47:58.605Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "socket", - "type": "phrase" - }, - "type": "phrase", - "value": "socket" - }, - "query": { - "match": { - "event.dataset": { - "query": "socket", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.action", - "negate": false, - "params": { - "query": "socket_closed", - "type": "phrase" - }, - "type": "phrase", - "value": "socket_closed" - }, - "query": { - "match": { - "event.action": { - "query": "socket_closed", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Sockets Closed [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Closed" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Sockets Closed [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "82d46ec0-27fd-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T21:48:58.668Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "socket", - "type": "phrase" - }, - "type": "phrase", - "value": "socket" - }, - "query": { - "match": { - "event.dataset": { - "query": "socket", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Socket Types [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "network.direction", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Socket Types [Auditbeat System] ECS", - "type": "pie" - } - }, - "id": "eb2dbfd0-2866-11e9-9d21-0be348776e6c-ecs", - "type": "visualization", - "updated_at": "2019-02-04T10:23:30.893Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "host.hostname", - "network.direction", - "process.name", - "message" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "socket", - "type": "phrase" - }, - "type": "phrase", - "value": "socket" - }, - "query": { - "match": { - "event.dataset": { - "query": "socket", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Socket Documents [Auditbeat System] ECS", - "version": 1 - }, - "id": "3bfed610-2867-11e9-9d21-0be348776e6c-ecs", - "type": "search", - "updated_at": "2019-02-04T10:25:46.481Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "socket", - "type": "phrase" - }, - "type": "phrase", - "value": "socket" - }, - "query": { - "match": { - "event.dataset": { - "query": "socket", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Socket Document Histogram [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "time_zone": "Europe/London", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Socket Document Histogram [Auditbeat System] ECS", - "type": "histogram" - } - }, - "id": "536fa900-2867-11e9-9d21-0be348776e6c-ecs", - "type": "visualization", - "updated_at": "2019-02-04T10:26:25.808Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "socket", - "type": "phrase" - }, - "type": "phrase", - "value": "socket" - }, - "query": { - "match": { - "event.dataset": { - "query": "socket", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Socket Users [Auditbeat System] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 8 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 8, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Socket Users [Auditbeat System] ECS", - "type": "table" - } - }, - "id": "78391460-2867-11e9-9d21-0be348776e6c-ecs", - "type": "visualization", - "updated_at": "2019-02-04T10:27:27.526Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "socket", - "type": "phrase" - }, - "type": "phrase", - "value": "socket" - }, - "query": { - "match": { - "event.dataset": { - "query": "socket", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Destination Ports [Auditbeat System] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "destination.port", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 30 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Destination Ports [Auditbeat System] ECS", - "type": "table" - } - }, - "id": "1771daa0-286b-11e9-9d21-0be348776e6c-ecs", - "type": "visualization", - "updated_at": "2019-02-04T10:56:23.379Z", - "version": 3 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "socket", - "type": "phrase" - }, - "type": "phrase", - "value": "socket" - }, - "query": { - "match": { - "event.dataset": { - "query": "socket", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Socket Source IPs [Auditbeat System] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "source.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 30 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Socket Source IPs [Auditbeat System] ECS", - "type": "table" - } - }, - "id": "b899a700-286b-11e9-9d21-0be348776e6c-ecs", - "type": "visualization", - "updated_at": "2019-02-04T10:57:53.520Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "socket", - "type": "phrase" - }, - "type": "phrase", - "value": "socket" - }, - "query": { - "match": { - "event.dataset": { - "query": "socket", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Socket Destination IPs [Auditbeat System] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "destination.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 30 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Socket Destination IPs [Auditbeat System] ECS", - "type": "table" - } - }, - "id": "d32c0540-286b-11e9-9d21-0be348776e6c-ecs", - "type": "visualization", - "updated_at": "2019-02-04T10:58:38.100Z", - "version": 1 - }, - { - "attributes": { - "description": "System Sockets", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 4, - "i": "1", - "w": 48, - "x": 0, - "y": 0 - }, - "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "2", - "w": 5, - "x": 0, - "y": 4 - }, - "id": "7323dd90-27f2-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "3", - "w": 5, - "x": 5, - "y": 4 - }, - "id": "295905e0-27fd-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "4", - "w": 5, - "x": 10, - "y": 4 - }, - "id": "82d46ec0-27fd-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "5", - "w": 9, - "x": 15, - "y": 4 - }, - "id": "eb2dbfd0-2866-11e9-9d21-0be348776e6c-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 26, - "i": "6", - "w": 48, - "x": 0, - "y": 23 - }, - "id": "3bfed610-2867-11e9-9d21-0be348776e6c-ecs", - "panelIndex": "6", - "type": "search", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "7", - "w": 48, - "x": 0, - "y": 15 - }, - "id": "536fa900-2867-11e9-9d21-0be348776e6c-ecs", - "panelIndex": "7", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "8", - "w": 6, - "x": 42, - "y": 4 - }, - "id": "78391460-2867-11e9-9d21-0be348776e6c-ecs", - "panelIndex": "8", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "9", - "w": 6, - "x": 36, - "y": 4 - }, - "id": "1771daa0-286b-11e9-9d21-0be348776e6c-ecs", - "panelIndex": "9", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "10", - "w": 6, - "x": 24, - "y": 4 - }, - "id": "b899a700-286b-11e9-9d21-0be348776e6c-ecs", - "panelIndex": "10", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "11", - "w": 6, - "x": 30, - "y": 4 - }, - "id": "d32c0540-286b-11e9-9d21-0be348776e6c-ecs", - "panelIndex": "11", - "type": "visualization", - "version": "7.0.0" - } - ], - "timeRestore": false, - "title": "[Auditbeat System] Socket Dashboard ECS", - "version": 1 - }, - "id": "957a3ef0-2867-11e9-9d21-0be348776e6c-ecs", - "type": "dashboard", - "updated_at": "2019-02-04T11:01:23.746Z", - "version": 3 - } - ], - "version": "7.0.0" -} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-socket-dashboard.ndjson b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-socket-dashboard.ndjson new file mode 100644 index 00000000000..7f7ef27143d --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-socket-dashboard.ndjson @@ -0,0 +1,12 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Dashboard Links [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard Links [Auditbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Socket Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Sockets\",\"field\":\"socket.entity_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Socket Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"7323dd90-27f2-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"socket_opened\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket_opened\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"socket_opened\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Sockets Opened [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Opened\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Sockets Opened [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"295905e0-27fd-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"socket_closed\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket_closed\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"socket_closed\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Sockets Closed [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Closed\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Sockets Closed [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"82d46ec0-27fd-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Socket Types [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.direction\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Socket Types [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"eb2dbfd0-2866-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDMsMV0="} +{"attributes":{"columns":["host.hostname","network.direction","process.name","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Socket Documents [Auditbeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"3bfed610-2867-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Socket Document Histogram [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Socket Document Histogram [Auditbeat System] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"536fa900-2867-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Socket Users [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":8},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":8,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Socket Users [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"78391460-2867-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Destination Ports [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"destination.port\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":30},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Destination Ports [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"1771daa0-286b-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Socket Source IPs [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":30},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Socket Source IPs [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"b899a700-286b-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Socket Destination IPs [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"destination.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":30},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Socket Destination IPs [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"d32c0540-286b-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDksMV0="} +{"attributes":{"description":"System Sockets","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"1\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"2\",\"w\":5,\"x\":0,\"y\":4},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"3\",\"w\":5,\"x\":5,\"y\":4},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"4\",\"w\":5,\"x\":10,\"y\":4},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"5\",\"w\":9,\"x\":15,\"y\":4},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":26,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":23},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"7\",\"w\":48,\"x\":0,\"y\":15},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"8\",\"w\":6,\"x\":42,\"y\":4},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"9\",\"w\":6,\"x\":36,\"y\":4},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"10\",\"w\":6,\"x\":24,\"y\":4},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"11\",\"w\":6,\"x\":30,\"y\":4},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"}]","timeRestore":false,"title":"[Auditbeat System] Socket Dashboard ECS","version":1},"coreMigrationVersion":"8.0.0","id":"957a3ef0-2867-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","name":"1:panel_1","type":"visualization"},{"id":"7323dd90-27f2-11e9-89af-fd12d59dac90-ecs","name":"2:panel_2","type":"visualization"},{"id":"295905e0-27fd-11e9-89af-fd12d59dac90-ecs","name":"3:panel_3","type":"visualization"},{"id":"82d46ec0-27fd-11e9-89af-fd12d59dac90-ecs","name":"4:panel_4","type":"visualization"},{"id":"eb2dbfd0-2866-11e9-9d21-0be348776e6c-ecs","name":"5:panel_5","type":"visualization"},{"id":"3bfed610-2867-11e9-9d21-0be348776e6c-ecs","name":"6:panel_6","type":"search"},{"id":"536fa900-2867-11e9-9d21-0be348776e6c-ecs","name":"7:panel_7","type":"visualization"},{"id":"78391460-2867-11e9-9d21-0be348776e6c-ecs","name":"8:panel_8","type":"visualization"},{"id":"1771daa0-286b-11e9-9d21-0be348776e6c-ecs","name":"9:panel_9","type":"visualization"},{"id":"b899a700-286b-11e9-9d21-0be348776e6c-ecs","name":"10:panel_10","type":"visualization"},{"id":"d32c0540-286b-11e9-9d21-0be348776e6c-ecs","name":"11:panel_11","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNTAsMV0="} diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-user-dashboard.json b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-user-dashboard.json deleted file mode 100644 index 6c9bf47ca93..00000000000 --- a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-user-dashboard.json +++ /dev/null @@ -1,913 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "user", - "type": "phrase" - }, - "type": "phrase", - "value": "user" - }, - "query": { - "match": { - "event.dataset": { - "query": "user", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "User Count [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Users", - "field": "user.entity_id" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "User Count [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "e9225120-27f2-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T20:35:48.640Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "user", - "type": "phrase" - }, - "type": "phrase", - "value": "user" - }, - "query": { - "match": { - "event.dataset": { - "query": "user", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.action", - "negate": true, - "params": { - "query": "existing_user", - "type": "phrase" - }, - "type": "phrase", - "value": "existing_user" - }, - "query": { - "match": { - "event.action": { - "query": "existing_user", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "User Changes [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "User Changes" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "User Changes [Auditbeat System] ECS", - "type": "metric" - } - }, - "id": "00fa0d20-27fc-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-03T21:38:11.314Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "user", - "type": "phrase" - }, - "type": "phrase", - "value": "user" - }, - "query": { - "match": { - "event.dataset": { - "query": "user", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.action", - "negate": true, - "params": { - "query": "existing_user", - "type": "phrase" - }, - "type": "phrase", - "value": "existing_user" - }, - "query": { - "match": { - "event.action": { - "query": "existing_user", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "User Change Actions [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "User Change Actions [Auditbeat System] ECS", - "type": "pie" - } - }, - "id": "dc514de0-2863-11e9-97cb-474beda9f119-ecs", - "type": "visualization", - "updated_at": "2019-02-04T10:01:37.470Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "user", - "type": "phrase" - }, - "type": "phrase", - "value": "user" - }, - "query": { - "match": { - "event.dataset": { - "query": "user", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Password Types [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "system.audit.user.password.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Password Types [Auditbeat System] ECS", - "type": "pie" - } - }, - "id": "0bf8b4c0-2864-11e9-97cb-474beda9f119-ecs", - "type": "visualization", - "updated_at": "2019-02-04T10:02:57.420Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "user", - "type": "phrase" - }, - "type": "phrase", - "value": "user" - }, - "query": { - "match": { - "event.dataset": { - "query": "user", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "User Documents Histogram [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "time_zone": "Europe/London", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "User Documents Histogram [Auditbeat System] ECS", - "type": "histogram" - } - }, - "id": "30f4eff0-2864-11e9-97cb-474beda9f119-ecs", - "type": "visualization", - "updated_at": "2019-02-04T10:03:59.471Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "host.hostname", - "system.audit.user.name", - "system.audit.user.password.type", - "message" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "user", - "type": "phrase" - }, - "type": "phrase", - "value": "user" - }, - "query": { - "match": { - "event.dataset": { - "query": "user", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "User Documents [Auditbeat System] ECS", - "version": 1 - }, - "id": "658a3db0-2864-11e9-97cb-474beda9f119-ecs", - "type": "search", - "updated_at": "2019-02-04T10:05:27.691Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "auditbeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "user", - "type": "phrase" - }, - "type": "phrase", - "value": "user" - }, - "query": { - "match": { - "event.dataset": { - "query": "user", - "type": "phrase" - } - } - } - } - ], - "index": "auditbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "User OS Distribution [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "host.id" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "OS", - "field": "host.os.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "host.os.version", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "User OS Distribution [Auditbeat System] ECS", - "type": "pie" - } - }, - "id": "7f480de0-2864-11e9-97cb-474beda9f119-ecs", - "type": "visualization", - "updated_at": "2019-02-04T10:06:10.878Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboard Links [Auditbeat System] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)", - "openLinksInNewTab": false - }, - "title": "Dashboard Links [Auditbeat System] ECS", - "type": "markdown" - } - }, - "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", - "type": "visualization", - "updated_at": "2019-02-04T11:37:25.234Z", - "version": 3 - }, - { - "attributes": { - "description": "System Users", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "1", - "w": 8, - "x": 0, - "y": 4 - }, - "id": "e9225120-27f2-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "2", - "w": 8, - "x": 8, - "y": 4 - }, - "id": "00fa0d20-27fc-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "3", - "w": 11, - "x": 26, - "y": 4 - }, - "id": "dc514de0-2863-11e9-97cb-474beda9f119-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "4", - "w": 11, - "x": 37, - "y": 4 - }, - "id": "0bf8b4c0-2864-11e9-97cb-474beda9f119-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "5", - "w": 48, - "x": 0, - "y": 14 - }, - "id": "30f4eff0-2864-11e9-97cb-474beda9f119-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 26, - "i": "6", - "w": 48, - "x": 0, - "y": 23 - }, - "id": "658a3db0-2864-11e9-97cb-474beda9f119-ecs", - "panelIndex": "6", - "type": "search", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "7", - "w": 10, - "x": 16, - "y": 4 - }, - "id": "7f480de0-2864-11e9-97cb-474beda9f119-ecs", - "panelIndex": "7", - "type": "visualization", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 4, - "i": "8", - "w": 48, - "x": 0, - "y": 0 - }, - "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", - "panelIndex": "8", - "type": "visualization", - "version": "7.0.0" - } - ], - "timeRestore": false, - "title": "[Auditbeat System] User Dashboard ECS", - "version": 1 - }, - "id": "ae96a660-2864-11e9-97cb-474beda9f119-ecs", - "type": "dashboard", - "updated_at": "2019-02-04T11:02:23.820Z", - "version": 3 - } - ], - "version": "7.0.0" -} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-user-dashboard.ndjson b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-user-dashboard.ndjson new file mode 100644 index 00000000000..1ed82572e15 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-user-dashboard.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"User Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Users\",\"field\":\"user.entity_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"User Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"e9225120-27f2-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":true,\"params\":{\"query\":\"existing_user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"existing_user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"existing_user\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"User Changes [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"User Changes\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"User Changes [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"00fa0d20-27fc-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":true,\"params\":{\"query\":\"existing_user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"existing_user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"existing_user\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"User Change Actions [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"User Change Actions [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"dc514de0-2863-11e9-97cb-474beda9f119-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Password Types [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"system.audit.user.password.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Password Types [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0bf8b4c0-2864-11e9-97cb-474beda9f119-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"User Documents Histogram [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"User Documents Histogram [Auditbeat System] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"30f4eff0-2864-11e9-97cb-474beda9f119-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTUsMV0="} +{"attributes":{"columns":["host.hostname","system.audit.user.name","system.audit.user.password.type","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"User Documents [Auditbeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"658a3db0-2864-11e9-97cb-474beda9f119-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"User OS Distribution [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"host.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"OS\",\"field\":\"host.os.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"host.os.version\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"User OS Distribution [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"7f480de0-2864-11e9-97cb-474beda9f119-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Dashboard Links [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard Links [Auditbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTgsMV0="} +{"attributes":{"description":"System Users","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1\",\"w\":8,\"x\":0,\"y\":4},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"2\",\"w\":8,\"x\":8,\"y\":4},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3\",\"w\":11,\"x\":26,\"y\":4},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"4\",\"w\":11,\"x\":37,\"y\":4},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":14},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":26,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":23},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"7\",\"w\":10,\"x\":16,\"y\":4},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"8\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Auditbeat System] User Dashboard ECS","version":1},"coreMigrationVersion":"8.0.0","id":"ae96a660-2864-11e9-97cb-474beda9f119-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"e9225120-27f2-11e9-89af-fd12d59dac90-ecs","name":"1:panel_1","type":"visualization"},{"id":"00fa0d20-27fc-11e9-89af-fd12d59dac90-ecs","name":"2:panel_2","type":"visualization"},{"id":"dc514de0-2863-11e9-97cb-474beda9f119-ecs","name":"3:panel_3","type":"visualization"},{"id":"0bf8b4c0-2864-11e9-97cb-474beda9f119-ecs","name":"4:panel_4","type":"visualization"},{"id":"30f4eff0-2864-11e9-97cb-474beda9f119-ecs","name":"5:panel_5","type":"visualization"},{"id":"658a3db0-2864-11e9-97cb-474beda9f119-ecs","name":"6:panel_6","type":"search"},{"id":"7f480de0-2864-11e9-97cb-474beda9f119-ecs","name":"7:panel_7","type":"visualization"},{"id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","name":"8:panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTksMV0="} diff --git a/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-application-events.json b/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-application-events.json deleted file mode 100644 index 737e390eff2..00000000000 --- a/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-application-events.json +++ /dev/null @@ -1,548 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This dashboard shows application logs collected by the ActiveMQ filebeat module.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "f0cad176-b0ef-4623-bd59-a9ce65db8b73", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "f0cad176-b0ef-4623-bd59-a9ce65db8b73", - "panelRefName": "panel_0", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "7e3a3b6b-5fd9-491d-ad73-423bca90206f", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "7e3a3b6b-5fd9-491d-ad73-423bca90206f", - "panelRefName": "panel_1", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 22, - "i": "a3093cd3-7edf-4e25-949e-631f3e5e8dec", - "w": 48, - "x": 0, - "y": 15 - }, - "panelIndex": "a3093cd3-7edf-4e25-949e-631f3e5e8dec", - "panelRefName": "panel_2", - "version": "7.4.0" - } - ], - "timeRestore": false, - "title": "[Filebeat ActiveMQ] Application Events", - "version": 1 - }, - "id": "26434790-1464-11ea-8fd8-030a13064883", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "a0f15d50-1460-11ea-8fd8-030a13064883", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "026da780-1463-11ea-8fd8-030a13064883", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "d784ec10-1460-11ea-8fd8-030a13064883", - "name": "panel_2", - "type": "search" - } - ], - "type": "dashboard", - "updated_at": "2019-12-02T14:59:23.454Z", - "version": "WzI0NCw2XQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "activemq.log" - }, - "type": "phrase", - "value": "activemq.log" - }, - "query": { - "match": { - "event.dataset": { - "query": "activemq.log", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Application Event Results [Filebeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "timeRange": { - "from": "now-2d", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "4", - "params": { - "field": "log.level", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "dimensions": { - "series": [ - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "splitColumn": [ - { - "accessor": 1, - "aggType": "filters", - "format": {}, - "params": {} - } - ], - "x": { - "accessor": 0, - "aggType": "date_histogram", - "format": { - "id": "date", - "params": { - "pattern": "YYYY-MM-DD HH:mm" - } - }, - "params": { - "bounds": { - "max": "2019-12-01T17:52:01.645Z", - "min": "2019-11-29T17:52:01.645Z" - }, - "date": true, - "format": "YYYY-MM-DD HH:mm", - "interval": "PT1H" - } - }, - "y": [ - { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "grid": { - "categoryLines": false - }, - "labels": { - "show": false - }, - "legendPosition": "right", - "radiusRatio": 50, - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#34130C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Application Event Results [Filebeat ActiveMQ]", - "type": "histogram" - } - }, - "id": "a0f15d50-1460-11ea-8fd8-030a13064883", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-12-02T14:56:05.639Z", - "version": "WzI0Miw2XQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "log.level", - "negate": false, - "params": { - "query": "ERROR" - }, - "type": "phrase", - "value": "ERROR" - }, - "query": { - "match": { - "log.level": { - "query": "ERROR", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "activemq.log" - }, - "type": "phrase", - "value": "activemq.log" - }, - "query": { - "match": { - "event.dataset": { - "query": "activemq.log", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top ERROR callers [Filebeat ActiveMQ]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "activemq.caller", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top ERROR callers [Filebeat ActiveMQ]", - "type": "table" - } - }, - "id": "026da780-1463-11ea-8fd8-030a13064883", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-12-02T14:56:49.832Z", - "version": "WzI0Myw2XQ==" - }, - { - "attributes": { - "columns": [ - "log.level", - "message", - "activemq.thread" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.dataset :\"activemq.log\" " - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Application Events [Filebeat ActiveMQ]", - "version": 1 - }, - "id": "d784ec10-1460-11ea-8fd8-030a13064883", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2019-12-01T17:34:35.344Z", - "version": "WzIxOSw0XQ==" - } - ], - "version": "7.4.0" -} diff --git a/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-application-events.ndjson b/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-application-events.ndjson new file mode 100644 index 00000000000..7b651d28b14 --- /dev/null +++ b/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-application-events.ndjson @@ -0,0 +1,4 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"activemq.log\"}, \"type\": \"phrase\", \"value\": \"activemq.log\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"activemq.log\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Application Event Results [Filebeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-2d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"log.level\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"splitColumn\":[{\"accessor\":1,\"aggType\":\"filters\",\"format\":{},\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"params\":{\"bounds\":{\"max\":\"2019-12-01T17:52:01.645Z\",\"min\":\"2019-11-29T17:52:01.645Z\"},\"date\":true,\"format\":\"YYYY-MM-DD HH:mm\",\"interval\":\"PT1H\"}},\"y\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"radiusRatio\":50,\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#34130C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Application Event Results [Filebeat ActiveMQ]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"a0f15d50-1460-11ea-8fd8-030a13064883","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:53.367Z","version":"WzQzMzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"log.level\", \"negate\": false, \"params\": {\"query\": \"ERROR\"}, \"type\": \"phrase\", \"value\": \"ERROR\"}, \"query\": {\"match\": {\"log.level\": {\"query\": \"ERROR\", \"type\": \"phrase\"}}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"activemq.log\"}, \"type\": \"phrase\", \"value\": \"activemq.log\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"activemq.log\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top ERROR callers [Filebeat ActiveMQ]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"activemq.caller\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top ERROR callers [Filebeat ActiveMQ]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"026da780-1463-11ea-8fd8-030a13064883","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:53.367Z","version":"WzQzMzEsMV0="} +{"attributes":{"columns":["log.level","message","activemq.thread"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"activemq.log\\\" \"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Application Events [Filebeat ActiveMQ]","version":1},"coreMigrationVersion":"8.0.0","id":"d784ec10-1460-11ea-8fd8-030a13064883","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:53.367Z","version":"WzQzMzIsMV0="} +{"attributes":{"description":"This dashboard shows application logs collected by the ActiveMQ filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"f0cad176-b0ef-4623-bd59-a9ce65db8b73\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"f0cad176-b0ef-4623-bd59-a9ce65db8b73\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_f0cad176-b0ef-4623-bd59-a9ce65db8b73\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7e3a3b6b-5fd9-491d-ad73-423bca90206f\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"7e3a3b6b-5fd9-491d-ad73-423bca90206f\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7e3a3b6b-5fd9-491d-ad73-423bca90206f\"},{\"version\":\"7.4.0\",\"type\":\"search\",\"gridData\":{\"h\":22,\"i\":\"a3093cd3-7edf-4e25-949e-631f3e5e8dec\",\"w\":48,\"x\":0,\"y\":15},\"panelIndex\":\"a3093cd3-7edf-4e25-949e-631f3e5e8dec\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a3093cd3-7edf-4e25-949e-631f3e5e8dec\"}]","timeRestore":false,"title":"[Filebeat ActiveMQ] Application Events","version":1},"coreMigrationVersion":"8.0.0","id":"26434790-1464-11ea-8fd8-030a13064883","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a0f15d50-1460-11ea-8fd8-030a13064883","name":"f0cad176-b0ef-4623-bd59-a9ce65db8b73:panel_f0cad176-b0ef-4623-bd59-a9ce65db8b73","type":"visualization"},{"id":"026da780-1463-11ea-8fd8-030a13064883","name":"7e3a3b6b-5fd9-491d-ad73-423bca90206f:panel_7e3a3b6b-5fd9-491d-ad73-423bca90206f","type":"visualization"},{"id":"d784ec10-1460-11ea-8fd8-030a13064883","name":"a3093cd3-7edf-4e25-949e-631f3e5e8dec:panel_a3093cd3-7edf-4e25-949e-631f3e5e8dec","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:53.367Z","version":"WzQzMjksMV0="} diff --git a/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-audit-events.json b/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-audit-events.json deleted file mode 100644 index 19427198940..00000000000 --- a/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-audit-events.json +++ /dev/null @@ -1,507 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This dashboard shows audit logs collected by the ActiveMQ filebeat module.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "11105044-eb78-45ab-9206-571e86f5f10d", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "11105044-eb78-45ab-9206-571e86f5f10d", - "panelRefName": "panel_0", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "8f349d14-40d9-4a10-b7d5-0f57c2a69f69", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "8f349d14-40d9-4a10-b7d5-0f57c2a69f69", - "panelRefName": "panel_1", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 23, - "i": "f2a1e6f8-cd1a-4fbd-a0b1-da4ee9db7c54", - "w": 48, - "x": 0, - "y": 15 - }, - "panelIndex": "f2a1e6f8-cd1a-4fbd-a0b1-da4ee9db7c54", - "panelRefName": "panel_2", - "version": "7.4.0" - } - ], - "timeRestore": false, - "title": "[Filebeat ActiveMQ] Audit Events", - "version": 1 - }, - "id": "ffe86390-145f-11ea-8fd8-030a13064883", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "38011a70-145a-11ea-8fd8-030a13064883", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "38874920-1454-11ea-8fd8-030a13064883", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "896ef3a0-145f-11ea-8fd8-030a13064883", - "name": "panel_2", - "type": "search" - } - ], - "type": "dashboard", - "updated_at": "2019-12-02T14:53:25.775Z", - "version": "WzI0MCw2XQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "activemq.audit" - }, - "type": "phrase", - "value": "activemq.audit" - }, - "query": { - "match": { - "event.dataset": { - "query": "activemq.audit", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Audit Event Results [Filebeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "timeRange": { - "from": "now-1d", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "filters": [ - { - "input": { - "language": "kuery", - "query": "event.dataset : \"activemq.audit\"" - }, - "label": "" - } - ], - "row": false - }, - "schema": "split", - "type": "filters" - }, - { - "enabled": true, - "id": "4", - "params": { - "field": "log.level", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "dimensions": { - "series": [ - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "x": { - "accessor": 0, - "aggType": "date_histogram", - "format": { - "id": "date", - "params": { - "pattern": "HH:mm" - } - }, - "params": { - "bounds": { - "max": "2019-12-01T16:41:18.507Z", - "min": "2019-11-30T16:41:18.507Z" - }, - "date": true, - "format": "HH:mm", - "interval": "PT30M" - } - }, - "y": [ - { - "accessor": 2, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "grid": { - "categoryLines": false - }, - "labels": { - "show": false - }, - "legendPosition": "right", - "radiusRatio": 50, - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#34130C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Audit Event Results [Filebeat ActiveMQ]", - "type": "histogram" - } - }, - "id": "38011a70-145a-11ea-8fd8-030a13064883", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-12-01T17:53:57.087Z", - "version": "WzIyMiw0XQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "activemq.audit" - }, - "type": "phrase", - "value": "activemq.audit" - }, - "query": { - "match": { - "event.dataset": { - "query": "activemq.audit", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Audit Account Tag Cloud [Filebeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "activemq.user", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "bucket": { - "accessor": 0, - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "type": "vis_dimension" - }, - "maxFontSize": 72, - "metric": { - "accessor": 1, - "format": { - "id": "string", - "params": {} - }, - "type": "vis_dimension" - }, - "minFontSize": 18, - "orientation": "single", - "scale": "linear", - "showLabel": true - }, - "title": "Audit Account Tag Cloud [Filebeat ActiveMQ]", - "type": "tagcloud" - } - }, - "id": "38874920-1454-11ea-8fd8-030a13064883", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-12-02T14:50:22.535Z", - "version": "WzIzOSw2XQ==" - }, - { - "attributes": { - "columns": [ - "log.level", - "activemq.user", - "message" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.dataset :\"activemq.audit\"" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Audit Events [Filebeat ActiveMQ]", - "version": 1 - }, - "id": "896ef3a0-145f-11ea-8fd8-030a13064883", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2019-12-02T14:46:31.288Z", - "version": "WzIzNiw2XQ==" - } - ], - "version": "7.4.0" -} diff --git a/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-audit-events.ndjson b/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-audit-events.ndjson new file mode 100644 index 00000000000..e72683b1778 --- /dev/null +++ b/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-audit-events.ndjson @@ -0,0 +1,4 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"activemq.audit\"}, \"type\": \"phrase\", \"value\": \"activemq.audit\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"activemq.audit\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Audit Event Results [Filebeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-1d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"event.dataset : \\\"activemq.audit\\\"\"},\"label\":\"\"}],\"row\":false},\"schema\":\"split\",\"type\":\"filters\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"log.level\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"HH:mm\"}},\"params\":{\"bounds\":{\"max\":\"2019-12-01T16:41:18.507Z\",\"min\":\"2019-11-30T16:41:18.507Z\"},\"date\":true,\"format\":\"HH:mm\",\"interval\":\"PT30M\"}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"radiusRatio\":50,\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#34130C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Audit Event Results [Filebeat ActiveMQ]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"38011a70-145a-11ea-8fd8-030a13064883","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:54.354Z","version":"WzQzMzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"activemq.audit\"}, \"type\": \"phrase\", \"value\": \"activemq.audit\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"activemq.audit\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Audit Account Tag Cloud [Filebeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"activemq.user\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"type\":\"vis_dimension\"},\"maxFontSize\":72,\"metric\":{\"accessor\":1,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Audit Account Tag Cloud [Filebeat ActiveMQ]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"38874920-1454-11ea-8fd8-030a13064883","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:54.354Z","version":"WzQzMzUsMV0="} +{"attributes":{"columns":["log.level","activemq.user","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"activemq.audit\\\"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Audit Events [Filebeat ActiveMQ]","version":1},"coreMigrationVersion":"8.0.0","id":"896ef3a0-145f-11ea-8fd8-030a13064883","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:54.354Z","version":"WzQzMzYsMV0="} +{"attributes":{"description":"This dashboard shows audit logs collected by the ActiveMQ filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"11105044-eb78-45ab-9206-571e86f5f10d\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"11105044-eb78-45ab-9206-571e86f5f10d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11105044-eb78-45ab-9206-571e86f5f10d\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"8f349d14-40d9-4a10-b7d5-0f57c2a69f69\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"8f349d14-40d9-4a10-b7d5-0f57c2a69f69\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8f349d14-40d9-4a10-b7d5-0f57c2a69f69\"},{\"version\":\"7.4.0\",\"type\":\"search\",\"gridData\":{\"h\":23,\"i\":\"f2a1e6f8-cd1a-4fbd-a0b1-da4ee9db7c54\",\"w\":48,\"x\":0,\"y\":15},\"panelIndex\":\"f2a1e6f8-cd1a-4fbd-a0b1-da4ee9db7c54\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_f2a1e6f8-cd1a-4fbd-a0b1-da4ee9db7c54\"}]","timeRestore":false,"title":"[Filebeat ActiveMQ] Audit Events","version":1},"coreMigrationVersion":"8.0.0","id":"ffe86390-145f-11ea-8fd8-030a13064883","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"38011a70-145a-11ea-8fd8-030a13064883","name":"11105044-eb78-45ab-9206-571e86f5f10d:panel_11105044-eb78-45ab-9206-571e86f5f10d","type":"visualization"},{"id":"38874920-1454-11ea-8fd8-030a13064883","name":"8f349d14-40d9-4a10-b7d5-0f57c2a69f69:panel_8f349d14-40d9-4a10-b7d5-0f57c2a69f69","type":"visualization"},{"id":"896ef3a0-145f-11ea-8fd8-030a13064883","name":"f2a1e6f8-cd1a-4fbd-a0b1-da4ee9db7c54:panel_f2a1e6f8-cd1a-4fbd-a0b1-da4ee9db7c54","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:54.354Z","version":"WzQzMzMsMV0="} diff --git a/x-pack/filebeat/module/activemq/module.yml b/x-pack/filebeat/module/activemq/module.yml index 052ae43b923..79ddc8c1c08 100644 --- a/x-pack/filebeat/module/activemq/module.yml +++ b/x-pack/filebeat/module/activemq/module.yml @@ -1,5 +1,5 @@ dashboards: - id: ffe86390-145f-11ea-8fd8-030a13064883 - file: Filebeat-activemq-audit-events.json + file: Filebeat-activemq-audit-events.ndjson - id: 26434790-1464-11ea-8fd8-030a13064883 - file: Filebeat-activemq-application-events.json + file: Filebeat-activemq-application-events.ndjson diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-elb-overview.json b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-elb-overview.json deleted file mode 100644 index 1db18170e8b..00000000000 --- a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-elb-overview.json +++ /dev/null @@ -1,949 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Filebeat AWS ELB Access Log Overview Dashboard", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "isLayerTOCOpen": false, - "mapCenter": { - "lat": 51.63808, - "lon": 17.07232, - "zoom": 3.47 - }, - "openTOCDetails": [], - "title": "ELB Requests Geolocation" - }, - "gridData": { - "h": 14, - "i": "2c97b32e-5548-429d-9ce0-1bbc3d2398ac", - "w": 16, - "x": 0, - "y": 0 - }, - "panelIndex": "2c97b32e-5548-429d-9ce0-1bbc3d2398ac", - "panelRefName": "panel_0", - "title": "ELB Requests Geolocation", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "ELB Inbound Traffic" - }, - "gridData": { - "h": 14, - "i": "26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9", - "w": 16, - "x": 16, - "y": 0 - }, - "panelIndex": "26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9", - "panelRefName": "panel_1", - "title": "ELB Inbound Traffic", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "ELB Top User Agents" - }, - "gridData": { - "h": 14, - "i": "48ecb39f-57a5-4805-a8a9-77385a996d75", - "w": 16, - "x": 32, - "y": 14 - }, - "panelIndex": "48ecb39f-57a5-4805-a8a9-77385a996d75", - "panelRefName": "panel_2", - "title": "ELB Top User Agents", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "ELB Total Requests" - }, - "gridData": { - "h": 14, - "i": "9812996e-ba10-41bd-b134-c9705a0973b4", - "w": 16, - "x": 0, - "y": 14 - }, - "panelIndex": "9812996e-ba10-41bd-b134-c9705a0973b4", - "panelRefName": "panel_3", - "title": "ELB Total Requests", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "ELB Top IP Addresses" - }, - "gridData": { - "h": 14, - "i": "bb25b36e-0787-48fd-aa22-7ba8c08a9c36", - "w": 16, - "x": 16, - "y": 14 - }, - "panelIndex": "bb25b36e-0787-48fd-aa22-7ba8c08a9c36", - "panelRefName": "panel_4", - "title": "ELB Top IP Addresses", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "ELB Outbound Traffic" - }, - "gridData": { - "h": 14, - "i": "bf43580d-cc26-415b-ae36-d678a232b544", - "w": 16, - "x": 32, - "y": 0 - }, - "panelIndex": "bf43580d-cc26-415b-ae36-d678a232b544", - "panelRefName": "panel_5", - "title": "ELB Outbound Traffic", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "ELB HTTP 2xx" - }, - "gridData": { - "h": 14, - "i": "466e825b-6ee2-43c3-b221-21abe27612dd", - "w": 16, - "x": 0, - "y": 28 - }, - "panelIndex": "466e825b-6ee2-43c3-b221-21abe27612dd", - "panelRefName": "panel_6", - "title": "ELB HTTP 2xx", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "ELB HTTP 4xx" - }, - "gridData": { - "h": 14, - "i": "d42994a6-922c-4f86-bf99-a46f87ff106d", - "w": 16, - "x": 16, - "y": 28 - }, - "panelIndex": "d42994a6-922c-4f86-bf99-a46f87ff106d", - "panelRefName": "panel_7", - "title": "ELB HTTP 4xx", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "ELB HTTP 5xx" - }, - "gridData": { - "h": 14, - "i": "f45aaa2c-c244-4d1a-8ad4-4794130b9827", - "w": 16, - "x": 32, - "y": 28 - }, - "panelIndex": "f45aaa2c-c244-4d1a-8ad4-4794130b9827", - "panelRefName": "panel_8", - "title": "ELB HTTP 5xx", - "version": "7.4.0" - } - ], - "timeRestore": false, - "title": "[Filebeat AWS] ELB Access Log Overview", - "version": 1 - }, - "id": "3af47420-3e7b-11ea-bb0a-69c3ca1d410f", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "0edf0640-3e7e-11ea-bb0a-69c3ca1d410f", - "name": "panel_0", - "type": "map" - }, - { - "id": "76af8140-3e84-11ea-bb0a-69c3ca1d410f", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "73970bc0-3e86-11ea-bb0a-69c3ca1d410f", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "e50c51e0-3e7f-11ea-bb0a-69c3ca1d410f", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "ceb7c030-3e86-11ea-bb0a-69c3ca1d410f", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "bd37d720-3e84-11ea-bb0a-69c3ca1d410f", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "219c1850-3e82-11ea-bb0a-69c3ca1d410f", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "b6a308f0-3e82-11ea-bb0a-69c3ca1d410f", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "d8b1e830-3e82-11ea-bb0a-69c3ca1d410f", - "name": "panel_8", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-01-27T07:52:13.100Z", - "version": "WzUxNSwxXQ==" - }, - { - "attributes": { - "bounds": { - "coordinates": [ - [ - [ - -14.38966, - 60.11526 - ], - [ - -14.38966, - 39.61205 - ], - [ - 41.72167, - 39.61205 - ], - [ - 41.72167, - 60.11526 - ], - [ - -14.38966, - 60.11526 - ] - ] - ], - "type": "Polygon" - }, - "description": "", - "layerListJSON": "[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"19047c4c-18d7-4aec-b0ce-98de2828244d\",\"label\":\"Hits\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"applyGlobalQuery\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"type\":\"ES_GEO_GRID\",\"id\":\"1e82f50f-424a-4718-905b-ad45db14db62\",\"geoField\":\"source.geo.location\",\"requestType\":\"point\",\"resolution\":\"COARSE\",\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"fillColor\":{\"type\":\"DYNAMIC\",\"options\":{\"field\":{\"label\":\"count\",\"name\":\"doc_count\",\"origin\":\"source\"},\"color\":\"Blues\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#167a6d\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"DYNAMIC\",\"options\":{\"field\":{\"label\":\"count\",\"name\":\"doc_count\",\"origin\":\"source\"},\"minSize\":4,\"maxSize\":32}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"symbol\":{\"options\":{\"symbolizeAs\":\"circle\",\"symbolId\":\"airfield\"}}}},\"id\":\"1d457cd4-01be-4f96-95fd-af4ac535ebea\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"applyGlobalQuery\":true,\"type\":\"VECTOR\"}]", - "mapStateJSON": "{\"zoom\":3.9,\"center\":{\"lon\":13.666,\"lat\":50.97903},\"timeFilters\":{\"from\":\"now-15m\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[{\"meta\":{\"index\":\"filebeat-*\",\"alias\":null,\"negate\":false,\"disabled\":false,\"type\":\"phrase\",\"key\":\"fileset.name\",\"value\":\"elb\",\"params\":{\"query\":\"elb\"}},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"elb\",\"type\":\"phrase\"}}},\"$state\":{\"store\":\"appState\"}}]}", - "title": "ELB Requests Geolocation [Filebeat AWS] ECS", - "uiStateJSON": { - "isLayerTOCOpen": true, - "openTOCDetails": [] - } - }, - "id": "0edf0640-3e7e-11ea-bb0a-69c3ca1d410f", - "migrationVersion": { - "map": "7.4.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "layer_1_source_index_pattern", - "type": "index-pattern" - } - ], - "type": "map", - "updated_at": "2020-01-27T07:49:00.984Z", - "version": "WzEzOCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ELB Inbound Traffic [Filebeat AWS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "fileset.name : \"elb\"" - }, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Inbound", - "line_width": 1, - "metrics": [ - { - "field": "source.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.elb.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "ELB Inbound Traffic [Filebeat AWS] ECS", - "type": "metrics" - } - }, - "id": "76af8140-3e84-11ea-bb0a-69c3ca1d410f", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-27T07:49:00.984Z", - "version": "WzEzOSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ELB Top User Agents [Filebeat AWS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "29527130-3e86-11ea-9067-cf383a4ea3b3" - } - ], - "bar_color_rules": [ - { - "id": "cc6d5070-3e85-11ea-9067-cf383a4ea3b3" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "2b29c940-3e86-11ea-9067-cf383a4ea3b3" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "pivot_id": "user_agent.original", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "color_rules": [ - { - "id": "42e14220-3e86-11ea-9067-cf383a4ea3b3" - } - ], - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "fileset.name : \"elb\" " - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "User Agent", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "2010cb20-3e87-11ea-9067-cf383a4ea3b3", - "type": "cumulative_sum" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "user_agent.original", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "top_n" - }, - "title": "ELB Top User Agents [Filebeat AWS] ECS", - "type": "metrics" - } - }, - "id": "73970bc0-3e86-11ea-bb0a-69c3ca1d410f", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-27T07:49:00.984Z", - "version": "WzE0MCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ELB Total Requests [Filebeat AWS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "fileset.name : \"elb\" " - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Total Requests", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.elb.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "ELB Total Requests [Filebeat AWS] ECS", - "type": "metrics" - } - }, - "id": "e50c51e0-3e7f-11ea-bb0a-69c3ca1d410f", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-27T07:49:00.984Z", - "version": "WzE0MSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ELB Top IP Addresses [Filebeat AWS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "29527130-3e86-11ea-9067-cf383a4ea3b3" - } - ], - "bar_color_rules": [ - { - "id": "cc6d5070-3e85-11ea-9067-cf383a4ea3b3" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "2b29c940-3e86-11ea-9067-cf383a4ea3b3" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "pivot_id": "user_agent.original", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "color_rules": [ - { - "id": "42e14220-3e86-11ea-9067-cf383a4ea3b3" - } - ], - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "fileset.name : \"elb\" " - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "IP address", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "40c52370-3e87-11ea-9067-cf383a4ea3b3", - "type": "cumulative_sum" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "source.ip", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "top_n" - }, - "title": "ELB Top IP Addresses [Filebeat AWS] ECS", - "type": "metrics" - } - }, - "id": "ceb7c030-3e86-11ea-bb0a-69c3ca1d410f", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-27T07:49:00.984Z", - "version": "WzE0MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ELB Outbound Traffic [Filebeat AWS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(253,161,255,1)", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "fileset.name : \"elb\"" - }, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Outbound", - "line_width": 1, - "metrics": [ - { - "field": "destination.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.elb.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "ELB Outbound Traffic [Filebeat AWS] ECS", - "type": "metrics" - } - }, - "id": "bd37d720-3e84-11ea-bb0a-69c3ca1d410f", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-27T07:49:00.984Z", - "version": "WzE0MywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ELB HTTP 2xx [Filebeat AWS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(164,221,0,1)", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "fileset.name : \"elb\" and http.response.status_code \u003e= 200 and http.response.status_code\t\u003c 300" - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "HTTP 2xx", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.elb.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "ELB HTTP 2xx [Filebeat AWS] ECS", - "type": "metrics" - } - }, - "id": "219c1850-3e82-11ea-bb0a-69c3ca1d410f", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-27T07:49:00.984Z", - "version": "WzE0NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ELB HTTP 4xx [Filebeat AWS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(174,161,255,1)", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "fileset.name : \"elb\" and http.response.status_code \u003e= 400 and http.response.status_code \u003c 500" - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "HTTP 4xx", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.elb.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "ELB HTTP 4xx [Filebeat AWS] ECS", - "type": "metrics" - } - }, - "id": "b6a308f0-3e82-11ea-bb0a-69c3ca1d410f", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-27T07:49:00.984Z", - "version": "WzE0NSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ELB HTTP 5xx [Filebeat AWS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "fileset.name : \"elb\" and http.response.status_code \u003e= 500 and http.response.status_code \u003c 600" - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "HTTP 5xx", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.elb.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "ELB HTTP 5xx [Filebeat AWS] ECS", - "type": "metrics" - } - }, - "id": "d8b1e830-3e82-11ea-bb0a-69c3ca1d410f", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-27T07:49:00.984Z", - "version": "WzE0NiwxXQ==" - } - ], - "version": "7.4.0" -} diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-elb-overview.ndjson b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-elb-overview.ndjson new file mode 100644 index 00000000000..6bdcb7ef926 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-elb-overview.ndjson @@ -0,0 +1,10 @@ +{"attributes":{"description":"","layerListJSON":"[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"19047c4c-18d7-4aec-b0ce-98de2828244d\",\"label\":\"Hits\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"type\":\"ES_GEO_GRID\",\"id\":\"1e82f50f-424a-4718-905b-ad45db14db62\",\"geoField\":\"source.geo.location\",\"requestType\":\"point\",\"resolution\":\"COARSE\",\"indexPatternRefName\":\"layer_1_source_index_pattern\",\"applyGlobalQuery\":true},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"fillColor\":{\"type\":\"DYNAMIC\",\"options\":{\"field\":{\"label\":\"count\",\"name\":\"doc_count\",\"origin\":\"source\"},\"color\":\"Blues\",\"fieldMetaOptions\":{\"isEnabled\":false,\"sigma\":3}}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#167a6d\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"DYNAMIC\",\"options\":{\"field\":{\"label\":\"count\",\"name\":\"doc_count\",\"origin\":\"source\"},\"minSize\":4,\"maxSize\":32,\"fieldMetaOptions\":{\"isEnabled\":false,\"sigma\":3}}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"airfield\"}}}},\"id\":\"1d457cd4-01be-4f96-95fd-af4ac535ebea\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\"}]","mapStateJSON":"{\"zoom\":3.9,\"center\":{\"lon\":13.666,\"lat\":50.97903},\"timeFilters\":{\"from\":\"now-15m\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[{\"meta\":{\"index\":\"filebeat-*\",\"alias\":null,\"negate\":false,\"disabled\":false,\"type\":\"phrase\",\"key\":\"fileset.name\",\"value\":\"elb\",\"params\":{\"query\":\"elb\"}},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"elb\",\"type\":\"phrase\"}}},\"$state\":{\"store\":\"appState\"}}],\"settings\":{\"autoFitToDataBounds\":false}}","title":"ELB Requests Geolocation [Filebeat AWS] ECS","uiStateJSON":"{\"isLayerTOCOpen\": true, \"openTOCDetails\": []}"},"coreMigrationVersion":"8.0.0","id":"0edf0640-3e7e-11ea-bb0a-69c3ca1d410f","migrationVersion":{"map":"7.14.0"},"references":[{"id":"filebeat-*","name":"layer_1_source_index_pattern","type":"index-pattern"}],"type":"map","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Inbound Traffic [Filebeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"elb\\\"\"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Inbound\",\"line_width\":1,\"metrics\":[{\"field\":\"source.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.elb.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB Inbound Traffic [Filebeat AWS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"76af8140-3e84-11ea-bb0a-69c3ca1d410f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Top User Agents [Filebeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"29527130-3e86-11ea-9067-cf383a4ea3b3\"}],\"bar_color_rules\":[{\"id\":\"cc6d5070-3e85-11ea-9067-cf383a4ea3b3\"}],\"gauge_color_rules\":[{\"id\":\"2b29c940-3e86-11ea-9067-cf383a4ea3b3\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"pivot_id\":\"user_agent.original\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"color_rules\":[{\"id\":\"42e14220-3e86-11ea-9067-cf383a4ea3b3\"}],\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"elb\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"User Agent\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"2010cb20-3e87-11ea-9067-cf383a4ea3b3\",\"type\":\"cumulative_sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"user_agent.original\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"ELB Top User Agents [Filebeat AWS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"73970bc0-3e86-11ea-bb0a-69c3ca1d410f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Total Requests [Filebeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"elb\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total Requests\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.elb.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB Total Requests [Filebeat AWS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e50c51e0-3e7f-11ea-bb0a-69c3ca1d410f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Top IP Addresses [Filebeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"29527130-3e86-11ea-9067-cf383a4ea3b3\"}],\"bar_color_rules\":[{\"id\":\"cc6d5070-3e85-11ea-9067-cf383a4ea3b3\"}],\"gauge_color_rules\":[{\"id\":\"2b29c940-3e86-11ea-9067-cf383a4ea3b3\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"pivot_id\":\"user_agent.original\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"color_rules\":[{\"id\":\"42e14220-3e86-11ea-9067-cf383a4ea3b3\"}],\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"elb\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"IP address\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"40c52370-3e87-11ea-9067-cf383a4ea3b3\",\"type\":\"cumulative_sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"source.ip\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"ELB Top IP Addresses [Filebeat AWS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ceb7c030-3e86-11ea-bb0a-69c3ca1d410f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Outbound Traffic [Filebeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(253,161,255,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"elb\\\"\"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Outbound\",\"line_width\":1,\"metrics\":[{\"field\":\"destination.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.elb.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB Outbound Traffic [Filebeat AWS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bd37d720-3e84-11ea-bb0a-69c3ca1d410f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB HTTP 2xx [Filebeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"elb\\\" and http.response.status_code >= 200 and http.response.status_code\\t< 300\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"HTTP 2xx\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.elb.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB HTTP 2xx [Filebeat AWS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"219c1850-3e82-11ea-bb0a-69c3ca1d410f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB HTTP 4xx [Filebeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(174,161,255,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"elb\\\" and http.response.status_code >= 400 and http.response.status_code < 500\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"HTTP 4xx\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.elb.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB HTTP 4xx [Filebeat AWS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b6a308f0-3e82-11ea-bb0a-69c3ca1d410f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB HTTP 5xx [Filebeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"elb\\\" and http.response.status_code >= 500 and http.response.status_code < 600\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"HTTP 5xx\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.elb.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB HTTP 5xx [Filebeat AWS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d8b1e830-3e82-11ea-bb0a-69c3ca1d410f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNjgsMV0="} +{"attributes":{"description":"Filebeat AWS ELB Access Log Overview Dashboard","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"map\",\"gridData\":{\"h\":14,\"i\":\"2c97b32e-5548-429d-9ce0-1bbc3d2398ac\",\"w\":16,\"x\":0,\"y\":0},\"panelIndex\":\"2c97b32e-5548-429d-9ce0-1bbc3d2398ac\",\"embeddableConfig\":{\"isLayerTOCOpen\":false,\"mapCenter\":{\"lat\":51.63808,\"lon\":17.07232,\"zoom\":3.47},\"openTOCDetails\":[],\"enhancements\":{}},\"title\":\"ELB Requests Geolocation\",\"panelRefName\":\"panel_2c97b32e-5548-429d-9ce0-1bbc3d2398ac\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9\",\"w\":16,\"x\":16,\"y\":0},\"panelIndex\":\"26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"ELB Inbound Traffic\",\"panelRefName\":\"panel_26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"48ecb39f-57a5-4805-a8a9-77385a996d75\",\"w\":16,\"x\":32,\"y\":14},\"panelIndex\":\"48ecb39f-57a5-4805-a8a9-77385a996d75\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"ELB Top User Agents\",\"panelRefName\":\"panel_48ecb39f-57a5-4805-a8a9-77385a996d75\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"9812996e-ba10-41bd-b134-c9705a0973b4\",\"w\":16,\"x\":0,\"y\":14},\"panelIndex\":\"9812996e-ba10-41bd-b134-c9705a0973b4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"ELB Total Requests\",\"panelRefName\":\"panel_9812996e-ba10-41bd-b134-c9705a0973b4\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"bb25b36e-0787-48fd-aa22-7ba8c08a9c36\",\"w\":16,\"x\":16,\"y\":14},\"panelIndex\":\"bb25b36e-0787-48fd-aa22-7ba8c08a9c36\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"ELB Top IP Addresses\",\"panelRefName\":\"panel_bb25b36e-0787-48fd-aa22-7ba8c08a9c36\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"bf43580d-cc26-415b-ae36-d678a232b544\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"bf43580d-cc26-415b-ae36-d678a232b544\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"ELB Outbound Traffic\",\"panelRefName\":\"panel_bf43580d-cc26-415b-ae36-d678a232b544\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"466e825b-6ee2-43c3-b221-21abe27612dd\",\"w\":16,\"x\":0,\"y\":28},\"panelIndex\":\"466e825b-6ee2-43c3-b221-21abe27612dd\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"ELB HTTP 2xx\",\"panelRefName\":\"panel_466e825b-6ee2-43c3-b221-21abe27612dd\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"d42994a6-922c-4f86-bf99-a46f87ff106d\",\"w\":16,\"x\":16,\"y\":28},\"panelIndex\":\"d42994a6-922c-4f86-bf99-a46f87ff106d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"ELB HTTP 4xx\",\"panelRefName\":\"panel_d42994a6-922c-4f86-bf99-a46f87ff106d\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"f45aaa2c-c244-4d1a-8ad4-4794130b9827\",\"w\":16,\"x\":32,\"y\":28},\"panelIndex\":\"f45aaa2c-c244-4d1a-8ad4-4794130b9827\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"ELB HTTP 5xx\",\"panelRefName\":\"panel_f45aaa2c-c244-4d1a-8ad4-4794130b9827\"}]","timeRestore":false,"title":"[Filebeat AWS] ELB Access Log Overview","version":1},"coreMigrationVersion":"8.0.0","id":"3af47420-3e7b-11ea-bb0a-69c3ca1d410f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"0edf0640-3e7e-11ea-bb0a-69c3ca1d410f","name":"2c97b32e-5548-429d-9ce0-1bbc3d2398ac:panel_2c97b32e-5548-429d-9ce0-1bbc3d2398ac","type":"map"},{"id":"76af8140-3e84-11ea-bb0a-69c3ca1d410f","name":"26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9:panel_26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9","type":"visualization"},{"id":"73970bc0-3e86-11ea-bb0a-69c3ca1d410f","name":"48ecb39f-57a5-4805-a8a9-77385a996d75:panel_48ecb39f-57a5-4805-a8a9-77385a996d75","type":"visualization"},{"id":"e50c51e0-3e7f-11ea-bb0a-69c3ca1d410f","name":"9812996e-ba10-41bd-b134-c9705a0973b4:panel_9812996e-ba10-41bd-b134-c9705a0973b4","type":"visualization"},{"id":"ceb7c030-3e86-11ea-bb0a-69c3ca1d410f","name":"bb25b36e-0787-48fd-aa22-7ba8c08a9c36:panel_bb25b36e-0787-48fd-aa22-7ba8c08a9c36","type":"visualization"},{"id":"bd37d720-3e84-11ea-bb0a-69c3ca1d410f","name":"bf43580d-cc26-415b-ae36-d678a232b544:panel_bf43580d-cc26-415b-ae36-d678a232b544","type":"visualization"},{"id":"219c1850-3e82-11ea-bb0a-69c3ca1d410f","name":"466e825b-6ee2-43c3-b221-21abe27612dd:panel_466e825b-6ee2-43c3-b221-21abe27612dd","type":"visualization"},{"id":"b6a308f0-3e82-11ea-bb0a-69c3ca1d410f","name":"d42994a6-922c-4f86-bf99-a46f87ff106d:panel_d42994a6-922c-4f86-bf99-a46f87ff106d","type":"visualization"},{"id":"d8b1e830-3e82-11ea-bb0a-69c3ca1d410f","name":"f45aaa2c-c244-4d1a-8ad4-4794130b9827:panel_f45aaa2c-c244-4d1a-8ad4-4794130b9827","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNTksMV0="} diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-s3access-overview.json b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-s3access-overview.json deleted file mode 100644 index 7f8b10f8ca9..00000000000 --- a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-s3access-overview.json +++ /dev/null @@ -1,458 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Filebeat AWS S3 Server Access Log Overview Dashboard", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Top URLs" - }, - "gridData": { - "h": 15, - "i": "1", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "Top URLs", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Http Status over time" - }, - "gridData": { - "h": 15, - "i": "2", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "Http Status over time", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Error Logs" - }, - "gridData": { - "h": 15, - "i": "3", - "w": 48, - "x": 0, - "y": 15 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "Error Logs", - "version": "7.4.0" - } - ], - "timeRestore": false, - "title": "[Filebeat AWS] S3 Server Access Log Overview", - "version": 1 - }, - "id": "4746e000-bacd-11e9-9f70-1f7bda85a5eb", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "99ffdb00-bacb-11e9-9f70-1f7bda85a5eb", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "5c93cd10-bac3-11e9-9f70-1f7bda85a5eb", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "5e5a3c90-bac0-11e9-9f70-1f7bda85a5eb", - "name": "panel_2", - "type": "search" - } - ], - "type": "dashboard", - "updated_at": "2019-09-11T15:17:53.090Z", - "version": "WzEyMDAsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top URLs [Filebeat AWS]", - "uiStateJSON": { - "vis": { - "colors": { - "404": "#EAB839" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Request Uri", - "field": "aws.s3access.request_uri", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "row": false, - "size": 5 - }, - "schema": "split", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "HTTP Status", - "field": "aws.s3access.http_status", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "number", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metric": { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - }, - "splitColumn": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ] - }, - "isDonut": false, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Top URLs [Filebeat AWS]", - "type": "pie" - } - }, - "id": "99ffdb00-bacb-11e9-9f70-1f7bda85a5eb", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-09-11T15:11:59.518Z", - "version": "Wzk0Myw3XQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Http Status over time [Filebeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "lucene", - "query": "event.module:aws AND fileset.name:s3access" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "auto", - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Http Status", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "aws.s3access.http_status \u003c 300 and aws.s3access.http_status \u003e= 200" - }, - "id": "5acdc750-a29d-11e7-a062-a1c3587f4874", - "label": "200s" - }, - { - "color": "rgba(252,196,0,1)", - "filter": { - "language": "kuery", - "query": "aws.s3access.http_status \u003c 400 and aws.s3access.http_status \u003e= 300" - }, - "id": "6efd2ae0-a29d-11e7-a062-a1c3587f4874", - "label": "300s" - }, - { - "color": "rgba(211,49,21,1)", - "filter": { - "language": "kuery", - "query": "aws.s3access.http_status \u003c 500 and aws.s3access.http_status \u003e= 400" - }, - "id": "76089a90-a29d-11e7-a062-a1c3587f4874", - "label": "400s" - }, - { - "color": "rgba(171,20,158,1)", - "filter": { - "language": "kuery", - "query": "aws.s3access.http_status \u003c 600 and aws.s3access.http_status \u003e= 500" - }, - "id": "7c7929d0-a29d-11e7-a062-a1c3587f4874", - "label": "500s" - } - ], - "split_mode": "filters", - "stacked": "stacked", - "terms_field": "http.response.status_code", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Http Status over time [Filebeat AWS]", - "type": "metrics" - } - }, - "id": "5c93cd10-bac3-11e9-9f70-1f7bda85a5eb", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-09-11T15:11:59.518Z", - "version": "Wzk0NCw3XQ==" - }, - { - "attributes": { - "columns": [ - "aws.s3access.http_status", - "aws.s3access.error_code", - "aws.s3access.operation", - "aws.s3access.request_uri" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "aws.s3access.http_status", - "negate": true, - "params": { - "query": "200" - }, - "type": "phrase", - "value": "200" - }, - "query": { - "match": { - "aws.s3access.http_status": { - "query": "200", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "fileset.name", - "negate": false, - "params": { - "query": "s3access" - }, - "type": "phrase", - "value": "s3access" - }, - "query": { - "match": { - "fileset.name": { - "query": "s3access", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Error Logs [Filebeat AWS]", - "version": 1 - }, - "id": "5e5a3c90-bac0-11e9-9f70-1f7bda85a5eb", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2019-09-11T15:17:42.648Z", - "version": "WzExOTksN10=" - } - ], - "version": "7.4.0" -} diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-s3access-overview.ndjson b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-s3access-overview.ndjson new file mode 100644 index 00000000000..d0f13759168 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-s3access-overview.ndjson @@ -0,0 +1,4 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top URLs [Filebeat AWS]","uiStateJSON":"{\"vis\": {\"colors\": {\"404\": \"#EAB839\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Request Uri\",\"field\":\"aws.s3access.request_uri\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"HTTP Status\",\"field\":\"aws.s3access.http_status\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"number\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}},\"splitColumn\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}]},\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"row\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top URLs [Filebeat AWS]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"99ffdb00-bacb-11e9-9f70-1f7bda85a5eb","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:59.495Z","version":"WzQzNzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Http Status over time [Filebeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:aws AND fileset.name:s3access\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Http Status\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"aws.s3access.http_status < 300 and aws.s3access.http_status >= 200\"},\"id\":\"5acdc750-a29d-11e7-a062-a1c3587f4874\",\"label\":\"200s\"},{\"color\":\"rgba(252,196,0,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"aws.s3access.http_status < 400 and aws.s3access.http_status >= 300\"},\"id\":\"6efd2ae0-a29d-11e7-a062-a1c3587f4874\",\"label\":\"300s\"},{\"color\":\"rgba(211,49,21,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"aws.s3access.http_status < 500 and aws.s3access.http_status >= 400\"},\"id\":\"76089a90-a29d-11e7-a062-a1c3587f4874\",\"label\":\"400s\"},{\"color\":\"rgba(171,20,158,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"aws.s3access.http_status < 600 and aws.s3access.http_status >= 500\"},\"id\":\"7c7929d0-a29d-11e7-a062-a1c3587f4874\",\"label\":\"500s\"}],\"split_mode\":\"filters\",\"stacked\":\"stacked\",\"terms_field\":\"http.response.status_code\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Http Status over time [Filebeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5c93cd10-bac3-11e9-9f70-1f7bda85a5eb","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:59.495Z","version":"WzQzNzEsMV0="} +{"attributes":{"columns":["aws.s3access.http_status","aws.s3access.error_code","aws.s3access.operation","aws.s3access.request_uri"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"aws.s3access.http_status\", \"negate\": true, \"params\": {\"query\": \"200\"}, \"type\": \"phrase\", \"value\": \"200\"}, \"query\": {\"match\": {\"aws.s3access.http_status\": {\"query\": \"200\", \"type\": \"phrase\"}}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"fileset.name\", \"negate\": false, \"params\": {\"query\": \"s3access\"}, \"type\": \"phrase\", \"value\": \"s3access\"}, \"query\": {\"match\": {\"fileset.name\": {\"query\": \"s3access\", \"type\": \"phrase\"}}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Error Logs [Filebeat AWS]","version":1},"coreMigrationVersion":"8.0.0","id":"5e5a3c90-bac0-11e9-9f70-1f7bda85a5eb","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:59.495Z","version":"WzQzNzIsMV0="} +{"attributes":{"description":"Filebeat AWS S3 Server Access Log Overview Dashboard","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top URLs\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Http Status over time\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.4.0\",\"type\":\"search\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":48,\"x\":0,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Error Logs\",\"panelRefName\":\"panel_3\"}]","timeRestore":false,"title":"[Filebeat AWS] S3 Server Access Log Overview","version":1},"coreMigrationVersion":"8.0.0","id":"4746e000-bacd-11e9-9f70-1f7bda85a5eb","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"99ffdb00-bacb-11e9-9f70-1f7bda85a5eb","name":"1:panel_1","type":"visualization"},{"id":"5c93cd10-bac3-11e9-9f70-1f7bda85a5eb","name":"2:panel_2","type":"visualization"},{"id":"5e5a3c90-bac0-11e9-9f70-1f7bda85a5eb","name":"3:panel_3","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:59.495Z","version":"WzQzNjksMV0="} diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-vpcflow-overview.json b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-vpcflow-overview.json deleted file mode 100644 index d258a802997..00000000000 --- a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-vpcflow-overview.json +++ /dev/null @@ -1,659 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Filebeat AWS VPC Flow Log Overview Dashboard", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "S3 Bucket Filter" - }, - "gridData": { - "h": 5, - "i": "c802177f-038c-4a35-a82d-0fa42c857d02", - "w": 18, - "x": 0, - "y": 0 - }, - "panelIndex": "c802177f-038c-4a35-a82d-0fa42c857d02", - "panelRefName": "panel_0", - "title": "S3 Bucket Filter", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "isLayerTOCOpen": true, - "mapCenter": { - "lat": 12.09237, - "lon": 60.11722, - "zoom": 0.47 - }, - "openTOCDetails": [], - "title": "VPC Flow Action Geo Location" - }, - "gridData": { - "h": 17, - "i": "380eed85-225b-4d5d-88bc-1c70a3643ddb", - "w": 30, - "x": 18, - "y": 0 - }, - "panelIndex": "380eed85-225b-4d5d-88bc-1c70a3643ddb", - "panelRefName": "panel_1", - "title": "VPC Flow Action Geo Location", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "VPC Flow Top IP Addresses" - }, - "gridData": { - "h": 12, - "i": "3dde08df-2d7e-464e-825d-03179e43e175", - "w": 18, - "x": 0, - "y": 5 - }, - "panelIndex": "3dde08df-2d7e-464e-825d-03179e43e175", - "panelRefName": "panel_2", - "title": "VPC Flow Top IP Addresses", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "VPC Flow Total Requests" - }, - "gridData": { - "h": 12, - "i": "f7c6de04-c771-47ff-a32d-00a7940e414a", - "w": 48, - "x": 0, - "y": 17 - }, - "panelIndex": "f7c6de04-c771-47ff-a32d-00a7940e414a", - "panelRefName": "panel_3", - "title": "VPC Flow Total Requests", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "VPC Flow Reject Logs" - }, - "gridData": { - "h": 15, - "i": "b4dbbe72-0dc0-428b-b21e-91c6cc82745c", - "w": 48, - "x": 0, - "y": 29 - }, - "panelIndex": "b4dbbe72-0dc0-428b-b21e-91c6cc82745c", - "panelRefName": "panel_4", - "title": "VPC Flow Reject Logs", - "version": "7.4.0" - } - ], - "timeRestore": false, - "title": "[Filebeat AWS] VPC Flow Log Overview", - "version": 1 - }, - "id": "15503340-4488-11ea-ad63-791a5dc86f10", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "247e2990-4699-11ea-ad63-791a5dc86f10", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "513a3d70-4482-11ea-ad63-791a5dc86f10", - "name": "panel_1", - "type": "map" - }, - { - "id": "75853f20-4484-11ea-ad63-791a5dc86f10", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "bad8c910-4485-11ea-ad63-791a5dc86f10", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "c1aee600-4487-11ea-ad63-791a5dc86f10", - "name": "panel_4", - "type": "search" - } - ], - "type": "dashboard", - "updated_at": "2020-02-03T16:45:00.909Z", - "version": "WzY3NDIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "S3 Bucket Name Filter [Filebeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "aws.s3.bucket.name", - "id": "1565034367477", - "indexPatternRefName": "control_0_index_pattern", - "label": "S3 Bucket Names", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": true - }, - "title": "S3 Bucket Name Filter [Filebeat AWS]", - "type": "input_control_vis" - } - }, - "id": "247e2990-4699-11ea-ad63-791a5dc86f10", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "filebeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-02-03T16:42:58.806Z", - "version": "WzYzNzUsMV0=" - }, - { - "attributes": { - "bounds": { - "coordinates": [ - [ - [ - -180, - 85.05113 - ], - [ - -180, - -85.05113 - ], - [ - 180, - -85.05113 - ], - [ - 180, - 85.05113 - ], - [ - -180, - 85.05113 - ] - ] - ], - "type": "Polygon" - }, - "description": "", - "layerListJSON": "[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"842c201e-96d7-413d-8688-de5ee4f8a1e0\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"applyGlobalQuery\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"id\":\"97903038-e08d-4451-bbd2-eb92c894bdf5\",\"type\":\"ES_SEARCH\",\"geoField\":\"destination.geo.location\",\"filterByMapBounds\":true,\"tooltipProperties\":[],\"useTopHits\":false,\"topHitsTimeField\":\"@timestamp\",\"topHitsSize\":1,\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#1EA593\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#167a6d\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":5}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"symbol\":{\"options\":{\"symbolizeAs\":\"circle\",\"symbolId\":\"airfield\"}}}},\"id\":\"401944dd-a371-4698-be17-bc4542e9a5d4\",\"label\":\"vpc flow action accept\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"applyGlobalQuery\":true,\"type\":\"VECTOR\",\"query\":{\"query\":\"aws.vpcflow.action : \\\"ACCEPT\\\" \",\"language\":\"kuery\"}},{\"sourceDescriptor\":{\"id\":\"9c0e7cce-4f21-4bcd-bb50-ae36c0fffffb\",\"type\":\"ES_SEARCH\",\"geoField\":\"source.geo.location\",\"filterByMapBounds\":true,\"tooltipProperties\":[],\"useTopHits\":false,\"topHitsTimeField\":\"@timestamp\",\"topHitsSize\":1,\"indexPatternRefName\":\"layer_2_source_index_pattern\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#f00f0b\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#7a1a18\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":5}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"symbol\":{\"options\":{\"symbolizeAs\":\"circle\",\"symbolId\":\"airfield\"}}}},\"id\":\"b1d44a5c-3a04-4c80-8080-57585b02fd48\",\"label\":\"vpc flow action reject\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"applyGlobalQuery\":true,\"type\":\"VECTOR\",\"query\":{\"query\":\"aws.vpcflow.action : \\\"REJECT\\\" \",\"language\":\"kuery\"}}]", - "mapStateJSON": "{\"zoom\":0.47,\"center\":{\"lon\":-108.92402,\"lat\":0},\"timeFilters\":{\"from\":\"now-15d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[]}", - "title": "VPC Flow Action Geo Location[Filebeat AWS]", - "uiStateJSON": { - "isLayerTOCOpen": false, - "openTOCDetails": [] - } - }, - "id": "513a3d70-4482-11ea-ad63-791a5dc86f10", - "migrationVersion": { - "map": "7.4.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "layer_1_source_index_pattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "layer_2_source_index_pattern", - "type": "index-pattern" - } - ], - "type": "map", - "updated_at": "2020-02-03T16:42:58.806Z", - "version": "WzYzNzYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VPC Flow Top IP Addresses [Filebeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "29527130-3e86-11ea-9067-cf383a4ea3b3" - } - ], - "bar_color_rules": [ - { - "id": "cc6d5070-3e85-11ea-9067-cf383a4ea3b3" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "2b29c940-3e86-11ea-9067-cf383a4ea3b3" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "pivot_id": "user_agent.original", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "color_rules": [ - { - "id": "42e14220-3e86-11ea-9067-cf383a4ea3b3" - } - ], - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "fileset.name : \"vpcflow\" " - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "IP address", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "40c52370-3e87-11ea-9067-cf383a4ea3b3", - "type": "cumulative_sum" - } - ], - "override_index_pattern": 1, - "point_size": 1, - "separate_axis": 0, - "series_drop_last_bucket": 0, - "series_index_pattern": "filebeat-*", - "split_mode": "terms", - "stacked": "none", - "terms_field": "source.ip", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "top_n" - }, - "title": "VPC Flow Top IP Addresses [Filebeat AWS]", - "type": "metrics" - } - }, - "id": "75853f20-4484-11ea-ad63-791a5dc86f10", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-03T16:42:58.806Z", - "version": "WzYzNzcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VPC Flow Total Requests [Filebeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color": "rgba(255,255,255,1)", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "right", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "fileset.name : \"vpcflow\" and aws.vpcflow.action : \"REJECT\" " - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "REJECT", - "line_width": "2", - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "override_index_pattern": 1, - "point_size": "3", - "separate_axis": 0, - "series_drop_last_bucket": 0, - "series_index_pattern": "filebeat-*", - "series_time_field": "@timestamp", - "split_color_mode": "rainbow", - "split_mode": "everything", - "stacked": "none", - "terms_field": "aws.vpcflow.action", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "fileset.name : \"vpcflow\" and aws.vpcflow.action : \"ACCEPT\" " - }, - "formatter": "number", - "id": "7ec99260-4485-11ea-9ee9-2d27e9149ae8", - "label": "ACCEPT", - "line_width": "2", - "metrics": [ - { - "id": "7ec99261-4485-11ea-9ee9-2d27e9149ae8", - "type": "count" - } - ], - "override_index_pattern": 1, - "point_size": "3", - "separate_axis": 0, - "series_drop_last_bucket": 0, - "series_index_pattern": "filebeat-*", - "series_time_field": "@timestamp", - "split_color_mode": "rainbow", - "split_mode": "everything", - "stacked": "none", - "terms_field": "aws.vpcflow.action", - "terms_order_by": "7ec99261-4485-11ea-9ee9-2d27e9149ae8", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "fileset.name : \"vpcflow\" and aws.vpcflow.action : \"-\" " - }, - "formatter": "number", - "id": "8d550580-4485-11ea-9ee9-2d27e9149ae8", - "label": "-", - "line_width": "2", - "metrics": [ - { - "id": "8d552c90-4485-11ea-9ee9-2d27e9149ae8", - "type": "count" - } - ], - "override_index_pattern": 1, - "point_size": "3", - "separate_axis": 0, - "series_drop_last_bucket": 0, - "series_index_pattern": "filebeat-*", - "series_time_field": "@timestamp", - "split_color_mode": "rainbow", - "split_mode": "everything", - "stacked": "none", - "terms_field": "aws.vpcflow.action", - "terms_order_by": "8d552c90-4485-11ea-9ee9-2d27e9149ae8", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": "0.5", - "filter": { - "language": "kuery", - "query": "fileset.name : \"vpcflow\"" - }, - "formatter": "number", - "id": "c8c27df0-4485-11ea-9ee9-2d27e9149ae8", - "label": "Total Requests", - "line_width": "2", - "metrics": [ - { - "id": "c8c27df1-4485-11ea-9ee9-2d27e9149ae8", - "type": "count" - } - ], - "override_index_pattern": 1, - "point_size": "3", - "separate_axis": 0, - "series_drop_last_bucket": 0, - "series_index_pattern": "filebeat-*", - "series_time_field": "@timestamp", - "split_color_mode": "rainbow", - "split_mode": "everything", - "stacked": "none", - "terms_field": "aws.vpcflow.action", - "terms_order_by": "c8c27df1-4485-11ea-9ee9-2d27e9149ae8", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "VPC Flow Total Requests [Filebeat AWS]", - "type": "metrics" - } - }, - "id": "bad8c910-4485-11ea-ad63-791a5dc86f10", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-03T16:42:58.806Z", - "version": "WzYzNzgsMV0=" - }, - { - "attributes": { - "columns": [ - "source.ip", - "source.port", - "event.original" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "fileset.name", - "negate": false, - "params": { - "query": "vpcflow" - }, - "type": "phrase", - "value": "vpcflow" - }, - "query": { - "match": { - "fileset.name": { - "query": "vpcflow", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "aws.vpcflow.action", - "negate": false, - "params": { - "query": "REJECT" - }, - "type": "phrase", - "value": "REJECT" - }, - "query": { - "match": { - "aws.vpcflow.action": { - "query": "REJECT", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "VPC Flow Reject Logs [Filebeat AWS]", - "version": 1 - }, - "id": "c1aee600-4487-11ea-ad63-791a5dc86f10", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-02-03T16:42:58.806Z", - "version": "WzYzNzksMV0=" - } - ], - "version": "7.4.0" -} diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-vpcflow-overview.ndjson b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-vpcflow-overview.ndjson new file mode 100644 index 00000000000..78f84db2970 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-vpcflow-overview.ndjson @@ -0,0 +1,6 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"S3 Bucket Name Filter [Filebeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"aws.s3.bucket.name\",\"id\":\"1565034367477\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"S3 Bucket Names\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"S3 Bucket Name Filter [Filebeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"247e2990-4699-11ea-ad63-791a5dc86f10","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:00.470Z","version":"WzQzNzQsMV0="} +{"attributes":{"description":"","layerListJSON":"[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"842c201e-96d7-413d-8688-de5ee4f8a1e0\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"id\":\"97903038-e08d-4451-bbd2-eb92c894bdf5\",\"type\":\"ES_SEARCH\",\"geoField\":\"destination.geo.location\",\"filterByMapBounds\":true,\"tooltipProperties\":[],\"topHitsSize\":1,\"indexPatternRefName\":\"layer_1_source_index_pattern\",\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\",\"applyGlobalQuery\":true,\"scalingType\":\"LIMIT\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#1EA593\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#167a6d\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":5}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"airfield\"}}}},\"id\":\"401944dd-a371-4698-be17-bc4542e9a5d4\",\"label\":\"vpc flow action accept\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"query\":{\"query\":\"aws.vpcflow.action : \\\"ACCEPT\\\" \",\"language\":\"kuery\"}},{\"sourceDescriptor\":{\"id\":\"9c0e7cce-4f21-4bcd-bb50-ae36c0fffffb\",\"type\":\"ES_SEARCH\",\"geoField\":\"source.geo.location\",\"filterByMapBounds\":true,\"tooltipProperties\":[],\"topHitsSize\":1,\"indexPatternRefName\":\"layer_2_source_index_pattern\",\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\",\"applyGlobalQuery\":true,\"scalingType\":\"LIMIT\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#f00f0b\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#7a1a18\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":5}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"airfield\"}}}},\"id\":\"b1d44a5c-3a04-4c80-8080-57585b02fd48\",\"label\":\"vpc flow action reject\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"query\":{\"query\":\"aws.vpcflow.action : \\\"REJECT\\\" \",\"language\":\"kuery\"}}]","mapStateJSON":"{\"zoom\":0.47,\"center\":{\"lon\":-108.92402,\"lat\":0},\"timeFilters\":{\"from\":\"now-15d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false}}","title":"VPC Flow Action Geo Location[Filebeat AWS]","uiStateJSON":"{\"isLayerTOCOpen\": false, \"openTOCDetails\": []}"},"coreMigrationVersion":"8.0.0","id":"513a3d70-4482-11ea-ad63-791a5dc86f10","migrationVersion":{"map":"7.14.0"},"references":[{"id":"filebeat-*","name":"layer_1_source_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"layer_2_source_index_pattern","type":"index-pattern"}],"type":"map","updated_at":"2021-08-04T16:34:00.470Z","version":"WzQzNzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VPC Flow Top IP Addresses [Filebeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"29527130-3e86-11ea-9067-cf383a4ea3b3\"}],\"bar_color_rules\":[{\"id\":\"cc6d5070-3e85-11ea-9067-cf383a4ea3b3\"}],\"gauge_color_rules\":[{\"id\":\"2b29c940-3e86-11ea-9067-cf383a4ea3b3\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"pivot_id\":\"user_agent.original\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"color_rules\":[{\"id\":\"42e14220-3e86-11ea-9067-cf383a4ea3b3\"}],\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"vpcflow\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"IP address\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"40c52370-3e87-11ea-9067-cf383a4ea3b3\",\"type\":\"cumulative_sum\"}],\"override_index_pattern\":1,\"point_size\":1,\"separate_axis\":0,\"series_drop_last_bucket\":0,\"series_index_pattern\":\"filebeat-*\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"source.ip\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"VPC Flow Top IP Addresses [Filebeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"75853f20-4484-11ea-ad63-791a5dc86f10","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:00.470Z","version":"WzQzNzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VPC Flow Total Requests [Filebeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":\"rgba(255,255,255,1)\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"right\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"vpcflow\\\" and aws.vpcflow.action : \\\"REJECT\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"REJECT\",\"line_width\":\"2\",\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"override_index_pattern\":1,\"point_size\":\"3\",\"separate_axis\":0,\"series_drop_last_bucket\":0,\"series_index_pattern\":\"filebeat-*\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.vpcflow.action\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"vpcflow\\\" and aws.vpcflow.action : \\\"ACCEPT\\\" \"},\"formatter\":\"number\",\"id\":\"7ec99260-4485-11ea-9ee9-2d27e9149ae8\",\"label\":\"ACCEPT\",\"line_width\":\"2\",\"metrics\":[{\"id\":\"7ec99261-4485-11ea-9ee9-2d27e9149ae8\",\"type\":\"count\"}],\"override_index_pattern\":1,\"point_size\":\"3\",\"separate_axis\":0,\"series_drop_last_bucket\":0,\"series_index_pattern\":\"filebeat-*\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.vpcflow.action\",\"terms_order_by\":\"7ec99261-4485-11ea-9ee9-2d27e9149ae8\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"vpcflow\\\" and aws.vpcflow.action : \\\"-\\\" \"},\"formatter\":\"number\",\"id\":\"8d550580-4485-11ea-9ee9-2d27e9149ae8\",\"label\":\"-\",\"line_width\":\"2\",\"metrics\":[{\"id\":\"8d552c90-4485-11ea-9ee9-2d27e9149ae8\",\"type\":\"count\"}],\"override_index_pattern\":1,\"point_size\":\"3\",\"separate_axis\":0,\"series_drop_last_bucket\":0,\"series_index_pattern\":\"filebeat-*\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.vpcflow.action\",\"terms_order_by\":\"8d552c90-4485-11ea-9ee9-2d27e9149ae8\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0.5\",\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"vpcflow\\\"\"},\"formatter\":\"number\",\"id\":\"c8c27df0-4485-11ea-9ee9-2d27e9149ae8\",\"label\":\"Total Requests\",\"line_width\":\"2\",\"metrics\":[{\"id\":\"c8c27df1-4485-11ea-9ee9-2d27e9149ae8\",\"type\":\"count\"}],\"override_index_pattern\":1,\"point_size\":\"3\",\"separate_axis\":0,\"series_drop_last_bucket\":0,\"series_index_pattern\":\"filebeat-*\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.vpcflow.action\",\"terms_order_by\":\"c8c27df1-4485-11ea-9ee9-2d27e9149ae8\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VPC Flow Total Requests [Filebeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bad8c910-4485-11ea-ad63-791a5dc86f10","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:00.470Z","version":"WzQzNzcsMV0="} +{"attributes":{"columns":["source.ip","source.port","event.original"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"fileset.name\", \"negate\": false, \"params\": {\"query\": \"vpcflow\"}, \"type\": \"phrase\", \"value\": \"vpcflow\"}, \"query\": {\"match\": {\"fileset.name\": {\"query\": \"vpcflow\", \"type\": \"phrase\"}}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"aws.vpcflow.action\", \"negate\": false, \"params\": {\"query\": \"REJECT\"}, \"type\": \"phrase\", \"value\": \"REJECT\"}, \"query\": {\"match\": {\"aws.vpcflow.action\": {\"query\": \"REJECT\", \"type\": \"phrase\"}}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"VPC Flow Reject Logs [Filebeat AWS]","version":1},"coreMigrationVersion":"8.0.0","id":"c1aee600-4487-11ea-ad63-791a5dc86f10","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:00.470Z","version":"WzQzNzgsMV0="} +{"attributes":{"description":"Filebeat AWS VPC Flow Log Overview Dashboard","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"c802177f-038c-4a35-a82d-0fa42c857d02\",\"w\":18,\"x\":0,\"y\":0},\"panelIndex\":\"c802177f-038c-4a35-a82d-0fa42c857d02\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"S3 Bucket Filter\",\"panelRefName\":\"panel_c802177f-038c-4a35-a82d-0fa42c857d02\"},{\"version\":\"7.4.0\",\"type\":\"map\",\"gridData\":{\"h\":17,\"i\":\"380eed85-225b-4d5d-88bc-1c70a3643ddb\",\"w\":30,\"x\":18,\"y\":0},\"panelIndex\":\"380eed85-225b-4d5d-88bc-1c70a3643ddb\",\"embeddableConfig\":{\"isLayerTOCOpen\":true,\"mapCenter\":{\"lat\":12.09237,\"lon\":60.11722,\"zoom\":0.47},\"openTOCDetails\":[],\"enhancements\":{}},\"title\":\"VPC Flow Action Geo Location\",\"panelRefName\":\"panel_380eed85-225b-4d5d-88bc-1c70a3643ddb\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"3dde08df-2d7e-464e-825d-03179e43e175\",\"w\":18,\"x\":0,\"y\":5},\"panelIndex\":\"3dde08df-2d7e-464e-825d-03179e43e175\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VPC Flow Top IP Addresses\",\"panelRefName\":\"panel_3dde08df-2d7e-464e-825d-03179e43e175\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"f7c6de04-c771-47ff-a32d-00a7940e414a\",\"w\":48,\"x\":0,\"y\":17},\"panelIndex\":\"f7c6de04-c771-47ff-a32d-00a7940e414a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VPC Flow Total Requests\",\"panelRefName\":\"panel_f7c6de04-c771-47ff-a32d-00a7940e414a\"},{\"version\":\"7.4.0\",\"type\":\"search\",\"gridData\":{\"h\":15,\"i\":\"b4dbbe72-0dc0-428b-b21e-91c6cc82745c\",\"w\":48,\"x\":0,\"y\":29},\"panelIndex\":\"b4dbbe72-0dc0-428b-b21e-91c6cc82745c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VPC Flow Reject Logs\",\"panelRefName\":\"panel_b4dbbe72-0dc0-428b-b21e-91c6cc82745c\"}]","timeRestore":false,"title":"[Filebeat AWS] VPC Flow Log Overview","version":1},"coreMigrationVersion":"8.0.0","id":"15503340-4488-11ea-ad63-791a5dc86f10","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"247e2990-4699-11ea-ad63-791a5dc86f10","name":"c802177f-038c-4a35-a82d-0fa42c857d02:panel_c802177f-038c-4a35-a82d-0fa42c857d02","type":"visualization"},{"id":"513a3d70-4482-11ea-ad63-791a5dc86f10","name":"380eed85-225b-4d5d-88bc-1c70a3643ddb:panel_380eed85-225b-4d5d-88bc-1c70a3643ddb","type":"map"},{"id":"75853f20-4484-11ea-ad63-791a5dc86f10","name":"3dde08df-2d7e-464e-825d-03179e43e175:panel_3dde08df-2d7e-464e-825d-03179e43e175","type":"visualization"},{"id":"bad8c910-4485-11ea-ad63-791a5dc86f10","name":"f7c6de04-c771-47ff-a32d-00a7940e414a:panel_f7c6de04-c771-47ff-a32d-00a7940e414a","type":"visualization"},{"id":"c1aee600-4487-11ea-ad63-791a5dc86f10","name":"b4dbbe72-0dc0-428b-b21e-91c6cc82745c:panel_b4dbbe72-0dc0-428b-b21e-91c6cc82745c","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:00.470Z","version":"WzQzNzMsMV0="} diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/filebeat-aws-cloudtrail.json b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/filebeat-aws-cloudtrail.json deleted file mode 100644 index 32deaf88e08..00000000000 --- a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/filebeat-aws-cloudtrail.json +++ /dev/null @@ -1,876 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Summary of events from AWS CloudTrail.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "hiddenLayers": [], - "isLayerTOCOpen": false, - "mapCenter": { - "lat": 17.90562, - "lon": -12.20429, - "zoom": 0.97 - }, - "openTOCDetails": [] - }, - "gridData": { - "h": 15, - "i": "85d26d9a-2a71-4b98-a026-5f513094d6e5", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "85d26d9a-2a71-4b98-a026-5f513094d6e5", - "panelRefName": "panel_0", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "colors": { - "failure": "#E24D42" - }, - "vis": { - "colors": { - "failure": "#E24D42", - "success": "#629E51" - } - } - }, - "gridData": { - "h": 15, - "i": "6b3eff90-3071-451e-a827-ca569e0ac10b", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "6b3eff90-3071-451e-a827-ca569e0ac10b", - "panelRefName": "panel_1", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "952e456a-e9ae-4606-b838-e16019375336", - "w": 12, - "x": 0, - "y": 15 - }, - "panelIndex": "952e456a-e9ae-4606-b838-e16019375336", - "panelRefName": "panel_2", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "802ad09d-5883-4e41-99ac-6c356144d24d", - "w": 12, - "x": 12, - "y": 15 - }, - "panelIndex": "802ad09d-5883-4e41-99ac-6c356144d24d", - "panelRefName": "panel_3", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "3e617d87-3acf-4203-b03b-c907c9145fce", - "w": 12, - "x": 24, - "y": 15 - }, - "panelIndex": "3e617d87-3acf-4203-b03b-c907c9145fce", - "panelRefName": "panel_4", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "d6f03440-c717-4f5e-928c-72ae9d450318", - "w": 12, - "x": 36, - "y": 15 - }, - "panelIndex": "d6f03440-c717-4f5e-928c-72ae9d450318", - "panelRefName": "panel_5", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "2b82a2c9-3809-447c-8e95-52125acccb42", - "w": 30, - "x": 0, - "y": 28 - }, - "panelIndex": "2b82a2c9-3809-447c-8e95-52125acccb42", - "panelRefName": "panel_6", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "40f0a89b-7ce5-498f-a0f0-5c7edf7f8b50", - "w": 18, - "x": 30, - "y": 28 - }, - "panelIndex": "40f0a89b-7ce5-498f-a0f0-5c7edf7f8b50", - "panelRefName": "panel_7", - "version": "8.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Filebeat AWS] CloudTrail", - "version": 1 - }, - "id": "9c09cd20-7399-11ea-a345-f985c61fe654", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "dae24080-739a-11ea-a345-f985c61fe654", - "name": "panel_0", - "type": "map" - }, - { - "id": "4c23e4c0-739a-11ea-a345-f985c61fe654", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "396089c0-7399-11ea-a345-f985c61fe654", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "0f056420-739e-11ea-a345-f985c61fe654", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "7bca4f50-739c-11ea-a345-f985c61fe654", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "f8b63860-739e-11ea-a345-f985c61fe654", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "30ccde50-7397-11ea-a345-f985c61fe654", - "name": "panel_6", - "type": "search" - }, - { - "id": "8ec43590-739b-11ea-a345-f985c61fe654", - "name": "panel_7", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-03-31T22:31:45.309Z", - "version": "WzEzNjcsM10=" - }, - { - "attributes": { - "bounds": { - "coordinates": [ - [ - [ - -180, - 74.14342 - ], - [ - -180, - -58.35006 - ], - [ - 180, - -58.35006 - ], - [ - 180, - 74.14342 - ], - [ - -180, - 74.14342 - ] - ] - ], - "type": "Polygon" - }, - "description": "", - "layerListJSON": "[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"2c7b49fb-3fb5-4e18-b27f-fabe930971f3\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"id\":\"7bfe2df9-9398-4f1a-8cf7-b57aa5f3f31e\",\"geoField\":\"source.geo.location\",\"filterByMapBounds\":true,\"scalingType\":\"LIMIT\",\"topHitsSize\":1,\"type\":\"ES_SEARCH\",\"tooltipProperties\":[],\"sortField\":\"\",\"sortOrder\":\"desc\",\"applyGlobalQuery\":true,\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"marker\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#54B399\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#41937c\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"a10fa758-30ad-4e2a-bf9d-472e133a7f17\",\"label\":\"CloudTrail Soure Location\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"joins\":[],\"query\":{\"query\":\"event.dataset:aws.cloudtrail\",\"language\":\"kuery\"}}]", - "mapStateJSON": "{\"zoom\":1.97,\"center\":{\"lon\":0,\"lat\":19.94277},\"timeFilters\":{\"from\":\"now-15m\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[]}", - "title": "CloudTrail Source Location [Filebeat AWS]", - "uiStateJSON": { - "isLayerTOCOpen": true, - "openTOCDetails": [] - } - }, - "id": "dae24080-739a-11ea-a345-f985c61fe654", - "references": [ - { - "id": "filebeat-*", - "name": "layer_1_source_index_pattern", - "type": "index-pattern" - } - ], - "type": "map", - "updated_at": "2020-03-31T21:59:12.263Z", - "version": "WzEyOTgsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "CloudTrail Event Outcome over time [Filebeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "now-24h", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "event.outcome", - "missingBucket": true, - "missingBucketLabel": "[unknown]", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false - }, - "labels": {}, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "lineWidth": 2, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "CloudTrail Event Outcome over time [Filebeat AWS]", - "type": "area" - } - }, - "id": "4c23e4c0-739a-11ea-a345-f985c61fe654", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "30ccde50-7397-11ea-a345-f985c61fe654", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-03-31T21:55:12.780Z", - "version": "WzEyODksM10=" - }, - { - "attributes": { - "description": "event.action values separated by event.provider.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "CloudTrail Actions [Filebeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "event.provider", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "CloudTrail Actions [Filebeat AWS]", - "type": "pie" - } - }, - "id": "396089c0-7399-11ea-a345-f985c61fe654", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "30ccde50-7397-11ea-a345-f985c61fe654", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-03-31T21:47:31.804Z", - "version": "WzEyODIsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "CloudTrail Event Type [Filebeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "CloudTrail Event Type", - "field": "aws.cloudtrail.event_type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "CloudTrail Event Type [Filebeat AWS]", - "type": "pie" - } - }, - "id": "0f056420-739e-11ea-a345-f985c61fe654", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "30ccde50-7397-11ea-a345-f985c61fe654", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-03-31T22:22:08.226Z", - "version": "WzEzNDAsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "CloudTrail User Agents [Filebeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user_agent.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "CloudTrail User Agents [Filebeat AWS]", - "type": "pie" - } - }, - "id": "7bca4f50-739c-11ea-a345-f985c61fe654", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "30ccde50-7397-11ea-a345-f985c61fe654", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-03-31T22:10:51.717Z", - "version": "WzEzMjAsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "CloudTrail Error Code [Filebeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "aws.cloudtrail.error_code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "CloudTrail Error Code [Filebeat AWS]", - "type": "pie" - } - }, - "id": "f8b63860-739e-11ea-a345-f985c61fe654", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "30ccde50-7397-11ea-a345-f985c61fe654", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-03-31T22:28:40.294Z", - "version": "WzEzNTgsM10=" - }, - { - "attributes": { - "columns": [ - "user.id", - "event.provider", - "aws.cloudtrail.event_type", - "event.action", - "event.outcome", - "source.address", - "source.geo.region_name" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "aws.cloudtrail" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "aws.cloudtrail" - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [], - "title": "CloudTrail Events [Filebeat AWS]", - "version": 1 - }, - "id": "30ccde50-7397-11ea-a345-f985c61fe654", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-03-31T21:32:58.421Z", - "version": "WzEyNzMsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "CloudTrail Top User IDs [Filebeat AWS]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Event Count" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "User ID", - "field": "user.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 25 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "CloudTrail Top User IDs [Filebeat AWS]", - "type": "table" - } - }, - "id": "8ec43590-739b-11ea-a345-f985c61fe654", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "30ccde50-7397-11ea-a345-f985c61fe654", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-03-31T22:04:14.057Z", - "version": "WzEzMTEsM10=" - } - ], - "version": "8.0.0-SNAPSHOT" -} diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/filebeat-aws-cloudtrail.ndjson b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/filebeat-aws-cloudtrail.ndjson new file mode 100644 index 00000000000..3b227742956 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/filebeat-aws-cloudtrail.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","layerListJSON":"[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"2c7b49fb-3fb5-4e18-b27f-fabe930971f3\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"id\":\"7bfe2df9-9398-4f1a-8cf7-b57aa5f3f31e\",\"geoField\":\"source.geo.location\",\"filterByMapBounds\":true,\"scalingType\":\"LIMIT\",\"topHitsSize\":1,\"type\":\"ES_SEARCH\",\"tooltipProperties\":[],\"sortField\":\"\",\"sortOrder\":\"desc\",\"applyGlobalQuery\":true,\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"marker\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#54B399\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#41937c\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"a10fa758-30ad-4e2a-bf9d-472e133a7f17\",\"label\":\"CloudTrail Soure Location\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"joins\":[],\"query\":{\"query\":\"event.dataset:aws.cloudtrail\",\"language\":\"kuery\"}}]","mapStateJSON":"{\"zoom\":1.97,\"center\":{\"lon\":0,\"lat\":19.94277},\"timeFilters\":{\"from\":\"now-15m\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false}}","title":"CloudTrail Source Location [Filebeat AWS]","uiStateJSON":"{\"isLayerTOCOpen\": true, \"openTOCDetails\": []}"},"coreMigrationVersion":"8.0.0","id":"dae24080-739a-11ea-a345-f985c61fe654","migrationVersion":{"map":"7.14.0"},"references":[{"id":"filebeat-*","name":"layer_1_source_index_pattern","type":"index-pattern"}],"type":"map","updated_at":"2021-08-04T16:34:35.213Z","version":"WzQ2ODksMV0="} +{"attributes":{"columns":["user.id","event.provider","aws.cloudtrail.event_type","event.action","event.outcome","source.address","source.geo.region_name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"aws.cloudtrail\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"aws.cloudtrail\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[],"title":"CloudTrail Events [Filebeat AWS]","version":1},"coreMigrationVersion":"8.0.0","id":"30ccde50-7397-11ea-a345-f985c61fe654","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:35.213Z","version":"WzQ2OTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"CloudTrail Event Outcome over time [Filebeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-24h\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":true,\"missingBucketLabel\":\"[unknown]\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"CloudTrail Event Outcome over time [Filebeat AWS]\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"4c23e4c0-739a-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"30ccde50-7397-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:35.213Z","version":"WzQ2OTAsMV0="} +{"attributes":{"description":"event.action values separated by event.provider.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"CloudTrail Actions [Filebeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.provider\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"CloudTrail Actions [Filebeat AWS]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"396089c0-7399-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"30ccde50-7397-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:35.213Z","version":"WzQ2OTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"CloudTrail Event Type [Filebeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"CloudTrail Event Type\",\"field\":\"aws.cloudtrail.event_type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"CloudTrail Event Type [Filebeat AWS]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0f056420-739e-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"30ccde50-7397-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:35.213Z","version":"WzQ2OTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"CloudTrail User Agents [Filebeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"CloudTrail User Agents [Filebeat AWS]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"7bca4f50-739c-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"30ccde50-7397-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:35.213Z","version":"WzQ2OTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"CloudTrail Error Code [Filebeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"aws.cloudtrail.error_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"CloudTrail Error Code [Filebeat AWS]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"f8b63860-739e-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"30ccde50-7397-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:35.213Z","version":"WzQ2OTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"CloudTrail Top User IDs [Filebeat AWS]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"User ID\",\"field\":\"user.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"CloudTrail Top User IDs [Filebeat AWS]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"8ec43590-739b-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"30ccde50-7397-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:35.213Z","version":"WzQ2OTYsMV0="} +{"attributes":{"description":"Summary of events from AWS CloudTrail.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"map\",\"gridData\":{\"h\":15,\"i\":\"85d26d9a-2a71-4b98-a026-5f513094d6e5\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"85d26d9a-2a71-4b98-a026-5f513094d6e5\",\"embeddableConfig\":{\"hiddenLayers\":[],\"isLayerTOCOpen\":false,\"mapCenter\":{\"lat\":17.90562,\"lon\":-12.20429,\"zoom\":0.97},\"openTOCDetails\":[],\"enhancements\":{}},\"panelRefName\":\"panel_85d26d9a-2a71-4b98-a026-5f513094d6e5\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"6b3eff90-3071-451e-a827-ca569e0ac10b\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"6b3eff90-3071-451e-a827-ca569e0ac10b\",\"embeddableConfig\":{\"colors\":{\"failure\":\"#E24D42\"},\"vis\":{\"colors\":{\"failure\":\"#E24D42\",\"success\":\"#629E51\"}},\"enhancements\":{}},\"panelRefName\":\"panel_6b3eff90-3071-451e-a827-ca569e0ac10b\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"952e456a-e9ae-4606-b838-e16019375336\",\"w\":12,\"x\":0,\"y\":15},\"panelIndex\":\"952e456a-e9ae-4606-b838-e16019375336\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_952e456a-e9ae-4606-b838-e16019375336\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"802ad09d-5883-4e41-99ac-6c356144d24d\",\"w\":12,\"x\":12,\"y\":15},\"panelIndex\":\"802ad09d-5883-4e41-99ac-6c356144d24d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_802ad09d-5883-4e41-99ac-6c356144d24d\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"3e617d87-3acf-4203-b03b-c907c9145fce\",\"w\":12,\"x\":24,\"y\":15},\"panelIndex\":\"3e617d87-3acf-4203-b03b-c907c9145fce\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3e617d87-3acf-4203-b03b-c907c9145fce\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"d6f03440-c717-4f5e-928c-72ae9d450318\",\"w\":12,\"x\":36,\"y\":15},\"panelIndex\":\"d6f03440-c717-4f5e-928c-72ae9d450318\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_d6f03440-c717-4f5e-928c-72ae9d450318\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"search\",\"gridData\":{\"h\":13,\"i\":\"2b82a2c9-3809-447c-8e95-52125acccb42\",\"w\":30,\"x\":0,\"y\":28},\"panelIndex\":\"2b82a2c9-3809-447c-8e95-52125acccb42\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2b82a2c9-3809-447c-8e95-52125acccb42\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"40f0a89b-7ce5-498f-a0f0-5c7edf7f8b50\",\"w\":18,\"x\":30,\"y\":28},\"panelIndex\":\"40f0a89b-7ce5-498f-a0f0-5c7edf7f8b50\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_40f0a89b-7ce5-498f-a0f0-5c7edf7f8b50\"}]","timeRestore":false,"title":"[Filebeat AWS] CloudTrail","version":1},"coreMigrationVersion":"8.0.0","id":"9c09cd20-7399-11ea-a345-f985c61fe654","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"dae24080-739a-11ea-a345-f985c61fe654","name":"85d26d9a-2a71-4b98-a026-5f513094d6e5:panel_85d26d9a-2a71-4b98-a026-5f513094d6e5","type":"map"},{"id":"4c23e4c0-739a-11ea-a345-f985c61fe654","name":"6b3eff90-3071-451e-a827-ca569e0ac10b:panel_6b3eff90-3071-451e-a827-ca569e0ac10b","type":"visualization"},{"id":"396089c0-7399-11ea-a345-f985c61fe654","name":"952e456a-e9ae-4606-b838-e16019375336:panel_952e456a-e9ae-4606-b838-e16019375336","type":"visualization"},{"id":"0f056420-739e-11ea-a345-f985c61fe654","name":"802ad09d-5883-4e41-99ac-6c356144d24d:panel_802ad09d-5883-4e41-99ac-6c356144d24d","type":"visualization"},{"id":"7bca4f50-739c-11ea-a345-f985c61fe654","name":"3e617d87-3acf-4203-b03b-c907c9145fce:panel_3e617d87-3acf-4203-b03b-c907c9145fce","type":"visualization"},{"id":"f8b63860-739e-11ea-a345-f985c61fe654","name":"d6f03440-c717-4f5e-928c-72ae9d450318:panel_d6f03440-c717-4f5e-928c-72ae9d450318","type":"visualization"},{"id":"30ccde50-7397-11ea-a345-f985c61fe654","name":"2b82a2c9-3809-447c-8e95-52125acccb42:panel_2b82a2c9-3809-447c-8e95-52125acccb42","type":"search"},{"id":"8ec43590-739b-11ea-a345-f985c61fe654","name":"40f0a89b-7ce5-498f-a0f0-5c7edf7f8b50:panel_40f0a89b-7ce5-498f-a0f0-5c7edf7f8b50","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:35.213Z","version":"WzQ2ODgsMV0="} diff --git a/x-pack/filebeat/module/aws/module.yml b/x-pack/filebeat/module/aws/module.yml index dc4a096b4a1..d6c08701fba 100644 --- a/x-pack/filebeat/module/aws/module.yml +++ b/x-pack/filebeat/module/aws/module.yml @@ -1,2 +1,2 @@ - id: Filebeat-aws-cloudtrail-Dashboard - file: Filebeat-aws-cloudtrail.json + file: Filebeat-aws-cloudtrail.ndjson diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-alerts-overview.json b/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-alerts-overview.json deleted file mode 100644 index 5ef32ba0d11..00000000000 --- a/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-alerts-overview.json +++ /dev/null @@ -1,592 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This dashboard provides expanded alerts overview for Azure cloud", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 4, - "i": "9d1a26e6-2ff0-4d3e-bab3-7bb3c50cd060", - "w": 7, - "x": 0, - "y": 0 - }, - "panelIndex": "9d1a26e6-2ff0-4d3e-bab3-7bb3c50cd060", - "panelRefName": "panel_0", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 4, - "i": "676fd632-a9c1-46ed-829b-ca5b55817379", - "w": 14, - "x": 7, - "y": 0 - }, - "panelIndex": "676fd632-a9c1-46ed-829b-ca5b55817379", - "panelRefName": "panel_1", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "096b4eaa-072e-455f-befa-3076f71be12d", - "w": 27, - "x": 21, - "y": 0 - }, - "panelIndex": "096b4eaa-072e-455f-befa-3076f71be12d", - "panelRefName": "panel_2", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "162fb43e-fff3-4f50-aa9b-a713418bd651", - "w": 27, - "x": 21, - "y": 15 - }, - "panelIndex": "162fb43e-fff3-4f50-aa9b-a713418bd651", - "panelRefName": "panel_3", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 20, - "i": "36fb5c08-80d9-4a1c-8fde-9c063381fdd8", - "w": 21, - "x": 0, - "y": 4 - }, - "panelIndex": "36fb5c08-80d9-4a1c-8fde-9c063381fdd8", - "panelRefName": "panel_4", - "version": "7.4.0" - } - ], - "timeRestore": false, - "title": "[Filebeat Azure] Alerts Overview", - "version": 1 - }, - "id": "0f559cc0-f0d5-11e9-90ec-112a988266d5", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "46544960-f0d5-11e9-90ec-112a988266d5", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "097d74d0-f044-11e9-90ec-112a988266d5", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "52c2a4e0-ec1f-11e9-90ec-112a988266d5", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "f684a750-ec23-11e9-90ec-112a988266d5", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "c704b050-f0de-11e9-90ec-112a988266d5", - "name": "panel_4", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-10-18T15:21:16.305Z", - "version": "WzkyNDEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation Alerts [Filebeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### Azure Monitoring\n\n[Overview](#/dashboard/41e84340-ec20-11e9-90ec-112a988266d5) | [Users](#/dashboard/87095750-f05a-11e9-90ec-112a988266d5) | [**Alerts**](#/dashboard/0f559cc0-f0d5-11e9-90ec-112a988266d5) ", - "openLinksInNewTab": false - }, - "title": "Navigation Alerts [Filebeat Azure]", - "type": "markdown" - } - }, - "id": "46544960-f0d5-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-17T11:57:36.537Z", - "version": "WzQ5NDAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Subscriptions Filter [Filebeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "azure.subscription_id", - "id": "1571250866125", - "indexPatternRefName": "control_0_index_pattern", - "label": "Subscription ID", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "Subscriptions Filter [Filebeat Azure]", - "type": "input_control_vis" - } - }, - "id": "097d74d0-f044-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "filebeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-10-16T18:37:41.917Z", - "version": "WzQ0MDEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Alerts Overview [Filebeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "event.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category : \"Alert\"" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "azure.activitylogs.result_type: \"Activated\"" - }, - "formatter": "number", - "hide_in_legend": 0, - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "filter", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "azure.activitylogs.result_type: \"Resolved\" or azure.activitylogs.result_type: \"Succeeded\"" - }, - "formatter": "number", - "hide_in_legend": 0, - "id": "5a52f170-ec1e-11e9-b6a7-21d19b63822a", - "line_width": 1, - "metrics": [ - { - "id": "5a52f171-ec1e-11e9-b6a7-21d19b63822a", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "filter", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 0, - "time_field": "", - "type": "timeseries" - }, - "title": "Alerts Overview [Filebeat Azure]", - "type": "metrics" - } - }, - "id": "52c2a4e0-ec1f-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-16T18:41:58.846Z", - "version": "WzQ0MDcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category : \"Alert\" " - } - } - }, - "title": "Alerts Count [Filebeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Alerts" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "filters": [ - { - "input": { - "language": "kuery", - "query": "azure.activitylogs.result_type : \"Activated\"" - }, - "label": "Activated" - }, - { - "input": { - "language": "kuery", - "query": "azure.activitylogs.result_type : \"Resolved\"" - }, - "label": "Resolved" - }, - { - "input": { - "language": "kuery", - "query": "azure.activitylogs.result_type : \"Succeeded\"" - }, - "label": "Succeeded" - } - ] - }, - "schema": "group", - "type": "filters" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "bucket": { - "accessor": 0, - "format": { - "id": "string", - "params": {} - }, - "type": "vis_dimension" - }, - "metrics": [ - { - "accessor": 1, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Alerts Count [Filebeat Azure]", - "type": "metric" - } - }, - "id": "f684a750-ec23-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-10-16T18:44:12.955Z", - "version": "WzQ0MTAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category : \"Alert\" " - } - } - }, - "title": "Alerts Heatmap [Filebeat Azure]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0": "rgb(247,252,245)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Provider", - "field": "azure.resource.provider", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Resource Group", - "field": "azure.resource.group", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "colorSchema": "Greens", - "colorsNumber": 4, - "colorsRange": [], - "dimensions": { - "x": { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - "y": [ - { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "enableHover": false, - "invertColors": false, - "legendPosition": "right", - "percentageMode": false, - "setColorRange": false, - "times": [], - "type": "heatmap", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "color": "black", - "overwriteColor": false, - "rotate": 0, - "show": false - }, - "scale": { - "defaultYExtents": false, - "type": "linear" - }, - "show": false, - "type": "value" - } - ] - }, - "title": "Alerts Heatmap [Filebeat Azure]", - "type": "heatmap" - } - }, - "id": "c704b050-f0de-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-10-17T13:05:22.389Z", - "version": "WzQ5NTYsMV0=" - } - ], - "version": "7.4.0" -} diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-alerts-overview.ndjson b/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-alerts-overview.ndjson new file mode 100644 index 00000000000..5f6e55d71c1 --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-alerts-overview.ndjson @@ -0,0 +1,6 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Alerts [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Azure Monitoring\\n\\n[Overview](#/dashboard/41e84340-ec20-11e9-90ec-112a988266d5) | [Users](#/dashboard/87095750-f05a-11e9-90ec-112a988266d5) | [**Alerts**](#/dashboard/0f559cc0-f0d5-11e9-90ec-112a988266d5) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Alerts [Filebeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"46544960-f0d5-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:01.505Z","version":"WzQzODAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Subscriptions Filter [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1571250866125\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription ID\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Subscriptions Filter [Filebeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"097d74d0-f044-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzODcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Alerts Overview [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.event_category : \\\"Alert\\\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type: \\\"Activated\\\"\"},\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type: \\\"Resolved\\\" or azure.activitylogs.result_type: \\\"Succeeded\\\"\"},\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"5a52f170-ec1e-11e9-b6a7-21d19b63822a\",\"line_width\":1,\"metrics\":[{\"id\":\"5a52f171-ec1e-11e9-b6a7-21d19b63822a\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Alerts Overview [Filebeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"52c2a4e0-ec1f-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzOTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.event_category : \\\"Alert\\\" \"}}"},"title":"Alerts Count [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Alerts\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Activated\\\"\"},\"label\":\"Activated\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Resolved\\\"\"},\"label\":\"Resolved\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Succeeded\\\"\"},\"label\":\"Succeeded\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"metrics\":[{\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Alerts Count [Filebeat Azure]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"f684a750-ec23-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzOTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.event_category : \\\"Alert\\\" \"}}"},"title":"Alerts Heatmap [Filebeat Azure]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0\": \"rgb(247,252,245)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Provider\",\"field\":\"azure.resource.provider\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Resource Group\",\"field\":\"azure.resource.group\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Greens\",\"colorsNumber\":4,\"colorsRange\":[],\"dimensions\":{\"x\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},\"y\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"enableHover\":false,\"invertColors\":false,\"legendPosition\":\"right\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"black\",\"overwriteColor\":false,\"rotate\":0,\"show\":false},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Alerts Heatmap [Filebeat Azure]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"8.0.0","id":"c704b050-f0de-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:01.505Z","version":"WzQzODQsMV0="} +{"attributes":{"description":"This dashboard provides expanded alerts overview for Azure cloud","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"9d1a26e6-2ff0-4d3e-bab3-7bb3c50cd060\",\"w\":7,\"x\":0,\"y\":0},\"panelIndex\":\"9d1a26e6-2ff0-4d3e-bab3-7bb3c50cd060\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_9d1a26e6-2ff0-4d3e-bab3-7bb3c50cd060\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"676fd632-a9c1-46ed-829b-ca5b55817379\",\"w\":14,\"x\":7,\"y\":0},\"panelIndex\":\"676fd632-a9c1-46ed-829b-ca5b55817379\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_676fd632-a9c1-46ed-829b-ca5b55817379\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"096b4eaa-072e-455f-befa-3076f71be12d\",\"w\":27,\"x\":21,\"y\":0},\"panelIndex\":\"096b4eaa-072e-455f-befa-3076f71be12d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_096b4eaa-072e-455f-befa-3076f71be12d\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"162fb43e-fff3-4f50-aa9b-a713418bd651\",\"w\":27,\"x\":21,\"y\":15},\"panelIndex\":\"162fb43e-fff3-4f50-aa9b-a713418bd651\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_162fb43e-fff3-4f50-aa9b-a713418bd651\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"36fb5c08-80d9-4a1c-8fde-9c063381fdd8\",\"w\":21,\"x\":0,\"y\":4},\"panelIndex\":\"36fb5c08-80d9-4a1c-8fde-9c063381fdd8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_36fb5c08-80d9-4a1c-8fde-9c063381fdd8\"}]","timeRestore":false,"title":"[Filebeat Azure] Alerts Overview","version":1},"coreMigrationVersion":"8.0.0","id":"0f559cc0-f0d5-11e9-90ec-112a988266d5","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"46544960-f0d5-11e9-90ec-112a988266d5","name":"9d1a26e6-2ff0-4d3e-bab3-7bb3c50cd060:panel_9d1a26e6-2ff0-4d3e-bab3-7bb3c50cd060","type":"visualization"},{"id":"097d74d0-f044-11e9-90ec-112a988266d5","name":"676fd632-a9c1-46ed-829b-ca5b55817379:panel_676fd632-a9c1-46ed-829b-ca5b55817379","type":"visualization"},{"id":"52c2a4e0-ec1f-11e9-90ec-112a988266d5","name":"096b4eaa-072e-455f-befa-3076f71be12d:panel_096b4eaa-072e-455f-befa-3076f71be12d","type":"visualization"},{"id":"f684a750-ec23-11e9-90ec-112a988266d5","name":"162fb43e-fff3-4f50-aa9b-a713418bd651:panel_162fb43e-fff3-4f50-aa9b-a713418bd651","type":"visualization"},{"id":"c704b050-f0de-11e9-90ec-112a988266d5","name":"36fb5c08-80d9-4a1c-8fde-9c063381fdd8:panel_36fb5c08-80d9-4a1c-8fde-9c063381fdd8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:01.505Z","version":"WzQzNzksMV0="} diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-overview.json b/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-overview.json deleted file mode 100644 index fa66d908ea4..00000000000 --- a/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-overview.json +++ /dev/null @@ -1,1925 +0,0 @@ -{ - "objects":[ - { - "attributes":{ - "description":"This dashboard provides an overview of user activity, alerts and resource in Azure cloud.", - "hits":0, - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "query":{ - "language":"kuery", - "query":"" - } - } - }, - "optionsJSON":{ - "hidePanelTitles":false, - "useMargins":true - }, - "panelsJSON":[ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 4, - "i": "6b6e7452-979c-4f78-afc2-cc58fcf105ff", - "w": 9, - "x": 0, - "y": 0 - }, - "panelIndex": "6b6e7452-979c-4f78-afc2-cc58fcf105ff", - "panelRefName": "panel_0", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 4, - "i": "042f777a-5e41-41e8-9d6e-d842473a8aed", - "w": 15, - "x": 9, - "y": 0 - }, - "panelIndex": "042f777a-5e41-41e8-9d6e-d842473a8aed", - "panelRefName": "panel_1", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Activity Level" - }, - "gridData": { - "h": 8, - "i": "1e73bca7-8569-41b5-830e-2f762602219a", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "1e73bca7-8569-41b5-830e-2f762602219a", - "panelRefName": "panel_2", - "title": "Activity Level", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "d9465e9f-49f1-4173-b1a4-fea9ee3120ab", - "w": 24, - "x": 0, - "y": 4 - }, - "panelIndex": "d9465e9f-49f1-4173-b1a4-fea9ee3120ab", - "panelRefName": "panel_3", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Access Requests" - }, - "gridData": { - "h": 7, - "i": "18ec1e20-202b-4a40-8d0d-22060ac3e23c", - "w": 24, - "x": 24, - "y": 8 - }, - "panelIndex": "18ec1e20-202b-4a40-8d0d-22060ac3e23c", - "panelRefName": "panel_4", - "title": "Access Requests", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Top Active Users" - }, - "gridData": { - "h": 11, - "i": "d2bdec0f-dde1-4925-bf7e-afbc430c0eca", - "w": 24, - "x": 0, - "y": 10 - }, - "panelIndex": "d2bdec0f-dde1-4925-bf7e-afbc430c0eca", - "panelRefName": "panel_5", - "title": "Top Active Users", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Alerts Overview" - }, - "gridData": { - "h": 7, - "i": "3bcc964d-6862-4fdd-9d82-f7510cc02162", - "w": 12, - "x": 24, - "y": 15 - }, - "panelIndex": "3bcc964d-6862-4fdd-9d82-f7510cc02162", - "panelRefName": "panel_6", - "title": "Alerts Overview", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Service Health" - }, - "gridData": { - "h": 7, - "i": "74436614-9dfc-4c38-bc58-8cb76c348f37", - "w": 12, - "x": 36, - "y": 15 - }, - "panelIndex": "74436614-9dfc-4c38-bc58-8cb76c348f37", - "panelRefName": "panel_7", - "title": "Service Health", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Top Resource Groups", - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 19, - "i": "a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8", - "w": 24, - "x": 0, - "y": 21 - }, - "panelIndex": "a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8", - "panelRefName": "panel_8", - "title": "Top Resource Groups", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "644c6151-fd05-4b2e-b18e-30843697e932", - "w": 12, - "x": 24, - "y": 22 - }, - "panelIndex": "644c6151-fd05-4b2e-b18e-30843697e932", - "panelRefName": "panel_9", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "3d5ccff8-6576-4a1c-b3ee-363ae665906e", - "w": 12, - "x": 36, - "y": 22 - }, - "panelIndex": "3d5ccff8-6576-4a1c-b3ee-363ae665906e", - "panelRefName": "panel_10", - "version": "7.4.0" - }, - { - "version": "7.4.0", - "gridData": { - "x": 24, - "y": 28, - "w": 12, - "h": 12, - "i": "1a6dce1d-d039-4d18-87c7-1b700da676c2" - }, - "panelIndex": "1a6dce1d-d039-4d18-87c7-1b700da676c2", - "embeddableConfig": { - "vis": { - "legendOpen": true - }, - "legendOpen": false - }, - "panelRefName": "panel_11" - }, - { - "version": "7.4.0", - "gridData": { - "x": 36, - "y": 28, - "w": 12, - "h": 12, - "i": "8fddd3bb-c1e6-4533-b075-1ab7361b3af0" - }, - "panelIndex": "8fddd3bb-c1e6-4533-b075-1ab7361b3af0", - "embeddableConfig": { - "vis": { - "legendOpen": true - }, - "legendOpen": false - }, - "panelRefName": "panel_12" - } - ], - "timeRestore":false, - "title":"[Filebeat Azure] Cloud Overview", - "version":1 - }, - "id":"41e84340-ec20-11e9-90ec-112a988266d5", - "migrationVersion":{ - "dashboard":"7.3.0" - }, - "references":[ - { - "id": "fe24ac90-f05a-11e9-90ec-112a988266d5", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "097d74d0-f044-11e9-90ec-112a988266d5", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "da67d650-ec14-11e9-90ec-112a988266d5", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "e4c7f4b0-f045-11e9-90ec-112a988266d5", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "709995e0-ec16-11e9-90ec-112a988266d5", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "ffe22180-ec1c-11e9-90ec-112a988266d5", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "52c2a4e0-ec1f-11e9-90ec-112a988266d5", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "bc65e840-ec1e-11e9-90ec-112a988266d5", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "71b62ca0-ec1a-11e9-90ec-112a988266d5", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "f684a750-ec23-11e9-90ec-112a988266d5", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "e37cd3d0-ec23-11e9-90ec-112a988266d5", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "d91ce8d0-53e8-11ea-b1b7-7de801e1c297", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "6db84660-53e9-11ea-b1b7-7de801e1c297", - "name": "panel_12", - "type": "visualization" - } - ], - "type":"dashboard", - "updated_at":"2019-10-18T15:20:07.860Z", - "version":"WzkyMzcsMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "query":{ - "language":"kuery", - "query":"" - } - } - }, - "title":"Navigation Overview [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "aggs":[ - - ], - "params":{ - "fontSize":10, - "markdown":"### Azure Monitoring\n\n[**Overview**](#/dashboard/41e84340-ec20-11e9-90ec-112a988266d5) | [Users](#/dashboard/87095750-f05a-11e9-90ec-112a988266d5) | [Alerts](#/dashboard/0f559cc0-f0d5-11e9-90ec-112a988266d5) ", - "openLinksInNewTab":false - }, - "title":"Navigation Overview [Filebeat Azure]", - "type":"markdown" - } - }, - "id":"fe24ac90-f05a-11e9-90ec-112a988266d5", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - - ], - "type":"visualization", - "updated_at":"2019-10-17T11:56:32.153Z", - "version":"WzQ5MzQsMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "query":{ - "language":"kuery", - "query":"" - } - } - }, - "title":"Subscriptions Filter [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "aggs":[ - - ], - "params":{ - "controls":[ - { - "fieldName":"azure.subscription_id", - "id":"1571250866125", - "indexPatternRefName":"control_0_index_pattern", - "label":"Subscription ID", - "options":{ - "dynamicOptions":true, - "multiselect":true, - "order":"desc", - "size":5, - "type":"terms" - }, - "parent":"", - "type":"list" - } - ], - "pinFilters":false, - "updateFiltersOnChange":true, - "useTimeFilter":false - }, - "title":"Subscriptions Filter [Filebeat Azure]", - "type":"input_control_vis" - } - }, - "id":"097d74d0-f044-11e9-90ec-112a988266d5", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - { - "id":"filebeat-*", - "name":"control_0_index_pattern", - "type":"index-pattern" - } - ], - "type":"visualization", - "updated_at":"2019-10-16T18:37:41.917Z", - "version":"WzQ0MDEsMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "query":{ - "language":"kuery", - "query":"" - } - } - }, - "title":"Activity Level [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "aggs":[ - - ], - "params":{ - "axis_formatter":"number", - "axis_position":"left", - "axis_scale":"normal", - "default_index_pattern":"metricbeat-*", - "default_timefield":"@timestamp", - "filter":{ - "language":"kuery", - "query":"event.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category :\"Administrative\" " - }, - "id":"61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern":"filebeat-*", - "interval":"", - "isModelInvalid":false, - "series":[ - { - "axis_position":"right", - "chart_type":"bar", - "color":"#68BC00", - "fill":0.5, - "formatter":"number", - "id":"61ca57f1-469d-11e7-af02-69e470af7417", - "line_width":1, - "metrics":[ - { - "id":"61ca57f2-469d-11e7-af02-69e470af7417", - "type":"count" - } - ], - "point_size":1, - "separate_axis":0, - "split_mode":"everything", - "stacked":"none" - } - ], - "show_grid":1, - "show_legend":0, - "time_field":"", - "type":"timeseries" - }, - "title":"Activity Level [Filebeat Azure]", - "type":"metrics" - } - }, - "id":"da67d650-ec14-11e9-90ec-112a988266d5", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - - ], - "type":"visualization", - "updated_at":"2019-10-16T18:18:42.561Z", - "version":"WzQzODYsMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "indexRefName":"kibanaSavedObjectMeta.searchSourceJSON.index", - "query":{ - "language":"kuery", - "query":"event.dataset : \"azure.activitylogs\" " - } - } - }, - "title":"Activity Stats [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "aggs":[ - { - "enabled":true, - "id":"1", - "params":{ - "customLabel":"Resources", - "field":"azure.resource.name" - }, - "schema":"metric", - "type":"cardinality" - }, - { - "enabled":true, - "id":"2", - "params":{ - "customLabel":"Users", - "field":"azure.activitylogs.identity.claims_initiated_by_user.name" - }, - "schema":"metric", - "type":"cardinality" - }, - { - "enabled":true, - "id":"3", - "params":{ - "customLabel":"Resource Groups", - "field":"azure.resource.group" - }, - "schema":"metric", - "type":"cardinality" - }, - { - "enabled":true, - "id":"4", - "params":{ - "customLabel":"Subscriptions", - "field":"azure.subscription_id" - }, - "schema":"metric", - "type":"cardinality" - } - ], - "params":{ - "addLegend":false, - "addTooltip":true, - "dimensions":{ - "metrics":[ - { - "accessor":0, - "format":{ - "id":"number", - "params":{ - - } - }, - "type":"vis_dimension" - }, - { - "accessor":1, - "format":{ - "id":"number", - "params":{ - - } - }, - "type":"vis_dimension" - }, - { - "accessor":2, - "format":{ - "id":"number", - "params":{ - - } - }, - "type":"vis_dimension" - } - ] - }, - "metric":{ - "colorSchema":"Green to Red", - "colorsRange":[ - { - "from":0, - "to":10000, - "type":"range" - } - ], - "invertColors":false, - "labels":{ - "show":true - }, - "metricColorMode":"None", - "percentageMode":false, - "style":{ - "bgColor":false, - "bgFill":"#000", - "fontSize":60, - "labelColor":false, - "subText":"" - }, - "useRanges":false - }, - "type":"metric" - }, - "title":"Activity Stats [Filebeat Azure]", - "type":"metric" - } - }, - "id":"e4c7f4b0-f045-11e9-90ec-112a988266d5", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - { - "id":"filebeat-*", - "name":"kibanaSavedObjectMeta.searchSourceJSON.index", - "type":"index-pattern" - } - ], - "type":"visualization", - "updated_at":"2019-10-18T09:14:38.537Z", - "version":"WzgwNzYsMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "query":{ - "language":"kuery", - "query":"" - } - } - }, - "title":"Access Requests [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "aggs":[ - - ], - "params":{ - "axis_formatter":"number", - "axis_position":"left", - "axis_scale":"normal", - "default_index_pattern":"metricbeat-*", - "default_timefield":"@timestamp", - "filter":{ - "language":"kuery", - "query":"event.dataset :\"azure.activitylogs\" and azure.activitylogs.operation_name : *LISTKEYS*" - }, - "id":"61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern":"filebeat-*", - "interval":"", - "isModelInvalid":false, - "series":[ - { - "axis_position":"right", - "chart_type":"line", - "color":"#68BC00", - "fill":"0", - "filter":{ - "language":"kuery", - "query":"event.outcome : \"success\" or event.outcome : \"Success\" " - }, - "formatter":"number", - "id":"61ca57f1-469d-11e7-af02-69e470af7417", - "label":"Success", - "line_width":"2", - "metrics":[ - { - "id":"61ca57f2-469d-11e7-af02-69e470af7417", - "type":"count" - } - ], - "point_size":1, - "separate_axis":0, - "split_mode":"filter", - "stacked":"none" - }, - { - "axis_position":"right", - "chart_type":"line", - "color":"rgba(226,115,0,1)", - "fill":"0", - "filter":{ - "language":"kuery", - "query":"event.outcome : \"Failure\" or event.outcome : \"failure\" " - }, - "formatter":"number", - "id":"1b5f75a0-ec15-11e9-b6a7-21d19b63822a", - "label":"Failure", - "line_width":"2", - "metrics":[ - { - "id":"1b5f75a1-ec15-11e9-b6a7-21d19b63822a", - "type":"count" - } - ], - "point_size":1, - "separate_axis":0, - "split_mode":"filter", - "stacked":"none" - } - ], - "show_grid":1, - "show_legend":0, - "time_field":"", - "type":"timeseries" - }, - "title":"Access Requests [Filebeat Azure]", - "type":"metrics" - } - }, - "id":"709995e0-ec16-11e9-90ec-112a988266d5", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - - ], - "type":"visualization", - "updated_at":"2019-10-11T11:01:13.406Z", - "version":"WzI3MzYsMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "indexRefName":"kibanaSavedObjectMeta.searchSourceJSON.index", - "query":{ - "language":"kuery", - "query":"" - } - } - }, - "title":"User Tag Cloud [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "aggs":[ - { - "enabled":true, - "id":"1", - "params":{ - - }, - "schema":"metric", - "type":"count" - }, - { - "enabled":true, - "id":"2", - "params":{ - "field":"azure.activitylogs.identity.claims_initiated_by_user.name", - "missingBucket":false, - "missingBucketLabel":"Missing", - "order":"desc", - "orderBy":"1", - "otherBucket":false, - "otherBucketLabel":"Other", - "size":10 - }, - "schema":"segment", - "type":"terms" - } - ], - "params":{ - "bucket":{ - "accessor":0, - "format":{ - "id":"terms", - "params":{ - "id":"string", - "missingBucketLabel":"Missing", - "otherBucketLabel":"Other" - } - }, - "type":"vis_dimension" - }, - "maxFontSize":32, - "metric":{ - "accessor":1, - "format":{ - "id":"string", - "params":{ - - } - }, - "type":"vis_dimension" - }, - "minFontSize":12, - "orientation":"single", - "scale":"linear", - "showLabel":true - }, - "title":"User Tag Cloud [Filebeat Azure]", - "type":"tagcloud" - } - }, - "id":"ffe22180-ec1c-11e9-90ec-112a988266d5", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - { - "id":"filebeat-*", - "name":"kibanaSavedObjectMeta.searchSourceJSON.index", - "type":"index-pattern" - } - ], - "type":"visualization", - "updated_at":"2019-10-18T09:12:32.252Z", - "version":"WzgwNzEsMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "query":{ - "language":"kuery", - "query":"" - } - } - }, - "title":"Alerts Overview [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "aggs":[ - - ], - "params":{ - "axis_formatter":"number", - "axis_position":"left", - "axis_scale":"normal", - "default_index_pattern":"metricbeat-*", - "default_timefield":"@timestamp", - "filter":{ - "language":"kuery", - "query":"event.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category : \"Alert\"" - }, - "id":"61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern":"filebeat-*", - "interval":"", - "isModelInvalid":false, - "series":[ - { - "axis_position":"right", - "chart_type":"line", - "color":"rgba(252,220,0,1)", - "fill":0.5, - "filter":{ - "language":"kuery", - "query":"azure.activitylogs.result_type: \"Activated\"" - }, - "formatter":"number", - "hide_in_legend":0, - "id":"61ca57f1-469d-11e7-af02-69e470af7417", - "line_width":1, - "metrics":[ - { - "id":"61ca57f2-469d-11e7-af02-69e470af7417", - "type":"count" - } - ], - "point_size":1, - "separate_axis":0, - "split_mode":"filter", - "stacked":"none" - }, - { - "axis_position":"right", - "chart_type":"line", - "color":"#68BC00", - "fill":0.5, - "filter":{ - "language":"kuery", - "query":"azure.activitylogs.result_type: \"Resolved\" or azure.activitylogs.result_type: \"Succeeded\"" - }, - "formatter":"number", - "hide_in_legend":0, - "id":"5a52f170-ec1e-11e9-b6a7-21d19b63822a", - "line_width":1, - "metrics":[ - { - "id":"5a52f171-ec1e-11e9-b6a7-21d19b63822a", - "type":"count" - } - ], - "point_size":1, - "separate_axis":0, - "split_mode":"filter", - "stacked":"none" - } - ], - "show_grid":1, - "show_legend":0, - "time_field":"", - "type":"timeseries" - }, - "title":"Alerts Overview [Filebeat Azure]", - "type":"metrics" - } - }, - "id":"52c2a4e0-ec1f-11e9-90ec-112a988266d5", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - - ], - "type":"visualization", - "updated_at":"2019-10-16T18:41:58.846Z", - "version":"WzQ0MDcsMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "query":{ - "language":"kuery", - "query":"" - } - } - }, - "title":"Service Health Overview [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "aggs":[ - - ], - "params":{ - "axis_formatter":"number", - "axis_position":"left", - "axis_scale":"normal", - "default_index_pattern":"metricbeat-*", - "default_timefield":"@timestamp", - "filter":{ - "language":"kuery", - "query":"event.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category : \"ServiceHealth\"" - }, - "id":"61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern":"filebeat-*", - "interval":"", - "isModelInvalid":false, - "series":[ - { - "axis_position":"right", - "chart_type":"line", - "color":"rgba(252,220,0,1)", - "fill":0.5, - "filter":{ - "language":"kuery", - "query":"azure.activitylogs.result_type: \"Active\"" - }, - "formatter":"number", - "hide_in_legend":0, - "id":"61ca57f1-469d-11e7-af02-69e470af7417", - "line_width":1, - "metrics":[ - { - "id":"61ca57f2-469d-11e7-af02-69e470af7417", - "type":"count" - } - ], - "point_size":1, - "separate_axis":0, - "split_mode":"filter", - "stacked":"none" - }, - { - "axis_position":"right", - "chart_type":"line", - "color":"#68BC00", - "fill":0.5, - "filter":{ - "language":"kuery", - "query":"azure.activitylogs.result_type: \"Resolved\" " - }, - "formatter":"number", - "hide_in_legend":0, - "id":"5a52f170-ec1e-11e9-b6a7-21d19b63822a", - "line_width":1, - "metrics":[ - { - "id":"5a52f171-ec1e-11e9-b6a7-21d19b63822a", - "type":"count" - } - ], - "point_size":1, - "separate_axis":0, - "split_mode":"filter", - "stacked":"none" - } - ], - "show_grid":1, - "show_legend":0, - "time_field":"", - "type":"timeseries" - }, - "title":"Service Health Overview [Filebeat Azure]", - "type":"metrics" - } - }, - "id":"bc65e840-ec1e-11e9-90ec-112a988266d5", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - - ], - "type":"visualization", - "updated_at":"2019-10-16T18:40:07.894Z", - "version":"WzQ0MDQsMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "indexRefName":"kibanaSavedObjectMeta.searchSourceJSON.index", - "query":{ - "language":"kuery", - "query":"" - } - } - }, - "title":"Top Resource Groups [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "aggs":[ - { - "enabled":true, - "id":"1", - "params":{ - - }, - "schema":"metric", - "type":"count" - }, - { - "enabled":true, - "id":"2", - "params":{ - "customLabel":"Resource Groups", - "field":"azure.resource.group", - "missingBucket":false, - "missingBucketLabel":"Missing", - "order":"desc", - "orderBy":"1", - "otherBucket":false, - "otherBucketLabel":"Other", - "size":10 - }, - "schema":"segment", - "type":"terms" - } - ], - "params":{ - "addLegend":true, - "addTimeMarker":false, - "addTooltip":true, - "categoryAxes":[ - { - "id":"CategoryAxis-1", - "labels":{ - "filter":false, - "rotate":0, - "show":true, - "truncate":200 - }, - "position":"left", - "scale":{ - "type":"linear" - }, - "show":true, - "style":{ - - }, - "title":{ - - }, - "type":"category" - } - ], - "dimensions":{ - "x":{ - "accessor":0, - "aggType":"terms", - "format":{ - "id":"terms", - "params":{ - "id":"string", - "missingBucketLabel":"Missing", - "otherBucketLabel":"Other" - } - }, - "params":{ - - } - }, - "y":[ - { - "accessor":1, - "aggType":"count", - "format":{ - "id":"number" - }, - "params":{ - - } - } - ] - }, - "grid":{ - "categoryLines":false - }, - "labels":{ - - }, - "legendPosition":"right", - "seriesParams":[ - { - "data":{ - "id":"1", - "label":"Count" - }, - "drawLinesBetweenPoints":true, - "mode":"normal", - "show":true, - "showCircles":true, - "type":"histogram", - "valueAxis":"ValueAxis-1" - } - ], - "times":[ - - ], - "type":"histogram", - "valueAxes":[ - { - "id":"ValueAxis-1", - "labels":{ - "filter":true, - "rotate":75, - "show":true, - "truncate":100 - }, - "name":"LeftAxis-1", - "position":"bottom", - "scale":{ - "mode":"normal", - "type":"linear" - }, - "show":false, - "style":{ - - }, - "title":{ - "text":"Count" - }, - "type":"value" - } - ] - }, - "title":"Top Resource Groups [Filebeat Azure]", - "type":"horizontal_bar" - } - }, - "id":"71b62ca0-ec1a-11e9-90ec-112a988266d5", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - { - "id":"filebeat-*", - "name":"kibanaSavedObjectMeta.searchSourceJSON.index", - "type":"index-pattern" - } - ], - "type":"visualization", - "updated_at":"2019-10-17T14:50:09.427Z", - "version":"WzYxMTUsMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "indexRefName":"kibanaSavedObjectMeta.searchSourceJSON.index", - "query":{ - "language":"kuery", - "query":"event.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category : \"Alert\" " - } - } - }, - "title":"Alerts Count [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "aggs":[ - { - "enabled":true, - "id":"1", - "params":{ - "customLabel":"Alerts" - }, - "schema":"metric", - "type":"count" - }, - { - "enabled":true, - "id":"2", - "params":{ - "filters":[ - { - "input":{ - "language":"kuery", - "query":"azure.activitylogs.result_type : \"Activated\"" - }, - "label":"Activated" - }, - { - "input":{ - "language":"kuery", - "query":"azure.activitylogs.result_type : \"Resolved\"" - }, - "label":"Resolved" - }, - { - "input":{ - "language":"kuery", - "query":"azure.activitylogs.result_type : \"Succeeded\"" - }, - "label":"Succeeded" - } - ] - }, - "schema":"group", - "type":"filters" - } - ], - "params":{ - "addLegend":false, - "addTooltip":true, - "dimensions":{ - "bucket":{ - "accessor":0, - "format":{ - "id":"string", - "params":{ - - } - }, - "type":"vis_dimension" - }, - "metrics":[ - { - "accessor":1, - "format":{ - "id":"number", - "params":{ - - } - }, - "type":"vis_dimension" - } - ] - }, - "metric":{ - "colorSchema":"Green to Red", - "colorsRange":[ - { - "from":0, - "to":10000, - "type":"range" - } - ], - "invertColors":false, - "labels":{ - "show":true - }, - "metricColorMode":"None", - "percentageMode":false, - "style":{ - "bgColor":false, - "bgFill":"#000", - "fontSize":60, - "labelColor":false, - "subText":"" - }, - "useRanges":false - }, - "type":"metric" - }, - "title":"Alerts Count [Filebeat Azure]", - "type":"metric" - } - }, - "id":"f684a750-ec23-11e9-90ec-112a988266d5", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - { - "id":"filebeat-*", - "name":"kibanaSavedObjectMeta.searchSourceJSON.index", - "type":"index-pattern" - } - ], - "type":"visualization", - "updated_at":"2019-10-16T18:44:12.955Z", - "version":"WzQ0MTAsMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "indexRefName":"kibanaSavedObjectMeta.searchSourceJSON.index", - "query":{ - "language":"kuery", - "query":"event.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category : \"ServiceHealth\" " - } - } - }, - "title":"Service Health Count [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "aggs":[ - { - "enabled":true, - "id":"1", - "params":{ - "customLabel":"Incidents" - }, - "schema":"metric", - "type":"count" - }, - { - "enabled":true, - "id":"2", - "params":{ - "filters":[ - { - "input":{ - "language":"kuery", - "query":"azure.activitylogs.result_type : \"Active\"" - }, - "label":"Active" - }, - { - "input":{ - "language":"kuery", - "query":"azure.activitylogs.result_type : \"Resolved\"" - }, - "label":"Resolved" - } - ] - }, - "schema":"group", - "type":"filters" - } - ], - "params":{ - "addLegend":false, - "addTooltip":true, - "dimensions":{ - "bucket":{ - "accessor":0, - "format":{ - "id":"string", - "params":{ - - } - }, - "type":"vis_dimension" - }, - "metrics":[ - { - "accessor":1, - "format":{ - "id":"number", - "params":{ - - } - }, - "type":"vis_dimension" - } - ] - }, - "metric":{ - "colorSchema":"Green to Red", - "colorsRange":[ - { - "from":0, - "to":10000, - "type":"range" - } - ], - "invertColors":false, - "labels":{ - "show":true - }, - "metricColorMode":"None", - "percentageMode":false, - "style":{ - "bgColor":false, - "bgFill":"#000", - "fontSize":60, - "labelColor":false, - "subText":"" - }, - "useRanges":false - }, - "type":"metric" - }, - "title":"Service Health Count [Filebeat Azure]", - "type":"metric" - } - }, - "id":"e37cd3d0-ec23-11e9-90ec-112a988266d5", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - { - "id":"filebeat-*", - "name":"kibanaSavedObjectMeta.searchSourceJSON.index", - "type":"index-pattern" - } - ], - "type":"visualization", - "updated_at":"2019-10-16T18:45:10.848Z", - "version":"WzQ0MTEsMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "indexRefName":"kibanaSavedObjectMeta.searchSourceJSON.index", - "query":{ - "language":"kuery", - "query":"event.dataset :\"azure.activitylogs\" " - } - } - }, - "title":"Resource Creations [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "title":"Resource Creations [Filebeat Azure]", - "type":"horizontal_bar", - "params":{ - "addLegend":true, - "addTimeMarker":false, - "addTooltip":true, - "categoryAxes":[ - { - "id":"CategoryAxis-1", - "labels":{ - "filter":false, - "rotate":0, - "show":true, - "truncate":200 - }, - "position":"left", - "scale":{ - "type":"linear" - }, - "show":true, - "style":{ - - }, - "title":{ - - }, - "type":"category" - } - ], - "dimensions":{ - "series":[ - { - "accessor":1, - "aggType":"terms", - "format":{ - "id":"terms", - "params":{ - "id":"string", - "missingBucketLabel":"Missing", - "otherBucketLabel":"Other" - } - }, - "label":"Creations", - "params":{ - - } - } - ], - "x":{ - "accessor":0, - "aggType":"terms", - "format":{ - "id":"terms", - "params":{ - "id":"string", - "missingBucketLabel":"Missing", - "otherBucketLabel":"Other" - } - }, - "label":"Resource type", - "params":{ - - } - }, - "y":[ - { - "accessor":2, - "aggType":"count", - "format":{ - "id":"number" - }, - "label":"Count", - "params":{ - - } - } - ] - }, - "grid":{ - "categoryLines":false, - "valueAxis":"" - }, - "labels":{ - - }, - "legendPosition":"right", - "seriesParams":[ - { - "data":{ - "id":"1", - "label":"Count" - }, - "drawLinesBetweenPoints":true, - "lineWidth":2, - "mode":"stacked", - "show":true, - "showCircles":true, - "type":"histogram", - "valueAxis":"ValueAxis-1" - } - ], - "thresholdLine":{ - "color":"#E7664C", - "show":false, - "style":"full", - "value":10, - "width":1 - }, - "times":[ - - ], - "type":"histogram", - "valueAxes":[ - { - "id":"ValueAxis-1", - "labels":{ - "filter":true, - "rotate":75, - "show":true, - "truncate":100 - }, - "name":"LeftAxis-1", - "position":"bottom", - "scale":{ - "mode":"normal", - "type":"linear" - }, - "show":false, - "style":{ - - }, - "title":{ - "text":"Count" - }, - "type":"value" - } - ] - }, - "aggs":[ - { - "id":"1", - "enabled":true, - "type":"count", - "schema":"metric", - "params":{ - - } - }, - { - "id":"2", - "enabled":true, - "type":"terms", - "schema":"segment", - "params":{ - "field":"azure.resource.provider", - "orderBy":"1", - "order":"desc", - "size":15, - "otherBucket":false, - "otherBucketLabel":"Other", - "missingBucket":false, - "missingBucketLabel":"Missing", - "customLabel":"Resource type" - } - }, - { - "id":"4", - "enabled":true, - "type":"terms", - "schema":"group", - "params":{ - "field":"azure.activitylogs.identity.authorization.action", - "orderBy":"1", - "order":"desc", - "size":15, - "otherBucket":false, - "otherBucketLabel":"Other", - "missingBucket":false, - "missingBucketLabel":"Missing", - "include":".*write", - "customLabel":"Creations" - } - } - ] - } - }, - "id":"d91ce8d0-53e8-11ea-b1b7-7de801e1c297", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - { - "id":"filebeat-*", - "name":"kibanaSavedObjectMeta.searchSourceJSON.index", - "type":"index-pattern" - } - ], - "type":"visualization", - "updated_at":"2020-02-20T13:57:45.235Z", - "version":"WzU4OSwxXQ==" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "indexRefName":"kibanaSavedObjectMeta.searchSourceJSON.index", - "query":{ - "language":"kuery", - "query":"event.dataset :\"azure.activitylogs\" " - } - } - }, - "title":"Resource Deletions [Filebeat Azure]", - "uiStateJSON": { - - }, - "version":1, - "visState":{ - "title": "Resource Deletions [Filebeat Azure]", - "type": "horizontal_bar", - "params": { - "type": "histogram", - "grid": { - "categoryLines": false - }, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "type": "category", - "position": "left", - "show": true, - "style": {}, - "scale": { - "type": "linear" - }, - "labels": { - "show": true, - "rotate": 0, - "filter": false, - "truncate": 200 - }, - "title": {} - } - ], - "valueAxes": [ - { - "id": "ValueAxis-1", - "name": "LeftAxis-1", - "type": "value", - "position": "bottom", - "show": true, - "style": {}, - "scale": { - "type": "linear", - "mode": "normal" - }, - "labels": { - "show": false, - "rotate": 75, - "filter": true, - "truncate": 100 - }, - "title": { - "text": "Count" - } - } - ], - "seriesParams": [ - { - "show": true, - "type": "histogram", - "mode": "normal", - "data": { - "label": "Count", - "id": "1" - }, - "valueAxis": "ValueAxis-1", - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "showCircles": true - } - ], - "addTooltip": true, - "addLegend": true, - "legendPosition": "right", - "times": [], - "addTimeMarker": false, - "labels": {}, - "thresholdLine": { - "show": false, - "value": 10, - "width": 1, - "style": "full", - "color": "#E7664C" - }, - "dimensions": { - "x": { - "accessor": 0, - "format": { - "id": "terms", - "params": { - "id": "string", - "otherBucketLabel": "Other", - "missingBucketLabel": "Missing" - } - }, - "params": {}, - "label": "azure.resource.provider: Descending", - "aggType": "terms" - }, - "y": [ - { - "accessor": 2, - "format": { - "id": "number" - }, - "params": {}, - "label": "Count", - "aggType": "count" - } - ], - "series": [ - { - "accessor": 1, - "format": { - "id": "terms", - "params": { - "id": "string", - "otherBucketLabel": "Other", - "missingBucketLabel": "Missing" - } - }, - "params": {}, - "label": "Deletions", - "aggType": "terms" - } - ] - } - }, - "aggs": [ - { - "id": "1", - "enabled": true, - "type": "count", - "schema": "metric", - "params": {} - }, - { - "id": "2", - "enabled": true, - "type": "terms", - "schema": "segment", - "params": { - "field": "azure.resource.provider", - "orderBy": "1", - "order": "desc", - "size": 15, - "otherBucket": false, - "otherBucketLabel": "Other", - "missingBucket": false, - "missingBucketLabel": "Missing", - "customLabel": "Resource type" - } - }, - { - "id": "3", - "enabled": true, - "type": "terms", - "schema": "group", - "params": { - "field": "azure.activitylogs.identity.authorization.action", - "orderBy": "1", - "order": "desc", - "size": 15, - "otherBucket": false, - "otherBucketLabel": "Other", - "missingBucket": false, - "missingBucketLabel": "Missing", - "include": ".*delete", - "customLabel": "Deletions" - } - } - ] - } - }, - "id":"6db84660-53e9-11ea-b1b7-7de801e1c297", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - { - "id":"filebeat-*", - "name":"kibanaSavedObjectMeta.searchSourceJSON.index", - "type":"index-pattern" - } - ], - "type":"visualization", - "updated_at":"2020-02-20T14:01:02.150Z", - "version":"WzU5MiwxXQ==" - } - ], - "version":"7.4.0" -} diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-overview.ndjson b/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-overview.ndjson new file mode 100644 index 00000000000..affa85cc8a6 --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-overview.ndjson @@ -0,0 +1,14 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Overview [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Azure Monitoring\\n\\n[**Overview**](#/dashboard/41e84340-ec20-11e9-90ec-112a988266d5) | [Users](#/dashboard/87095750-f05a-11e9-90ec-112a988266d5) | [Alerts](#/dashboard/0f559cc0-f0d5-11e9-90ec-112a988266d5) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Overview [Filebeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"fe24ac90-f05a-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzODYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Subscriptions Filter [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1571250866125\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription ID\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Subscriptions Filter [Filebeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"097d74d0-f044-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzODcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Activity Level [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.event_category :\\\"Administrative\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Activity Level [Filebeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"da67d650-ec14-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzODgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset : \\\"azure.activitylogs\\\" \"}}"},"title":"Activity Stats [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Resources\",\"field\":\"azure.resource.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Users\",\"field\":\"azure.activitylogs.identity.claims_initiated_by_user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Resource Groups\",\"field\":\"azure.resource.group\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Subscriptions\",\"field\":\"azure.subscription_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"},{\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"},{\"accessor\":2,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Activity Stats [Filebeat Azure]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"e4c7f4b0-f045-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzODksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Access Requests [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.operation_name : *LISTKEYS*\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.outcome : \\\"success\\\" or event.outcome : \\\"Success\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Success\",\"line_width\":\"2\",\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.outcome : \\\"Failure\\\" or event.outcome : \\\"failure\\\" \"},\"formatter\":\"number\",\"id\":\"1b5f75a0-ec15-11e9-b6a7-21d19b63822a\",\"label\":\"Failure\",\"line_width\":\"2\",\"metrics\":[{\"id\":\"1b5f75a1-ec15-11e9-b6a7-21d19b63822a\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Access Requests [Filebeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"709995e0-ec16-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzOTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"User Tag Cloud [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"azure.activitylogs.identity.claims_initiated_by_user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"type\":\"vis_dimension\"},\"maxFontSize\":32,\"metric\":{\"accessor\":1,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"minFontSize\":12,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"User Tag Cloud [Filebeat Azure]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"ffe22180-ec1c-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzOTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Alerts Overview [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.event_category : \\\"Alert\\\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type: \\\"Activated\\\"\"},\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type: \\\"Resolved\\\" or azure.activitylogs.result_type: \\\"Succeeded\\\"\"},\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"5a52f170-ec1e-11e9-b6a7-21d19b63822a\",\"line_width\":1,\"metrics\":[{\"id\":\"5a52f171-ec1e-11e9-b6a7-21d19b63822a\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Alerts Overview [Filebeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"52c2a4e0-ec1f-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzOTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Service Health Overview [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.event_category : \\\"ServiceHealth\\\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type: \\\"Active\\\"\"},\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type: \\\"Resolved\\\" \"},\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"5a52f170-ec1e-11e9-b6a7-21d19b63822a\",\"line_width\":1,\"metrics\":[{\"id\":\"5a52f171-ec1e-11e9-b6a7-21d19b63822a\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Service Health Overview [Filebeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bc65e840-ec1e-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzOTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top Resource Groups [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Resource Groups\",\"field\":\"azure.resource.group\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"x\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},\"y\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":false,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Top Resource Groups [Filebeat Azure]\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"71b62ca0-ec1a-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.event_category : \\\"Alert\\\" \"}}"},"title":"Alerts Count [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Alerts\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Activated\\\"\"},\"label\":\"Activated\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Resolved\\\"\"},\"label\":\"Resolved\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Succeeded\\\"\"},\"label\":\"Succeeded\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"metrics\":[{\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Alerts Count [Filebeat Azure]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"f684a750-ec23-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzOTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.event_category : \\\"ServiceHealth\\\" \"}}"},"title":"Service Health Count [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Incidents\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Active\\\"\"},\"label\":\"Active\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Resolved\\\"\"},\"label\":\"Resolved\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"metrics\":[{\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Service Health Count [Filebeat Azure]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"e37cd3d0-ec23-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzOTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" \"}}"},"title":"Resource Creations [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"Resource Creations [Filebeat Azure]\",\"type\":\"horizontal_bar\",\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"label\":\"Creations\",\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"label\":\"Resource type\",\"params\":{}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}]},\"grid\":{\"categoryLines\":false,\"valueAxis\":\"\"},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":false,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"azure.resource.provider\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":15,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"customLabel\":\"Resource type\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"azure.activitylogs.identity.authorization.action\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":15,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"include\":\".*write\",\"customLabel\":\"Creations\"}}]}"},"coreMigrationVersion":"8.0.0","id":"d91ce8d0-53e8-11ea-b1b7-7de801e1c297","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" \"}}"},"title":"Resource Deletions [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"Resource Deletions [Filebeat Azure]\",\"type\":\"horizontal_bar\",\"params\":{\"type\":\"histogram\",\"grid\":{\"categoryLines\":false},\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"type\":\"category\",\"position\":\"left\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\"},\"labels\":{\"show\":true,\"rotate\":0,\"filter\":false,\"truncate\":200},\"title\":{}}],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"name\":\"LeftAxis-1\",\"type\":\"value\",\"position\":\"bottom\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\",\"mode\":\"normal\"},\"labels\":{\"show\":false,\"rotate\":75,\"filter\":true,\"truncate\":100},\"title\":{\"text\":\"Count\"}}],\"seriesParams\":[{\"show\":true,\"type\":\"histogram\",\"mode\":\"normal\",\"data\":{\"label\":\"Count\",\"id\":\"1\"},\"valueAxis\":\"ValueAxis-1\",\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"showCircles\":true}],\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"times\":[],\"addTimeMarker\":false,\"labels\":{},\"thresholdLine\":{\"show\":false,\"value\":10,\"width\":1,\"style\":\"full\",\"color\":\"#E7664C\"},\"dimensions\":{\"x\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"otherBucketLabel\":\"Other\",\"missingBucketLabel\":\"Missing\"}},\"params\":{},\"label\":\"azure.resource.provider: Descending\",\"aggType\":\"terms\"},\"y\":[{\"accessor\":2,\"format\":{\"id\":\"number\"},\"params\":{},\"label\":\"Count\",\"aggType\":\"count\"}],\"series\":[{\"accessor\":1,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"otherBucketLabel\":\"Other\",\"missingBucketLabel\":\"Missing\"}},\"params\":{},\"label\":\"Deletions\",\"aggType\":\"terms\"}]},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"azure.resource.provider\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":15,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"customLabel\":\"Resource type\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"azure.activitylogs.identity.authorization.action\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":15,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"include\":\".*delete\",\"customLabel\":\"Deletions\"}}]}"},"coreMigrationVersion":"8.0.0","id":"6db84660-53e9-11ea-b1b7-7de801e1c297","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDgsMV0="} +{"attributes":{"description":"This dashboard provides an overview of user activity, alerts and resource in Azure cloud.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"6b6e7452-979c-4f78-afc2-cc58fcf105ff\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"6b6e7452-979c-4f78-afc2-cc58fcf105ff\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_6b6e7452-979c-4f78-afc2-cc58fcf105ff\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"042f777a-5e41-41e8-9d6e-d842473a8aed\",\"w\":15,\"x\":9,\"y\":0},\"panelIndex\":\"042f777a-5e41-41e8-9d6e-d842473a8aed\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_042f777a-5e41-41e8-9d6e-d842473a8aed\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"1e73bca7-8569-41b5-830e-2f762602219a\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"1e73bca7-8569-41b5-830e-2f762602219a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Activity Level\",\"panelRefName\":\"panel_1e73bca7-8569-41b5-830e-2f762602219a\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"d9465e9f-49f1-4173-b1a4-fea9ee3120ab\",\"w\":24,\"x\":0,\"y\":4},\"panelIndex\":\"d9465e9f-49f1-4173-b1a4-fea9ee3120ab\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_d9465e9f-49f1-4173-b1a4-fea9ee3120ab\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"18ec1e20-202b-4a40-8d0d-22060ac3e23c\",\"w\":24,\"x\":24,\"y\":8},\"panelIndex\":\"18ec1e20-202b-4a40-8d0d-22060ac3e23c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Access Requests\",\"panelRefName\":\"panel_18ec1e20-202b-4a40-8d0d-22060ac3e23c\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"d2bdec0f-dde1-4925-bf7e-afbc430c0eca\",\"w\":24,\"x\":0,\"y\":10},\"panelIndex\":\"d2bdec0f-dde1-4925-bf7e-afbc430c0eca\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Active Users\",\"panelRefName\":\"panel_d2bdec0f-dde1-4925-bf7e-afbc430c0eca\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"3bcc964d-6862-4fdd-9d82-f7510cc02162\",\"w\":12,\"x\":24,\"y\":15},\"panelIndex\":\"3bcc964d-6862-4fdd-9d82-f7510cc02162\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Alerts Overview\",\"panelRefName\":\"panel_3bcc964d-6862-4fdd-9d82-f7510cc02162\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"74436614-9dfc-4c38-bc58-8cb76c348f37\",\"w\":12,\"x\":36,\"y\":15},\"panelIndex\":\"74436614-9dfc-4c38-bc58-8cb76c348f37\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Service Health\",\"panelRefName\":\"panel_74436614-9dfc-4c38-bc58-8cb76c348f37\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8\",\"w\":24,\"x\":0,\"y\":21},\"panelIndex\":\"a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Top Resource Groups\",\"panelRefName\":\"panel_a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"644c6151-fd05-4b2e-b18e-30843697e932\",\"w\":12,\"x\":24,\"y\":22},\"panelIndex\":\"644c6151-fd05-4b2e-b18e-30843697e932\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_644c6151-fd05-4b2e-b18e-30843697e932\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"3d5ccff8-6576-4a1c-b3ee-363ae665906e\",\"w\":12,\"x\":36,\"y\":22},\"panelIndex\":\"3d5ccff8-6576-4a1c-b3ee-363ae665906e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_3d5ccff8-6576-4a1c-b3ee-363ae665906e\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":28,\"w\":12,\"h\":12,\"i\":\"1a6dce1d-d039-4d18-87c7-1b700da676c2\"},\"panelIndex\":\"1a6dce1d-d039-4d18-87c7-1b700da676c2\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"legendOpen\":false,\"enhancements\":{}},\"panelRefName\":\"panel_1a6dce1d-d039-4d18-87c7-1b700da676c2\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"x\":36,\"y\":28,\"w\":12,\"h\":12,\"i\":\"8fddd3bb-c1e6-4533-b075-1ab7361b3af0\"},\"panelIndex\":\"8fddd3bb-c1e6-4533-b075-1ab7361b3af0\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"legendOpen\":false,\"enhancements\":{}},\"panelRefName\":\"panel_8fddd3bb-c1e6-4533-b075-1ab7361b3af0\"}]","timeRestore":false,"title":"[Filebeat Azure] Cloud Overview","version":1},"coreMigrationVersion":"8.0.0","id":"41e84340-ec20-11e9-90ec-112a988266d5","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"fe24ac90-f05a-11e9-90ec-112a988266d5","name":"6b6e7452-979c-4f78-afc2-cc58fcf105ff:panel_6b6e7452-979c-4f78-afc2-cc58fcf105ff","type":"visualization"},{"id":"097d74d0-f044-11e9-90ec-112a988266d5","name":"042f777a-5e41-41e8-9d6e-d842473a8aed:panel_042f777a-5e41-41e8-9d6e-d842473a8aed","type":"visualization"},{"id":"da67d650-ec14-11e9-90ec-112a988266d5","name":"1e73bca7-8569-41b5-830e-2f762602219a:panel_1e73bca7-8569-41b5-830e-2f762602219a","type":"visualization"},{"id":"e4c7f4b0-f045-11e9-90ec-112a988266d5","name":"d9465e9f-49f1-4173-b1a4-fea9ee3120ab:panel_d9465e9f-49f1-4173-b1a4-fea9ee3120ab","type":"visualization"},{"id":"709995e0-ec16-11e9-90ec-112a988266d5","name":"18ec1e20-202b-4a40-8d0d-22060ac3e23c:panel_18ec1e20-202b-4a40-8d0d-22060ac3e23c","type":"visualization"},{"id":"ffe22180-ec1c-11e9-90ec-112a988266d5","name":"d2bdec0f-dde1-4925-bf7e-afbc430c0eca:panel_d2bdec0f-dde1-4925-bf7e-afbc430c0eca","type":"visualization"},{"id":"52c2a4e0-ec1f-11e9-90ec-112a988266d5","name":"3bcc964d-6862-4fdd-9d82-f7510cc02162:panel_3bcc964d-6862-4fdd-9d82-f7510cc02162","type":"visualization"},{"id":"bc65e840-ec1e-11e9-90ec-112a988266d5","name":"74436614-9dfc-4c38-bc58-8cb76c348f37:panel_74436614-9dfc-4c38-bc58-8cb76c348f37","type":"visualization"},{"id":"71b62ca0-ec1a-11e9-90ec-112a988266d5","name":"a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8:panel_a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8","type":"visualization"},{"id":"f684a750-ec23-11e9-90ec-112a988266d5","name":"644c6151-fd05-4b2e-b18e-30843697e932:panel_644c6151-fd05-4b2e-b18e-30843697e932","type":"visualization"},{"id":"e37cd3d0-ec23-11e9-90ec-112a988266d5","name":"3d5ccff8-6576-4a1c-b3ee-363ae665906e:panel_3d5ccff8-6576-4a1c-b3ee-363ae665906e","type":"visualization"},{"id":"d91ce8d0-53e8-11ea-b1b7-7de801e1c297","name":"1a6dce1d-d039-4d18-87c7-1b700da676c2:panel_1a6dce1d-d039-4d18-87c7-1b700da676c2","type":"visualization"},{"id":"6db84660-53e9-11ea-b1b7-7de801e1c297","name":"8fddd3bb-c1e6-4533-b075-1ab7361b3af0:panel_8fddd3bb-c1e6-4533-b075-1ab7361b3af0","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzODUsMV0="} diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-user-activity.json b/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-user-activity.json deleted file mode 100644 index fd2ee9c225e..00000000000 --- a/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-user-activity.json +++ /dev/null @@ -1,1675 +0,0 @@ -{ - "objects":[ - { - "attributes":{ - "description":"This dashboard shows expanded user activity in Azure cloud.", - "hits":0, - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - { - "$state":{ - "store":"appState" - }, - "exists":{ - "field":"azure.activitylogs.identity.claims_initiated_by_user.fullname" - }, - "meta":{ - "alias":null, - "disabled":false, - "indexRefName":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key":"azure.activitylogs.identity.claims_initiated_by_user.fullname", - "negate":false, - "type":"exists", - "value":"exists" - } - } - ], - "query":{ - "language":"kuery", - "query":"" - } - } - }, - "optionsJSON":{ - "hidePanelTitles":false, - "useMargins":true - }, - "panelsJSON":[ - { - "embeddableConfig":{ - "title":"" - }, - "gridData":{ - "h":4, - "i":"675f172f-dbec-44fe-b45c-fe854a967695", - "w":8, - "x":0, - "y":0 - }, - "panelIndex":"675f172f-dbec-44fe-b45c-fe854a967695", - "panelRefName":"panel_0", - "version":"7.4.0" - }, - { - "embeddableConfig":{ - "title":"" - }, - "gridData":{ - "h":4, - "i":"705596b5-db2e-4c45-875d-95d98bfb7ee8", - "w":16, - "x":8, - "y":0 - }, - "panelIndex":"705596b5-db2e-4c45-875d-95d98bfb7ee8", - "panelRefName":"panel_1", - "version":"7.4.0" - }, - { - "embeddableConfig":{ - - }, - "gridData":{ - "h":9, - "i":"ace19840-2084-45bd-bf86-9ab31b04a17b", - "w":24, - "x":24, - "y":0 - }, - "panelIndex":"ace19840-2084-45bd-bf86-9ab31b04a17b", - "panelRefName":"panel_2", - "version":"7.4.0" - }, - { - "embeddableConfig":{ - "title":"Users List" - }, - "gridData":{ - "h":15, - "i":"d4d708e1-d179-4688-8005-54e2162a82d2", - "w":11, - "x":0, - "y":4 - }, - "panelIndex":"d4d708e1-d179-4688-8005-54e2162a82d2", - "panelRefName":"panel_3", - "title":"Users List", - "version":"7.4.0" - }, - { - "embeddableConfig":{ - "title":"Top Caller IPs" - }, - "gridData":{ - "h":15, - "i":"5774219c-fb45-4480-bdfb-75a69bdc2cfe", - "w":13, - "x":11, - "y":4 - }, - "panelIndex":"5774219c-fb45-4480-bdfb-75a69bdc2cfe", - "panelRefName":"panel_4", - "title":"Top Caller IPs", - "version":"7.4.0" - }, - { - "embeddableConfig":{ - - }, - "gridData":{ - "h":10, - "i":"5deee186-fe00-4edc-9e5b-86d8d09f6550", - "w":24, - "x":24, - "y":9 - }, - "panelIndex":"5deee186-fe00-4edc-9e5b-86d8d09f6550", - "panelRefName":"panel_5", - "version":"7.4.0" - }, - { - "embeddableConfig":{ - "title":"Top Resource Groups", - "vis":{ - "legendOpen":false - } - }, - "gridData":{ - "h":15, - "i":"2fa13b32-c544-45f7-9132-620d09d121eb", - "w":16, - "x":0, - "y":19 - }, - "panelIndex":"2fa13b32-c544-45f7-9132-620d09d121eb", - "panelRefName":"panel_6", - "title":"Top Resource Groups", - "version":"7.4.0" - }, - { - "version":"7.4.0", - "gridData":{ - "x":16, - "y":19, - "w":17, - "h":7, - "i":"1a6dce1d-d039-4d18-87c7-1b700da676c2" - }, - "panelIndex":"1a6dce1d-d039-4d18-87c7-1b700da676c2", - "embeddableConfig":{ - "vis":{ - "legendOpen":true - }, - "legendOpen":false - }, - "panelRefName":"panel_7" - }, - { - "version":"7.4.0", - "gridData":{ - "x":16, - "y":26, - "w":17, - "h":8, - "i":"8fddd3bb-c1e6-4533-b075-1ab7361b3af0" - }, - "panelIndex":"8fddd3bb-c1e6-4533-b075-1ab7361b3af0", - "embeddableConfig":{ - "vis":{ - "legendOpen":true - }, - "legendOpen":false - }, - "panelRefName":"panel_8" - }, - { - "embeddableConfig":{ - "title":"Top Resource Types" - }, - "gridData":{ - "h":15, - "i":"84583e62-1aad-4f03-a25a-c4f9eaace8c0", - "w":15, - "x":33, - "y":19 - }, - "panelIndex":"84583e62-1aad-4f03-a25a-c4f9eaace8c0", - "panelRefName":"panel_9", - "title":"Top Resource Types", - "version":"7.4.0" - } - ], - "timeRestore":false, - "title":"[Filebeat Azure] User Activity", - "version":1 - }, - "id":"87095750-f05a-11e9-90ec-112a988266d5", - "migrationVersion":{ - "dashboard":"7.3.0" - }, - "references":[ - { - "id":"filebeat-*", - "name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type":"index-pattern" - }, - { - "id":"c43855e0-f05a-11e9-90ec-112a988266d5", - "name":"panel_0", - "type":"visualization" - }, - { - "id":"b0471750-f05b-11e9-90ec-112a988266d5", - "name":"panel_1", - "type":"visualization" - }, - { - "id":"e0203fc0-f05f-11e9-90ec-112a988266d5", - "name":"panel_2", - "type":"visualization" - }, - { - "id":"52da1700-f05d-11e9-90ec-112a988266d5", - "name":"panel_3", - "type":"visualization" - }, - { - "id":"6ece76d0-f0cc-11e9-90ec-112a988266d5", - "name":"panel_4", - "type":"visualization" - }, - { - "id":"0dd135c0-f0cc-11e9-90ec-112a988266d5", - "name":"panel_5", - "type":"visualization" - }, - { - "id":"71b62ca0-ec1a-11e9-90ec-112a988266d5", - "name":"panel_6", - "type":"visualization" - }, - { - "id":"d91ce8d0-53e8-11ea-b1b7-7de801e1c297", - "name":"panel_7", - "type":"visualization" - }, - { - "id":"6db84660-53e9-11ea-b1b7-7de801e1c297", - "name":"panel_8", - "type":"visualization" - }, - { - "id":"9ed46680-f0ce-11e9-90ec-112a988266d5", - "name":"panel_9", - "type":"visualization" - } - ], - "type":"dashboard", - "updated_at":"2019-10-18T17:27:59.187Z", - "version":"WzkyNDUsMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "query":{ - "language":"kuery", - "query":"" - } - } - }, - "title":"Navigation Users [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "aggs":[ - - ], - "params":{ - "fontSize":10, - "markdown":"### Azure Monitoring\n\n[Overview](#/dashboard/41e84340-ec20-11e9-90ec-112a988266d5) | [**Users**](#/dashboard/87095750-f05a-11e9-90ec-112a988266d5) | [Alerts](#/dashboard/0f559cc0-f0d5-11e9-90ec-112a988266d5) ", - "openLinksInNewTab":false - }, - "title":"Navigation Users [Filebeat Azure]", - "type":"markdown" - } - }, - "id":"c43855e0-f05a-11e9-90ec-112a988266d5", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - - ], - "type":"visualization", - "updated_at":"2019-10-17T11:56:56.135Z", - "version":"WzQ5MzYsMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "query":{ - "language":"kuery", - "query":"" - } - } - }, - "title":"User Filters [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "aggs":[ - - ], - "params":{ - "controls":[ - { - "fieldName":"azure.subscription_id", - "id":"1517598395667", - "indexPatternRefName":"control_0_index_pattern", - "label":"Subscription", - "options":{ - "dynamicOptions":true, - "multiselect":true, - "order":"desc", - "size":100, - "type":"terms" - }, - "type":"list" - }, - { - "fieldName":"azure.activitylogs.identity.claims_initiated_by_user.name", - "id":"1518843942322", - "indexPatternRefName":"control_1_index_pattern", - "label":"User Email", - "options":{ - "dynamicOptions":true, - "multiselect":true, - "order":"desc", - "size":100, - "type":"terms" - }, - "type":"list" - } - ], - "pinFilters":false, - "updateFiltersOnChange":true, - "useTimeFilter":false - }, - "title":"User Filters [Filebeat Azure]", - "type":"input_control_vis" - } - }, - "id":"b0471750-f05b-11e9-90ec-112a988266d5", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - { - "id":"filebeat-*", - "name":"control_0_index_pattern", - "type":"index-pattern" - }, - { - "id":"filebeat-*", - "name":"control_1_index_pattern", - "type":"index-pattern" - } - ], - "type":"visualization", - "updated_at":"2019-10-18T09:36:45.050Z", - "version":"Wzg0NTcsMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "query":{ - "language":"kuery", - "query":"" - } - } - }, - "title":"User Activity Overview [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "aggs":[ - - ], - "params":{ - "axis_formatter":"number", - "axis_position":"left", - "axis_scale":"normal", - "default_index_pattern":"metricbeat-*", - "default_timefield":"@timestamp", - "filter":{ - "language":"kuery", - "query":"event.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category :\"Administrative\" and azure.activitylogs.identity.claims_initiated_by_user.fullname :*" - }, - "id":"61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern":"filebeat-*", - "interval":"auto", - "isModelInvalid":false, - "series":[ - { - "axis_position":"right", - "chart_type":"bar", - "color":"rgba(1,155,143,1)", - "fill":"0.4", - "filter":"", - "formatter":"number", - "hide_in_legend":0, - "id":"61ca57f1-469d-11e7-af02-69e470af7417", - "label":"Actions", - "line_width":1, - "metrics":[ - { - "id":"61ca57f2-469d-11e7-af02-69e470af7417", - "type":"count" - } - ], - "point_size":1, - "seperate_axis":0, - "split_filters":[ - { - "color":"rgba(244,78,59,1)", - "filter":"_exists_:identity.claims.name", - "id":"a5302500-1399-11e8-a699-f390e75f4dd5", - "label":"" - } - ], - "split_mode":"everything", - "stacked":"none" - } - ], - "show_grid":1, - "show_legend":0, - "time_field":null, - "type":"timeseries" - }, - "title":"User Activity Overview [Filebeat Azure]", - "type":"metrics" - } - }, - "id":"e0203fc0-f05f-11e9-90ec-112a988266d5", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - - ], - "type":"visualization", - "updated_at":"2019-10-18T17:27:33.254Z", - "version":"WzkyNDMsMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "indexRefName":"kibanaSavedObjectMeta.searchSourceJSON.index", - "query":{ - "language":"lucene", - "query":"" - } - } - }, - "title":"Users List [Filebeat Azure]", - "uiStateJSON":{ - "vis":{ - "params":{ - "sort":{ - "columnIndex":null, - "direction":null - } - } - } - }, - "version":1, - "visState":{ - "aggs":[ - { - "enabled":true, - "id":"2", - "params":{ - "customLabel":"Email", - "field":"azure.activitylogs.identity.claims_initiated_by_user.name", - "missingBucket":false, - "missingBucketLabel":"Missing", - "order":"desc", - "orderBy":"1", - "otherBucket":false, - "otherBucketLabel":"Other", - "size":20 - }, - "schema":"bucket", - "type":"terms" - }, - { - "enabled":true, - "id":"3", - "params":{ - "customLabel":"Name", - "field":"azure.activitylogs.identity.claims_initiated_by_user.fullname", - "missingBucket":false, - "missingBucketLabel":"Missing", - "order":"desc", - "orderBy":"1", - "otherBucket":false, - "otherBucketLabel":"Other", - "size":5 - }, - "schema":"bucket", - "type":"terms" - }, - { - "enabled":true, - "id":"5", - "params":{ - "customLabel":"IPs", - "field":"source.ip" - }, - "schema":"metric", - "type":"cardinality" - }, - { - "enabled":true, - "id":"1", - "params":{ - "customLabel":"Actions" - }, - "schema":"metric", - "type":"count" - } - ], - "params":{ - "dimensions":{ - "buckets":[ - { - "accessor":0, - "aggType":"terms", - "format":{ - "id":"terms", - "params":{ - "id":"string", - "missingBucketLabel":"Missing", - "otherBucketLabel":"Other" - } - }, - "params":{ - - } - }, - { - "accessor":1, - "aggType":"terms", - "format":{ - "id":"terms", - "params":{ - "id":"string", - "missingBucketLabel":"Missing", - "otherBucketLabel":"Other" - } - }, - "params":{ - - } - } - ], - "metrics":[ - { - "accessor":2, - "aggType":"cardinality", - "format":{ - "id":"number" - }, - "params":{ - - } - }, - { - "accessor":3, - "aggType":"count", - "format":{ - "id":"number" - }, - "params":{ - - } - } - ] - }, - "perPage":10, - "percentageCol":"", - "showMetricsAtAllLevels":false, - "showPartialRows":false, - "showTotal":false, - "sort":{ - "columnIndex":null, - "direction":null - }, - "totalFunc":"sum" - }, - "title":"Users List [Filebeat Azure]", - "type":"table" - } - }, - "id":"52da1700-f05d-11e9-90ec-112a988266d5", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - { - "id":"filebeat-*", - "name":"kibanaSavedObjectMeta.searchSourceJSON.index", - "type":"index-pattern" - } - ], - "type":"visualization", - "updated_at":"2019-10-18T09:05:04.252Z", - "version":"WzgwNjAsMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "indexRefName":"kibanaSavedObjectMeta.searchSourceJSON.index", - "query":{ - "language":"kuery", - "query":"event.dataset :\"azure.activitylogs\" " - } - } - }, - "title":"Caller IP [Filebeat Azure]", - "uiStateJSON":{ - "vis":{ - "params":{ - "sort":{ - "columnIndex":null, - "direction":null - } - } - } - }, - "version":1, - "visState":{ - "aggs":[ - { - "enabled":true, - "id":"2", - "params":{ - "customLabel":"Caller IP", - "field":"source.ip", - "missingBucket":false, - "missingBucketLabel":"Missing", - "order":"desc", - "orderBy":"5", - "otherBucket":false, - "otherBucketLabel":"Other", - "size":100 - }, - "schema":"bucket", - "type":"terms" - }, - { - "enabled":true, - "id":"3", - "params":{ - "customLabel":"Country", - "field":"geo.country_name", - "missingBucket":false, - "missingBucketLabel":"Missing", - "order":"desc", - "orderBy":"5", - "otherBucket":false, - "otherBucketLabel":"Other", - "size":100 - }, - "schema":"bucket", - "type":"terms" - }, - { - "enabled":true, - "id":"4", - "params":{ - "customLabel":"Email", - "field":"azure.activitylogs.identity.claims_initiated_by_user.name", - "missingBucket":false, - "missingBucketLabel":"Missing", - "order":"desc", - "orderBy":"_key", - "otherBucket":false, - "otherBucketLabel":"Other", - "size":5 - }, - "schema":"bucket", - "type":"terms" - }, - { - "enabled":true, - "id":"5", - "params":{ - - }, - "schema":"metric", - "type":"count" - } - ], - "params":{ - "dimensions":{ - "buckets":[ - { - "accessor":0, - "aggType":"terms", - "format":{ - "id":"terms", - "params":{ - "id":"ip", - "missingBucketLabel":"Missing", - "otherBucketLabel":"Other" - } - }, - "params":{ - - } - }, - { - "accessor":1, - "aggType":"terms", - "format":{ - "id":"terms", - "params":{ - "id":"string", - "missingBucketLabel":"Missing", - "otherBucketLabel":"Other" - } - }, - "params":{ - - } - }, - { - "accessor":2, - "aggType":"terms", - "format":{ - "id":"terms", - "params":{ - "id":"string", - "missingBucketLabel":"Missing", - "otherBucketLabel":"Other" - } - }, - "params":{ - - } - } - ], - "metrics":[ - { - "accessor":3, - "aggType":"count", - "format":{ - "id":"number" - }, - "params":{ - - } - } - ] - }, - "perPage":10, - "percentageCol":"", - "showMetricsAtAllLevels":false, - "showPartialRows":false, - "showTotal":false, - "sort":{ - "columnIndex":null, - "direction":null - }, - "totalFunc":"sum" - }, - "title":"Caller IP [Filebeat Azure]", - "type":"table" - } - }, - "id":"6ece76d0-f0cc-11e9-90ec-112a988266d5", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - { - "id":"filebeat-*", - "name":"kibanaSavedObjectMeta.searchSourceJSON.index", - "type":"index-pattern" - } - ], - "type":"visualization", - "updated_at":"2019-10-18T09:09:36.555Z", - "version":"WzgwNjUsMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "query":{ - "language":"kuery", - "query":"" - } - } - }, - "title":"Authorization Activity User [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "aggs":[ - - ], - "params":{ - "axis_formatter":"number", - "axis_position":"left", - "axis_scale":"normal", - "default_index_pattern":"metricbeat-*", - "default_timefield":"@timestamp", - "filter":{ - "language":"kuery", - "query":"event.dataset :\"azure.activitylogs\" and azure.activitylogs.operation_name : *LISTKEYS* " - }, - "id":"61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern":"filebeat-*", - "interval":"", - "isModelInvalid":false, - "series":[ - { - "axis_position":"right", - "chart_type":"line", - "color":"rgba(164,221,0,1)", - "fill":0.5, - "filter":{ - "language":"kuery", - "query":"azure.activitylogs.result_type : \"Success\" " - }, - "formatter":"number", - "id":"61ca57f1-469d-11e7-af02-69e470af7417", - "label":"Success", - "line_width":1, - "metrics":[ - { - "id":"61ca57f2-469d-11e7-af02-69e470af7417", - "type":"count" - } - ], - "point_size":1, - "separate_axis":0, - "split_mode":"filter", - "stacked":"none", - "terms_field":"azure.activitylogs.result_type" - }, - { - "axis_position":"right", - "chart_type":"line", - "color":"rgba(244,78,59,1)", - "fill":0.5, - "filter":{ - "language":"kuery", - "query":"azure.activitylogs.result_type : \"Fail\" " - }, - "formatter":"number", - "id":"78e85470-f0cb-11e9-bf79-0db2fc8554f1", - "label":"Failure", - "line_width":1, - "metrics":[ - { - "id":"78e85471-f0cb-11e9-bf79-0db2fc8554f1", - "type":"count" - } - ], - "point_size":1, - "separate_axis":0, - "split_mode":"filter", - "stacked":"none" - } - ], - "show_grid":1, - "show_legend":0, - "time_field":"", - "type":"timeseries" - }, - "title":"Authorization Activity User [Filebeat Azure]", - "type":"metrics" - } - }, - "id":"0dd135c0-f0cc-11e9-90ec-112a988266d5", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - - ], - "type":"visualization", - "updated_at":"2019-10-17T11:33:16.437Z", - "version":"WzQ4OTksMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "indexRefName":"kibanaSavedObjectMeta.searchSourceJSON.index", - "query":{ - "language":"kuery", - "query":"" - } - } - }, - "title":"Top Resource Groups [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "aggs":[ - { - "enabled":true, - "id":"1", - "params":{ - - }, - "schema":"metric", - "type":"count" - }, - { - "enabled":true, - "id":"2", - "params":{ - "customLabel":"Resource Groups", - "field":"azure.resource.group", - "missingBucket":false, - "missingBucketLabel":"Missing", - "order":"desc", - "orderBy":"1", - "otherBucket":false, - "otherBucketLabel":"Other", - "size":10 - }, - "schema":"segment", - "type":"terms" - } - ], - "params":{ - "addLegend":true, - "addTimeMarker":false, - "addTooltip":true, - "categoryAxes":[ - { - "id":"CategoryAxis-1", - "labels":{ - "filter":false, - "rotate":0, - "show":true, - "truncate":200 - }, - "position":"left", - "scale":{ - "type":"linear" - }, - "show":true, - "style":{ - - }, - "title":{ - - }, - "type":"category" - } - ], - "dimensions":{ - "x":{ - "accessor":0, - "aggType":"terms", - "format":{ - "id":"terms", - "params":{ - "id":"string", - "missingBucketLabel":"Missing", - "otherBucketLabel":"Other" - } - }, - "params":{ - - } - }, - "y":[ - { - "accessor":1, - "aggType":"count", - "format":{ - "id":"number" - }, - "params":{ - - } - } - ] - }, - "grid":{ - "categoryLines":false - }, - "labels":{ - - }, - "legendPosition":"right", - "seriesParams":[ - { - "data":{ - "id":"1", - "label":"Count" - }, - "drawLinesBetweenPoints":true, - "mode":"normal", - "show":true, - "showCircles":true, - "type":"histogram", - "valueAxis":"ValueAxis-1" - } - ], - "times":[ - - ], - "type":"histogram", - "valueAxes":[ - { - "id":"ValueAxis-1", - "labels":{ - "filter":true, - "rotate":75, - "show":true, - "truncate":100 - }, - "name":"LeftAxis-1", - "position":"bottom", - "scale":{ - "mode":"normal", - "type":"linear" - }, - "show":false, - "style":{ - - }, - "title":{ - "text":"Count" - }, - "type":"value" - } - ] - }, - "title":"Top Resource Groups [Filebeat Azure]", - "type":"horizontal_bar" - } - }, - "id":"71b62ca0-ec1a-11e9-90ec-112a988266d5", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - { - "id":"filebeat-*", - "name":"kibanaSavedObjectMeta.searchSourceJSON.index", - "type":"index-pattern" - } - ], - "type":"visualization", - "updated_at":"2019-10-17T14:50:09.427Z", - "version":"WzYxMTUsMV0=" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "indexRefName":"kibanaSavedObjectMeta.searchSourceJSON.index", - "query":{ - "language":"kuery", - "query":"event.dataset :\"azure.activitylogs\" " - } - } - }, - "title":"Resource Creations [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "title":"Resource Creations [Filebeat Azure]", - "type":"horizontal_bar", - "params":{ - "addLegend":true, - "addTimeMarker":false, - "addTooltip":true, - "categoryAxes":[ - { - "id":"CategoryAxis-1", - "labels":{ - "filter":false, - "rotate":0, - "show":true, - "truncate":200 - }, - "position":"left", - "scale":{ - "type":"linear" - }, - "show":true, - "style":{ - - }, - "title":{ - - }, - "type":"category" - } - ], - "dimensions":{ - "series":[ - { - "accessor":1, - "aggType":"terms", - "format":{ - "id":"terms", - "params":{ - "id":"string", - "missingBucketLabel":"Missing", - "otherBucketLabel":"Other" - } - }, - "label":"Creations", - "params":{ - - } - } - ], - "x":{ - "accessor":0, - "aggType":"terms", - "format":{ - "id":"terms", - "params":{ - "id":"string", - "missingBucketLabel":"Missing", - "otherBucketLabel":"Other" - } - }, - "label":"Resource type", - "params":{ - - } - }, - "y":[ - { - "accessor":2, - "aggType":"count", - "format":{ - "id":"number" - }, - "label":"Count", - "params":{ - - } - } - ] - }, - "grid":{ - "categoryLines":false, - "valueAxis":"" - }, - "labels":{ - - }, - "legendPosition":"right", - "seriesParams":[ - { - "data":{ - "id":"1", - "label":"Count" - }, - "drawLinesBetweenPoints":true, - "lineWidth":2, - "mode":"stacked", - "show":true, - "showCircles":true, - "type":"histogram", - "valueAxis":"ValueAxis-1" - } - ], - "thresholdLine":{ - "color":"#E7664C", - "show":false, - "style":"full", - "value":10, - "width":1 - }, - "times":[ - - ], - "type":"histogram", - "valueAxes":[ - { - "id":"ValueAxis-1", - "labels":{ - "filter":true, - "rotate":75, - "show":true, - "truncate":100 - }, - "name":"LeftAxis-1", - "position":"bottom", - "scale":{ - "mode":"normal", - "type":"linear" - }, - "show":false, - "style":{ - - }, - "title":{ - "text":"Count" - }, - "type":"value" - } - ] - }, - "aggs":[ - { - "id":"1", - "enabled":true, - "type":"count", - "schema":"metric", - "params":{ - - } - }, - { - "id":"2", - "enabled":true, - "type":"terms", - "schema":"segment", - "params":{ - "field":"azure.resource.provider", - "orderBy":"1", - "order":"desc", - "size":15, - "otherBucket":false, - "otherBucketLabel":"Other", - "missingBucket":false, - "missingBucketLabel":"Missing", - "customLabel":"Resource type" - } - }, - { - "id":"4", - "enabled":true, - "type":"terms", - "schema":"group", - "params":{ - "field":"azure.activitylogs.identity.authorization.action", - "orderBy":"1", - "order":"desc", - "size":15, - "otherBucket":false, - "otherBucketLabel":"Other", - "missingBucket":false, - "missingBucketLabel":"Missing", - "include":".*write", - "customLabel":"Creations" - } - } - ] - } - }, - "id":"d91ce8d0-53e8-11ea-b1b7-7de801e1c297", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - { - "id":"filebeat-*", - "name":"kibanaSavedObjectMeta.searchSourceJSON.index", - "type":"index-pattern" - } - ], - "type":"visualization", - "updated_at":"2020-02-20T13:57:45.235Z", - "version":"WzU4OSwxXQ==" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "indexRefName":"kibanaSavedObjectMeta.searchSourceJSON.index", - "query":{ - "language":"kuery", - "query":"event.dataset :\"azure.activitylogs\" " - } - } - }, - "title":"Resource Deletions [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "title":"Resource Deletions [Filebeat Azure]", - "type":"horizontal_bar", - "params":{ - "type":"histogram", - "grid":{ - "categoryLines":false - }, - "categoryAxes":[ - { - "id":"CategoryAxis-1", - "type":"category", - "position":"left", - "show":true, - "style":{ - - }, - "scale":{ - "type":"linear" - }, - "labels":{ - "show":true, - "rotate":0, - "filter":false, - "truncate":200 - }, - "title":{ - - } - } - ], - "valueAxes":[ - { - "id":"ValueAxis-1", - "name":"LeftAxis-1", - "type":"value", - "position":"bottom", - "show":true, - "style":{ - - }, - "scale":{ - "type":"linear", - "mode":"normal" - }, - "labels":{ - "show":false, - "rotate":75, - "filter":true, - "truncate":100 - }, - "title":{ - "text":"Count" - } - } - ], - "seriesParams":[ - { - "show":true, - "type":"histogram", - "mode":"normal", - "data":{ - "label":"Count", - "id":"1" - }, - "valueAxis":"ValueAxis-1", - "drawLinesBetweenPoints":true, - "lineWidth":2, - "showCircles":true - } - ], - "addTooltip":true, - "addLegend":true, - "legendPosition":"right", - "times":[ - - ], - "addTimeMarker":false, - "labels":{ - - }, - "thresholdLine":{ - "show":false, - "value":10, - "width":1, - "style":"full", - "color":"#E7664C" - }, - "dimensions":{ - "x":{ - "accessor":0, - "format":{ - "id":"terms", - "params":{ - "id":"string", - "otherBucketLabel":"Other", - "missingBucketLabel":"Missing" - } - }, - "params":{ - - }, - "label":"azure.resource.provider: Descending", - "aggType":"terms" - }, - "y":[ - { - "accessor":2, - "format":{ - "id":"number" - }, - "params":{ - - }, - "label":"Count", - "aggType":"count" - } - ], - "series":[ - { - "accessor":1, - "format":{ - "id":"terms", - "params":{ - "id":"string", - "otherBucketLabel":"Other", - "missingBucketLabel":"Missing" - } - }, - "params":{ - - }, - "label":"Deletions", - "aggType":"terms" - } - ] - } - }, - "aggs":[ - { - "id":"1", - "enabled":true, - "type":"count", - "schema":"metric", - "params":{ - - } - }, - { - "id":"2", - "enabled":true, - "type":"terms", - "schema":"segment", - "params":{ - "field":"azure.resource.provider", - "orderBy":"1", - "order":"desc", - "size":15, - "otherBucket":false, - "otherBucketLabel":"Other", - "missingBucket":false, - "missingBucketLabel":"Missing", - "customLabel":"Resource type" - } - }, - { - "id":"3", - "enabled":true, - "type":"terms", - "schema":"group", - "params":{ - "field":"azure.activitylogs.identity.authorization.action", - "orderBy":"1", - "order":"desc", - "size":15, - "otherBucket":false, - "otherBucketLabel":"Other", - "missingBucket":false, - "missingBucketLabel":"Missing", - "include":".*delete", - "customLabel":"Deletions" - } - } - ] - } - }, - "id":"6db84660-53e9-11ea-b1b7-7de801e1c297", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - { - "id":"filebeat-*", - "name":"kibanaSavedObjectMeta.searchSourceJSON.index", - "type":"index-pattern" - } - ], - "type":"visualization", - "updated_at":"2020-02-20T14:01:02.150Z", - "version":"WzU5MiwxXQ==" - }, - { - "attributes":{ - "description":"", - "kibanaSavedObjectMeta":{ - "searchSourceJSON":{ - "filter":[ - - ], - "indexRefName":"kibanaSavedObjectMeta.searchSourceJSON.index", - "query":{ - "language":"kuery", - "query":"event.dataset :\"azure.activitylogs\" " - } - } - }, - "title":"Resource Type Breakdown [Filebeat Azure]", - "uiStateJSON":{ - - }, - "version":1, - "visState":{ - "aggs":[ - { - "enabled":true, - "id":"1", - "params":{ - - }, - "schema":"metric", - "type":"count" - }, - { - "enabled":true, - "id":"2", - "params":{ - "field":"azure.resource.provider", - "missingBucket":false, - "missingBucketLabel":"Missing", - "order":"desc", - "orderBy":"1", - "otherBucket":false, - "otherBucketLabel":"Other", - "size":10 - }, - "schema":"segment", - "type":"terms" - } - ], - "params":{ - "addLegend":true, - "addTooltip":true, - "dimensions":{ - "buckets":[ - { - "accessor":0, - "aggType":"terms", - "format":{ - "id":"terms", - "params":{ - "id":"string", - "missingBucketLabel":"Missing", - "otherBucketLabel":"Other" - } - }, - "params":{ - - } - } - ], - "metric":{ - "accessor":1, - "aggType":"count", - "format":{ - "id":"number" - }, - "params":{ - - } - } - }, - "isDonut":false, - "labels":{ - "last_level":true, - "show":false, - "truncate":100, - "values":true - }, - "legendPosition":"right", - "type":"pie" - }, - "title":"Resource Type Breakdown [Filebeat Azure]", - "type":"pie" - } - }, - "id":"9ed46680-f0ce-11e9-90ec-112a988266d5", - "migrationVersion":{ - "visualization":"7.3.1" - }, - "references":[ - { - "id":"filebeat-*", - "name":"kibanaSavedObjectMeta.searchSourceJSON.index", - "type":"index-pattern" - } - ], - "type":"visualization", - "updated_at":"2019-10-17T11:32:13.057Z", - "version":"WzQ4OTYsMV0=" - } - ], - "version":"7.4.0" -} diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-user-activity.ndjson b/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-user-activity.ndjson new file mode 100644 index 00000000000..9a4d6db99b2 --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-user-activity.ndjson @@ -0,0 +1,11 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Users [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Azure Monitoring\\n\\n[Overview](#/dashboard/41e84340-ec20-11e9-90ec-112a988266d5) | [**Users**](#/dashboard/87095750-f05a-11e9-90ec-112a988266d5) | [Alerts](#/dashboard/0f559cc0-f0d5-11e9-90ec-112a988266d5) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Users [Filebeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"c43855e0-f05a-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"User Filters [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1517598395667\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":100,\"type\":\"terms\"},\"type\":\"list\"},{\"fieldName\":\"azure.activitylogs.identity.claims_initiated_by_user.name\",\"id\":\"1518843942322\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"User Email\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":100,\"type\":\"terms\"},\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"User Filters [Filebeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b0471750-f05b-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"control_1_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"User Activity Overview [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.event_category :\\\"Administrative\\\" and azure.activitylogs.identity.claims_initiated_by_user.fullname :*\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"rgba(1,155,143,1)\",\"fill\":\"0.4\",\"filter\":\"\",\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Actions\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"rgba(244,78,59,1)\",\"filter\":{\"query\":\"_exists_:identity.claims.name\",\"language\":\"lucene\"},\"id\":\"a5302500-1399-11e8-a699-f390e75f4dd5\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":null,\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"User Activity Overview [Filebeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e0203fc0-f05f-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Users List [Filebeat Azure]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Email\",\"field\":\"azure.activitylogs.identity.claims_initiated_by_user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Name\",\"field\":\"azure.activitylogs.identity.claims_initiated_by_user.fullname\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"IPs\",\"field\":\"source.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Actions\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":2,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"params\":{}},{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users List [Filebeat Azure]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"52da1700-f05d-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" \"}}"},"title":"Caller IP [Filebeat Azure]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Caller IP\",\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"5\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Country\",\"field\":\"geo.country_name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"5\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Email\",\"field\":\"azure.activitylogs.identity.claims_initiated_by_user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"ip\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Caller IP [Filebeat Azure]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"6ece76d0-f0cc-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Authorization Activity User [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.operation_name : *LISTKEYS* \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Success\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Success\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"terms_field\":\"azure.activitylogs.result_type\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Fail\\\" \"},\"formatter\":\"number\",\"id\":\"78e85470-f0cb-11e9-bf79-0db2fc8554f1\",\"label\":\"Failure\",\"line_width\":1,\"metrics\":[{\"id\":\"78e85471-f0cb-11e9-bf79-0db2fc8554f1\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Authorization Activity User [Filebeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0dd135c0-f0cc-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top Resource Groups [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Resource Groups\",\"field\":\"azure.resource.group\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"x\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},\"y\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":false,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Top Resource Groups [Filebeat Azure]\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"71b62ca0-ec1a-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" \"}}"},"title":"Resource Creations [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"Resource Creations [Filebeat Azure]\",\"type\":\"horizontal_bar\",\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"label\":\"Creations\",\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"label\":\"Resource type\",\"params\":{}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}]},\"grid\":{\"categoryLines\":false,\"valueAxis\":\"\"},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":false,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"azure.resource.provider\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":15,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"customLabel\":\"Resource type\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"azure.activitylogs.identity.authorization.action\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":15,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"include\":\".*write\",\"customLabel\":\"Creations\"}}]}"},"coreMigrationVersion":"8.0.0","id":"d91ce8d0-53e8-11ea-b1b7-7de801e1c297","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" \"}}"},"title":"Resource Deletions [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"Resource Deletions [Filebeat Azure]\",\"type\":\"horizontal_bar\",\"params\":{\"type\":\"histogram\",\"grid\":{\"categoryLines\":false},\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"type\":\"category\",\"position\":\"left\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\"},\"labels\":{\"show\":true,\"rotate\":0,\"filter\":false,\"truncate\":200},\"title\":{}}],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"name\":\"LeftAxis-1\",\"type\":\"value\",\"position\":\"bottom\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\",\"mode\":\"normal\"},\"labels\":{\"show\":false,\"rotate\":75,\"filter\":true,\"truncate\":100},\"title\":{\"text\":\"Count\"}}],\"seriesParams\":[{\"show\":true,\"type\":\"histogram\",\"mode\":\"normal\",\"data\":{\"label\":\"Count\",\"id\":\"1\"},\"valueAxis\":\"ValueAxis-1\",\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"showCircles\":true}],\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"times\":[],\"addTimeMarker\":false,\"labels\":{},\"thresholdLine\":{\"show\":false,\"value\":10,\"width\":1,\"style\":\"full\",\"color\":\"#E7664C\"},\"dimensions\":{\"x\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"otherBucketLabel\":\"Other\",\"missingBucketLabel\":\"Missing\"}},\"params\":{},\"label\":\"azure.resource.provider: Descending\",\"aggType\":\"terms\"},\"y\":[{\"accessor\":2,\"format\":{\"id\":\"number\"},\"params\":{},\"label\":\"Count\",\"aggType\":\"count\"}],\"series\":[{\"accessor\":1,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"otherBucketLabel\":\"Other\",\"missingBucketLabel\":\"Missing\"}},\"params\":{},\"label\":\"Deletions\",\"aggType\":\"terms\"}]},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"azure.resource.provider\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":15,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"customLabel\":\"Resource type\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"azure.activitylogs.identity.authorization.action\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":15,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"include\":\".*delete\",\"customLabel\":\"Deletions\"}}]}"},"coreMigrationVersion":"8.0.0","id":"6db84660-53e9-11ea-b1b7-7de801e1c297","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" \"}}"},"title":"Resource Type Breakdown [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"azure.resource.provider\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Resource Type Breakdown [Filebeat Azure]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"9ed46680-f0ce-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDksMV0="} +{"attributes":{"description":"This dashboard shows expanded user activity in Azure cloud.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"azure.activitylogs.identity.claims_initiated_by_user.fullname\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"azure.activitylogs.identity.claims_initiated_by_user.fullname\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"675f172f-dbec-44fe-b45c-fe854a967695\",\"w\":8,\"x\":0,\"y\":0},\"panelIndex\":\"675f172f-dbec-44fe-b45c-fe854a967695\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_675f172f-dbec-44fe-b45c-fe854a967695\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"705596b5-db2e-4c45-875d-95d98bfb7ee8\",\"w\":16,\"x\":8,\"y\":0},\"panelIndex\":\"705596b5-db2e-4c45-875d-95d98bfb7ee8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_705596b5-db2e-4c45-875d-95d98bfb7ee8\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"ace19840-2084-45bd-bf86-9ab31b04a17b\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"ace19840-2084-45bd-bf86-9ab31b04a17b\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_ace19840-2084-45bd-bf86-9ab31b04a17b\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"d4d708e1-d179-4688-8005-54e2162a82d2\",\"w\":11,\"x\":0,\"y\":4},\"panelIndex\":\"d4d708e1-d179-4688-8005-54e2162a82d2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Users List\",\"panelRefName\":\"panel_d4d708e1-d179-4688-8005-54e2162a82d2\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5774219c-fb45-4480-bdfb-75a69bdc2cfe\",\"w\":13,\"x\":11,\"y\":4},\"panelIndex\":\"5774219c-fb45-4480-bdfb-75a69bdc2cfe\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Caller IPs\",\"panelRefName\":\"panel_5774219c-fb45-4480-bdfb-75a69bdc2cfe\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"5deee186-fe00-4edc-9e5b-86d8d09f6550\",\"w\":24,\"x\":24,\"y\":9},\"panelIndex\":\"5deee186-fe00-4edc-9e5b-86d8d09f6550\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5deee186-fe00-4edc-9e5b-86d8d09f6550\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2fa13b32-c544-45f7-9132-620d09d121eb\",\"w\":16,\"x\":0,\"y\":19},\"panelIndex\":\"2fa13b32-c544-45f7-9132-620d09d121eb\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Top Resource Groups\",\"panelRefName\":\"panel_2fa13b32-c544-45f7-9132-620d09d121eb\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":19,\"w\":17,\"h\":7,\"i\":\"1a6dce1d-d039-4d18-87c7-1b700da676c2\"},\"panelIndex\":\"1a6dce1d-d039-4d18-87c7-1b700da676c2\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"legendOpen\":false,\"enhancements\":{}},\"panelRefName\":\"panel_1a6dce1d-d039-4d18-87c7-1b700da676c2\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":26,\"w\":17,\"h\":8,\"i\":\"8fddd3bb-c1e6-4533-b075-1ab7361b3af0\"},\"panelIndex\":\"8fddd3bb-c1e6-4533-b075-1ab7361b3af0\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"legendOpen\":false,\"enhancements\":{}},\"panelRefName\":\"panel_8fddd3bb-c1e6-4533-b075-1ab7361b3af0\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"84583e62-1aad-4f03-a25a-c4f9eaace8c0\",\"w\":15,\"x\":33,\"y\":19},\"panelIndex\":\"84583e62-1aad-4f03-a25a-c4f9eaace8c0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Resource Types\",\"panelRefName\":\"panel_84583e62-1aad-4f03-a25a-c4f9eaace8c0\"}]","timeRestore":false,"title":"[Filebeat Azure] User Activity","version":1},"coreMigrationVersion":"8.0.0","id":"87095750-f05a-11e9-90ec-112a988266d5","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"c43855e0-f05a-11e9-90ec-112a988266d5","name":"675f172f-dbec-44fe-b45c-fe854a967695:panel_675f172f-dbec-44fe-b45c-fe854a967695","type":"visualization"},{"id":"b0471750-f05b-11e9-90ec-112a988266d5","name":"705596b5-db2e-4c45-875d-95d98bfb7ee8:panel_705596b5-db2e-4c45-875d-95d98bfb7ee8","type":"visualization"},{"id":"e0203fc0-f05f-11e9-90ec-112a988266d5","name":"ace19840-2084-45bd-bf86-9ab31b04a17b:panel_ace19840-2084-45bd-bf86-9ab31b04a17b","type":"visualization"},{"id":"52da1700-f05d-11e9-90ec-112a988266d5","name":"d4d708e1-d179-4688-8005-54e2162a82d2:panel_d4d708e1-d179-4688-8005-54e2162a82d2","type":"visualization"},{"id":"6ece76d0-f0cc-11e9-90ec-112a988266d5","name":"5774219c-fb45-4480-bdfb-75a69bdc2cfe:panel_5774219c-fb45-4480-bdfb-75a69bdc2cfe","type":"visualization"},{"id":"0dd135c0-f0cc-11e9-90ec-112a988266d5","name":"5deee186-fe00-4edc-9e5b-86d8d09f6550:panel_5deee186-fe00-4edc-9e5b-86d8d09f6550","type":"visualization"},{"id":"71b62ca0-ec1a-11e9-90ec-112a988266d5","name":"2fa13b32-c544-45f7-9132-620d09d121eb:panel_2fa13b32-c544-45f7-9132-620d09d121eb","type":"visualization"},{"id":"d91ce8d0-53e8-11ea-b1b7-7de801e1c297","name":"1a6dce1d-d039-4d18-87c7-1b700da676c2:panel_1a6dce1d-d039-4d18-87c7-1b700da676c2","type":"visualization"},{"id":"6db84660-53e9-11ea-b1b7-7de801e1c297","name":"8fddd3bb-c1e6-4533-b075-1ab7361b3af0:panel_8fddd3bb-c1e6-4533-b075-1ab7361b3af0","type":"visualization"},{"id":"9ed46680-f0ce-11e9-90ec-112a988266d5","name":"84583e62-1aad-4f03-a25a-c4f9eaace8c0:panel_84583e62-1aad-4f03-a25a-c4f9eaace8c0","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQzOTksMV0="} diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-os-activity.json b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-os-activity.json deleted file mode 100644 index ae3cf1074e8..00000000000 --- a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-os-activity.json +++ /dev/null @@ -1,1998 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Operating system activity from endpoints.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "lucene", - "query": "*" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "embeddableConfig": { - "vis": { - "colors": { - "Count": "#64B0C8", - "Destination User Names": "#E24D42", - "Event Types": "#EF843C" - }, - "legendOpen": true - } - }, - "gridData": { - "h": 12, - "i": "3", - "w": 24, - "x": 0, - "y": 28 - }, - "panelIndex": "3", - "panelRefName": "panel_0", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "gridData": { - "h": 8, - "i": "4", - "w": 40, - "x": 0, - "y": 4 - }, - "panelIndex": "4", - "panelRefName": "panel_1", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "defaultColors": { - "0 - 55k": "rgb(255,255,204)", - "110k - 165k": "rgb(254,225,135)", - "165k - 220k": "rgb(254,201,101)", - "220k - 275k": "rgb(254,171,73)", - "275k - 330k": "rgb(253,141,60)", - "330k - 385k": "rgb(252,91,46)", - "385k - 440k": "rgb(237,47,34)", - "440k - 495k": "rgb(212,16,32)", - "495k - 550k": "rgb(176,0,38)", - "55k - 110k": "rgb(255,241,170)" - }, - "legendOpen": false - } - }, - "gridData": { - "h": 12, - "i": "5", - "w": 24, - "x": 24, - "y": 28 - }, - "panelIndex": "5", - "panelRefName": "panel_2", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "7", - "w": 48, - "x": 0, - "y": 20 - }, - "panelIndex": "7", - "panelRefName": "panel_3", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "colors": { - "/Attempt": "#447EBC", - "/Failure": "#E24D42", - "/Success": "#7EB26D" - } - } - }, - "gridData": { - "h": 12, - "i": "8", - "w": 24, - "x": 24, - "y": 52 - }, - "panelIndex": "8", - "panelRefName": "panel_4", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 24, - "i": "9", - "w": 24, - "x": 0, - "y": 40 - }, - "panelIndex": "9", - "panelRefName": "panel_5", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "10", - "w": 24, - "x": 24, - "y": 40 - }, - "panelIndex": "10", - "panelRefName": "panel_6", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 4, - "i": "11", - "w": 48, - "x": 0, - "y": 0 - }, - "panelIndex": "11", - "panelRefName": "panel_7", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "12", - "w": 8, - "x": 40, - "y": 4 - }, - "panelIndex": "12", - "panelRefName": "panel_8", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "colors": { - "Destination Users": "#E24D42", - "Event Count": "#64B0C8" - } - } - }, - "gridData": { - "h": 8, - "i": "13", - "w": 48, - "x": 0, - "y": 12 - }, - "panelIndex": "13", - "panelRefName": "panel_9", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 20, - "i": "14", - "w": 16, - "x": 32, - "y": 64 - }, - "panelIndex": "14", - "panelRefName": "panel_10", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 24, - "i": "15", - "w": 16, - "x": 32, - "y": 84 - }, - "panelIndex": "15", - "panelRefName": "panel_11", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "16", - "w": 32, - "x": 0, - "y": 80 - }, - "panelIndex": "16", - "panelRefName": "panel_12", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "17", - "w": 32, - "x": 0, - "y": 100 - }, - "panelIndex": "17", - "panelRefName": "panel_13", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 16, - "i": "18", - "w": 32, - "x": 0, - "y": 64 - }, - "panelIndex": "18", - "panelRefName": "panel_14", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "19", - "w": 32, - "x": 0, - "y": 92 - }, - "panelIndex": "19", - "panelRefName": "panel_15", - "version": "7.3.0" - } - ], - "refreshInterval": { - "display": "Off", - "pause": false, - "value": 0 - }, - "timeFrom": "now-24h", - "timeRestore": true, - "timeTo": "now", - "title": "[Filebeat CEF] Endpoint OS Activity Dashboard", - "version": 1 - }, - "id": "9e352900-89c3-4c1b-863e-249e24d0dac9", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "59ad829b-12b8-4256-95a5-e7078eda628b", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "158d809a-89db-4ffa-88a1-eb5c4bf58d50", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "77ee0e91-010b-4897-b483-7e9a907d2afe", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "0f4028b2-3dc2-4cb6-80d8-285c847a02a1", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "e06d85f2-2da4-41e2-b2ab-f685b64bb3f9", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "2726382e-638a-4dcc-94fc-0ffdc0f92048", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "92aecea0-a632-4a55-bb56-50e4cdaca036", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "677891a1-90c4-4273-b126-f0e54689bd76", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "76c088c3-486e-4420-8840-5ede667edffe", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "5f187dc8-aa7e-4f91-a2d8-1186ce254d00", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "316fdc75-7215-4c6b-8e1b-70a097b34e28", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "6437e9bb-9ed1-4e2d-bb10-e63ccd35c409", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "4a7c10c7-4abd-47b4-b4c3-dee33377fbdf", - "name": "panel_12", - "type": "visualization" - }, - { - "id": "acc915fe-b971-4795-9040-3fbfdf62abe1", - "name": "panel_13", - "type": "visualization" - }, - { - "id": "4e25b5ce-53c3-46fc-b5e5-71d3c52f1956", - "name": "panel_14", - "type": "visualization" - }, - { - "id": "8cd00d20-957d-4663-be4d-ea80b1609586", - "name": "panel_15", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-10-25T16:30:02.301Z", - "version": "WzEyNTksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Source Users by Event Type and Destination Users [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Source Users", - "field": "source.user.name", - "order": "desc", - "orderBy": "1", - "size": 20 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Event Types", - "field": "cef.extensions.categoryBehavior" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Destination User Names", - "field": "destination.user.name" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Source Users" - }, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": 9, - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "3", - "label": "Event Types" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "lineWidth": 2, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-2" - }, - { - "data": { - "id": "4", - "label": "Destination User Names" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "lineWidth": 2, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-2" - } - ], - "setYExtents": false, - "showCircles": true, - "times": [], - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "square root" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - }, - { - "id": "ValueAxis-2", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "RightAxis-1", - "position": "right", - "scale": { - "mode": "normal", - "type": "square root" - }, - "show": true, - "style": {}, - "title": { - "text": "" - }, - "type": "value" - } - ] - }, - "title": "Source Users by Event Type and Destination Users [Filebeat CEF]", - "type": "histogram" - } - }, - "id": "59ad829b-12b8-4256-95a5-e7078eda628b", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:02.301Z", - "version": "WzEyNjAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Endpoint OS Metrics Overview [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Total Events" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "Devices", - "field": "observer.hostname" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "7", - "params": { - "customLabel": "Event Types", - "field": "cef.extensions.categoryBehavior" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "8", - "params": { - "customLabel": "Event Outcomes", - "field": "cef.extensions.categoryOutcome" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "fontSize": "30", - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "20", - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "handleNoResults": true, - "type": "gauge" - }, - "title": "Endpoint OS Metrics Overview [Filebeat CEF]", - "type": "metric" - } - }, - "id": "158d809a-89db-4ffa-88a1-eb5c4bf58d50", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:02.301Z", - "version": "WzEyNjEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 10 Behaviors by Outcome [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 9,000": "rgb(255,255,204)", - "18,000 - 27,000": "rgb(254,225,135)", - "27,000 - 36,000": "rgb(254,201,101)", - "36,000 - 45,000": "rgb(254,171,73)", - "45,000 - 54,000": "rgb(253,141,60)", - "54,000 - 63,000": "rgb(252,91,46)", - "63,000 - 72,000": "rgb(237,47,34)", - "72,000 - 81,000": "rgb(212,16,32)", - "81,000 - 90,000": "rgb(176,0,38)", - "9,000 - 18,000": "rgb(255,241,170)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Event Type", - "field": "cef.extensions.categoryBehavior", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Event Outcome", - "field": "cef.extensions.categoryOutcome", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "colorSchema": "Yellow to Red", - "colorsNumber": 10, - "colorsRange": [], - "enableHover": true, - "invertColors": false, - "legendPosition": "right", - "percentageMode": false, - "setColorRange": false, - "times": [], - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "color": "#555", - "rotate": 0, - "show": false - }, - "scale": { - "defaultYExtents": false, - "type": "linear" - }, - "show": false, - "type": "value" - } - ] - }, - "title": "Top 10 Behaviors by Outcome [Filebeat CEF]", - "type": "heatmap" - } - }, - "id": "77ee0e91-010b-4897-b483-7e9a907d2afe", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:02.301Z", - "version": "WzEyNjIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Events by Outcomes [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "filter": { - "language": "lucene", - "query": "cef.extensions.categoryDeviceGroup:\"/Operating System\"" - }, - "id": "74716d29-91c6-4095-bc7d-7f6700f12b1f", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": "0", - "formatter": "number", - "hide_in_legend": 0, - "id": "932c5de4-f841-4f27-99e4-60d95d3aa16c", - "label": "Event Outcomes", - "line_width": "3", - "metrics": [ - { - "id": "4c263b6d-8117-43c6-b83f-5c4145f43cfc", - "type": "count" - } - ], - "point_size": 1, - "seperate_axis": 1, - "split_filters": [ - { - "color": "rgba(244,78,59,1)", - "filter": "cef.extensions.categoryOutcome:\"/Failure\"", - "id": "94371b84-a7aa-4824-b4d1-217ecbe725a5", - "label": "Failure" - }, - { - "color": "rgba(104,188,0,1)", - "filter": "cef.extensions.categoryOutcome:\"/Success\"", - "id": "31564794-9278-4f2e-bb20-557f5cfbea79", - "label": "Success" - }, - { - "color": "rgba(251,158,0,1)", - "filter": "cef.extensions.categoryOutcome:\"/Attempt\"", - "id": "10c0f919-0853-41b5-94b4-2e39932e7aa0", - "label": "Attempt" - } - ], - "split_mode": "filters", - "stacked": "none", - "terms_field": "cef.extensions.categoryOutcome", - "terms_size": "3" - }, - { - "axis_position": "left", - "chart_type": "bar", - "color": "rgba(104,182,204,1)", - "fill": 0.5, - "formatter": "number", - "id": "c9eca9d0-c2e0-45e6-a3ce-f158c40fdd74", - "label": "Event Count", - "line_width": 1, - "metrics": [ - { - "id": "6d8513ca-cc72-4b27-91b6-6b689558cdcb", - "type": "count" - } - ], - "point_size": 1, - "seperate_axis": 1, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Events by Outcomes [Filebeat CEF]", - "type": "metrics" - } - }, - "id": "0f4028b2-3dc2-4cb6-80d8-285c847a02a1", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:02.301Z", - "version": "WzEyNjMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 20 Behaviors by Outcome [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Event Behavior", - "field": "cef.extensions.categoryBehavior", - "order": "desc", - "orderBy": "1", - "size": 20 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Event Outcome", - "field": "cef.extensions.categoryOutcome", - "order": "desc", - "orderBy": "1", - "size": 3 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Top 20 Behaviors by Outcome [Filebeat CEF]", - "type": "pie" - } - }, - "id": "e06d85f2-2da4-41e2-b2ab-f685b64bb3f9", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:02.301Z", - "version": "WzEyNjQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 15 Event Types by Events [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Event Types", - "field": "cef.extensions.categoryBehavior", - "order": "desc", - "orderBy": "1", - "size": 15 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Source Users", - "field": "source.user.name" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Destination Users", - "field": "destination.user.name" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Source Hosts", - "field": "source.domain" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "Destination Hosts", - "field": "destination.domain" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - } - ], - "listeners": {}, - "params": { - "perPage": 15, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top 15 Event Types by Events [Filebeat CEF]", - "type": "table" - } - }, - "id": "2726382e-638a-4dcc-94fc-0ffdc0f92048", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:02.301Z", - "version": "WzEyNjUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 5 Vendors by Product [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "OS Vendor", - "field": "cef.device.vendor", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "OS Product", - "field": "cef.device.product", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Top 5 Vendors by Product [Filebeat CEF]", - "type": "pie" - } - }, - "id": "92aecea0-a632-4a55-bb56-50e4cdaca036", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:02.301Z", - "version": "WzEyNjYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": " Dashboard Navigation [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "markdown": "[Network Overview](#/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71) | [Network Suspicious Activity](#/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619) | [Endpoint Overview](#dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b) | [Endpoint OS Activity](#/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9) | [Microsoft DNS Overview](#/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41)" - }, - "title": " Dashboard Navigation [Filebeat CEF]", - "type": "markdown" - } - }, - "id": "677891a1-90c4-4273-b126-f0e54689bd76", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:06.345Z", - "version": "WzEzMzYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Endpoint - OS Average EPS [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "id": "ce9549a0-3af0-4070-b169-4b6d145d4c39" - } - ], - "filter": { - "language": "lucene", - "query": "cef.extensions.categoryDeviceGroup:\"/Operating System\"" - }, - "gauge_color_rules": [ - { - "id": "03a2fd72-fc9c-4582-9133-20af36217180" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "94161c6c-4f48-4beb-9d78-f79f29c02a34", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": 0.5, - "formatter": "number", - "id": "b4373ffd-9660-4206-afd6-d4867ac7dbdf", - "label": "Event Throughput", - "line_width": 1, - "metrics": [ - { - "id": "b1a48389-d799-4eba-8b98-7ee8ef0bb440", - "type": "count" - }, - { - "field": "b1a48389-d799-4eba-8b98-7ee8ef0bb440", - "id": "89f8286e-4aec-4cb4-83ad-b139692edf3d", - "type": "cumulative_sum" - }, - { - "field": "89f8286e-4aec-4cb4-83ad-b139692edf3d", - "id": "1df39e5f-3e98-4ed7-ab08-47f3ca2ee915", - "type": "derivative", - "unit": "1s" - }, - { - "alpha": 0.3, - "beta": 0.1, - "field": "1df39e5f-3e98-4ed7-ab08-47f3ca2ee915", - "gamma": 0.3, - "id": "f46a6e6e-444f-4c7e-b5eb-e1a59568f2eb", - "model_type": "simple", - "multiplicative": false, - "period": 1, - "type": "moving_average", - "window": "10" - } - ], - "offset_time": "1m", - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}} / s" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Endpoint - OS Average EPS [Filebeat CEF]", - "type": "metrics" - } - }, - "id": "76c088c3-486e-4420-8840-5ede667edffe", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:02.301Z", - "version": "WzEyNjgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Events by Source and Destination Users [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Event Count" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Timestamp", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Source Users", - "field": "source.user.name" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Destination Users", - "field": "destination.user.name" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Timestamp" - }, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": 9, - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Event Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "3", - "label": "Source Users" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "lineWidth": 3, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-2" - }, - { - "data": { - "id": "4", - "label": "Destination Users" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "lineWidth": 3, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-2" - } - ], - "setYExtents": false, - "showCircles": true, - "times": [], - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Event Count" - }, - "type": "value" - }, - { - "id": "ValueAxis-2", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "RightAxis-1", - "position": "right", - "scale": { - "mode": "normal", - "type": "square root" - }, - "show": true, - "style": {}, - "title": { - "text": "" - }, - "type": "value" - } - ] - }, - "title": "Events by Source and Destination Users [Filebeat CEF]", - "type": "histogram" - } - }, - "id": "5f187dc8-aa7e-4f91-a2d8-1186ce254d00", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:02.301Z", - "version": "WzEyNjksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 10 Sources by Destinations [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Source Host", - "field": "source.domain", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Destination Host", - "field": "destination.domain", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "bottom" - }, - "title": "Top 10 Sources by Destinations [Filebeat CEF]", - "type": "pie" - } - }, - "id": "316fdc75-7215-4c6b-8e1b-70a097b34e28", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:02.301Z", - "version": "WzEyNzAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 10 Source Users by Destination Users [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Source Users", - "field": "source.user.name", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Destination Users", - "field": "destination.user.name", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "bottom" - }, - "title": "Top 10 Source Users by Destination Users [Filebeat CEF]", - "type": "pie" - } - }, - "id": "6437e9bb-9ed1-4e2d-bb10-e63ccd35c409", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:02.301Z", - "version": "WzEyNzEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 10 Destinations [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Destination Hosts", - "field": "destination.domain", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "maxFontSize": 60, - "minFontSize": 10, - "orientation": "single", - "scale": "linear" - }, - "title": "Top 10 Destinations [Filebeat CEF]", - "type": "tagcloud" - } - }, - "id": "4a7c10c7-4abd-47b4-b4c3-dee33377fbdf", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:02.301Z", - "version": "WzEyNzIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 10 Destination Users [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Destination Users", - "field": "destination.user.name", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "maxFontSize": 60, - "minFontSize": 10, - "orientation": "single", - "scale": "linear" - }, - "title": "Top 10 Destination Users [Filebeat CEF]", - "type": "tagcloud" - } - }, - "id": "acc915fe-b971-4795-9040-3fbfdf62abe1", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:02.301Z", - "version": "WzEyNzMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 10 Sources [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Source Hosts", - "field": "source.domain", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "maxFontSize": 60, - "minFontSize": 10, - "orientation": "single", - "scale": "linear" - }, - "title": "Top 10 Sources [Filebeat CEF]", - "type": "tagcloud" - } - }, - "id": "4e25b5ce-53c3-46fc-b5e5-71d3c52f1956", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:02.301Z", - "version": "WzEyNzQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 10 Source Users [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Source Users", - "field": "source.user.name", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "maxFontSize": 60, - "minFontSize": 10, - "orientation": "single", - "scale": "linear" - }, - "title": "Top 10 Source Users [Filebeat CEF]", - "type": "tagcloud" - } - }, - "id": "8cd00d20-957d-4663-be4d-ea80b1609586", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:02.301Z", - "version": "WzEyNzUsMV0=" - }, - { - "attributes": { - "columns": [ - "cef.device.vendor", - "cef.device.product", - "message", - "cef.device.event_class_id", - "cef.extensions.deviceEventCategory", - "source.user.name", - "destination.user.name", - "destination.domain", - "cef.extensions.categoryBehavior", - "cef.extensions.categoryOutcome", - "cef.extensions.sourceNtDomain", - "cef.extensions.destinationNtDomain" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "cef.extensions.categoryDeviceGroup:\"/Operating System\"" - } - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Endpoint - OS Events [Filebeat CEF]", - "version": 1 - }, - "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2019-10-25T16:30:02.301Z", - "version": "WzEyNzYsMV0=" - } - ], - "version": "7.4.1" -} diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-os-activity.ndjson b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-os-activity.ndjson new file mode 100644 index 00000000000..71a695b0673 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-os-activity.ndjson @@ -0,0 +1,18 @@ +{"attributes":{"columns":["cef.device.vendor","cef.device.product","message","cef.device.event_class_id","cef.extensions.deviceEventCategory","source.user.name","destination.user.name","destination.domain","cef.extensions.categoryBehavior","cef.extensions.categoryOutcome","cef.extensions.sourceNtDomain","cef.extensions.destinationNtDomain"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"cef.extensions.categoryDeviceGroup:\\\"/Operating System\\\"\"}}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Endpoint - OS Events [Filebeat CEF]","version":1},"coreMigrationVersion":"8.0.0","id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Source Users by Event Type and Destination Users [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Users\",\"field\":\"source.user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Event Types\",\"field\":\"cef.extensions.categoryBehavior\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination User Names\",\"field\":\"destination.user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Source Users\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Event Types\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-2\"},{\"data\":{\"id\":\"4\",\"label\":\"Destination User Names\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-2\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"square root\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"},{\"id\":\"ValueAxis-2\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"RightAxis-1\",\"position\":\"right\",\"scale\":{\"mode\":\"normal\",\"type\":\"square root\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"\"},\"type\":\"value\"}]},\"title\":\"Source Users by Event Type and Destination Users [Filebeat CEF]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"59ad829b-12b8-4256-95a5-e7078eda628b","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ2OTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Endpoint OS Metrics Overview [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total Events\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Devices\",\"field\":\"observer.hostname\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"Event Types\",\"field\":\"cef.extensions.categoryBehavior\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"Event Outcomes\",\"field\":\"cef.extensions.categoryOutcome\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"30\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"20\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Endpoint OS Metrics Overview [Filebeat CEF]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"158d809a-89db-4ffa-88a1-eb5c4bf58d50","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ2OTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Behaviors by Outcome [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 9,000\": \"rgb(255,255,204)\", \"18,000 - 27,000\": \"rgb(254,225,135)\", \"27,000 - 36,000\": \"rgb(254,201,101)\", \"36,000 - 45,000\": \"rgb(254,171,73)\", \"45,000 - 54,000\": \"rgb(253,141,60)\", \"54,000 - 63,000\": \"rgb(252,91,46)\", \"63,000 - 72,000\": \"rgb(237,47,34)\", \"72,000 - 81,000\": \"rgb(212,16,32)\", \"81,000 - 90,000\": \"rgb(176,0,38)\", \"9,000 - 18,000\": \"rgb(255,241,170)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Event Type\",\"field\":\"cef.extensions.categoryBehavior\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Event Outcome\",\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"colorsNumber\":10,\"colorsRange\":[],\"enableHover\":true,\"invertColors\":false,\"legendPosition\":\"right\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"#555\",\"rotate\":0,\"show\":false},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Top 10 Behaviors by Outcome [Filebeat CEF]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"8.0.0","id":"77ee0e91-010b-4897-b483-7e9a907d2afe","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events by Outcomes [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Operating System\\\"\"},\"id\":\"74716d29-91c6-4095-bc7d-7f6700f12b1f\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"932c5de4-f841-4f27-99e4-60d95d3aa16c\",\"label\":\"Event Outcomes\",\"line_width\":\"3\",\"metrics\":[{\"id\":\"4c263b6d-8117-43c6-b83f-5c4145f43cfc\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":1,\"split_filters\":[{\"color\":\"rgba(244,78,59,1)\",\"filter\":{\"query\":\"cef.extensions.categoryOutcome:\\\"/Failure\\\"\",\"language\":\"lucene\"},\"id\":\"94371b84-a7aa-4824-b4d1-217ecbe725a5\",\"label\":\"Failure\"},{\"color\":\"rgba(104,188,0,1)\",\"filter\":{\"query\":\"cef.extensions.categoryOutcome:\\\"/Success\\\"\",\"language\":\"lucene\"},\"id\":\"31564794-9278-4f2e-bb20-557f5cfbea79\",\"label\":\"Success\"},{\"color\":\"rgba(251,158,0,1)\",\"filter\":{\"query\":\"cef.extensions.categoryOutcome:\\\"/Attempt\\\"\",\"language\":\"lucene\"},\"id\":\"10c0f919-0853-41b5-94b4-2e39932e7aa0\",\"label\":\"Attempt\"}],\"split_mode\":\"filters\",\"stacked\":\"none\",\"terms_field\":\"cef.extensions.categoryOutcome\",\"terms_size\":\"3\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"left\",\"chart_type\":\"bar\",\"color\":\"rgba(104,182,204,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c9eca9d0-c2e0-45e6-a3ce-f158c40fdd74\",\"label\":\"Event Count\",\"line_width\":1,\"metrics\":[{\"id\":\"6d8513ca-cc72-4b27-91b6-6b689558cdcb\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":1,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Events by Outcomes [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0f4028b2-3dc2-4cb6-80d8-285c847a02a1","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 20 Behaviors by Outcome [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Event Behavior\",\"field\":\"cef.extensions.categoryBehavior\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Event Outcome\",\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":3},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top 20 Behaviors by Outcome [Filebeat CEF]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"e06d85f2-2da4-41e2-b2ab-f685b64bb3f9","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 15 Event Types by Events [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Event Types\",\"field\":\"cef.extensions.categoryBehavior\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":15},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source Users\",\"field\":\"source.user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination Users\",\"field\":\"destination.user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Source Hosts\",\"field\":\"source.domain\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Destination Hosts\",\"field\":\"destination.domain\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"perPage\":15,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 15 Event Types by Events [Filebeat CEF]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"2726382e-638a-4dcc-94fc-0ffdc0f92048","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 5 Vendors by Product [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"OS Vendor\",\"field\":\"cef.device.vendor\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"OS Product\",\"field\":\"cef.device.product\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top 5 Vendors by Product [Filebeat CEF]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"92aecea0-a632-4a55-bb56-50e4cdaca036","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":" Dashboard Navigation [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Network Overview](#/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71) | [Network Suspicious Activity](#/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619) | [Endpoint Overview](#dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b) | [Endpoint OS Activity](#/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9) | [Microsoft DNS Overview](#/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41)\"},\"title\":\" Dashboard Navigation [Filebeat CEF]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"677891a1-90c4-4273-b126-f0e54689bd76","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Endpoint - OS Average EPS [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"ce9549a0-3af0-4070-b169-4b6d145d4c39\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Operating System\\\"\"},\"gauge_color_rules\":[{\"id\":\"03a2fd72-fc9c-4582-9133-20af36217180\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"94161c6c-4f48-4beb-9d78-f79f29c02a34\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"b4373ffd-9660-4206-afd6-d4867ac7dbdf\",\"label\":\"Event Throughput\",\"line_width\":1,\"metrics\":[{\"id\":\"b1a48389-d799-4eba-8b98-7ee8ef0bb440\",\"type\":\"count\"},{\"field\":\"b1a48389-d799-4eba-8b98-7ee8ef0bb440\",\"id\":\"89f8286e-4aec-4cb4-83ad-b139692edf3d\",\"type\":\"cumulative_sum\"},{\"field\":\"89f8286e-4aec-4cb4-83ad-b139692edf3d\",\"id\":\"1df39e5f-3e98-4ed7-ab08-47f3ca2ee915\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"1df39e5f-3e98-4ed7-ab08-47f3ca2ee915\",\"gamma\":0.3,\"id\":\"f46a6e6e-444f-4c7e-b5eb-e1a59568f2eb\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"offset_time\":\"1m\",\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} / s\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Endpoint - OS Average EPS [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"76c088c3-486e-4420-8840-5ede667edffe","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Events by Source and Destination Users [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Timestamp\",\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source Users\",\"field\":\"source.user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination Users\",\"field\":\"destination.user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Timestamp\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Event Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Source Users\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":3,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-2\"},{\"data\":{\"id\":\"4\",\"label\":\"Destination Users\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":3,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-2\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Event Count\"},\"type\":\"value\"},{\"id\":\"ValueAxis-2\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"RightAxis-1\",\"position\":\"right\",\"scale\":{\"mode\":\"normal\",\"type\":\"square root\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"\"},\"type\":\"value\"}]},\"title\":\"Events by Source and Destination Users [Filebeat CEF]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"5f187dc8-aa7e-4f91-a2d8-1186ce254d00","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Sources by Destinations [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Host\",\"field\":\"source.domain\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Destination Host\",\"field\":\"destination.domain\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top 10 Sources by Destinations [Filebeat CEF]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"316fdc75-7215-4c6b-8e1b-70a097b34e28","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Source Users by Destination Users [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Users\",\"field\":\"source.user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Destination Users\",\"field\":\"destination.user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top 10 Source Users by Destination Users [Filebeat CEF]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"6437e9bb-9ed1-4e2d-bb10-e63ccd35c409","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Destinations [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Hosts\",\"field\":\"destination.domain\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":60,\"minFontSize\":10,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Destinations [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"4a7c10c7-4abd-47b4-b4c3-dee33377fbdf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Destination Users [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Users\",\"field\":\"destination.user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":60,\"minFontSize\":10,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Destination Users [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"acc915fe-b971-4795-9040-3fbfdf62abe1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Sources [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Hosts\",\"field\":\"source.domain\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":60,\"minFontSize\":10,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Sources [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"4e25b5ce-53c3-46fc-b5e5-71d3c52f1956","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Source Users [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Users\",\"field\":\"source.user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":60,\"minFontSize\":10,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Source Users [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"8cd00d20-957d-4663-be4d-ea80b1609586","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MTMsMV0="} +{"attributes":{"description":"Operating system activity from endpoints.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"lucene\", \"query\": \"*\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":28},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"Count\":\"#64B0C8\",\"Destination User Names\":\"#E24D42\",\"Event Types\":\"#EF843C\"},\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"4\",\"w\":40,\"x\":0,\"y\":4},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":28},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 55k\":\"rgb(255,255,204)\",\"110k - 165k\":\"rgb(254,225,135)\",\"165k - 220k\":\"rgb(254,201,101)\",\"220k - 275k\":\"rgb(254,171,73)\",\"275k - 330k\":\"rgb(253,141,60)\",\"330k - 385k\":\"rgb(252,91,46)\",\"385k - 440k\":\"rgb(237,47,34)\",\"440k - 495k\":\"rgb(212,16,32)\",\"495k - 550k\":\"rgb(176,0,38)\",\"55k - 110k\":\"rgb(255,241,170)\"},\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"7\",\"w\":48,\"x\":0,\"y\":20},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":52},\"panelIndex\":\"8\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"/Attempt\":\"#447EBC\",\"/Failure\":\"#E24D42\",\"/Success\":\"#7EB26D\"}},\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":24,\"i\":\"9\",\"w\":24,\"x\":0,\"y\":40},\"panelIndex\":\"9\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"10\",\"w\":24,\"x\":24,\"y\":40},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"11\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"12\",\"w\":8,\"x\":40,\"y\":4},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"13\",\"w\":48,\"x\":0,\"y\":12},\"panelIndex\":\"13\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"Destination Users\":\"#E24D42\",\"Event Count\":\"#64B0C8\"}},\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"14\",\"w\":16,\"x\":32,\"y\":64},\"panelIndex\":\"14\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":24,\"i\":\"15\",\"w\":16,\"x\":32,\"y\":84},\"panelIndex\":\"15\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"16\",\"w\":32,\"x\":0,\"y\":80},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"17\",\"w\":32,\"x\":0,\"y\":100},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"18\",\"w\":32,\"x\":0,\"y\":64},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"19\",\"w\":32,\"x\":0,\"y\":92},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"}]","refreshInterval":{"display":"Off","pause":false,"value":0},"timeFrom":"now-24h","timeRestore":true,"timeTo":"now","title":"[Filebeat CEF] Endpoint OS Activity Dashboard","version":1},"coreMigrationVersion":"8.0.0","id":"9e352900-89c3-4c1b-863e-249e24d0dac9","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"59ad829b-12b8-4256-95a5-e7078eda628b","name":"3:panel_3","type":"visualization"},{"id":"158d809a-89db-4ffa-88a1-eb5c4bf58d50","name":"4:panel_4","type":"visualization"},{"id":"77ee0e91-010b-4897-b483-7e9a907d2afe","name":"5:panel_5","type":"visualization"},{"id":"0f4028b2-3dc2-4cb6-80d8-285c847a02a1","name":"7:panel_7","type":"visualization"},{"id":"e06d85f2-2da4-41e2-b2ab-f685b64bb3f9","name":"8:panel_8","type":"visualization"},{"id":"2726382e-638a-4dcc-94fc-0ffdc0f92048","name":"9:panel_9","type":"visualization"},{"id":"92aecea0-a632-4a55-bb56-50e4cdaca036","name":"10:panel_10","type":"visualization"},{"id":"677891a1-90c4-4273-b126-f0e54689bd76","name":"11:panel_11","type":"visualization"},{"id":"76c088c3-486e-4420-8840-5ede667edffe","name":"12:panel_12","type":"visualization"},{"id":"5f187dc8-aa7e-4f91-a2d8-1186ce254d00","name":"13:panel_13","type":"visualization"},{"id":"316fdc75-7215-4c6b-8e1b-70a097b34e28","name":"14:panel_14","type":"visualization"},{"id":"6437e9bb-9ed1-4e2d-bb10-e63ccd35c409","name":"15:panel_15","type":"visualization"},{"id":"4a7c10c7-4abd-47b4-b4c3-dee33377fbdf","name":"16:panel_16","type":"visualization"},{"id":"acc915fe-b971-4795-9040-3fbfdf62abe1","name":"17:panel_17","type":"visualization"},{"id":"4e25b5ce-53c3-46fc-b5e5-71d3c52f1956","name":"18:panel_18","type":"visualization"},{"id":"8cd00d20-957d-4663-be4d-ea80b1609586","name":"19:panel_19","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ2OTcsMV0="} diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-overview.json b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-overview.json deleted file mode 100644 index 013f1ca1589..00000000000 --- a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-overview.json +++ /dev/null @@ -1,1765 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Summary of endpoint event data.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "lucene", - "query": "*" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "1", - "w": 8, - "x": 40, - "y": 4 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "colors": { - "/Attempt": "#0A50A1", - "/Failure": "#BF1B00", - "/Success": "#629E51" - } - } - }, - "gridData": { - "h": 12, - "i": "2", - "w": 24, - "x": 24, - "y": 32 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "colors": { - "/Attempt": "#0A50A1", - "/Failure": "#BF1B00", - "/Success": "#629E51" - } - } - }, - "gridData": { - "h": 12, - "i": "3", - "w": 24, - "x": 0, - "y": 32 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "5", - "w": 48, - "x": 0, - "y": 12 - }, - "panelIndex": "5", - "panelRefName": "panel_3", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "6", - "w": 24, - "x": 24, - "y": 44 - }, - "panelIndex": "6", - "panelRefName": "panel_4", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "gridData": { - "h": 8, - "i": "7", - "w": 40, - "x": 0, - "y": 4 - }, - "panelIndex": "7", - "panelRefName": "panel_5", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "colors": { - "/Attempt": "#0A50A1", - "/Failure": "#BF1B00", - "/Success": "#629E51" - } - } - }, - "gridData": { - "h": 12, - "i": "8", - "w": 24, - "x": 0, - "y": 44 - }, - "panelIndex": "8", - "panelRefName": "panel_6", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "columns": [ - "cef.extensions.categoryDeviceGroup", - "cef.extensions.categoryTechnique", - "cef.extensions.categoryOutcome", - "cef.extensions.categorySignificance", - "cef.extensions.categoryObject", - "cef.extensions.categoryBehavior", - "cef.extensions.categoryDeviceType" - ], - "sort": [ - "@timestamp", - "desc" - ] - }, - "gridData": { - "h": 20, - "i": "9", - "w": 48, - "x": 0, - "y": 76 - }, - "panelIndex": "9", - "panelRefName": "panel_7", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "10", - "w": 24, - "x": 24, - "y": 56 - }, - "panelIndex": "10", - "panelRefName": "panel_8", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "colors": { - "Anti-Virus": "#EAB839", - "Database": "#629E51", - "Host-based IDS/IPS": "#E0752D", - "Operating System": "#BF1B00", - "Security Mangement": "#64B0C8" - } - } - }, - "gridData": { - "h": 12, - "i": "11", - "w": 24, - "x": 0, - "y": 20 - }, - "panelIndex": "11", - "panelRefName": "panel_9", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 20, - "i": "12", - "w": 24, - "x": 0, - "y": 56 - }, - "panelIndex": "12", - "panelRefName": "panel_10", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "colors": { - "/Attempt": "#0A50A1", - "/Failure": "#BF1B00", - "/Informational": "#7EB26D", - "/Informational/Warning": "#EF843C", - "/Success": "#629E51", - "Anti-Virus": "#EAB839", - "Database": "#629E51", - "Host-based IDS/IPS": "#E0752D", - "Log Consolidator": "#E0F9D7", - "Operating System": "#BF1B00", - "Recon": "#BF1B00", - "Security Mangement": "#64B0C8" - } - } - }, - "gridData": { - "h": 12, - "i": "14", - "w": 24, - "x": 24, - "y": 20 - }, - "panelIndex": "14", - "panelRefName": "panel_11", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 4, - "i": "15", - "w": 48, - "x": 0, - "y": 0 - }, - "panelIndex": "15", - "panelRefName": "panel_12", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "mapCenter": [ - 12.897489183755892, - 0 - ], - "mapZoom": 1 - }, - "gridData": { - "h": 12, - "i": "17", - "w": 24, - "x": 24, - "y": 64 - }, - "panelIndex": "17", - "panelRefName": "panel_13", - "version": "7.3.0" - } - ], - "refreshInterval": { - "display": "Off", - "pause": false, - "value": 0 - }, - "timeFrom": "now-24h", - "timeRestore": true, - "timeTo": "now", - "title": "[Filebeat CEF] Endpoint Overview Dashboard", - "version": 1 - }, - "id": "c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "9457ee67-895f-4b78-a543-268f9687a745", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "fe7b63d1-dbc7-4376-af7f-ace97a9f2e60", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "89998099-9a39-44cf-beba-5b97f0524cf9", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "718b074e-3dd1-4d03-ba11-7f869cdcd703", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "c5120e27-1f8c-41e3-83ee-78ec4d470c2f", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "7454c034-c5f3-48fe-8fce-ef4385c80350", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "118af639-1f37-4541-a960-5a3ff0613e0e", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", - "name": "panel_7", - "type": "search" - }, - { - "id": "74d2c072-6dfd-4249-8e63-dc7b0cf3c960", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "f57734dd-0f32-42b4-94dd-5d597f6735e1", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "295986d4-d2ea-4541-8e82-7dc95c0cd830", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "5bf6e4dc-4273-4e1e-a803-04347eebeb53", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "677891a1-90c4-4273-b126-f0e54689bd76", - "name": "panel_12", - "type": "visualization" - }, - { - "id": "aaa80503-6d96-4a33-806f-b8a10aefe696", - "name": "panel_13", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-10-25T16:30:03.318Z", - "version": "WzEyNzcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Endpoint Average EPS [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "id": "85a1c642-9781-430d-b84b-b28cb2a42fb4" - } - ], - "filter": { - "language": "lucene", - "query": "cef.extensions.categoryDeviceGroup:\"/Operating System\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Host\" OR cef.extensions.categoryDeviceGroup:\"/Application\"" - }, - "gauge_color_rules": [ - { - "id": "03a2fd72-fc9c-4582-9133-20af36217180" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "b7a85957-123e-4e25-9e8e-ff7992c9b2b9", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": 0.5, - "formatter": "number", - "id": "b4373ffd-9660-4206-afd6-d4867ac7dbdf", - "label": "Event Throughput", - "line_width": 1, - "metrics": [ - { - "id": "b1a48389-d799-4eba-8b98-7ee8ef0bb440", - "type": "count" - }, - { - "field": "b1a48389-d799-4eba-8b98-7ee8ef0bb440", - "id": "7c5c44cc-17bd-4206-a100-b8996cd3d11a", - "type": "cumulative_sum" - }, - { - "field": "7c5c44cc-17bd-4206-a100-b8996cd3d11a", - "id": "215c5225-5368-40e6-8fcd-2b0026babba0", - "type": "derivative", - "unit": "1s" - }, - { - "alpha": 0.3, - "beta": 0.1, - "field": "215c5225-5368-40e6-8fcd-2b0026babba0", - "gamma": 0.3, - "id": "f4dfe09a-e397-4287-ab99-3206516cded3", - "model_type": "simple", - "multiplicative": false, - "period": 1, - "type": "moving_average", - "window": "10" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}} / s" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Endpoint Average EPS [Filebeat CEF]", - "type": "metrics" - } - }, - "id": "9457ee67-895f-4b78-a543-268f9687a745", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:03.318Z", - "version": "WzEyNzgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Destination Ports by Outcomes [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "destination.port", - "order": "desc", - "orderBy": "1", - "size": 20 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "cef.extensions.categoryOutcome", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "destination.port: Descending" - }, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": 9, - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "showCircles": true, - "times": [], - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": true, - "mode": "normal", - "setYExtents": false, - "type": "square root" - }, - "show": true, - "style": {}, - "title": {}, - "type": "value" - } - ] - }, - "title": "Destination Ports by Outcomes [Filebeat CEF]", - "type": "histogram" - } - }, - "id": "fe7b63d1-dbc7-4376-af7f-ace97a9f2e60", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:03.318Z", - "version": "WzEyNzksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Outcomes Breakdown [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "colors": { - "/Attempt": "#3F2B5B", - "/Failure": "#BF1B00" - }, - "legendOpen": true - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Time", - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "cef.extensions.categoryOutcome", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Time" - }, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": 9, - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "showCircles": true, - "times": [], - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "value" - } - ] - }, - "title": "Outcomes Breakdown [Filebeat CEF]", - "type": "area" - } - }, - "id": "89998099-9a39-44cf-beba-5b97f0524cf9", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:03.318Z", - "version": "WzEyODAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Events by Device [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "filter": { - "language": "lucene", - "query": "cef.extensions.categoryDeviceGroup:\"/Operating System\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Host\" OR cef.extensions.categoryDeviceGroup:\"/Application\"" - }, - "id": "fd1ffeb6-678e-4163-9421-6a164fd59048", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(254,37,37,1)", - "fill": "0", - "formatter": "number", - "id": "6a10f77d-4e26-4b27-9c19-f1b0029b075b", - "label": "Events", - "line_width": "3", - "metrics": [ - { - "id": "845b9164-65f4-4599-b9cc-8d91b6ba8d83", - "type": "count" - }, - { - "alpha": 0.3, - "beta": 0.1, - "field": "845b9164-65f4-4599-b9cc-8d91b6ba8d83", - "gamma": 0.3, - "id": "59675e84-1a8e-41df-9f63-875109bd795a", - "model_type": "simple", - "multiplicative": false, - "period": 1, - "type": "moving_average", - "window": "10" - } - ], - "point_size": 1, - "seperate_axis": 1, - "split_filters": [ - { - "color": "rgba(244,78,59,1)", - "filter": "cef.extensions.categoryDeviceGroup:\"/Operating System\" ", - "id": "d9a580c3-eb83-4d20-a391-0934d7df8837", - "label": "Operating System" - }, - { - "color": "rgba(254,146,0,1)", - "filter": " cef.extensions.categoryDeviceGroup:\"/IDS/Host\"", - "id": "9ce8be14-6191-4c9a-a679-e3992fdab8d2", - "label": "Host IDS" - }, - { - "color": "rgba(252,220,0,1)", - "filter": "cef.extensions.categoryDeviceGroup:\"/Application\"", - "id": "262ecd54-a042-4bfb-b489-d7db8431c36e", - "label": "Application" - } - ], - "split_mode": "filters", - "stacked": "none" - }, - { - "axis_position": "left", - "chart_type": "bar", - "color": "rgba(0,156,224,1)", - "fill": 0.5, - "formatter": "number", - "id": "92e98952-8e25-472f-abb5-05a7d9b830ea", - "label": "Moving Average by Device HostNames", - "line_width": 1, - "metrics": [ - { - "id": "3df841a9-5997-4a1a-ad8f-69620d23e65b", - "type": "count" - }, - { - "alpha": 0.3, - "beta": 0.1, - "field": "3df841a9-5997-4a1a-ad8f-69620d23e65b", - "gamma": 0.3, - "id": "9765367a-0fc2-45ba-88a8-e87991210edd", - "model_type": "simple", - "multiplicative": false, - "period": 1, - "type": "moving_average", - "window": "10" - } - ], - "point_size": 1, - "seperate_axis": 1, - "split_mode": "terms", - "stacked": "none", - "terms_field": "observer.hostname" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Events by Device [Filebeat CEF]", - "type": "metrics" - } - }, - "id": "718b074e-3dd1-4d03-ba11-7f869cdcd703", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:03.318Z", - "version": "WzEyODEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 10 Destination Port [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "destination.port", - "order": "desc", - "orderBy": "1", - "size": 20 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "maxFontSize": 72, - "minFontSize": 18, - "orientation": "single", - "scale": "linear" - }, - "title": "Top 10 Destination Port [Filebeat CEF]", - "type": "tagcloud" - } - }, - "id": "c5120e27-1f8c-41e3-83ee-78ec4d470c2f", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:03.318Z", - "version": "WzEyODIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Endpoint Metrics Overview [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Event Count" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Devices", - "field": "observer.hostname" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Source", - "field": "source.ip" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Destination", - "field": "destination.ip" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Port", - "field": "destination.port" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "fontSize": "30", - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "12", - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "handleNoResults": true, - "type": "gauge" - }, - "title": "Endpoint Metrics Overview [Filebeat CEF]", - "type": "metric" - } - }, - "id": "7454c034-c5f3-48fe-8fce-ef4385c80350", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:03.318Z", - "version": "WzEyODMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Outcomes by Device Type [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "colors": { - "/Failure": "#BF1B00" - }, - "legendOpen": true - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "cef.extensions.categoryDeviceType", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "cef.extensions.categoryOutcome", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 200 - }, - "position": "left", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "cef.extensions.categoryDeviceType: Descending" - }, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": 9, - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "showCircles": true, - "times": [], - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": true, - "rotate": 75, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "bottom", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "value" - } - ] - }, - "title": "Outcomes by Device Type [Filebeat CEF]", - "type": "histogram" - } - }, - "id": "118af639-1f37-4541-a960-5a3ff0613e0e", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:03.318Z", - "version": "WzEyODQsMV0=" - }, - { - "attributes": { - "columns": [ - "cef.extensions.categoryDeviceGroup", - "cef.extensions.categoryTechnique", - "cef.extensions.categoryOutcome", - "cef.extensions.categorySignificance", - "cef.extensions.categoryObject", - "cef.extensions.categoryBehavior", - "cef.extensions.categoryDeviceType" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "cef.extensions.categoryDeviceGroup:\"/Operating System\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Host\" OR cef.extensions.categoryDeviceGroup:\"/Application\"" - } - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Endpoint Event Explorer [Filebeat CEF]", - "version": 1 - }, - "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2019-10-25T16:30:03.318Z", - "version": "WzEyODUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 5 Source Countries [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "source.geo.country_iso_code", - "order": "desc", - "orderBy": "1", - "size": 20 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "maxFontSize": 72, - "minFontSize": 18, - "orientation": "single", - "scale": "linear" - }, - "title": "Top 5 Source Countries [Filebeat CEF]", - "type": "tagcloud" - } - }, - "id": "74d2c072-6dfd-4249-8e63-dc7b0cf3c960", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:03.318Z", - "version": "WzEyODYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Device Types by Vendor [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "exclude": "Network-based IDS/IPS", - "field": "cef.extensions.categoryDeviceType", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "exclude": "", - "field": "cef.device.vendor", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "legendPosition": "right" - }, - "title": "Device Types by Vendor [Filebeat CEF]", - "type": "pie" - } - }, - "id": "f57734dd-0f32-42b4-94dd-5d597f6735e1", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:03.318Z", - "version": "WzEyODcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 10 Source Countries by Event [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Total Events" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "source.geo.country_iso_code", - "order": "desc", - "orderBy": "1", - "size": 35 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Source Addresses", - "field": "source.ip" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Destination Addresses", - "field": "destination.ip" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Destination Ports", - "field": "destination.port" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top 10 Source Countries by Event [Filebeat CEF]", - "type": "table" - } - }, - "id": "295986d4-d2ea-4541-8e82-7dc95c0cd830", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:03.318Z", - "version": "WzEyODgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Outcomes by User Names [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "colors": { - "/Informational": "#7EB26D", - "/Informational/Warning": "#EF843C", - "/Success": "#64B0C8", - "Anti-Virus": "#B7DBAB", - "Host-based IDS/IPS": "#629E51", - "Log Consolidator": "#E0F9D7", - "Operating System": "#3F6833", - "Recon": "#BF1B00", - "Security Mangement": "#CFFAFF" - }, - "legendOpen": true - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "exclude": "Network-based IDS/IPS", - "field": "cef.extensions.categoryDeviceType", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "cef.extensions.categoryOutcome", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "6", - "params": { - "field": "destination.user.name", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "legendPosition": "right" - }, - "title": "Outcomes by User Names [Filebeat CEF]", - "type": "pie" - } - }, - "id": "5bf6e4dc-4273-4e1e-a803-04347eebeb53", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:03.318Z", - "version": "WzEyODksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": " Dashboard Navigation [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "markdown": "[Network Overview](#/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71) | [Network Suspicious Activity](#/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619) | [Endpoint Overview](#dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b) | [Endpoint OS Activity](#/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9) | [Microsoft DNS Overview](#/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41)" - }, - "title": " Dashboard Navigation [Filebeat CEF]", - "type": "markdown" - } - }, - "id": "677891a1-90c4-4273-b126-f0e54689bd76", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:06.345Z", - "version": "WzEzMzYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top Destination Locations by Event [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "destination.geo.location", - "precision": 2, - "useGeocentroid": true - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "listeners": {}, - "params": { - "addTooltip": true, - "heatBlur": 15, - "heatMaxZoom": 0, - "heatMinOpacity": 0.1, - "heatNormalizeData": true, - "heatRadius": 25, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 0, - 0 - ], - "mapType": "Shaded Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "attribution": "Maps provided by USGS", - "format": "image/png", - "layers": "0", - "styles": "", - "transparent": true, - "version": "1.3.0" - }, - "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" - } - }, - "title": "Top Destination Locations by Event [Filebeat CEF]", - "type": "tile_map" - } - }, - "id": "aaa80503-6d96-4a33-806f-b8a10aefe696", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:03.318Z", - "version": "WzEyOTEsMV0=" - } - ], - "version": "7.4.1" -} diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-overview.ndjson b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-overview.ndjson new file mode 100644 index 00000000000..0995739a1e6 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-overview.ndjson @@ -0,0 +1,15 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Endpoint Average EPS [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"85a1c642-9781-430d-b84b-b28cb2a42fb4\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Operating System\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Host\\\" OR cef.extensions.categoryDeviceGroup:\\\"/Application\\\"\"},\"gauge_color_rules\":[{\"id\":\"03a2fd72-fc9c-4582-9133-20af36217180\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"b7a85957-123e-4e25-9e8e-ff7992c9b2b9\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"b4373ffd-9660-4206-afd6-d4867ac7dbdf\",\"label\":\"Event Throughput\",\"line_width\":1,\"metrics\":[{\"id\":\"b1a48389-d799-4eba-8b98-7ee8ef0bb440\",\"type\":\"count\"},{\"field\":\"b1a48389-d799-4eba-8b98-7ee8ef0bb440\",\"id\":\"7c5c44cc-17bd-4206-a100-b8996cd3d11a\",\"type\":\"cumulative_sum\"},{\"field\":\"7c5c44cc-17bd-4206-a100-b8996cd3d11a\",\"id\":\"215c5225-5368-40e6-8fcd-2b0026babba0\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"215c5225-5368-40e6-8fcd-2b0026babba0\",\"gamma\":0.3,\"id\":\"f4dfe09a-e397-4287-ab99-3206516cded3\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} / s\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Endpoint Average EPS [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9457ee67-895f-4b78-a543-268f9687a745","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MTYsMV0="} +{"attributes":{"columns":["cef.extensions.categoryDeviceGroup","cef.extensions.categoryTechnique","cef.extensions.categoryOutcome","cef.extensions.categorySignificance","cef.extensions.categoryObject","cef.extensions.categoryBehavior","cef.extensions.categoryDeviceType"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"cef.extensions.categoryDeviceGroup:\\\"/Operating System\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Host\\\" OR cef.extensions.categoryDeviceGroup:\\\"/Application\\\"\"}}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Endpoint Event Explorer [Filebeat CEF]","version":1},"coreMigrationVersion":"8.0.0","id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Destination Ports by Outcomes [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"destination.port: Descending\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":true,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"square root\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"value\"}]},\"title\":\"Destination Ports by Outcomes [Filebeat CEF]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"fe7b63d1-dbc7-4376-af7f-ace97a9f2e60","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Outcomes Breakdown [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"colors\": {\"/Attempt\": \"#3F2B5B\", \"/Failure\": \"#BF1B00\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Time\",\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Time\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"value\"}]},\"title\":\"Outcomes Breakdown [Filebeat CEF]\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"89998099-9a39-44cf-beba-5b97f0524cf9","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events by Device [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Operating System\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Host\\\" OR cef.extensions.categoryDeviceGroup:\\\"/Application\\\"\"},\"id\":\"fd1ffeb6-678e-4163-9421-6a164fd59048\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,37,37,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"6a10f77d-4e26-4b27-9c19-f1b0029b075b\",\"label\":\"Events\",\"line_width\":\"3\",\"metrics\":[{\"id\":\"845b9164-65f4-4599-b9cc-8d91b6ba8d83\",\"type\":\"count\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"845b9164-65f4-4599-b9cc-8d91b6ba8d83\",\"gamma\":0.3,\"id\":\"59675e84-1a8e-41df-9f63-875109bd795a\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":1,\"seperate_axis\":1,\"split_filters\":[{\"color\":\"rgba(244,78,59,1)\",\"filter\":{\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Operating System\\\" \",\"language\":\"lucene\"},\"id\":\"d9a580c3-eb83-4d20-a391-0934d7df8837\",\"label\":\"Operating System\"},{\"color\":\"rgba(254,146,0,1)\",\"filter\":{\"query\":\" cef.extensions.categoryDeviceGroup:\\\"/IDS/Host\\\"\",\"language\":\"lucene\"},\"id\":\"9ce8be14-6191-4c9a-a679-e3992fdab8d2\",\"label\":\"Host IDS\"},{\"color\":\"rgba(252,220,0,1)\",\"filter\":{\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Application\\\"\",\"language\":\"lucene\"},\"id\":\"262ecd54-a042-4bfb-b489-d7db8431c36e\",\"label\":\"Application\"}],\"split_mode\":\"filters\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"left\",\"chart_type\":\"bar\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"92e98952-8e25-472f-abb5-05a7d9b830ea\",\"label\":\"Moving Average by Device HostNames\",\"line_width\":1,\"metrics\":[{\"id\":\"3df841a9-5997-4a1a-ad8f-69620d23e65b\",\"type\":\"count\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"3df841a9-5997-4a1a-ad8f-69620d23e65b\",\"gamma\":0.3,\"id\":\"9765367a-0fc2-45ba-88a8-e87991210edd\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":1,\"seperate_axis\":1,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"observer.hostname\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Events by Device [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"718b074e-3dd1-4d03-ba11-7f869cdcd703","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Destination Port [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Destination Port [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"c5120e27-1f8c-41e3-83ee-78ec4d470c2f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Endpoint Metrics Overview [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Devices\",\"field\":\"observer.hostname\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source\",\"field\":\"source.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination\",\"field\":\"destination.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Port\",\"field\":\"destination.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"30\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"12\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Endpoint Metrics Overview [Filebeat CEF]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"7454c034-c5f3-48fe-8fce-ef4385c80350","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Outcomes by Device Type [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"colors\": {\"/Failure\": \"#BF1B00\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"cef.extensions.categoryDeviceType\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"cef.extensions.categoryDeviceType: Descending\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"value\"}]},\"title\":\"Outcomes by Device Type [Filebeat CEF]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"118af639-1f37-4541-a960-5a3ff0613e0e","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 5 Source Countries [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.geo.country_iso_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 5 Source Countries [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"74d2c072-6dfd-4249-8e63-dc7b0cf3c960","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Device Types by Vendor [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"exclude\":\"Network-based IDS/IPS\",\"field\":\"cef.extensions.categoryDeviceType\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"exclude\":\"\",\"field\":\"cef.device.vendor\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Device Types by Vendor [Filebeat CEF]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"f57734dd-0f32-42b4-94dd-5d597f6735e1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Source Countries by Event [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total Events\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.geo.country_iso_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":35},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source Addresses\",\"field\":\"source.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination Addresses\",\"field\":\"destination.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Destination Ports\",\"field\":\"destination.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 10 Source Countries by Event [Filebeat CEF]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"295986d4-d2ea-4541-8e82-7dc95c0cd830","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Outcomes by User Names [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"colors\": {\"/Informational\": \"#7EB26D\", \"/Informational/Warning\": \"#EF843C\", \"/Success\": \"#64B0C8\", \"Anti-Virus\": \"#B7DBAB\", \"Host-based IDS/IPS\": \"#629E51\", \"Log Consolidator\": \"#E0F9D7\", \"Operating System\": \"#3F6833\", \"Recon\": \"#BF1B00\", \"Security Mangement\": \"#CFFAFF\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"exclude\":\"Network-based IDS/IPS\",\"field\":\"cef.extensions.categoryDeviceType\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"field\":\"destination.user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Outcomes by User Names [Filebeat CEF]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"5bf6e4dc-4273-4e1e-a803-04347eebeb53","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":" Dashboard Navigation [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Network Overview](#/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71) | [Network Suspicious Activity](#/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619) | [Endpoint Overview](#dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b) | [Endpoint OS Activity](#/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9) | [Microsoft DNS Overview](#/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41)\"},\"title\":\" Dashboard Navigation [Filebeat CEF]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"677891a1-90c4-4273-b126-f0e54689bd76","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top Destination Locations by Event [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"destination.geo.location\",\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":0,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Shaded Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Top Destination Locations by Event [Filebeat CEF]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"aaa80503-6d96-4a33-806f-b8a10aefe696","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MjksMV0="} +{"attributes":{"description":"Summary of endpoint event data.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"lucene\", \"query\": \"*\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"1\",\"w\":8,\"x\":40,\"y\":4},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":32},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"/Attempt\":\"#0A50A1\",\"/Failure\":\"#BF1B00\",\"/Success\":\"#629E51\"}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":32},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"/Attempt\":\"#0A50A1\",\"/Failure\":\"#BF1B00\",\"/Success\":\"#629E51\"}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":12},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6\",\"w\":24,\"x\":24,\"y\":44},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"7\",\"w\":40,\"x\":0,\"y\":4},\"panelIndex\":\"7\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"8\",\"w\":24,\"x\":0,\"y\":44},\"panelIndex\":\"8\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"/Attempt\":\"#0A50A1\",\"/Failure\":\"#BF1B00\",\"/Success\":\"#629E51\"}},\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":20,\"i\":\"9\",\"w\":48,\"x\":0,\"y\":76},\"panelIndex\":\"9\",\"embeddableConfig\":{\"columns\":[\"cef.extensions.categoryDeviceGroup\",\"cef.extensions.categoryTechnique\",\"cef.extensions.categoryOutcome\",\"cef.extensions.categorySignificance\",\"cef.extensions.categoryObject\",\"cef.extensions.categoryBehavior\",\"cef.extensions.categoryDeviceType\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"10\",\"w\":24,\"x\":24,\"y\":56},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"11\",\"w\":24,\"x\":0,\"y\":20},\"panelIndex\":\"11\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"Anti-Virus\":\"#EAB839\",\"Database\":\"#629E51\",\"Host-based IDS/IPS\":\"#E0752D\",\"Operating System\":\"#BF1B00\",\"Security Mangement\":\"#64B0C8\"}},\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"12\",\"w\":24,\"x\":0,\"y\":56},\"panelIndex\":\"12\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"14\",\"w\":24,\"x\":24,\"y\":20},\"panelIndex\":\"14\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"/Attempt\":\"#0A50A1\",\"/Failure\":\"#BF1B00\",\"/Informational\":\"#7EB26D\",\"/Informational/Warning\":\"#EF843C\",\"/Success\":\"#629E51\",\"Anti-Virus\":\"#EAB839\",\"Database\":\"#629E51\",\"Host-based IDS/IPS\":\"#E0752D\",\"Log Consolidator\":\"#E0F9D7\",\"Operating System\":\"#BF1B00\",\"Recon\":\"#BF1B00\",\"Security Mangement\":\"#64B0C8\"}},\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"15\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"17\",\"w\":24,\"x\":24,\"y\":64},\"panelIndex\":\"17\",\"embeddableConfig\":{\"mapCenter\":[12.897489183755892,0],\"mapZoom\":1,\"enhancements\":{}},\"panelRefName\":\"panel_17\"}]","refreshInterval":{"display":"Off","pause":false,"value":0},"timeFrom":"now-24h","timeRestore":true,"timeTo":"now","title":"[Filebeat CEF] Endpoint Overview Dashboard","version":1},"coreMigrationVersion":"8.0.0","id":"c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"9457ee67-895f-4b78-a543-268f9687a745","name":"1:panel_1","type":"visualization"},{"id":"fe7b63d1-dbc7-4376-af7f-ace97a9f2e60","name":"2:panel_2","type":"visualization"},{"id":"89998099-9a39-44cf-beba-5b97f0524cf9","name":"3:panel_3","type":"visualization"},{"id":"718b074e-3dd1-4d03-ba11-7f869cdcd703","name":"5:panel_5","type":"visualization"},{"id":"c5120e27-1f8c-41e3-83ee-78ec4d470c2f","name":"6:panel_6","type":"visualization"},{"id":"7454c034-c5f3-48fe-8fce-ef4385c80350","name":"7:panel_7","type":"visualization"},{"id":"118af639-1f37-4541-a960-5a3ff0613e0e","name":"8:panel_8","type":"visualization"},{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"9:panel_9","type":"search"},{"id":"74d2c072-6dfd-4249-8e63-dc7b0cf3c960","name":"10:panel_10","type":"visualization"},{"id":"f57734dd-0f32-42b4-94dd-5d597f6735e1","name":"11:panel_11","type":"visualization"},{"id":"295986d4-d2ea-4541-8e82-7dc95c0cd830","name":"12:panel_12","type":"visualization"},{"id":"5bf6e4dc-4273-4e1e-a803-04347eebeb53","name":"14:panel_14","type":"visualization"},{"id":"677891a1-90c4-4273-b126-f0e54689bd76","name":"15:panel_15","type":"visualization"},{"id":"aaa80503-6d96-4a33-806f-b8a10aefe696","name":"17:panel_17","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MTUsMV0="} diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-microsoft-dns.json b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-microsoft-dns.json deleted file mode 100644 index 68bbc36f703..00000000000 --- a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-microsoft-dns.json +++ /dev/null @@ -1,1796 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of Microsoft DNS activity.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "lucene", - "query": "*" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "1", - "w": 8, - "x": 40, - "y": 4 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "gridData": { - "h": 8, - "i": "3", - "w": 40, - "x": 0, - "y": 4 - }, - "panelIndex": "3", - "panelRefName": "panel_1", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "defaultColors": { - "0 - 18k": "rgb(247,251,255)", - "108k - 126k": "rgb(74,152,201)", - "126k - 144k": "rgb(46,126,188)", - "144k - 162k": "rgb(23,100,171)", - "162k - 180k": "rgb(8,74,145)", - "18k - 36k": "rgb(227,238,249)", - "36k - 54k": "rgb(208,225,242)", - "54k - 72k": "rgb(182,212,233)", - "72k - 90k": "rgb(148,196,223)", - "90k - 108k": "rgb(107,174,214)" - }, - "legendOpen": false - } - }, - "gridData": { - "h": 16, - "i": "5", - "w": 24, - "x": 0, - "y": 32 - }, - "panelIndex": "5", - "panelRefName": "panel_2", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "6", - "w": 48, - "x": 0, - "y": 48 - }, - "panelIndex": "6", - "panelRefName": "panel_3", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 16, - "i": "7", - "w": 24, - "x": 24, - "y": 32 - }, - "panelIndex": "7", - "panelRefName": "panel_4", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "9", - "w": 48, - "x": 0, - "y": 12 - }, - "panelIndex": "9", - "panelRefName": "panel_5", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 16, - "i": "11", - "w": 24, - "x": 24, - "y": 56 - }, - "panelIndex": "11", - "panelRefName": "panel_6", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 4, - "i": "12", - "w": 48, - "x": 0, - "y": 0 - }, - "panelIndex": "12", - "panelRefName": "panel_7", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 16, - "i": "13", - "w": 24, - "x": 0, - "y": 56 - }, - "panelIndex": "13", - "panelRefName": "panel_8", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "14", - "w": 24, - "x": 0, - "y": 20 - }, - "panelIndex": "14", - "panelRefName": "panel_9", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "15", - "w": 24, - "x": 24, - "y": 20 - }, - "panelIndex": "15", - "panelRefName": "panel_10", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "mapCenter": [ - 12.211180191503997, - 0 - ], - "mapZoom": 1 - }, - "gridData": { - "h": 12, - "i": "16", - "w": 24, - "x": 24, - "y": 72 - }, - "panelIndex": "16", - "panelRefName": "panel_11", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "mapCenter": [ - -0.17578097424708533, - 0 - ], - "mapZoom": 1 - }, - "gridData": { - "h": 12, - "i": "17", - "w": 24, - "x": 0, - "y": 72 - }, - "panelIndex": "17", - "panelRefName": "panel_12", - "version": "7.3.0" - } - ], - "refreshInterval": { - "display": "Off", - "pause": false, - "value": 0 - }, - "timeFrom": "now-24h", - "timeRestore": true, - "timeTo": "now", - "title": "[Filebeat CEF] Microsoft DNS Overview", - "version": 1 - }, - "id": "56428e01-0c47-4770-8ba4-9345a029ea41", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "7e2b0659-0760-4182-8b29-3ee69f26bc6f", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "249e2737-b41f-4115-b303-88bc9d279655", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "566d8b4e-ec5c-4b8b-bd68-3cc9cb236110", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "759e8dc3-0fdb-4cb6-ba47-87a2e2ff8df3", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "fcf798a8-db8f-4492-827b-8fa7581108a9", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "f0e60404-ddf4-4b46-8e45-e28c4fb6d60d", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "1b9cc5b7-7747-49de-96b1-a4bc7f675716", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "677891a1-90c4-4273-b126-f0e54689bd76", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "26a65f68-d7a6-4b47-befc-c5a6819bb91b", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "16aef3e9-e33b-4bab-b32f-d8c5b1263ac0", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "f3c573ad-2c16-4de5-9ec3-0a47141d4fa0", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "1b521f56-8089-433f-88f7-56aba867e07d", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "581a296e-e34a-48f1-93e4-fc4bdadfc68d", - "name": "panel_12", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-10-25T16:30:04.348Z", - "version": "WzEyOTIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "DNS - Event Throughput [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "3eadd451-5033-423f-88e3-814cc5e50b50" - } - ], - "bar_color_rules": [ - { - "id": "fa374805-d1ca-4261-b723-9b482a7dd43a" - } - ], - "filter": { - "language": "lucene", - "query": "cef.device.product:\"DNS Trace Log\"" - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "4d957654-cc7e-4ef3-8b29-61c0aeadd51a", - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "", - "gauge_style": "half", - "gauge_width": 10, - "id": "73968651-c41e-473e-a153-a025f49d1a1b", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": 0.5, - "formatter": "number", - "id": "90d7621e-3265-4fe8-8882-8df9605ea659", - "label": "Event Throughput", - "line_width": 1, - "metrics": [ - { - "id": "ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba", - "type": "count" - }, - { - "field": "ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba", - "id": "cf3e6b1c-4136-4868-913e-0e82d88a8c9c", - "type": "cumulative_sum" - }, - { - "field": "cf3e6b1c-4136-4868-913e-0e82d88a8c9c", - "id": "0e407985-9ae4-4c1f-bb0e-16cd9bef7611", - "type": "derivative", - "unit": "1s" - }, - { - "alpha": 0.3, - "beta": 0.1, - "field": "0e407985-9ae4-4c1f-bb0e-16cd9bef7611", - "gamma": 0.3, - "id": "48026f85-83c8-40e6-aff4-71f3bd6c77c9", - "model_type": "simple", - "multiplicative": false, - "period": 1, - "type": "moving_average", - "window": "10" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}} / s" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "DNS - Event Throughput [Filebeat CEF]", - "type": "metrics" - } - }, - "id": "7e2b0659-0760-4182-8b29-3ee69f26bc6f", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:04.348Z", - "version": "WzEyOTMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "DNS Metrics Overview [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Event Count" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Threads", - "field": "cef.extensions.deviceCustomString1" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "OpCodes", - "field": "cef.extensions.deviceCustomString2" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Activity Types", - "field": "cef.device.event_class_id" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "32", - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "type": "gauge" - }, - "title": "DNS Metrics Overview [Filebeat CEF]", - "type": "metric" - } - }, - "id": "249e2737-b41f-4115-b303-88bc9d279655", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "f85a3444-8a43-4e46-b872-4e44bc25d0f3", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:04.348Z", - "version": "WzEyOTQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top Destinations by Traffic Size [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 18k": "rgb(247,251,255)", - "108k - 126k": "rgb(74,152,201)", - "126k - 144k": "rgb(46,126,188)", - "144k - 162k": "rgb(23,100,171)", - "162k - 180k": "rgb(8,74,145)", - "18k - 36k": "rgb(227,238,249)", - "36k - 54k": "rgb(208,225,242)", - "54k - 72k": "rgb(182,212,233)", - "72k - 90k": "rgb(148,196,223)", - "90k - 108k": "rgb(107,174,214)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "source.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "filters": [ - { - "input": { - "language": "lucene", - "query": "deviceDirection:\"0\"" - }, - "label": "Inbound" - }, - { - "input": { - "language": "lucene", - "query": "deviceDirection:\"1\"" - }, - "label": "Outbound" - } - ] - }, - "schema": "segment", - "type": "filters" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "destination.domain", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "colorSchema": "Blues", - "colorsNumber": 10, - "colorsRange": [ - { - "from": 0, - "to": null - } - ], - "enableHover": true, - "invertColors": false, - "legendPosition": "top", - "percentageMode": false, - "setColorRange": false, - "times": [], - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "color": "#555", - "rotate": 0, - "show": false - }, - "scale": { - "defaultYExtents": false, - "type": "linear" - }, - "show": false, - "type": "value" - } - ] - }, - "title": "Top Destinations by Traffic Size [Filebeat CEF]", - "type": "heatmap" - } - }, - "id": "566d8b4e-ec5c-4b8b-bd68-3cc9cb236110", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "f85a3444-8a43-4e46-b872-4e44bc25d0f3", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:04.348Z", - "version": "WzEyOTUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 10 Event Types [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "cef.device.event_class_id", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "maxFontSize": 50, - "minFontSize": 12, - "orientation": "single", - "scale": "square root" - }, - "title": "Top 10 Event Types [Filebeat CEF]", - "type": "tagcloud" - } - }, - "id": "759e8dc3-0fdb-4cb6-ba47-87a2e2ff8df3", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "f85a3444-8a43-4e46-b872-4e44bc25d0f3", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:04.348Z", - "version": "WzEyOTYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Event Types by Size [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "colors": { - "Count": "#64B0C8", - "Total (Bytes)": "#E24D42" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Event Type", - "field": "cef.device.event_class_id", - "order": "desc", - "orderBy": "1", - "size": 20 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Total (Bytes)", - "field": "source.bytes" - }, - "schema": "metric", - "type": "sum" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "rotate": 75, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Event Type" - }, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - }, - "valueAxis": null - }, - "legendPosition": "right", - "orderBucketsBySum": false, - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "3", - "label": "Total (Bytes)" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "lineWidth": 3, - "mode": "normal", - "show": true, - "showCircles": false, - "type": "line", - "valueAxis": "ValueAxis-2" - } - ], - "times": [], - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "square root" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - }, - { - "id": "ValueAxis-2", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "RightAxis-1", - "position": "right", - "scale": { - "mode": "normal", - "type": "square root" - }, - "show": true, - "style": {}, - "title": { - "text": "Total (Bytes)" - }, - "type": "value" - } - ] - }, - "title": "Event Types by Size [Filebeat CEF]", - "type": "histogram" - } - }, - "id": "fcf798a8-db8f-4492-827b-8fa7581108a9", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "f85a3444-8a43-4e46-b872-4e44bc25d0f3", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:04.348Z", - "version": "WzEyOTcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Events Types by Severity [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "filter": { - "language": "lucene", - "query": "cef.device.product:\"DNS Trace Log\"" - }, - "id": "db54ebce-9dd2-4a1e-b476-b3ddb9a9024e", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "81da76ca-1112-4d91-82f4-c66cd3156a84", - "label": "Cumulative Bytes", - "line_width": "3", - "metrics": [ - { - "field": "source.bytes", - "id": "521d560c-321a-4410-9eb3-2b2bf3f4efee", - "type": "count" - } - ], - "point_size": "0", - "seperate_axis": 1, - "split_filters": [ - { - "color": "rgba(244,78,59,1)", - "filter": "(event.severity:\"2\" OR event.severity:\"3\" OR event.severity:\"5\" OR event.severity:\"16\" OR cef.extension.deviceCustomString4:\"SERVFAIL\" OR cef.extension.deviceCustomString4:\"NXDOMAIN\" OR cef.extension.deviceCustomString4:\"REFUSED\" OR cef.extension.deviceCustomString4:\"BADVERS\" OR cef.extension.deviceCustomString4:\"BADSIG\")", - "id": "3f31a7e4-acf3-4f2d-8b7d-e30522325b2a", - "label": "HIGH" - }, - { - "color": "rgba(254,146,0,1)", - "filter": "(event.severity:\"1\" OR event.severity:\"4\" OR event.severity:\"6\" OR event.severity:\"7\" OR event.severity:\"8\" OR event.severity:\"9\" OR event.severity:\"10\" OR event.severity:\"17\" OR event.severity:\"18\" OR event.severity:\"19\" OR event.severity:\"20\" OR event.severity:\"21\" OR event.severity:\"22\" OR cef.extension.deviceCustomString4:\"Error\" OR cef.extension.deviceCustomString4:\"ERROR\" OR cef.extension.deviceCustomString4:\"Warning\" OR cef.extension.deviceCustomString4:\"WARNING\" OR cef.extension.deviceCustomString4:\"FORMERR\" OR cef.extension.deviceCustomString4:\"NOTIMP\" OR cef.extension.deviceCustomString4:\"YXDOMAIN\" OR cef.extension.deviceCustomString4:\"YXRRSET\" OR cef.extension.deviceCustomString4:\"NXRRSET\" OR cef.extension.deviceCustomString4:\"NOTAUTH\" OR cef.extension.deviceCustomString4:\"NOTZONE\" OR cef.extension.deviceCustomString4:\"BADKEY\" OR cef.extension.deviceCustomString4:\"BADTIME\" OR cef.extension.deviceCustomString4:\"BADMODE\" OR cef.extension.deviceCustomString4:\"BADNAME\" OR cef.extension.deviceCustomString4:\"BADALG\" OR cef.extension.deviceCustomString4:\"BADTRUNC\")", - "id": "7949d31b-8aae-433a-b7cf-6939a8728cc9", - "label": "MEDIUM" - }, - { - "color": "rgba(252,220,0,1)", - "filter": "(NOT (event.severity:\"2\" OR event.severity:\"3\" OR event.severity:\"5\" OR event.severity:\"16\" OR cef.extension.deviceCustomString4:\"SERVFAIL\" OR cef.extension.deviceCustomString4:\"NXDOMAIN\" OR cef.extension.deviceCustomString4:\"REFUSED\" OR cef.extension.deviceCustomString4:\"BADVERS\" OR cef.extension.deviceCustomString4:\"BADSIG\" OR event.severity:\"1\" OR event.severity:\"4\" OR event.severity:\"6\" OR event.severity:\"7\" OR event.severity:\"8\" OR event.severity:\"9\" OR event.severity:\"10\" OR event.severity:\"17\" OR event.severity:\"18\" OR event.severity:\"19\" OR event.severity:\"20\" OR event.severity:\"21\" OR event.severity:\"22\" OR cef.extension.deviceCustomString4:\"Error\" OR cef.extension.deviceCustomString4:\"ERROR\" OR cef.extension.deviceCustomString4:\"Warning\" OR cef.extension.deviceCustomString4:\"WARNING\" OR cef.extension.deviceCustomString4:\"FORMERR\" OR cef.extension.deviceCustomString4:\"NOTIMP\" OR cef.extension.deviceCustomString4:\"YXDOMAIN\" OR cef.extension.deviceCustomString4:\"YXRRSET\" OR cef.extension.deviceCustomString4:\"NXRRSET\" OR cef.extension.deviceCustomString4:\"NOTAUTH\" OR cef.extension.deviceCustomString4:\"NOTZONE\" OR cef.extension.deviceCustomString4:\"BADKEY\" OR cef.extension.deviceCustomString4:\"BADTIME\" OR cef.extension.deviceCustomString4:\"BADMODE\" OR cef.extension.deviceCustomString4:\"BADNAME\" OR cef.extension.deviceCustomString4:\"BADALG\" OR cef.extension.deviceCustomString4:\"BADTRUNC\"))", - "id": "d2627211-5f9e-4c65-8a47-1cd6f085939d", - "label": "LOW" - } - ], - "split_mode": "filters", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "bar", - "color": "rgba(0,156,224,1)", - "fill": 0.5, - "formatter": "number", - "id": "a5fda184-fdd6-4221-ab59-492eab162f0a", - "label": "Count by Event Type", - "line_width": 1, - "metrics": [ - { - "id": "e147ba1c-b13a-496f-9841-b99ddee81c5a", - "type": "count" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "cef.device.event_class_id", - "terms_size": "20" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Events Types by Severity [Filebeat CEF]", - "type": "metrics" - } - }, - "id": "f0e60404-ddf4-4b46-8e45-e28c4fb6d60d", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:04.348Z", - "version": "WzEyOTgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 10 Destinations by Size [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Destinations", - "field": "destination.domain", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Bytes", - "field": "source.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Sources", - "field": "source.ip" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Count" - }, - "schema": "metric", - "type": "count" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top 10 Destinations by Size [Filebeat CEF]", - "type": "table" - } - }, - "id": "1b9cc5b7-7747-49de-96b1-a4bc7f675716", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "f85a3444-8a43-4e46-b872-4e44bc25d0f3", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:04.348Z", - "version": "WzEyOTksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": " Dashboard Navigation [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "markdown": "[Network Overview](#/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71) | [Network Suspicious Activity](#/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619) | [Endpoint Overview](#dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b) | [Endpoint OS Activity](#/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9) | [Microsoft DNS Overview](#/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41)" - }, - "title": " Dashboard Navigation [Filebeat CEF]", - "type": "markdown" - } - }, - "id": "677891a1-90c4-4273-b126-f0e54689bd76", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:06.345Z", - "version": "WzEzMzYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 10 Sources by Size [Filebeat CEF]", - "uiStateJSON": { - "P-11": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-13": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-2": { - "mapCenter": [ - -0.17578097424708533, - 0 - ], - "mapZoom": 0 - }, - "P-3": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "P-4": { - "mapCenter": [ - -0.17578097424708533, - 0 - ], - "mapZoom": 0 - }, - "P-5": { - "vis": { - "defaultColors": { - "0 - 18,000": "rgb(247,251,255)", - "108,000 - 126,000": "rgb(74,152,201)", - "126,000 - 144,000": "rgb(46,126,188)", - "144,000 - 162,000": "rgb(23,100,171)", - "162,000 - 180,000": "rgb(8,74,145)", - "18,000 - 36,000": "rgb(227,238,249)", - "36,000 - 54,000": "rgb(208,225,242)", - "54,000 - 72,000": "rgb(182,212,233)", - "72,000 - 90,000": "rgb(148,196,223)", - "90,000 - 108,000": "rgb(107,174,214)" - }, - "legendOpen": false - } - }, - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Sources", - "field": "source.domain", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Bytes", - "field": "source.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Destinations", - "field": "destination.domain" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Count" - }, - "schema": "metric", - "type": "count" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top 10 Sources by Size [Filebeat CEF]", - "type": "table" - } - }, - "id": "26a65f68-d7a6-4b47-befc-c5a6819bb91b", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "f85a3444-8a43-4e46-b872-4e44bc25d0f3", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:04.348Z", - "version": "WzEzMDEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Events by Direction [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "filter": { - "language": "lucene", - "query": "cef.device.product:\"DNS Trace Log\"" - }, - "id": "be556a57-cd1c-496c-8714-0bd210947c85", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#68BC00", - "fill": "0.2", - "filter": { - "language": "lucene", - "query": "device" - }, - "formatter": "number", - "id": "9aae7344-9de9-4378-b21d-296cb964f93b", - "label": "Inbound Requests", - "line_width": 1, - "metrics": [ - { - "id": "1cd0b964-45cf-408e-a7e4-e26955f8a3b0", - "type": "count" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_filters": [ - { - "color": "rgba(0,156,224,1)", - "filter": { - "language": "lucene", - "query": "deviceDirection:\"0\"" - }, - "id": "f860f6e0-fbd4-4949-8046-6300322dfe84", - "label": "Inbound Requests" - } - ], - "split_mode": "filters", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "bar", - "color": "#68BC00", - "fill": "0.2", - "formatter": "number", - "id": "ed1abe18-e01b-4202-9db4-06fda10692e0", - "label": "Outbound Requests", - "line_width": 1, - "metrics": [ - { - "id": "cfbcfc79-394b-4ec0-a2c2-7a47177d6469", - "type": "count" - }, - { - "id": "6bc37118-ddac-41ec-85b3-9db7e1b3636b", - "script": "params.outbound \u003e 0 ? params.outbound * -1 : 0", - "type": "calculation", - "variables": [ - { - "field": "cfbcfc79-394b-4ec0-a2c2-7a47177d6469", - "id": "f73f4f22-03d5-446a-b031-04eee531e3cc", - "name": "outbound" - } - ] - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_filters": [ - { - "color": "rgba(211,49,21,1)", - "filter": "deviceDirection:\"1\"", - "id": "a9c50e1b-8f11-4bc2-9077-bb8870ed0b62", - "label": "Outbound Requests" - } - ], - "split_mode": "filters", - "stacked": "none" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Events by Direction [Filebeat CEF]", - "type": "metrics" - } - }, - "id": "16aef3e9-e33b-4bab-b32f-d8c5b1263ac0", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:04.348Z", - "version": "WzEzMDIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Events by Size [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "filter": { - "language": "lucene", - "query": "cef.device.product:\"DNS Trace Log\"" - }, - "id": "6e634117-6b30-411c-b74c-75510befe42f", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": 0.5, - "filter": { - "language": "lucene", - "query": "deviceDirection:\"0\"" - }, - "formatter": "bytes", - "id": "28b1fb5b-0f16-4519-b901-4dd2dcc39915", - "label": "Inbound Bytes", - "line_width": "2", - "metrics": [ - { - "field": "source.bytes", - "id": "f613f33f-6459-4e46-a3a0-c36c48c46b2e", - "type": "sum" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "filter", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": 0.5, - "filter": { - "language": "lucene", - "query": "deviceDirection:\"1\"" - }, - "formatter": "bytes", - "id": "5a5c2529-4990-4006-b039-c94069ff6b7e", - "label": "Outbound Bytes", - "line_width": "2", - "metrics": [ - { - "field": "source.bytes", - "id": "b69501e7-56d5-4c38-81d1-34d778c81e11", - "type": "sum" - }, - { - "id": "0aaab374-5845-44ab-94f5-ac4fab25c287", - "script": "params.outbound_bytes \u003e= 0 ? params.outbound_bytes * -1 : 0", - "type": "calculation", - "variables": [ - { - "field": "b69501e7-56d5-4c38-81d1-34d778c81e11", - "id": "23b8c41c-0e98-4ace-8bca-3593e46cd955", - "name": "outbound_bytes" - } - ] - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "filter", - "stacked": "none" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Events by Size [Filebeat CEF]", - "type": "metrics" - } - }, - "id": "f3c573ad-2c16-4de5-9ec3-0a47141d4fa0", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:04.348Z", - "version": "WzEzMDMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top Destinations by Events [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "destination.geo.location", - "precision": 2, - "useGeocentroid": true - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "listeners": {}, - "params": { - "addTooltip": true, - "heatBlur": 15, - "heatMaxZoom": 0, - "heatMinOpacity": 0.1, - "heatRadius": 25, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 0, - 0 - ], - "mapType": "Shaded Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "attribution": "Maps provided by USGS", - "format": "image/png", - "layers": "0", - "styles": "", - "transparent": true, - "version": "1.3.0" - }, - "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" - } - }, - "title": "Top Destinations by Events [Filebeat CEF]", - "type": "tile_map" - } - }, - "id": "1b521f56-8089-433f-88f7-56aba867e07d", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "f85a3444-8a43-4e46-b872-4e44bc25d0f3", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:04.348Z", - "version": "WzEzMDQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top Sources by Events [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "source.geo.location", - "precision": 2, - "useGeocentroid": true - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "listeners": {}, - "params": { - "addTooltip": true, - "heatBlur": 15, - "heatMaxZoom": 0, - "heatMinOpacity": 0.1, - "heatRadius": 25, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 0, - 0 - ], - "mapType": "Shaded Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "attribution": "Maps provided by USGS", - "format": "image/png", - "layers": "0", - "styles": "", - "transparent": true, - "version": "1.3.0" - }, - "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" - } - }, - "title": "Top Sources by Events [Filebeat CEF]", - "type": "tile_map" - } - }, - "id": "581a296e-e34a-48f1-93e4-fc4bdadfc68d", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "f85a3444-8a43-4e46-b872-4e44bc25d0f3", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:04.348Z", - "version": "WzEzMDUsMV0=" - }, - { - "attributes": { - "columns": [ - "cef.device.vendor", - "cef.device.product", - "cef.extensions.categoryBehavior", - "cef.extensions.categoryOutcome", - "destination.ip", - "destination.port", - "destination.domain", - "cef.device.event_class_id", - "cef.extensions.deviceCustomString1Label", - "cef.extensions.deviceCustomString1", - "cef.extensions.deviceCustomString2Label", - "cef.extensions.deviceCustomString2", - "cef.extension.cef.extension.deviceCustomString3Label", - "cef.extension.deviceCustomString3", - "cef.extension.cef.extension.deviceCustomString4Label", - "cef.extension.deviceCustomString4", - "cef.extensions.deviceEventCategory", - "event.severity", - "source.ip", - "source.port", - "network.transport", - "source.bytes", - "url.original" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "cef.device.product:\"DNS Trace Log\"" - } - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Microsoft DNS Events [Filebeat CEF]", - "version": 1 - }, - "id": "f85a3444-8a43-4e46-b872-4e44bc25d0f3", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2019-10-25T16:30:04.348Z", - "version": "WzEzMDYsMV0=" - } - ], - "version": "7.4.1" -} diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-microsoft-dns.ndjson b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-microsoft-dns.ndjson new file mode 100644 index 00000000000..40f42c8be19 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-microsoft-dns.ndjson @@ -0,0 +1,15 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DNS - Event Throughput [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"3eadd451-5033-423f-88e3-814cc5e50b50\"}],\"bar_color_rules\":[{\"id\":\"fa374805-d1ca-4261-b723-9b482a7dd43a\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.device.product:\\\"DNS Trace Log\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"4d957654-cc7e-4ef3-8b29-61c0aeadd51a\",\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"73968651-c41e-473e-a153-a025f49d1a1b\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"90d7621e-3265-4fe8-8882-8df9605ea659\",\"label\":\"Event Throughput\",\"line_width\":1,\"metrics\":[{\"id\":\"ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba\",\"type\":\"count\"},{\"field\":\"ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba\",\"id\":\"cf3e6b1c-4136-4868-913e-0e82d88a8c9c\",\"type\":\"cumulative_sum\"},{\"field\":\"cf3e6b1c-4136-4868-913e-0e82d88a8c9c\",\"id\":\"0e407985-9ae4-4c1f-bb0e-16cd9bef7611\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"0e407985-9ae4-4c1f-bb0e-16cd9bef7611\",\"gamma\":0.3,\"id\":\"48026f85-83c8-40e6-aff4-71f3bd6c77c9\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} / s\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"DNS - Event Throughput [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7e2b0659-0760-4182-8b29-3ee69f26bc6f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3MzEsMV0="} +{"attributes":{"columns":["cef.device.vendor","cef.device.product","cef.extensions.categoryBehavior","cef.extensions.categoryOutcome","destination.ip","destination.port","destination.domain","cef.device.event_class_id","cef.extensions.deviceCustomString1Label","cef.extensions.deviceCustomString1","cef.extensions.deviceCustomString2Label","cef.extensions.deviceCustomString2","cef.extension.cef.extension.deviceCustomString3Label","cef.extension.deviceCustomString3","cef.extension.cef.extension.deviceCustomString4Label","cef.extension.deviceCustomString4","cef.extensions.deviceEventCategory","event.severity","source.ip","source.port","network.transport","source.bytes","url.original"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"cef.device.product:\\\"DNS Trace Log\\\"\"}}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Microsoft DNS Events [Filebeat CEF]","version":1},"coreMigrationVersion":"8.0.0","id":"f85a3444-8a43-4e46-b872-4e44bc25d0f3","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3NDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"DNS Metrics Overview [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Threads\",\"field\":\"cef.extensions.deviceCustomString1\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"OpCodes\",\"field\":\"cef.extensions.deviceCustomString2\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Activity Types\",\"field\":\"cef.device.event_class_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"32\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"type\":\"gauge\"},\"title\":\"DNS Metrics Overview [Filebeat CEF]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"249e2737-b41f-4115-b303-88bc9d279655","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"f85a3444-8a43-4e46-b872-4e44bc25d0f3","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3MzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top Destinations by Traffic Size [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 18k\": \"rgb(247,251,255)\", \"108k - 126k\": \"rgb(74,152,201)\", \"126k - 144k\": \"rgb(46,126,188)\", \"144k - 162k\": \"rgb(23,100,171)\", \"162k - 180k\": \"rgb(8,74,145)\", \"18k - 36k\": \"rgb(227,238,249)\", \"36k - 54k\": \"rgb(208,225,242)\", \"54k - 72k\": \"rgb(182,212,233)\", \"72k - 90k\": \"rgb(148,196,223)\", \"90k - 108k\": \"rgb(107,174,214)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"lucene\",\"query\":\"deviceDirection:\\\"0\\\"\"},\"label\":\"Inbound\"},{\"input\":{\"language\":\"lucene\",\"query\":\"deviceDirection:\\\"1\\\"\"},\"label\":\"Outbound\"}]},\"schema\":\"segment\",\"type\":\"filters\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"destination.domain\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Blues\",\"colorsNumber\":10,\"colorsRange\":[{\"from\":0,\"to\":null}],\"enableHover\":true,\"invertColors\":false,\"legendPosition\":\"top\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"#555\",\"rotate\":0,\"show\":false},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Top Destinations by Traffic Size [Filebeat CEF]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"8.0.0","id":"566d8b4e-ec5c-4b8b-bd68-3cc9cb236110","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"f85a3444-8a43-4e46-b872-4e44bc25d0f3","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3MzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Event Types [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"cef.device.event_class_id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":50,\"minFontSize\":12,\"orientation\":\"single\",\"scale\":\"square root\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Event Types [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"759e8dc3-0fdb-4cb6-ba47-87a2e2ff8df3","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"f85a3444-8a43-4e46-b872-4e44bc25d0f3","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3MzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Event Types by Size [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"colors\": {\"Count\": \"#64B0C8\", \"Total (Bytes)\": \"#E24D42\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Event Type\",\"field\":\"cef.device.event_class_id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Total (Bytes)\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"rotate\":75,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Event Type\"},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"},\"valueAxis\":null},\"legendPosition\":\"right\",\"orderBucketsBySum\":false,\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Total (Bytes)\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":3,\"mode\":\"normal\",\"show\":true,\"showCircles\":false,\"type\":\"line\",\"valueAxis\":\"ValueAxis-2\"}],\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"square root\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"},{\"id\":\"ValueAxis-2\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"RightAxis-1\",\"position\":\"right\",\"scale\":{\"mode\":\"normal\",\"type\":\"square root\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Total (Bytes)\"},\"type\":\"value\"}]},\"title\":\"Event Types by Size [Filebeat CEF]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"fcf798a8-db8f-4492-827b-8fa7581108a9","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"f85a3444-8a43-4e46-b872-4e44bc25d0f3","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3MzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events Types by Severity [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.device.product:\\\"DNS Trace Log\\\"\"},\"id\":\"db54ebce-9dd2-4a1e-b476-b3ddb9a9024e\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"81da76ca-1112-4d91-82f4-c66cd3156a84\",\"label\":\"Cumulative Bytes\",\"line_width\":\"3\",\"metrics\":[{\"field\":\"source.bytes\",\"id\":\"521d560c-321a-4410-9eb3-2b2bf3f4efee\",\"type\":\"count\"}],\"point_size\":\"0\",\"seperate_axis\":1,\"split_filters\":[{\"color\":\"rgba(244,78,59,1)\",\"filter\":{\"query\":\"(event.severity:\\\"2\\\" OR event.severity:\\\"3\\\" OR event.severity:\\\"5\\\" OR event.severity:\\\"16\\\" OR cef.extension.deviceCustomString4:\\\"SERVFAIL\\\" OR cef.extension.deviceCustomString4:\\\"NXDOMAIN\\\" OR cef.extension.deviceCustomString4:\\\"REFUSED\\\" OR cef.extension.deviceCustomString4:\\\"BADVERS\\\" OR cef.extension.deviceCustomString4:\\\"BADSIG\\\")\",\"language\":\"lucene\"},\"id\":\"3f31a7e4-acf3-4f2d-8b7d-e30522325b2a\",\"label\":\"HIGH\"},{\"color\":\"rgba(254,146,0,1)\",\"filter\":{\"query\":\"(event.severity:\\\"1\\\" OR event.severity:\\\"4\\\" OR event.severity:\\\"6\\\" OR event.severity:\\\"7\\\" OR event.severity:\\\"8\\\" OR event.severity:\\\"9\\\" OR event.severity:\\\"10\\\" OR event.severity:\\\"17\\\" OR event.severity:\\\"18\\\" OR event.severity:\\\"19\\\" OR event.severity:\\\"20\\\" OR event.severity:\\\"21\\\" OR event.severity:\\\"22\\\" OR cef.extension.deviceCustomString4:\\\"Error\\\" OR cef.extension.deviceCustomString4:\\\"ERROR\\\" OR cef.extension.deviceCustomString4:\\\"Warning\\\" OR cef.extension.deviceCustomString4:\\\"WARNING\\\" OR cef.extension.deviceCustomString4:\\\"FORMERR\\\" OR cef.extension.deviceCustomString4:\\\"NOTIMP\\\" OR cef.extension.deviceCustomString4:\\\"YXDOMAIN\\\" OR cef.extension.deviceCustomString4:\\\"YXRRSET\\\" OR cef.extension.deviceCustomString4:\\\"NXRRSET\\\" OR cef.extension.deviceCustomString4:\\\"NOTAUTH\\\" OR cef.extension.deviceCustomString4:\\\"NOTZONE\\\" OR cef.extension.deviceCustomString4:\\\"BADKEY\\\" OR cef.extension.deviceCustomString4:\\\"BADTIME\\\" OR cef.extension.deviceCustomString4:\\\"BADMODE\\\" OR cef.extension.deviceCustomString4:\\\"BADNAME\\\" OR cef.extension.deviceCustomString4:\\\"BADALG\\\" OR cef.extension.deviceCustomString4:\\\"BADTRUNC\\\")\",\"language\":\"lucene\"},\"id\":\"7949d31b-8aae-433a-b7cf-6939a8728cc9\",\"label\":\"MEDIUM\"},{\"color\":\"rgba(252,220,0,1)\",\"filter\":{\"query\":\"(NOT (event.severity:\\\"2\\\" OR event.severity:\\\"3\\\" OR event.severity:\\\"5\\\" OR event.severity:\\\"16\\\" OR cef.extension.deviceCustomString4:\\\"SERVFAIL\\\" OR cef.extension.deviceCustomString4:\\\"NXDOMAIN\\\" OR cef.extension.deviceCustomString4:\\\"REFUSED\\\" OR cef.extension.deviceCustomString4:\\\"BADVERS\\\" OR cef.extension.deviceCustomString4:\\\"BADSIG\\\" OR event.severity:\\\"1\\\" OR event.severity:\\\"4\\\" OR event.severity:\\\"6\\\" OR event.severity:\\\"7\\\" OR event.severity:\\\"8\\\" OR event.severity:\\\"9\\\" OR event.severity:\\\"10\\\" OR event.severity:\\\"17\\\" OR event.severity:\\\"18\\\" OR event.severity:\\\"19\\\" OR event.severity:\\\"20\\\" OR event.severity:\\\"21\\\" OR event.severity:\\\"22\\\" OR cef.extension.deviceCustomString4:\\\"Error\\\" OR cef.extension.deviceCustomString4:\\\"ERROR\\\" OR cef.extension.deviceCustomString4:\\\"Warning\\\" OR cef.extension.deviceCustomString4:\\\"WARNING\\\" OR cef.extension.deviceCustomString4:\\\"FORMERR\\\" OR cef.extension.deviceCustomString4:\\\"NOTIMP\\\" OR cef.extension.deviceCustomString4:\\\"YXDOMAIN\\\" OR cef.extension.deviceCustomString4:\\\"YXRRSET\\\" OR cef.extension.deviceCustomString4:\\\"NXRRSET\\\" OR cef.extension.deviceCustomString4:\\\"NOTAUTH\\\" OR cef.extension.deviceCustomString4:\\\"NOTZONE\\\" OR cef.extension.deviceCustomString4:\\\"BADKEY\\\" OR cef.extension.deviceCustomString4:\\\"BADTIME\\\" OR cef.extension.deviceCustomString4:\\\"BADMODE\\\" OR cef.extension.deviceCustomString4:\\\"BADNAME\\\" OR cef.extension.deviceCustomString4:\\\"BADALG\\\" OR cef.extension.deviceCustomString4:\\\"BADTRUNC\\\"))\",\"language\":\"lucene\"},\"id\":\"d2627211-5f9e-4c65-8a47-1cd6f085939d\",\"label\":\"LOW\"}],\"split_mode\":\"filters\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a5fda184-fdd6-4221-ab59-492eab162f0a\",\"label\":\"Count by Event Type\",\"line_width\":1,\"metrics\":[{\"id\":\"e147ba1c-b13a-496f-9841-b99ddee81c5a\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cef.device.event_class_id\",\"terms_size\":\"20\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Events Types by Severity [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f0e60404-ddf4-4b46-8e45-e28c4fb6d60d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3MzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Destinations by Size [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destinations\",\"field\":\"destination.domain\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Sources\",\"field\":\"source.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Count\"},\"schema\":\"metric\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 10 Destinations by Size [Filebeat CEF]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"1b9cc5b7-7747-49de-96b1-a4bc7f675716","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"f85a3444-8a43-4e46-b872-4e44bc25d0f3","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3MzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":" Dashboard Navigation [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Network Overview](#/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71) | [Network Suspicious Activity](#/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619) | [Endpoint Overview](#dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b) | [Endpoint OS Activity](#/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9) | [Microsoft DNS Overview](#/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41)\"},\"title\":\" Dashboard Navigation [Filebeat CEF]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"677891a1-90c4-4273-b126-f0e54689bd76","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Sources by Size [Filebeat CEF]","uiStateJSON":"{\"P-11\": {\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}, \"P-13\": {\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}, \"P-2\": {\"mapCenter\": [-0.17578097424708533, 0], \"mapZoom\": 0}, \"P-3\": {\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}, \"P-4\": {\"mapCenter\": [-0.17578097424708533, 0], \"mapZoom\": 0}, \"P-5\": {\"vis\": {\"defaultColors\": {\"0 - 18,000\": \"rgb(247,251,255)\", \"108,000 - 126,000\": \"rgb(74,152,201)\", \"126,000 - 144,000\": \"rgb(46,126,188)\", \"144,000 - 162,000\": \"rgb(23,100,171)\", \"162,000 - 180,000\": \"rgb(8,74,145)\", \"18,000 - 36,000\": \"rgb(227,238,249)\", \"36,000 - 54,000\": \"rgb(208,225,242)\", \"54,000 - 72,000\": \"rgb(182,212,233)\", \"72,000 - 90,000\": \"rgb(148,196,223)\", \"90,000 - 108,000\": \"rgb(107,174,214)\"}, \"legendOpen\": false}}, \"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Sources\",\"field\":\"source.domain\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destinations\",\"field\":\"destination.domain\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Count\"},\"schema\":\"metric\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 10 Sources by Size [Filebeat CEF]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"26a65f68-d7a6-4b47-befc-c5a6819bb91b","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"f85a3444-8a43-4e46-b872-4e44bc25d0f3","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3MzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events by Direction [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.device.product:\\\"DNS Trace Log\\\"\"},\"id\":\"be556a57-cd1c-496c-8714-0bd210947c85\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":\"0.2\",\"filter\":{\"language\":\"lucene\",\"query\":\"device\"},\"formatter\":\"number\",\"id\":\"9aae7344-9de9-4378-b21d-296cb964f93b\",\"label\":\"Inbound Requests\",\"line_width\":1,\"metrics\":[{\"id\":\"1cd0b964-45cf-408e-a7e4-e26955f8a3b0\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"rgba(0,156,224,1)\",\"filter\":{\"language\":\"lucene\",\"query\":\"deviceDirection:\\\"0\\\"\"},\"id\":\"f860f6e0-fbd4-4949-8046-6300322dfe84\",\"label\":\"Inbound Requests\"}],\"split_mode\":\"filters\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"ed1abe18-e01b-4202-9db4-06fda10692e0\",\"label\":\"Outbound Requests\",\"line_width\":1,\"metrics\":[{\"id\":\"cfbcfc79-394b-4ec0-a2c2-7a47177d6469\",\"type\":\"count\"},{\"id\":\"6bc37118-ddac-41ec-85b3-9db7e1b3636b\",\"script\":\"params.outbound > 0 ? params.outbound * -1 : 0\",\"type\":\"calculation\",\"variables\":[{\"field\":\"cfbcfc79-394b-4ec0-a2c2-7a47177d6469\",\"id\":\"f73f4f22-03d5-446a-b031-04eee531e3cc\",\"name\":\"outbound\"}]}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"rgba(211,49,21,1)\",\"filter\":{\"query\":\"deviceDirection:\\\"1\\\"\",\"language\":\"lucene\"},\"id\":\"a9c50e1b-8f11-4bc2-9077-bb8870ed0b62\",\"label\":\"Outbound Requests\"}],\"split_mode\":\"filters\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Events by Direction [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"16aef3e9-e33b-4bab-b32f-d8c5b1263ac0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3NDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events by Size [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.device.product:\\\"DNS Trace Log\\\"\"},\"id\":\"6e634117-6b30-411c-b74c-75510befe42f\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"filter\":{\"language\":\"lucene\",\"query\":\"deviceDirection:\\\"0\\\"\"},\"formatter\":\"bytes\",\"id\":\"28b1fb5b-0f16-4519-b901-4dd2dcc39915\",\"label\":\"Inbound Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"source.bytes\",\"id\":\"f613f33f-6459-4e46-a3a0-c36c48c46b2e\",\"type\":\"sum\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"filter\":{\"language\":\"lucene\",\"query\":\"deviceDirection:\\\"1\\\"\"},\"formatter\":\"bytes\",\"id\":\"5a5c2529-4990-4006-b039-c94069ff6b7e\",\"label\":\"Outbound Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"source.bytes\",\"id\":\"b69501e7-56d5-4c38-81d1-34d778c81e11\",\"type\":\"sum\"},{\"id\":\"0aaab374-5845-44ab-94f5-ac4fab25c287\",\"script\":\"params.outbound_bytes >= 0 ? params.outbound_bytes * -1 : 0\",\"type\":\"calculation\",\"variables\":[{\"field\":\"b69501e7-56d5-4c38-81d1-34d778c81e11\",\"id\":\"23b8c41c-0e98-4ace-8bca-3593e46cd955\",\"name\":\"outbound_bytes\"}]}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Events by Size [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f3c573ad-2c16-4de5-9ec3-0a47141d4fa0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3NDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top Destinations by Events [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"destination.geo.location\",\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":0,\"heatMinOpacity\":0.1,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Shaded Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Top Destinations by Events [Filebeat CEF]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"1b521f56-8089-433f-88f7-56aba867e07d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"f85a3444-8a43-4e46-b872-4e44bc25d0f3","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3NDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top Sources by Events [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":0,\"heatMinOpacity\":0.1,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Shaded Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Top Sources by Events [Filebeat CEF]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"581a296e-e34a-48f1-93e4-fc4bdadfc68d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"f85a3444-8a43-4e46-b872-4e44bc25d0f3","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3NDMsMV0="} +{"attributes":{"description":"Overview of Microsoft DNS activity.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"lucene\", \"query\": \"*\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"1\",\"w\":8,\"x\":40,\"y\":4},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"3\",\"w\":40,\"x\":0,\"y\":4},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"5\",\"w\":24,\"x\":0,\"y\":32},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 18k\":\"rgb(247,251,255)\",\"108k - 126k\":\"rgb(74,152,201)\",\"126k - 144k\":\"rgb(46,126,188)\",\"144k - 162k\":\"rgb(23,100,171)\",\"162k - 180k\":\"rgb(8,74,145)\",\"18k - 36k\":\"rgb(227,238,249)\",\"36k - 54k\":\"rgb(208,225,242)\",\"54k - 72k\":\"rgb(182,212,233)\",\"72k - 90k\":\"rgb(148,196,223)\",\"90k - 108k\":\"rgb(107,174,214)\"},\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":48},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":32},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"9\",\"w\":48,\"x\":0,\"y\":12},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"11\",\"w\":24,\"x\":24,\"y\":56},\"panelIndex\":\"11\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"12\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"13\",\"w\":24,\"x\":0,\"y\":56},\"panelIndex\":\"13\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"14\",\"w\":24,\"x\":0,\"y\":20},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"15\",\"w\":24,\"x\":24,\"y\":20},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"16\",\"w\":24,\"x\":24,\"y\":72},\"panelIndex\":\"16\",\"embeddableConfig\":{\"mapCenter\":[12.211180191503997,0],\"mapZoom\":1,\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"17\",\"w\":24,\"x\":0,\"y\":72},\"panelIndex\":\"17\",\"embeddableConfig\":{\"mapCenter\":[-0.17578097424708533,0],\"mapZoom\":1,\"enhancements\":{}},\"panelRefName\":\"panel_17\"}]","refreshInterval":{"display":"Off","pause":false,"value":0},"timeFrom":"now-24h","timeRestore":true,"timeTo":"now","title":"[Filebeat CEF] Microsoft DNS Overview","version":1},"coreMigrationVersion":"8.0.0","id":"56428e01-0c47-4770-8ba4-9345a029ea41","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"7e2b0659-0760-4182-8b29-3ee69f26bc6f","name":"1:panel_1","type":"visualization"},{"id":"249e2737-b41f-4115-b303-88bc9d279655","name":"3:panel_3","type":"visualization"},{"id":"566d8b4e-ec5c-4b8b-bd68-3cc9cb236110","name":"5:panel_5","type":"visualization"},{"id":"759e8dc3-0fdb-4cb6-ba47-87a2e2ff8df3","name":"6:panel_6","type":"visualization"},{"id":"fcf798a8-db8f-4492-827b-8fa7581108a9","name":"7:panel_7","type":"visualization"},{"id":"f0e60404-ddf4-4b46-8e45-e28c4fb6d60d","name":"9:panel_9","type":"visualization"},{"id":"1b9cc5b7-7747-49de-96b1-a4bc7f675716","name":"11:panel_11","type":"visualization"},{"id":"677891a1-90c4-4273-b126-f0e54689bd76","name":"12:panel_12","type":"visualization"},{"id":"26a65f68-d7a6-4b47-befc-c5a6819bb91b","name":"13:panel_13","type":"visualization"},{"id":"16aef3e9-e33b-4bab-b32f-d8c5b1263ac0","name":"14:panel_14","type":"visualization"},{"id":"f3c573ad-2c16-4de5-9ec3-0a47141d4fa0","name":"15:panel_15","type":"visualization"},{"id":"1b521f56-8089-433f-88f7-56aba867e07d","name":"16:panel_16","type":"visualization"},{"id":"581a296e-e34a-48f1-93e4-fc4bdadfc68d","name":"17:panel_17","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3MzAsMV0="} diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-overview.json b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-overview.json deleted file mode 100644 index 46d562142bb..00000000000 --- a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-overview.json +++ /dev/null @@ -1,2354 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Network data overview.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "lucene", - "query": "*" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "1", - "w": 48, - "x": 0, - "y": 44 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "2", - "w": 48, - "x": 0, - "y": 68 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "5", - "w": 48, - "x": 0, - "y": 12 - }, - "panelIndex": "5", - "panelRefName": "panel_2", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "6", - "w": 48, - "x": 0, - "y": 60 - }, - "panelIndex": "6", - "panelRefName": "panel_3", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - }, - "legendOpen": false - } - }, - "gridData": { - "h": 8, - "i": "7", - "w": 40, - "x": 0, - "y": 4 - }, - "panelIndex": "7", - "panelRefName": "panel_4", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "colors": { - "/Attempt": "#0A50A1", - "/Failure": "#BF1B00", - "/Success": "#629E51" - } - } - }, - "gridData": { - "h": 12, - "i": "9", - "w": 16, - "x": 0, - "y": 20 - }, - "panelIndex": "9", - "panelRefName": "panel_5", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "colors": { - "/Attempt": "#0A50A1", - "/Failure": "#BF1B00", - "/Success": "#629E51" - } - } - }, - "gridData": { - "h": 12, - "i": "11", - "w": 16, - "x": 16, - "y": 20 - }, - "panelIndex": "11", - "panelRefName": "panel_6", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 12, - "i": "13", - "w": 32, - "x": 0, - "y": 32 - }, - "panelIndex": "13", - "panelRefName": "panel_7", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "defaultColors": { - "0% - 17%": "rgb(255,255,204)", - "17% - 34%": "rgb(255,230,146)", - "34% - 50%": "rgb(254,191,90)", - "50% - 67%": "rgb(253,141,60)", - "67% - 84%": "rgb(244,61,37)", - "84% - 100%": "rgb(202,8,35)" - }, - "legendOpen": false - } - }, - "gridData": { - "h": 12, - "i": "15", - "w": 16, - "x": 32, - "y": 32 - }, - "panelIndex": "15", - "panelRefName": "panel_8", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "colors": { - "Anti-Virus": "#EF843C", - "Content Security": "#7EB26D", - "Firewall": "#E24D42", - "Integrated Security": "#962D82", - "Network-based IDS/IPS": "#1F78C1", - "Operating System": "#1F78C1", - "VPN": "#EAB839" - } - } - }, - "gridData": { - "h": 12, - "i": "16", - "w": 16, - "x": 32, - "y": 20 - }, - "panelIndex": "16", - "panelRefName": "panel_9", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "17", - "w": 48, - "x": 0, - "y": 52 - }, - "panelIndex": "17", - "panelRefName": "panel_10", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 16, - "i": "18", - "w": 24, - "x": 0, - "y": 76 - }, - "panelIndex": "18", - "panelRefName": "panel_11", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 16, - "i": "19", - "w": 24, - "x": 24, - "y": 76 - }, - "panelIndex": "19", - "panelRefName": "panel_12", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "20", - "w": 8, - "x": 40, - "y": 4 - }, - "panelIndex": "20", - "panelRefName": "panel_13", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 4, - "i": "21", - "w": 48, - "x": 0, - "y": 0 - }, - "panelIndex": "21", - "panelRefName": "panel_14", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "mapCenter": [ - -0.3515602939922709, - 0 - ], - "mapZoom": 1 - }, - "gridData": { - "h": 24, - "i": "24", - "w": 24, - "x": 0, - "y": 92 - }, - "panelIndex": "24", - "panelRefName": "panel_15", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "mapCenter": [ - -0.3515602939922709, - 0 - ], - "mapZoom": 1 - }, - "gridData": { - "h": 24, - "i": "25", - "w": 24, - "x": 24, - "y": 92 - }, - "panelIndex": "25", - "panelRefName": "panel_16", - "version": "7.3.0" - } - ], - "refreshInterval": { - "display": "Off", - "pause": false, - "value": 0 - }, - "timeFrom": "now-24h", - "timeRestore": true, - "timeTo": "now", - "title": "[Filebeat CEF] Network Overview Dashboard", - "version": 1 - }, - "id": "dd0bc9af-2e89-4150-9b42-62517ea56b71", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "f5258de9-71f7-410f-b713-201007f77470", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "0abfc226-535b-45a2-b534-e9bc87e5584f", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "a97e3628-022b-46cf-8f29-a73cf9bb4e26", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "499f50ba-2f84-4f7c-9021-73a4efc47921", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "d061c7a9-7f92-4bf4-b35c-499b9f4b987a", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "b1002b5c-08fc-4bbe-b9a0-6243a8637e60", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "df056709-2deb-4363-ae7a-b0148ea456c6", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "e89a64e8-928c-41fc-8745-3c8157b21cdb", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "a729c249-8d34-4eb1-bbb0-5d25cf224114", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "3c19f138-2ab3-4ecb-bb1b-86fb90158042", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "e513c269-350c-40c3-ac20-16c5782103b8", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "8f6075c5-f525-4173-92a4-3a56e96e362d", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "013ff153-7b80-490b-8fec-6e56cba785ed", - "name": "panel_12", - "type": "visualization" - }, - { - "id": "33747d52-ec4c-4d91-86d8-fbdf9b9c82db", - "name": "panel_13", - "type": "visualization" - }, - { - "id": "c394e650-b16c-407c-b305-bd409d69d433", - "name": "panel_14", - "type": "visualization" - }, - { - "id": "8b31af8b-522e-41fe-b9d6-9a3451b54108", - "name": "panel_15", - "type": "visualization" - }, - { - "id": "4fccee0c-7193-4aa8-919f-0b0b0a16d013", - "name": "panel_16", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-10-25T16:30:05.361Z", - "version": "WzEzMDcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 10 Application Protocols [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "network.application", - "order": "desc", - "orderBy": "1", - "size": 20 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "hideLabel": false, - "maxFontSize": 72, - "minFontSize": 26, - "orientation": "single", - "scale": "square root" - }, - "title": "Top 10 Application Protocols [Filebeat CEF]", - "type": "tagcloud" - } - }, - "id": "f5258de9-71f7-410f-b713-201007f77470", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:05.361Z", - "version": "WzEzMDgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Bandwidth Utilization [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color": null, - "bar_color_rules": [ - { - "id": "23db5bf6-f787-474e-86ab-76362432e984" - } - ], - "filter": { - "language": "lucene", - "query": "cef.extensions.categoryDeviceGroup:\"/Firewall\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Network\" OR cef.extensions.categoryDeviceGroup:\"/VPN\" " - }, - "id": "ec53a1d3-213c-4b0f-a074-5005a84cdb83", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "d27f09dc-b07e-493f-a223-a85033ad6548", - "label": "Inbound", - "line_width": 1, - "metrics": [ - { - "field": "source.bytes", - "id": "9ce9ec3a-2f11-4935-91b2-531494d2a619", - "type": "sum" - } - ], - "override_index_pattern": 1, - "point_size": 1, - "seperate_axis": 0, - "series_index_pattern": "filebeat-*", - "series_time_field": "@timestamp", - "split_mode": "everything", - "stacked": "none", - "terms_field": "observer.hostname", - "terms_order_by": "_count" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "b1ef2c75-5916-469d-8790-5b213367a5a0", - "label": "Outbound", - "line_width": 1, - "metrics": [ - { - "field": "destination.bytes", - "id": "11b1852f-9b62-4e96-8128-522e6c5bf16d", - "type": "sum" - }, - { - "id": "2a6b00bf-1658-4d02-b4e2-61ad6e4c3a9b", - "script": "params.outbound \u003e 0 ? params.outbound * -1 : 0", - "type": "calculation", - "variables": [ - { - "field": "11b1852f-9b62-4e96-8128-522e6c5bf16d", - "id": "c57067f2-2927-41d8-97f4-9f47b3b3bcae", - "name": "outbound" - } - ] - } - ], - "override_index_pattern": 1, - "point_size": 1, - "seperate_axis": 0, - "series_index_pattern": "filebeat-*", - "series_time_field": "@timestamp", - "split_mode": "everything", - "stacked": "none", - "steps": 0 - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Bandwidth Utilization [Filebeat CEF]", - "type": "metrics" - } - }, - "id": "0abfc226-535b-45a2-b534-e9bc87e5584f", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:05.361Z", - "version": "WzEzMDksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Events by Source [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color": null, - "background_color_rules": [ - { - "id": "2fddda5e-d6fc-4581-bbb7-574e1017ae8f" - } - ], - "bar_color_rules": [ - { - "id": "23db5bf6-f787-474e-86ab-76362432e984" - } - ], - "filter": { - "language": "lucene", - "query": "cef.extensions.categoryDeviceType:\"Firewall\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Network\" OR cef.extensions.categoryDeviceGroup:\"/VPN\"" - }, - "gauge_color_rules": [ - { - "id": "3ed9a6b9-fd2e-4e0d-bd83-7ad467b3c8a4" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "ec53a1d3-213c-4b0f-a074-5005a84cdb83", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": "0", - "filter": { - "language": "lucene", - "query": "cef.extensions.categoryDeviceGroup:\"/Firewall\"" - }, - "formatter": "number", - "id": "04c44192-1112-4515-a8d9-e9e13215aecf", - "label": "Events", - "line_width": "3", - "metrics": [ - { - "id": "c5dbb050-fc10-4a0d-abe0-bc093db6cf0e", - "type": "count" - }, - { - "alpha": 0.3, - "beta": 0.1, - "field": "c5dbb050-fc10-4a0d-abe0-bc093db6cf0e", - "gamma": 0.3, - "id": "e5a48d9d-7834-4da7-8d78-7d4528136b9b", - "model_type": "simple", - "multiplicative": false, - "period": 1, - "sigma": "", - "type": "moving_average", - "window": "10" - } - ], - "point_size": "0", - "seperate_axis": 1, - "split_filters": [ - { - "color": "rgba(244,78,59,1)", - "filter": { - "language": "lucene", - "query": "cef.extensions.categoryDeviceGroup:\"/Firewall\"" - }, - "id": "0c929603-fc92-4ebc-a963-fe2795417d89", - "label": "Firewall Events" - }, - { - "color": "rgba(254,146,0,1)", - "filter": { - "language": "lucene", - "query": "cef.extensions.categoryDeviceGroup:\"/IDS/Network\"" - }, - "id": "7798827b-87ab-436b-9e62-9fe36143eb9b", - "label": "Intrusion Detection Events" - }, - { - "color": "rgba(252,220,0,1)", - "filter": { - "language": "lucene", - "query": "cef.extensions.categoryDeviceGroup:\"/VPN\"" - }, - "id": "490f7ad7-8218-45f9-85a9-a4dd9ed7da13", - "label": "VPN" - } - ], - "split_mode": "filters", - "stacked": "none", - "steps": 0, - "terms_field": "observer.hostname", - "terms_order_by": null - }, - { - "axis_position": "left", - "chart_type": "bar", - "color": "rgba(0,156,224,1)", - "fill": "0.5", - "formatter": "number", - "id": "29d6131a-5143-4a64-b597-9538692f0269", - "label": "Moving Average by Device Hosts", - "line_width": 1, - "metrics": [ - { - "id": "dc74afdf-64ad-47d6-bbed-114e09d12255", - "type": "count" - }, - { - "alpha": 0.3, - "beta": 0.1, - "field": "dc74afdf-64ad-47d6-bbed-114e09d12255", - "gamma": 0.3, - "id": "87e21aaa-12eb-4213-bb37-41cb19219240", - "model_type": "simple", - "multiplicative": false, - "period": 1, - "type": "moving_average", - "window": "10" - } - ], - "point_size": 1, - "seperate_axis": 1, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "observer.hostname", - "terms_size": "10" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Events by Source [Filebeat CEF]", - "type": "metrics" - } - }, - "id": "a97e3628-022b-46cf-8f29-a73cf9bb4e26", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:05.361Z", - "version": "WzEzMTAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Events by Outcome [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color": null, - "background_color_rules": [ - { - "id": "2fddda5e-d6fc-4581-bbb7-574e1017ae8f" - } - ], - "bar_color_rules": [ - { - "bar_color": null, - "id": "23db5bf6-f787-474e-86ab-76362432e984", - "value": 0 - } - ], - "drilldown_url": "", - "filter": { - "language": "lucene", - "query": "cef.extensions.categoryDeviceType:\"Firewall\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Network\" OR cef.extensions.categoryDeviceGroup:\"/VPN\"" - }, - "gauge_color_rules": [ - { - "id": "3ed9a6b9-fd2e-4e0d-bd83-7ad467b3c8a4" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "ec53a1d3-213c-4b0f-a074-5005a84cdb83", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": "0", - "filter": { - "language": "lucene", - "query": "(cef.extensions.categoryDeviceGroup:\"/Firewall\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Network\" OR cef.extensions.categoryDeviceGroup:\"/VPN\") AND _exists_:cef.extensions.categoryOutcome" - }, - "formatter": "number", - "id": "04c44192-1112-4515-a8d9-e9e13215aecf", - "label": "Events", - "line_width": "3", - "metrics": [ - { - "id": "c5dbb050-fc10-4a0d-abe0-bc093db6cf0e", - "type": "count" - }, - { - "alpha": 0.3, - "beta": 0.1, - "field": "c5dbb050-fc10-4a0d-abe0-bc093db6cf0e", - "gamma": 0.3, - "id": "c43af7e6-3f06-48a4-a7c3-7ba8bd6214f9", - "model_type": "simple", - "multiplicative": false, - "period": 1, - "type": "moving_average", - "window": "10" - } - ], - "point_size": "0", - "seperate_axis": 0, - "split_filters": [ - { - "color": "rgba(254,146,0,1)", - "filter": { - "language": "lucene", - "query": "cef.extensions.categoryDeviceGroup:\"/Firewall\"" - }, - "id": "4c7aac7d-2749-41b6-8136-40dc8636a7e7", - "label": "Firewall" - } - ], - "split_mode": "filter", - "stacked": "none", - "steps": 0, - "terms_field": "observer.hostname", - "terms_order_by": null - }, - { - "axis_position": "left", - "chart_type": "bar", - "color": "rgba(104,188,0,1)", - "fill": "1", - "formatter": "number", - "id": "29d6131a-5143-4a64-b597-9538692f0269", - "label": "Moving Average by Event Outcome", - "line_width": 1, - "metrics": [ - { - "id": "dc74afdf-64ad-47d6-bbed-114e09d12255", - "type": "count" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_filters": [ - { - "color": "rgba(104,188,0,0.35)", - "filter": "cef.extensions.categoryOutcome:\"/Success\"", - "id": "cb1ae397-13a0-4b6f-a848-bcdc96870f05", - "label": "Success" - }, - { - "color": "rgba(244,78,59,1)", - "filter": "cef.extensions.categoryOutcome:\"/Failure\"", - "id": "ef021c15-1b95-4334-bc3c-e2950e9b0f6f", - "label": "Failure" - }, - { - "color": "rgba(0,156,224,1)", - "filter": "cef.extensions.categoryOutcome:\"/Attempt\"", - "id": "2ff1e859-b178-4824-a0f2-69a115932b98", - "label": "Attempt" - } - ], - "split_mode": "filters", - "stacked": "stacked", - "terms_field": "cef.extensions.categoryOutcome", - "terms_size": "3" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Events by Outcome [Filebeat CEF]", - "type": "metrics" - } - }, - "id": "499f50ba-2f84-4f7c-9021-73a4efc47921", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:05.361Z", - "version": "WzEzMTEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Device Metrics Overview [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "8", - "params": { - "customLabel": "Event Count" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Devices", - "field": "observer.hostname" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Sources", - "field": "source.ip" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "Destinations", - "field": "destination.ip" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "7", - "params": { - "customLabel": "Ports", - "field": "destination.port" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "fontSize": "30", - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "12", - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "handleNoResults": true, - "type": "gauge" - }, - "title": "Device Metrics Overview [Filebeat CEF]", - "type": "metric" - } - }, - "id": "d061c7a9-7f92-4bf4-b35c-499b9f4b987a", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:05.361Z", - "version": "WzEzMTIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Outcome by Device Type [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "colors": { - "/Failure": "#BF1B00", - "/Success": "#629E51" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Firewall Types", - "field": "cef.extensions.categoryDeviceType", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Event Outcome", - "field": "cef.extensions.categoryOutcome", - "order": "desc", - "orderBy": "1", - "size": 3 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "rotate": 75, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Firewall Types" - }, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "orderBucketsBySum": true, - "radiusRatio": 9, - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "showCircles": true, - "times": [], - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "percentage", - "type": "square root" - }, - "show": true, - "style": {}, - "title": {}, - "type": "value" - } - ] - }, - "title": "Outcome by Device Type [Filebeat CEF]", - "type": "histogram" - } - }, - "id": "b1002b5c-08fc-4bbe-b9a0-6243a8637e60", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:05.361Z", - "version": "WzEzMTMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Destination Ports by Outcome [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "colors": { - "/Failure": "#BF1B00", - "/Success": "#629E51" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Protocols", - "field": "destination.port", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "cef.extensions.categoryOutcome", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "rotate": 75, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Protocols" - }, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": 9, - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "showCircles": true, - "times": [], - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "percentage", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Destination Ports by Outcome [Filebeat CEF]", - "type": "histogram" - } - }, - "id": "df056709-2deb-4363-ae7a-b0148ea456c6", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:05.361Z", - "version": "WzEzMTQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 10 Devices by Bandwidth [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Device", - "field": "observer.hostname", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Source(s)", - "field": "source.ip" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Destination(s)", - "field": "destination.ip" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "Destination Ports", - "field": "destination.port" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bandwidth (Incoming)", - "field": "source.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Bandwidth (Outgoing)", - "field": "destination.bytes" - }, - "schema": "metric", - "type": "sum" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top 10 Devices by Bandwidth [Filebeat CEF]", - "type": "table" - } - }, - "id": "e89a64e8-928c-41fc-8745-3c8157b21cdb", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:05.361Z", - "version": "WzEzMTUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 10 Devices by Outcome [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0% - 17%": "rgb(255,255,204)", - "17% - 34%": "rgb(255,230,146)", - "34% - 50%": "rgb(254,191,90)", - "50% - 67%": "rgb(253,141,60)", - "67% - 84%": "rgb(244,61,37)", - "84% - 100%": "rgb(202,8,35)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Device Host Names", - "field": "observer.hostname", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Event Outcome", - "field": "cef.extensions.categoryOutcome", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "colorSchema": "Yellow to Red", - "colorsNumber": 6, - "colorsRange": [], - "enableHover": true, - "invertColors": false, - "legendPosition": "right", - "percentageMode": true, - "setColorRange": false, - "times": [], - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "color": "#555", - "rotate": 0, - "show": false - }, - "scale": { - "defaultYExtents": false, - "type": "linear" - }, - "show": false, - "type": "value" - } - ] - }, - "title": "Top 10 Devices by Outcome [Filebeat CEF]", - "type": "heatmap" - } - }, - "id": "a729c249-8d34-4eb1-bbb0-5d25cf224114", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:05.361Z", - "version": "WzEzMTYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Device Type Breakdown [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Firewall Types", - "field": "cef.extensions.categoryDeviceType", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "legendPosition": "right" - }, - "title": "Device Type Breakdown [Filebeat CEF]", - "type": "pie" - } - }, - "id": "3c19f138-2ab3-4ecb-bb1b-86fb90158042", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:05.361Z", - "version": "WzEzMTcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Events by Device Types [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color": null, - "background_color_rules": [ - { - "id": "2fddda5e-d6fc-4581-bbb7-574e1017ae8f" - } - ], - "bar_color_rules": [ - { - "id": "23db5bf6-f787-474e-86ab-76362432e984" - } - ], - "filter": { - "language": "lucene", - "query": "cef.extensions.categoryDeviceType:\"Firewall\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Network\" OR cef.extensions.categoryDeviceGroup:\"/VPN\"" - }, - "gauge_color_rules": [ - { - "id": "3ed9a6b9-fd2e-4e0d-bd83-7ad467b3c8a4" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "ec53a1d3-213c-4b0f-a074-5005a84cdb83", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": "0", - "filter": "", - "formatter": "number", - "id": "04c44192-1112-4515-a8d9-e9e13215aecf", - "label": "Events", - "line_width": "3", - "metrics": [ - { - "id": "c5dbb050-fc10-4a0d-abe0-bc093db6cf0e", - "type": "count" - }, - { - "alpha": 0.3, - "beta": 0.1, - "field": "c5dbb050-fc10-4a0d-abe0-bc093db6cf0e", - "gamma": 0.3, - "id": "e5a48d9d-7834-4da7-8d78-7d4528136b9b", - "model_type": "simple", - "multiplicative": false, - "period": 1, - "sigma": "", - "type": "moving_average", - "window": "10" - } - ], - "point_size": "0", - "seperate_axis": 1, - "split_filters": [ - { - "color": "rgba(244,78,59,1)", - "filter": "cef.extensions.categoryDeviceGroup:\"/Firewall\"", - "id": "78bfdf07-ec02-4dd8-8ff4-b7e250c561c2", - "label": "Firewall" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "observer.hostname", - "terms_order_by": null - }, - { - "axis_position": "left", - "chart_type": "bar", - "color": "rgba(251,158,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "29d6131a-5143-4a64-b597-9538692f0269", - "label": "Top Device Types by Mvg Averages", - "line_width": 1, - "metrics": [ - { - "id": "dc74afdf-64ad-47d6-bbed-114e09d12255", - "type": "count" - }, - { - "alpha": 0.3, - "beta": 0.1, - "field": "dc74afdf-64ad-47d6-bbed-114e09d12255", - "gamma": 0.3, - "id": "87e21aaa-12eb-4213-bb37-41cb19219240", - "model_type": "simple", - "multiplicative": false, - "period": 1, - "type": "moving_average", - "window": "10" - } - ], - "point_size": 1, - "seperate_axis": 1, - "split_mode": "terms", - "stacked": "none", - "terms_field": "cef.extensions.categoryDeviceType", - "terms_size": "10" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Events by Device Types [Filebeat CEF]", - "type": "metrics" - } - }, - "id": "e513c269-350c-40c3-ac20-16c5782103b8", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:05.361Z", - "version": "WzEzMTgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 10 Source Countries by Events [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Total Events" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Source Country", - "field": "source.geo.country_iso_code", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Source Addresses", - "field": "source.ip" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Destination Addresses", - "field": "destination.ip" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Destination Ports", - "field": "destination.port" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top 10 Source Countries by Events [Filebeat CEF]", - "type": "table" - } - }, - "id": "8f6075c5-f525-4173-92a4-3a56e96e362d", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:05.361Z", - "version": "WzEzMTksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 20 Source Countries [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "source.geo.country_iso_code", - "order": "desc", - "orderBy": "1", - "size": 20 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "hideLabel": false, - "maxFontSize": 72, - "minFontSize": 26, - "orientation": "single", - "scale": "square root" - }, - "title": "Top 20 Source Countries [Filebeat CEF]", - "type": "tagcloud" - } - }, - "id": "013ff153-7b80-490b-8fec-6e56cba785ed", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:05.361Z", - "version": "WzEzMjAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Network - Event Throughput [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "3eadd451-5033-423f-88e3-814cc5e50b50" - } - ], - "bar_color_rules": [ - { - "id": "8d4596c5-49ad-429b-af54-5451b1c2e8d4" - } - ], - "filter": { - "language": "lucene", - "query": "cef.extensions.categoryDeviceType:\"Firewall\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Network\" OR cef.extensions.categoryDeviceGroup:\"/VPN\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "4d957654-cc7e-4ef3-8b29-61c0aeadd51a", - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "", - "gauge_style": "half", - "gauge_width": 10, - "id": "73968651-c41e-473e-a153-a025f49d1a1b", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": 0.5, - "formatter": "number", - "id": "90d7621e-3265-4fe8-8882-8df9605ea659", - "label": "Event Throughput", - "line_width": 1, - "metrics": [ - { - "id": "ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba", - "type": "count" - }, - { - "field": "ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba", - "id": "ca3a65d0-9f3d-42a9-9f4e-16f9e24cba19", - "type": "cumulative_sum" - }, - { - "field": "ca3a65d0-9f3d-42a9-9f4e-16f9e24cba19", - "id": "6db67bc1-7fff-47e7-a931-f797b1f76732", - "type": "derivative", - "unit": "1s" - }, - { - "alpha": 0.3, - "beta": 0.1, - "field": "6db67bc1-7fff-47e7-a931-f797b1f76732", - "gamma": 0.3, - "id": "92bc1447-2b30-498c-ae8a-c67904fc82b2", - "model_type": "simple", - "multiplicative": false, - "period": 1, - "type": "moving_average", - "window": "10" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}} / s" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Network - Event Throughput [Filebeat CEF]", - "type": "metrics" - } - }, - "id": "33747d52-ec4c-4d91-86d8-fbdf9b9c82db", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:06.345Z", - "version": "WzEzMzgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": " Dashboard Navigation [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "markdown": "[Network Overview](#/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71) | [Network Suspicious Activity](#/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619) | [Endpoint Overview](#dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b) | [Endpoint OS Activity](#/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9) | [Microsoft DNS Overview](#/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41)" - }, - "title": " Dashboard Navigation [Filebeat CEF]", - "type": "markdown" - } - }, - "id": "c394e650-b16c-407c-b305-bd409d69d433", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:05.361Z", - "version": "WzEzMjIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top Destination Locations by Events [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Event Count" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "customLabel": "Destination Location", - "field": "destination.geo.location", - "precision": 2, - "useGeocentroid": true - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "listeners": {}, - "params": { - "addTooltip": true, - "heatBlur": 15, - "heatMaxZoom": 0, - "heatMinOpacity": 0.1, - "heatNormalizeData": true, - "heatRadius": 25, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 0, - 0 - ], - "mapType": "Shaded Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "attribution": "Maps provided by USGS", - "format": "image/png", - "layers": "0", - "styles": "", - "transparent": true, - "version": "1.3.0" - }, - "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" - } - }, - "title": "Top Destination Locations by Events [Filebeat CEF]", - "type": "tile_map" - } - }, - "id": "8b31af8b-522e-41fe-b9d6-9a3451b54108", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:05.361Z", - "version": "WzEzMjMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top Source Locations by Events [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Event Count" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "customLabel": "Source Location", - "field": "source.geo.location", - "precision": 2, - "useGeocentroid": true - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "listeners": {}, - "params": { - "addTooltip": true, - "heatBlur": 15, - "heatMaxZoom": 0, - "heatMinOpacity": 0.1, - "heatNormalizeData": true, - "heatRadius": 25, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 0, - 0 - ], - "mapType": "Shaded Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "attribution": "Maps provided by USGS", - "format": "image/png", - "layers": "0", - "styles": "", - "transparent": true, - "version": "1.3.0" - }, - "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" - } - }, - "title": "Top Source Locations by Events [Filebeat CEF]", - "type": "tile_map" - } - }, - "id": "4fccee0c-7193-4aa8-919f-0b0b0a16d013", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:05.361Z", - "version": "WzEzMjQsMV0=" - }, - { - "attributes": { - "columns": [ - "priority", - "message", - "source.ip", - "source.port", - "destination.ip", - "destination.port", - "network.application", - "message", - "cef.extensions.categoryBehavior", - "cef.extensions.categoryOutcome", - "deviceAddress", - "cef.device.product", - "cef.device.vendor", - "cef.extensions.categoryDeviceGroup", - "cef.extensions.categoryDeviceType" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "cef.extensions.categoryDeviceGroup:\"/Firewall\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Network\" OR cef.extensions.categoryDeviceGroup:\"/VPN\"" - } - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Network Events [Filebeat CEF]", - "version": 1 - }, - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2019-10-25T16:30:05.361Z", - "version": "WzEzMjUsMV0=" - } - ], - "version": "7.4.1" -} diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-overview.ndjson b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-overview.ndjson new file mode 100644 index 00000000000..a1484e72eeb --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-overview.ndjson @@ -0,0 +1,19 @@ +{"attributes":{"columns":["priority","message","source.ip","source.port","destination.ip","destination.port","network.application","message","cef.extensions.categoryBehavior","cef.extensions.categoryOutcome","deviceAddress","cef.device.product","cef.device.vendor","cef.extensions.categoryDeviceGroup","cef.extensions.categoryDeviceType"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"query\", \"negate\": false, \"type\": \"custom\", \"value\": \"{\\\"terms\\\":{\\\"cef.extensions.categoryDeviceGroup\\\":[\\\"/VPN\\\",\\\"/IDS/Network\\\",\\\"/Firewall\\\"]}}\"}, \"query\": {\"terms\": {\"cef.extensions.categoryDeviceGroup\": [\"/VPN\", \"/IDS/Network\", \"/Firewall\"]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Network Events [Filebeat CEF]","version":1},"coreMigrationVersion":"8.0.0","id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Application Protocols [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.application\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"hideLabel\":false,\"maxFontSize\":72,\"minFontSize\":26,\"orientation\":\"single\",\"scale\":\"square root\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Application Protocols [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"f5258de9-71f7-410f-b713-201007f77470","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Bandwidth Utilization [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color\":null,\"bar_color_rules\":[{\"id\":\"23db5bf6-f787-474e-86ab-76362432e984\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Firewall\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\" OR cef.extensions.categoryDeviceGroup:\\\"/VPN\\\" \"},\"id\":\"ec53a1d3-213c-4b0f-a074-5005a84cdb83\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"d27f09dc-b07e-493f-a223-a85033ad6548\",\"label\":\"Inbound\",\"line_width\":1,\"metrics\":[{\"field\":\"source.bytes\",\"id\":\"9ce9ec3a-2f11-4935-91b2-531494d2a619\",\"type\":\"sum\"}],\"override_index_pattern\":1,\"point_size\":1,\"seperate_axis\":0,\"series_index_pattern\":\"filebeat-*\",\"series_time_field\":\"@timestamp\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"observer.hostname\",\"terms_order_by\":\"_count\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"b1ef2c75-5916-469d-8790-5b213367a5a0\",\"label\":\"Outbound\",\"line_width\":1,\"metrics\":[{\"field\":\"destination.bytes\",\"id\":\"11b1852f-9b62-4e96-8128-522e6c5bf16d\",\"type\":\"sum\"},{\"id\":\"2a6b00bf-1658-4d02-b4e2-61ad6e4c3a9b\",\"script\":\"params.outbound > 0 ? params.outbound * -1 : 0\",\"type\":\"calculation\",\"variables\":[{\"field\":\"11b1852f-9b62-4e96-8128-522e6c5bf16d\",\"id\":\"c57067f2-2927-41d8-97f4-9f47b3b3bcae\",\"name\":\"outbound\"}]}],\"override_index_pattern\":1,\"point_size\":1,\"seperate_axis\":0,\"series_index_pattern\":\"filebeat-*\",\"series_time_field\":\"@timestamp\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Bandwidth Utilization [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0abfc226-535b-45a2-b534-e9bc87e5584f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events by Source [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"2fddda5e-d6fc-4581-bbb7-574e1017ae8f\"}],\"bar_color_rules\":[{\"id\":\"23db5bf6-f787-474e-86ab-76362432e984\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceType:\\\"Firewall\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\" OR cef.extensions.categoryDeviceGroup:\\\"/VPN\\\"\"},\"gauge_color_rules\":[{\"id\":\"3ed9a6b9-fd2e-4e0d-bd83-7ad467b3c8a4\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"ec53a1d3-213c-4b0f-a074-5005a84cdb83\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Firewall\\\"\"},\"formatter\":\"number\",\"id\":\"04c44192-1112-4515-a8d9-e9e13215aecf\",\"label\":\"Events\",\"line_width\":\"3\",\"metrics\":[{\"id\":\"c5dbb050-fc10-4a0d-abe0-bc093db6cf0e\",\"type\":\"count\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"c5dbb050-fc10-4a0d-abe0-bc093db6cf0e\",\"gamma\":0.3,\"id\":\"e5a48d9d-7834-4da7-8d78-7d4528136b9b\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"sigma\":\"\",\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":\"0\",\"seperate_axis\":1,\"split_filters\":[{\"color\":\"rgba(244,78,59,1)\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Firewall\\\"\"},\"id\":\"0c929603-fc92-4ebc-a963-fe2795417d89\",\"label\":\"Firewall Events\"},{\"color\":\"rgba(254,146,0,1)\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\"\"},\"id\":\"7798827b-87ab-436b-9e62-9fe36143eb9b\",\"label\":\"Intrusion Detection Events\"},{\"color\":\"rgba(252,220,0,1)\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/VPN\\\"\"},\"id\":\"490f7ad7-8218-45f9-85a9-a4dd9ed7da13\",\"label\":\"VPN\"}],\"split_mode\":\"filters\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"observer.hostname\",\"terms_order_by\":null,\"split_color_mode\":\"gradient\"},{\"axis_position\":\"left\",\"chart_type\":\"bar\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"29d6131a-5143-4a64-b597-9538692f0269\",\"label\":\"Moving Average by Device Hosts\",\"line_width\":1,\"metrics\":[{\"id\":\"dc74afdf-64ad-47d6-bbed-114e09d12255\",\"type\":\"count\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"dc74afdf-64ad-47d6-bbed-114e09d12255\",\"gamma\":0.3,\"id\":\"87e21aaa-12eb-4213-bb37-41cb19219240\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":1,\"seperate_axis\":1,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"observer.hostname\",\"terms_size\":\"10\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Events by Source [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a97e3628-022b-46cf-8f29-a73cf9bb4e26","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events by Outcome [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"2fddda5e-d6fc-4581-bbb7-574e1017ae8f\"}],\"bar_color_rules\":[{\"bar_color\":null,\"id\":\"23db5bf6-f787-474e-86ab-76362432e984\",\"value\":0}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceType:\\\"Firewall\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\" OR cef.extensions.categoryDeviceGroup:\\\"/VPN\\\"\"},\"gauge_color_rules\":[{\"id\":\"3ed9a6b9-fd2e-4e0d-bd83-7ad467b3c8a4\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"ec53a1d3-213c-4b0f-a074-5005a84cdb83\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"lucene\",\"query\":\"(cef.extensions.categoryDeviceGroup:\\\"/Firewall\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\" OR cef.extensions.categoryDeviceGroup:\\\"/VPN\\\") AND _exists_:cef.extensions.categoryOutcome\"},\"formatter\":\"number\",\"id\":\"04c44192-1112-4515-a8d9-e9e13215aecf\",\"label\":\"Events\",\"line_width\":\"3\",\"metrics\":[{\"id\":\"c5dbb050-fc10-4a0d-abe0-bc093db6cf0e\",\"type\":\"count\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"c5dbb050-fc10-4a0d-abe0-bc093db6cf0e\",\"gamma\":0.3,\"id\":\"c43af7e6-3f06-48a4-a7c3-7ba8bd6214f9\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_filters\":[{\"color\":\"rgba(254,146,0,1)\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Firewall\\\"\"},\"id\":\"4c7aac7d-2749-41b6-8136-40dc8636a7e7\",\"label\":\"Firewall\"}],\"split_mode\":\"filter\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"observer.hostname\",\"terms_order_by\":null,\"split_color_mode\":\"gradient\"},{\"axis_position\":\"left\",\"chart_type\":\"bar\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"1\",\"formatter\":\"number\",\"id\":\"29d6131a-5143-4a64-b597-9538692f0269\",\"label\":\"Moving Average by Event Outcome\",\"line_width\":1,\"metrics\":[{\"id\":\"dc74afdf-64ad-47d6-bbed-114e09d12255\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"rgba(104,188,0,0.35)\",\"filter\":{\"query\":\"cef.extensions.categoryOutcome:\\\"/Success\\\"\",\"language\":\"lucene\"},\"id\":\"cb1ae397-13a0-4b6f-a848-bcdc96870f05\",\"label\":\"Success\"},{\"color\":\"rgba(244,78,59,1)\",\"filter\":{\"query\":\"cef.extensions.categoryOutcome:\\\"/Failure\\\"\",\"language\":\"lucene\"},\"id\":\"ef021c15-1b95-4334-bc3c-e2950e9b0f6f\",\"label\":\"Failure\"},{\"color\":\"rgba(0,156,224,1)\",\"filter\":{\"query\":\"cef.extensions.categoryOutcome:\\\"/Attempt\\\"\",\"language\":\"lucene\"},\"id\":\"2ff1e859-b178-4824-a0f2-69a115932b98\",\"label\":\"Attempt\"}],\"split_mode\":\"filters\",\"stacked\":\"stacked\",\"terms_field\":\"cef.extensions.categoryOutcome\",\"terms_size\":\"3\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Events by Outcome [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"499f50ba-2f84-4f7c-9021-73a4efc47921","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Device Metrics Overview [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Devices\",\"field\":\"observer.hostname\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Sources\",\"field\":\"source.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Destinations\",\"field\":\"destination.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"Ports\",\"field\":\"destination.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"30\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"12\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Device Metrics Overview [Filebeat CEF]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"d061c7a9-7f92-4bf4-b35c-499b9f4b987a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Outcome by Device Type [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"colors\": {\"/Failure\": \"#BF1B00\", \"/Success\": \"#629E51\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Firewall Types\",\"field\":\"cef.extensions.categoryDeviceType\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Event Outcome\",\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":3},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"rotate\":75,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Firewall Types\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"orderBucketsBySum\":true,\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"percentage\",\"type\":\"square root\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"value\"}]},\"title\":\"Outcome by Device Type [Filebeat CEF]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"b1002b5c-08fc-4bbe-b9a0-6243a8637e60","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Destination Ports by Outcome [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"colors\": {\"/Failure\": \"#BF1B00\", \"/Success\": \"#629E51\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Protocols\",\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"rotate\":75,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Protocols\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"percentage\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}]},\"title\":\"Destination Ports by Outcome [Filebeat CEF]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"df056709-2deb-4363-ae7a-b0148ea456c6","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Devices by Bandwidth [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Device\",\"field\":\"observer.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Source(s)\",\"field\":\"source.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Destination(s)\",\"field\":\"destination.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Destination Ports\",\"field\":\"destination.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bandwidth (Incoming)\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Bandwidth (Outgoing)\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 10 Devices by Bandwidth [Filebeat CEF]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"e89a64e8-928c-41fc-8745-3c8157b21cdb","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Devices by Outcome [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0% - 17%\": \"rgb(255,255,204)\", \"17% - 34%\": \"rgb(255,230,146)\", \"34% - 50%\": \"rgb(254,191,90)\", \"50% - 67%\": \"rgb(253,141,60)\", \"67% - 84%\": \"rgb(244,61,37)\", \"84% - 100%\": \"rgb(202,8,35)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Device Host Names\",\"field\":\"observer.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Event Outcome\",\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"colorsNumber\":6,\"colorsRange\":[],\"enableHover\":true,\"invertColors\":false,\"legendPosition\":\"right\",\"percentageMode\":true,\"setColorRange\":false,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"#555\",\"rotate\":0,\"show\":false},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Top 10 Devices by Outcome [Filebeat CEF]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"8.0.0","id":"a729c249-8d34-4eb1-bbb0-5d25cf224114","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Device Type Breakdown [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Firewall Types\",\"field\":\"cef.extensions.categoryDeviceType\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Device Type Breakdown [Filebeat CEF]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"3c19f138-2ab3-4ecb-bb1b-86fb90158042","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events by Device Types [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"2fddda5e-d6fc-4581-bbb7-574e1017ae8f\"}],\"bar_color_rules\":[{\"id\":\"23db5bf6-f787-474e-86ab-76362432e984\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceType:\\\"Firewall\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\" OR cef.extensions.categoryDeviceGroup:\\\"/VPN\\\"\"},\"gauge_color_rules\":[{\"id\":\"3ed9a6b9-fd2e-4e0d-bd83-7ad467b3c8a4\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"ec53a1d3-213c-4b0f-a074-5005a84cdb83\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"0\",\"filter\":\"\",\"formatter\":\"number\",\"id\":\"04c44192-1112-4515-a8d9-e9e13215aecf\",\"label\":\"Events\",\"line_width\":\"3\",\"metrics\":[{\"id\":\"c5dbb050-fc10-4a0d-abe0-bc093db6cf0e\",\"type\":\"count\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"c5dbb050-fc10-4a0d-abe0-bc093db6cf0e\",\"gamma\":0.3,\"id\":\"e5a48d9d-7834-4da7-8d78-7d4528136b9b\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"sigma\":\"\",\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":\"0\",\"seperate_axis\":1,\"split_filters\":[{\"color\":\"rgba(244,78,59,1)\",\"filter\":{\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Firewall\\\"\",\"language\":\"lucene\"},\"id\":\"78bfdf07-ec02-4dd8-8ff4-b7e250c561c2\",\"label\":\"Firewall\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"observer.hostname\",\"terms_order_by\":null,\"split_color_mode\":\"gradient\"},{\"axis_position\":\"left\",\"chart_type\":\"bar\",\"color\":\"rgba(251,158,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"29d6131a-5143-4a64-b597-9538692f0269\",\"label\":\"Top Device Types by Mvg Averages\",\"line_width\":1,\"metrics\":[{\"id\":\"dc74afdf-64ad-47d6-bbed-114e09d12255\",\"type\":\"count\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"dc74afdf-64ad-47d6-bbed-114e09d12255\",\"gamma\":0.3,\"id\":\"87e21aaa-12eb-4213-bb37-41cb19219240\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":1,\"seperate_axis\":1,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cef.extensions.categoryDeviceType\",\"terms_size\":\"10\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Events by Device Types [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e513c269-350c-40c3-ac20-16c5782103b8","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Source Countries by Events [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total Events\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Country\",\"field\":\"source.geo.country_iso_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source Addresses\",\"field\":\"source.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination Addresses\",\"field\":\"destination.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Destination Ports\",\"field\":\"destination.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 10 Source Countries by Events [Filebeat CEF]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"8f6075c5-f525-4173-92a4-3a56e96e362d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 20 Source Countries [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.geo.country_iso_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"hideLabel\":false,\"maxFontSize\":72,\"minFontSize\":26,\"orientation\":\"single\",\"scale\":\"square root\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 20 Source Countries [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"013ff153-7b80-490b-8fec-6e56cba785ed","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Network - Event Throughput [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"3eadd451-5033-423f-88e3-814cc5e50b50\"}],\"bar_color_rules\":[{\"id\":\"8d4596c5-49ad-429b-af54-5451b1c2e8d4\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceType:\\\"Firewall\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\" OR cef.extensions.categoryDeviceGroup:\\\"/VPN\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"4d957654-cc7e-4ef3-8b29-61c0aeadd51a\",\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"73968651-c41e-473e-a153-a025f49d1a1b\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"90d7621e-3265-4fe8-8882-8df9605ea659\",\"label\":\"Event Throughput\",\"line_width\":1,\"metrics\":[{\"id\":\"ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba\",\"type\":\"count\"},{\"field\":\"ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba\",\"id\":\"ca3a65d0-9f3d-42a9-9f4e-16f9e24cba19\",\"type\":\"cumulative_sum\"},{\"field\":\"ca3a65d0-9f3d-42a9-9f4e-16f9e24cba19\",\"id\":\"6db67bc1-7fff-47e7-a931-f797b1f76732\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"6db67bc1-7fff-47e7-a931-f797b1f76732\",\"gamma\":0.3,\"id\":\"92bc1447-2b30-498c-ae8a-c67904fc82b2\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} / s\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Network - Event Throughput [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"33747d52-ec4c-4d91-86d8-fbdf9b9c82db","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":" Dashboard Navigation [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Network Overview](#/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71) | [Network Suspicious Activity](#/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619) | [Endpoint Overview](#dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b) | [Endpoint OS Activity](#/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9) | [Microsoft DNS Overview](#/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41)\"},\"title\":\" Dashboard Navigation [Filebeat CEF]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"c394e650-b16c-407c-b305-bd409d69d433","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top Destination Locations by Events [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"customLabel\":\"Destination Location\",\"field\":\"destination.geo.location\",\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":0,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Shaded Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Top Destination Locations by Events [Filebeat CEF]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"8b31af8b-522e-41fe-b9d6-9a3451b54108","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top Source Locations by Events [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"customLabel\":\"Source Location\",\"field\":\"source.geo.location\",\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":0,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Shaded Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Top Source Locations by Events [Filebeat CEF]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"4fccee0c-7193-4aa8-919f-0b0b0a16d013","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NjIsMV0="} +{"attributes":{"description":"Network data overview.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"lucene\", \"query\": \"*\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"1\",\"w\":48,\"x\":0,\"y\":44},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"2\",\"w\":48,\"x\":0,\"y\":68},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":12},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":60},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"7\",\"w\":40,\"x\":0,\"y\":4},\"panelIndex\":\"7\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"},\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"9\",\"w\":16,\"x\":0,\"y\":20},\"panelIndex\":\"9\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"/Attempt\":\"#0A50A1\",\"/Failure\":\"#BF1B00\",\"/Success\":\"#629E51\"}},\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"11\",\"w\":16,\"x\":16,\"y\":20},\"panelIndex\":\"11\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"/Attempt\":\"#0A50A1\",\"/Failure\":\"#BF1B00\",\"/Success\":\"#629E51\"}},\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"13\",\"w\":32,\"x\":0,\"y\":32},\"panelIndex\":\"13\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"15\",\"w\":16,\"x\":32,\"y\":32},\"panelIndex\":\"15\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0% - 17%\":\"rgb(255,255,204)\",\"17% - 34%\":\"rgb(255,230,146)\",\"34% - 50%\":\"rgb(254,191,90)\",\"50% - 67%\":\"rgb(253,141,60)\",\"67% - 84%\":\"rgb(244,61,37)\",\"84% - 100%\":\"rgb(202,8,35)\"},\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"16\",\"w\":16,\"x\":32,\"y\":20},\"panelIndex\":\"16\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"Anti-Virus\":\"#EF843C\",\"Content Security\":\"#7EB26D\",\"Firewall\":\"#E24D42\",\"Integrated Security\":\"#962D82\",\"Network-based IDS/IPS\":\"#1F78C1\",\"Operating System\":\"#1F78C1\",\"VPN\":\"#EAB839\"}},\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"17\",\"w\":48,\"x\":0,\"y\":52},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"18\",\"w\":24,\"x\":0,\"y\":76},\"panelIndex\":\"18\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"19\",\"w\":24,\"x\":24,\"y\":76},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"20\",\"w\":8,\"x\":40,\"y\":4},\"panelIndex\":\"20\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_20\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"21\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"21\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_21\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":24,\"i\":\"24\",\"w\":24,\"x\":0,\"y\":92},\"panelIndex\":\"24\",\"embeddableConfig\":{\"mapCenter\":[-0.3515602939922709,0],\"mapZoom\":1,\"enhancements\":{}},\"panelRefName\":\"panel_24\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":24,\"i\":\"25\",\"w\":24,\"x\":24,\"y\":92},\"panelIndex\":\"25\",\"embeddableConfig\":{\"mapCenter\":[-0.3515602939922709,0],\"mapZoom\":1,\"enhancements\":{}},\"panelRefName\":\"panel_25\"}]","refreshInterval":{"display":"Off","pause":false,"value":0},"timeFrom":"now-24h","timeRestore":true,"timeTo":"now","title":"[Filebeat CEF] Network Overview Dashboard","version":1},"coreMigrationVersion":"8.0.0","id":"dd0bc9af-2e89-4150-9b42-62517ea56b71","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"f5258de9-71f7-410f-b713-201007f77470","name":"1:panel_1","type":"visualization"},{"id":"0abfc226-535b-45a2-b534-e9bc87e5584f","name":"2:panel_2","type":"visualization"},{"id":"a97e3628-022b-46cf-8f29-a73cf9bb4e26","name":"5:panel_5","type":"visualization"},{"id":"499f50ba-2f84-4f7c-9021-73a4efc47921","name":"6:panel_6","type":"visualization"},{"id":"d061c7a9-7f92-4bf4-b35c-499b9f4b987a","name":"7:panel_7","type":"visualization"},{"id":"b1002b5c-08fc-4bbe-b9a0-6243a8637e60","name":"9:panel_9","type":"visualization"},{"id":"df056709-2deb-4363-ae7a-b0148ea456c6","name":"11:panel_11","type":"visualization"},{"id":"e89a64e8-928c-41fc-8745-3c8157b21cdb","name":"13:panel_13","type":"visualization"},{"id":"a729c249-8d34-4eb1-bbb0-5d25cf224114","name":"15:panel_15","type":"visualization"},{"id":"3c19f138-2ab3-4ecb-bb1b-86fb90158042","name":"16:panel_16","type":"visualization"},{"id":"e513c269-350c-40c3-ac20-16c5782103b8","name":"17:panel_17","type":"visualization"},{"id":"8f6075c5-f525-4173-92a4-3a56e96e362d","name":"18:panel_18","type":"visualization"},{"id":"013ff153-7b80-490b-8fec-6e56cba785ed","name":"19:panel_19","type":"visualization"},{"id":"33747d52-ec4c-4d91-86d8-fbdf9b9c82db","name":"20:panel_20","type":"visualization"},{"id":"c394e650-b16c-407c-b305-bd409d69d433","name":"21:panel_21","type":"visualization"},{"id":"8b31af8b-522e-41fe-b9d6-9a3451b54108","name":"24:panel_24","type":"visualization"},{"id":"4fccee0c-7193-4aa8-919f-0b0b0a16d013","name":"25:panel_25","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NDUsMV0="} diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-suspicious-activity.json b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-suspicious-activity.json deleted file mode 100644 index a8e733d2738..00000000000 --- a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-suspicious-activity.json +++ /dev/null @@ -1,1614 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Suspicious network activity overview", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "lucene", - "query": "*" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "embeddableConfig": { - "vis": { - "colors": { - "Destination Addresses": "#E0752D", - "Destination Ports": "#E24D42" - }, - "legendOpen": false - } - }, - "gridData": { - "h": 12, - "i": "1", - "w": 32, - "x": 0, - "y": 28 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 12, - "i": "2", - "w": 16, - "x": 0, - "y": 40 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "gridData": { - "h": 12, - "i": "3", - "w": 16, - "x": 16, - "y": 40 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "5", - "w": 48, - "x": 0, - "y": 20 - }, - "panelIndex": "5", - "panelRefName": "panel_3", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "colors": { - "/Attempt": "#0A50A1", - "/Failure": "#BF1B00", - "/Success": "#629E51" - } - } - }, - "gridData": { - "h": 12, - "i": "9", - "w": 16, - "x": 32, - "y": 28 - }, - "panelIndex": "9", - "panelRefName": "panel_4", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "11", - "w": 48, - "x": 0, - "y": 12 - }, - "panelIndex": "11", - "panelRefName": "panel_5", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 16, - "i": "12", - "w": 24, - "x": 0, - "y": 52 - }, - "panelIndex": "12", - "panelRefName": "panel_6", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 16, - "i": "13", - "w": 24, - "x": 24, - "y": 52 - }, - "panelIndex": "13", - "panelRefName": "panel_7", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "14", - "w": 16, - "x": 32, - "y": 40 - }, - "panelIndex": "14", - "panelRefName": "panel_8", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 4, - "i": "15", - "w": 48, - "x": 0, - "y": 0 - }, - "panelIndex": "15", - "panelRefName": "panel_9", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "gridData": { - "h": 8, - "i": "16", - "w": 40, - "x": 0, - "y": 4 - }, - "panelIndex": "16", - "panelRefName": "panel_10", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "vis": { - "defaultColors": { - "0 - 50": "rgb(255,255,204)", - "100 - 200": "rgb(253,141,60)", - "200 - 300": "rgb(227,27,28)", - "300 - 400": "rgb(128,0,38)", - "50 - 100": "rgb(254,217,118)" - } - } - }, - "gridData": { - "h": 8, - "i": "17", - "w": 8, - "x": 40, - "y": 4 - }, - "panelIndex": "17", - "panelRefName": "panel_11", - "version": "7.3.0" - } - ], - "refreshInterval": { - "display": "Off", - "pause": false, - "value": 0 - }, - "timeFrom": "now-24h", - "timeRestore": true, - "timeTo": "now", - "title": "[Filebeat CEF] Network Suspicious Activity Dashboard", - "version": 1 - }, - "id": "db1e1aca-279e-4ecc-b84e-fe58644f7619", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "fa8b26c1-6973-4381-adb3-bcde0d03a520", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "82f3fae3-1189-4f04-8ea5-47fde1d2e7b1", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "f03d734b-b85c-4e99-9c0e-9c89716a81f3", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "9bef4db9-a8b2-4be8-b2b0-6ea02fab424d", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "fff249b2-18b6-4b48-bcf7-dd4595d111e7", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "d02dd523-ce91-40e9-9209-83797f80ed45", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "589fec8c-336e-4122-8fef-a450bddf84f6", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "86bd5f13-ca6b-43fa-b209-54e7460344bb", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "1204cf27-05e0-4905-bfa1-688aaaaaa840", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "677891a1-90c4-4273-b126-f0e54689bd76", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "01c3618c-9962-4fe9-b9c5-f73dfecc6eba", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "33747d52-ec4c-4d91-86d8-fbdf9b9c82db", - "name": "panel_11", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-10-25T16:30:06.345Z", - "version": "WzEzMjYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Unique Destinations and Ports by Source [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Destination Addresses", - "field": "destination.ip" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Source Addresses", - "field": "source.ip", - "order": "desc", - "orderBy": "1", - "size": 20 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Destination Ports", - "field": "destination.port" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Source Addresses" - }, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "radiusRatio": 9, - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Destination Addresses" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "3", - "label": "Destination Ports" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "lineWidth": 2, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-2" - } - ], - "setYExtents": false, - "showCircles": true, - "times": [], - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Destination Addresses" - }, - "type": "value" - }, - { - "id": "ValueAxis-2", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "RightAxis-1", - "position": "right", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Destination Ports" - }, - "type": "value" - } - ] - }, - "title": "Unique Destinations and Ports by Source [Filebeat CEF]", - "type": "histogram" - } - }, - "id": "fa8b26c1-6973-4381-adb3-bcde0d03a520", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:06.345Z", - "version": "WzEzMjcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 5 Sources by Destination Addresses [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Destination Addresses", - "field": "destination.ip" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Event Count" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Source Address", - "field": "source.ip", - "order": "desc", - "orderBy": "2", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top 5 Sources by Destination Addresses [Filebeat CEF]", - "type": "table" - } - }, - "id": "82f3fae3-1189-4f04-8ea5-47fde1d2e7b1", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:06.345Z", - "version": "WzEzMjgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 5 Sources by Destination Ports [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Destination Ports", - "field": "destination.port" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Event Count" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Source Address", - "field": "source.ip", - "order": "desc", - "orderBy": "2", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top 5 Sources by Destination Ports [Filebeat CEF]", - "type": "table" - } - }, - "id": "f03d734b-b85c-4e99-9c0e-9c89716a81f3", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:06.345Z", - "version": "WzEzMjksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Events by Severity [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "bar_color_rules": [ - { - "id": "0ca18a89-9c81-4bee-835a-85e6103aec37" - } - ], - "filter": { - "language": "lucene", - "query": "cef.extensions.categoryDeviceGroup:\"/Firewall\"" - }, - "id": "c39a76e5-f613-41a9-8335-c442747791e0", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "0.0[0]a", - "id": "da3b92b4-2c24-473b-9102-fb5a343a96d9", - "label": "Event by Severities", - "line_width": 1, - "metrics": [ - { - "id": "0d189776-3f7c-4a92-95b1-73c379a341fc", - "type": "count" - }, - { - "field": "0d189776-3f7c-4a92-95b1-73c379a341fc", - "id": "1b1c931c-a09b-4980-af81-6f9c3db56401", - "sigma": "", - "type": "sum_bucket" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_filters": [ - { - "color": "rgba(104,204,202,1)", - "filter": "severity:\"Low\" OR severity:\"0\"", - "id": "ebe970ac-5cc9-4c4a-af60-82affafc667c", - "label": "LOW" - }, - { - "color": "rgba(252,220,0,1)", - "filter": "severity:\"Medium\"", - "id": "0c4ff16a-b53d-4ce4-af76-d6b74d8788db", - "label": "MEDIUM" - }, - { - "color": "rgba(254,146,0,1)", - "filter": "severity:\"High\"", - "id": "e142c55b-6ee5-416a-8bd3-d10398044864", - "label": "HIGH" - }, - { - "color": "rgba(244,78,59,1)", - "filter": "severity:\"Very-High\"", - "id": "4b05b562-c419-4214-b814-d4c242251521", - "label": "VERY HIGH" - } - ], - "split_mode": "filters", - "stacked": "none" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "Events by Severity [Filebeat CEF]", - "type": "metrics" - } - }, - "id": "9bef4db9-a8b2-4be8-b2b0-6ea02fab424d", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:06.345Z", - "version": "WzEzMzAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Outcome by Device Type [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "colors": { - "/Failure": "#BF1B00", - "/Success": "#629E51" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Firewall Types", - "field": "cef.extensions.categoryDeviceType", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Event Outcome", - "field": "cef.extensions.categoryOutcome", - "order": "desc", - "orderBy": "1", - "size": 3 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "rotate": 75, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Firewall Types" - }, - "type": "category" - } - ], - "defaultYExtents": false, - "drawLinesBetweenPoints": true, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "interpolate": "linear", - "legendPosition": "right", - "orderBucketsBySum": true, - "radiusRatio": 9, - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "showCircles": true, - "times": [], - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "percentage", - "type": "square root" - }, - "show": true, - "style": {}, - "title": {}, - "type": "value" - } - ] - }, - "title": "Outcome by Device Type [Filebeat CEF]", - "type": "histogram" - } - }, - "id": "fff249b2-18b6-4b48-bcf7-dd4595d111e7", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:06.345Z", - "version": "WzEzMzEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Events by Source Addresses [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color": null, - "background_color_rules": [ - { - "id": "a0bf5a1d-8ebf-49d4-a347-738a6ce20562" - } - ], - "bar_color_rules": [ - { - "id": "23db5bf6-f787-474e-86ab-76362432e984" - } - ], - "filter": { - "language": "lucene", - "query": "cef.extensions.categoryDeviceGroup:\"/Firewall\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Network\" OR cef.extensions.categoryDeviceGroup:\"/VPN\" " - }, - "gauge_color_rules": [ - { - "id": "42f84a0a-ee13-4ca8-b61d-3de482ae4ab0" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "ec53a1d3-213c-4b0f-a074-5005a84cdb83", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": "0", - "filter": { - "language": "lucene", - "query": "cef.extensions.categoryDeviceGroup:\"/Firewall\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Network\" OR cef.extensions.categoryDeviceGroup:\"/VPN\" " - }, - "formatter": "number", - "id": "04c44192-1112-4515-a8d9-e9e13215aecf", - "label": "Events", - "line_width": "3", - "metrics": [ - { - "id": "c5dbb050-fc10-4a0d-abe0-bc093db6cf0e", - "type": "count" - }, - { - "alpha": 0.3, - "beta": 0.1, - "field": "c5dbb050-fc10-4a0d-abe0-bc093db6cf0e", - "gamma": 0.3, - "id": "117fde19-e227-4fcb-8019-e82e6677c340", - "model_type": "simple", - "multiplicative": false, - "period": 1, - "sigma": "", - "type": "moving_average", - "window": "10" - } - ], - "point_size": "0", - "seperate_axis": 1, - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "observer.hostmessage", - "terms_order_by": null, - "value_template": "{{value}}" - }, - { - "axis_position": "left", - "chart_type": "bar", - "color": "rgba(104,188,0,1)", - "fill": "0.5", - "formatter": "number", - "id": "3ffe652e-43c2-4a1d-ad8a-f7ab10f09f2b", - "label": "Top Source Addresses", - "line_width": "0", - "metrics": [ - { - "id": "dc74afdf-64ad-47d6-bbed-114e09d12255", - "type": "count" - }, - { - "alpha": 0.3, - "beta": 0.1, - "field": "dc74afdf-64ad-47d6-bbed-114e09d12255", - "gamma": 0.3, - "id": "b753ad38-c3ed-4463-8f6d-176f4d477897", - "model_type": "simple", - "multiplicative": false, - "period": 1, - "type": "moving_average", - "window": "10" - } - ], - "point_size": 1, - "seperate_axis": 1, - "split_mode": "terms", - "stacked": "none", - "terms_field": "source.ip", - "terms_size": "10" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Events by Source Addresses [Filebeat CEF]", - "type": "metrics" - } - }, - "id": "d02dd523-ce91-40e9-9209-83797f80ed45", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:06.345Z", - "version": "WzEzMzIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 10 Source Addresses [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Source Addresses", - "field": "source.ip", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "maxFontSize": 72, - "minFontSize": 18, - "orientation": "single", - "scale": "linear" - }, - "title": "Top 10 Source Addresses [Filebeat CEF]", - "type": "tagcloud" - } - }, - "id": "589fec8c-336e-4122-8fef-a450bddf84f6", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:06.345Z", - "version": "WzEzMzMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 10 Destination Addresses [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Destination Addresses", - "field": "destination.ip", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "maxFontSize": 72, - "minFontSize": 18, - "orientation": "single", - "scale": "linear" - }, - "title": "Top 10 Destination Addresses [Filebeat CEF]", - "type": "tagcloud" - } - }, - "id": "86bd5f13-ca6b-43fa-b209-54e7460344bb", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:06.345Z", - "version": "WzEzMzQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Top 10 Destination Ports [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Destination Addresses", - "field": "destination.port", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "maxFontSize": 72, - "minFontSize": 18, - "orientation": "single", - "scale": "linear" - }, - "title": "Top 10 Destination Ports [Filebeat CEF]", - "type": "tagcloud" - } - }, - "id": "1204cf27-05e0-4905-bfa1-688aaaaaa840", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:06.345Z", - "version": "WzEzMzUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": " Dashboard Navigation [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "markdown": "[Network Overview](#/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71) | [Network Suspicious Activity](#/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619) | [Endpoint Overview](#dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b) | [Endpoint OS Activity](#/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9) | [Microsoft DNS Overview](#/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41)" - }, - "title": " Dashboard Navigation [Filebeat CEF]", - "type": "markdown" - } - }, - "id": "677891a1-90c4-4273-b126-f0e54689bd76", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:06.345Z", - "version": "WzEzMzYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [] - } - }, - "savedSearchRefName": "search_0", - "title": "Device Metrics Overview [Filebeat CEF]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "8", - "params": { - "customLabel": "Event Count" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Devices", - "field": "observer.hostname" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Sources", - "field": "source.ip" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "Destinations", - "field": "destination.ip" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "7", - "params": { - "customLabel": "Ports", - "field": "destination.port" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "fontSize": "30", - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "12", - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "handleNoResults": true, - "type": "gauge" - }, - "title": "Device Metrics Overview [Filebeat CEF]", - "type": "metric" - } - }, - "id": "01c3618c-9962-4fe9-b9c5-f73dfecc6eba", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-10-25T16:30:06.345Z", - "version": "WzEzMzcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Network - Event Throughput [Filebeat CEF]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "background_color_rules": [ - { - "id": "3eadd451-5033-423f-88e3-814cc5e50b50" - } - ], - "bar_color_rules": [ - { - "id": "8d4596c5-49ad-429b-af54-5451b1c2e8d4" - } - ], - "filter": { - "language": "lucene", - "query": "cef.extensions.categoryDeviceType:\"Firewall\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Network\" OR cef.extensions.categoryDeviceGroup:\"/VPN\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "4d957654-cc7e-4ef3-8b29-61c0aeadd51a", - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "", - "gauge_style": "half", - "gauge_width": 10, - "id": "73968651-c41e-473e-a153-a025f49d1a1b", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": 0.5, - "formatter": "number", - "id": "90d7621e-3265-4fe8-8882-8df9605ea659", - "label": "Event Throughput", - "line_width": 1, - "metrics": [ - { - "id": "ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba", - "type": "count" - }, - { - "field": "ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba", - "id": "ca3a65d0-9f3d-42a9-9f4e-16f9e24cba19", - "type": "cumulative_sum" - }, - { - "field": "ca3a65d0-9f3d-42a9-9f4e-16f9e24cba19", - "id": "6db67bc1-7fff-47e7-a931-f797b1f76732", - "type": "derivative", - "unit": "1s" - }, - { - "alpha": 0.3, - "beta": 0.1, - "field": "6db67bc1-7fff-47e7-a931-f797b1f76732", - "gamma": 0.3, - "id": "92bc1447-2b30-498c-ae8a-c67904fc82b2", - "model_type": "simple", - "multiplicative": false, - "period": 1, - "type": "moving_average", - "window": "10" - } - ], - "point_size": 1, - "seperate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}} / s" - } - ], - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Network - Event Throughput [Filebeat CEF]", - "type": "metrics" - } - }, - "id": "33747d52-ec4c-4d91-86d8-fbdf9b9c82db", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-25T16:30:06.345Z", - "version": "WzEzMzgsMV0=" - }, - { - "attributes": { - "columns": [ - "priority", - "message", - "source.ip", - "source.port", - "destination.ip", - "destination.port", - "network.application", - "message", - "cef.extensions.categoryBehavior", - "cef.extensions.categoryOutcome", - "deviceAddress", - "cef.device.product", - "cef.device.vendor", - "cef.extensions.categoryDeviceGroup", - "cef.extensions.categoryDeviceType" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "query", - "negate": false, - "type": "custom", - "value": "{\"terms\":{\"cef.extensions.categoryDeviceGroup\":[\"/VPN\",\"/IDS/Network\",\"/Firewall\"]}}" - }, - "query": { - "terms": { - "cef.extensions.categoryDeviceGroup": [ - "/VPN", - "/IDS/Network", - "/Firewall" - ] - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "lucene", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Network Events [Filebeat CEF]", - "version": 1 - }, - "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2019-10-25T16:31:42.748Z", - "version": "WzE0NzMsMV0=" - } - ], - "version": "7.4.1" -} diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-suspicious-activity.ndjson b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-suspicious-activity.ndjson new file mode 100644 index 00000000000..cfa37989b5e --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-suspicious-activity.ndjson @@ -0,0 +1,14 @@ +{"attributes":{"columns":["priority","message","source.ip","source.port","destination.ip","destination.port","network.application","message","cef.extensions.categoryBehavior","cef.extensions.categoryOutcome","deviceAddress","cef.device.product","cef.device.vendor","cef.extensions.categoryDeviceGroup","cef.extensions.categoryDeviceType"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"query\", \"negate\": false, \"type\": \"custom\", \"value\": \"{\\\"terms\\\":{\\\"cef.extensions.categoryDeviceGroup\\\":[\\\"/VPN\\\",\\\"/IDS/Network\\\",\\\"/Firewall\\\"]}}\"}, \"query\": {\"terms\": {\"cef.extensions.categoryDeviceGroup\": [\"/VPN\", \"/IDS/Network\", \"/Firewall\"]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Network Events [Filebeat CEF]","version":1},"coreMigrationVersion":"8.0.0","id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Unique Destinations and Ports by Source [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Destination Addresses\",\"field\":\"destination.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Addresses\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Destination Ports\",\"field\":\"destination.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Source Addresses\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Destination Addresses\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Destination Ports\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-2\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Destination Addresses\"},\"type\":\"value\"},{\"id\":\"ValueAxis-2\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"RightAxis-1\",\"position\":\"right\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Destination Ports\"},\"type\":\"value\"}]},\"title\":\"Unique Destinations and Ports by Source [Filebeat CEF]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"fa8b26c1-6973-4381-adb3-bcde0d03a520","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 5 Sources by Destination Addresses [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Addresses\",\"field\":\"destination.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Source Address\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 5 Sources by Destination Addresses [Filebeat CEF]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"82f3fae3-1189-4f04-8ea5-47fde1d2e7b1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 5 Sources by Destination Ports [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Ports\",\"field\":\"destination.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Source Address\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 5 Sources by Destination Ports [Filebeat CEF]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"f03d734b-b85c-4e99-9c0e-9c89716a81f3","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events by Severity [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"0ca18a89-9c81-4bee-835a-85e6103aec37\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Firewall\\\"\"},\"id\":\"c39a76e5-f613-41a9-8335-c442747791e0\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"0.0[0]a\",\"id\":\"da3b92b4-2c24-473b-9102-fb5a343a96d9\",\"label\":\"Event by Severities\",\"line_width\":1,\"metrics\":[{\"id\":\"0d189776-3f7c-4a92-95b1-73c379a341fc\",\"type\":\"count\"},{\"field\":\"0d189776-3f7c-4a92-95b1-73c379a341fc\",\"id\":\"1b1c931c-a09b-4980-af81-6f9c3db56401\",\"sigma\":\"\",\"type\":\"sum_bucket\"}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"rgba(104,204,202,1)\",\"filter\":{\"query\":\"severity:\\\"Low\\\" OR severity:\\\"0\\\"\",\"language\":\"lucene\"},\"id\":\"ebe970ac-5cc9-4c4a-af60-82affafc667c\",\"label\":\"LOW\"},{\"color\":\"rgba(252,220,0,1)\",\"filter\":{\"query\":\"severity:\\\"Medium\\\"\",\"language\":\"lucene\"},\"id\":\"0c4ff16a-b53d-4ce4-af76-d6b74d8788db\",\"label\":\"MEDIUM\"},{\"color\":\"rgba(254,146,0,1)\",\"filter\":{\"query\":\"severity:\\\"High\\\"\",\"language\":\"lucene\"},\"id\":\"e142c55b-6ee5-416a-8bd3-d10398044864\",\"label\":\"HIGH\"},{\"color\":\"rgba(244,78,59,1)\",\"filter\":{\"query\":\"severity:\\\"Very-High\\\"\",\"language\":\"lucene\"},\"id\":\"4b05b562-c419-4214-b814-d4c242251521\",\"label\":\"VERY HIGH\"}],\"split_mode\":\"filters\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Events by Severity [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9bef4db9-a8b2-4be8-b2b0-6ea02fab424d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Outcome by Device Type [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"colors\": {\"/Failure\": \"#BF1B00\", \"/Success\": \"#629E51\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Firewall Types\",\"field\":\"cef.extensions.categoryDeviceType\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Event Outcome\",\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":3},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"rotate\":75,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Firewall Types\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"orderBucketsBySum\":true,\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"percentage\",\"type\":\"square root\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"value\"}]},\"title\":\"Outcome by Device Type [Filebeat CEF]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"fff249b2-18b6-4b48-bcf7-dd4595d111e7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NjksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events by Source Addresses [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"a0bf5a1d-8ebf-49d4-a347-738a6ce20562\"}],\"bar_color_rules\":[{\"id\":\"23db5bf6-f787-474e-86ab-76362432e984\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Firewall\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\" OR cef.extensions.categoryDeviceGroup:\\\"/VPN\\\" \"},\"gauge_color_rules\":[{\"id\":\"42f84a0a-ee13-4ca8-b61d-3de482ae4ab0\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"ec53a1d3-213c-4b0f-a074-5005a84cdb83\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Firewall\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\" OR cef.extensions.categoryDeviceGroup:\\\"/VPN\\\" \"},\"formatter\":\"number\",\"id\":\"04c44192-1112-4515-a8d9-e9e13215aecf\",\"label\":\"Events\",\"line_width\":\"3\",\"metrics\":[{\"id\":\"c5dbb050-fc10-4a0d-abe0-bc093db6cf0e\",\"type\":\"count\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"c5dbb050-fc10-4a0d-abe0-bc093db6cf0e\",\"gamma\":0.3,\"id\":\"117fde19-e227-4fcb-8019-e82e6677c340\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"sigma\":\"\",\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":\"0\",\"seperate_axis\":1,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"observer.hostmessage\",\"terms_order_by\":null,\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"left\",\"chart_type\":\"bar\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"3ffe652e-43c2-4a1d-ad8a-f7ab10f09f2b\",\"label\":\"Top Source Addresses\",\"line_width\":\"0\",\"metrics\":[{\"id\":\"dc74afdf-64ad-47d6-bbed-114e09d12255\",\"type\":\"count\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"dc74afdf-64ad-47d6-bbed-114e09d12255\",\"gamma\":0.3,\"id\":\"b753ad38-c3ed-4463-8f6d-176f4d477897\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":1,\"seperate_axis\":1,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"source.ip\",\"terms_size\":\"10\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Events by Source Addresses [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d02dd523-ce91-40e9-9209-83797f80ed45","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Source Addresses [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Addresses\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Source Addresses [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"589fec8c-336e-4122-8fef-a450bddf84f6","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Destination Addresses [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Addresses\",\"field\":\"destination.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Destination Addresses [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"86bd5f13-ca6b-43fa-b209-54e7460344bb","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Destination Ports [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Addresses\",\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Destination Ports [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"1204cf27-05e0-4905-bfa1-688aaaaaa840","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":" Dashboard Navigation [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Network Overview](#/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71) | [Network Suspicious Activity](#/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619) | [Endpoint Overview](#dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b) | [Endpoint OS Activity](#/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9) | [Microsoft DNS Overview](#/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41)\"},\"title\":\" Dashboard Navigation [Filebeat CEF]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"677891a1-90c4-4273-b126-f0e54689bd76","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Device Metrics Overview [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Devices\",\"field\":\"observer.hostname\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Sources\",\"field\":\"source.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Destinations\",\"field\":\"destination.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"Ports\",\"field\":\"destination.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"30\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"12\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Device Metrics Overview [Filebeat CEF]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"01c3618c-9962-4fe9-b9c5-f73dfecc6eba","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Network - Event Throughput [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"3eadd451-5033-423f-88e3-814cc5e50b50\"}],\"bar_color_rules\":[{\"id\":\"8d4596c5-49ad-429b-af54-5451b1c2e8d4\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceType:\\\"Firewall\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\" OR cef.extensions.categoryDeviceGroup:\\\"/VPN\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"4d957654-cc7e-4ef3-8b29-61c0aeadd51a\",\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"73968651-c41e-473e-a153-a025f49d1a1b\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"90d7621e-3265-4fe8-8882-8df9605ea659\",\"label\":\"Event Throughput\",\"line_width\":1,\"metrics\":[{\"id\":\"ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba\",\"type\":\"count\"},{\"field\":\"ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba\",\"id\":\"ca3a65d0-9f3d-42a9-9f4e-16f9e24cba19\",\"type\":\"cumulative_sum\"},{\"field\":\"ca3a65d0-9f3d-42a9-9f4e-16f9e24cba19\",\"id\":\"6db67bc1-7fff-47e7-a931-f797b1f76732\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"6db67bc1-7fff-47e7-a931-f797b1f76732\",\"gamma\":0.3,\"id\":\"92bc1447-2b30-498c-ae8a-c67904fc82b2\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} / s\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Network - Event Throughput [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"33747d52-ec4c-4d91-86d8-fbdf9b9c82db","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzYsMV0="} +{"attributes":{"description":"Suspicious network activity overview","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"lucene\", \"query\": \"*\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"1\",\"w\":32,\"x\":0,\"y\":28},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"Destination Addresses\":\"#E0752D\",\"Destination Ports\":\"#E24D42\"},\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"2\",\"w\":16,\"x\":0,\"y\":40},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"3\",\"w\":16,\"x\":16,\"y\":40},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":20},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"9\",\"w\":16,\"x\":32,\"y\":28},\"panelIndex\":\"9\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"/Attempt\":\"#0A50A1\",\"/Failure\":\"#BF1B00\",\"/Success\":\"#629E51\"}},\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"11\",\"w\":48,\"x\":0,\"y\":12},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"12\",\"w\":24,\"x\":0,\"y\":52},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"13\",\"w\":24,\"x\":24,\"y\":52},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"14\",\"w\":16,\"x\":32,\"y\":40},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"15\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"16\",\"w\":40,\"x\":0,\"y\":4},\"panelIndex\":\"16\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"17\",\"w\":8,\"x\":40,\"y\":4},\"panelIndex\":\"17\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 50\":\"rgb(255,255,204)\",\"100 - 200\":\"rgb(253,141,60)\",\"200 - 300\":\"rgb(227,27,28)\",\"300 - 400\":\"rgb(128,0,38)\",\"50 - 100\":\"rgb(254,217,118)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_17\"}]","refreshInterval":{"display":"Off","pause":false,"value":0},"timeFrom":"now-24h","timeRestore":true,"timeTo":"now","title":"[Filebeat CEF] Network Suspicious Activity Dashboard","version":1},"coreMigrationVersion":"8.0.0","id":"db1e1aca-279e-4ecc-b84e-fe58644f7619","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"fa8b26c1-6973-4381-adb3-bcde0d03a520","name":"1:panel_1","type":"visualization"},{"id":"82f3fae3-1189-4f04-8ea5-47fde1d2e7b1","name":"2:panel_2","type":"visualization"},{"id":"f03d734b-b85c-4e99-9c0e-9c89716a81f3","name":"3:panel_3","type":"visualization"},{"id":"9bef4db9-a8b2-4be8-b2b0-6ea02fab424d","name":"5:panel_5","type":"visualization"},{"id":"fff249b2-18b6-4b48-bcf7-dd4595d111e7","name":"9:panel_9","type":"visualization"},{"id":"d02dd523-ce91-40e9-9209-83797f80ed45","name":"11:panel_11","type":"visualization"},{"id":"589fec8c-336e-4122-8fef-a450bddf84f6","name":"12:panel_12","type":"visualization"},{"id":"86bd5f13-ca6b-43fa-b209-54e7460344bb","name":"13:panel_13","type":"visualization"},{"id":"1204cf27-05e0-4905-bfa1-688aaaaaa840","name":"14:panel_14","type":"visualization"},{"id":"677891a1-90c4-4273-b126-f0e54689bd76","name":"15:panel_15","type":"visualization"},{"id":"01c3618c-9962-4fe9-b9c5-f73dfecc6eba","name":"16:panel_16","type":"visualization"},{"id":"33747d52-ec4c-4d91-86d8-fbdf9b9c82db","name":"17:panel_17","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NjQsMV0="} diff --git a/x-pack/filebeat/module/cisco/_meta/kibana/7/dashboard/Filebeat-Cisco-ASA.json b/x-pack/filebeat/module/cisco/_meta/kibana/7/dashboard/Filebeat-Cisco-ASA.json deleted file mode 100644 index 7a585fbf501..00000000000 --- a/x-pack/filebeat/module/cisco/_meta/kibana/7/dashboard/Filebeat-Cisco-ASA.json +++ /dev/null @@ -1,1045 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Sample dashboard for Cisco ASA Firewall devices", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 15, - "i": "1", - "w": 12, - "x": 12, - "y": 15 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "Destination Port and Transport", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 15, - "i": "2", - "w": 12, - "x": 0, - "y": 15 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "Source Port and Transport", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 15, - "i": "3", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "ASA Firewall Events Over Time", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 15, - "i": "4", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "title": "ASA Flows by Network Bytes", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "5", - "w": 12, - "x": 24, - "y": 15 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "title": "Blocked by Source", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "8", - "w": 12, - "x": 36, - "y": 15 - }, - "panelIndex": "8", - "panelRefName": "panel_5", - "title": "Top ACL by Blocked", - "version": "7.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "9", - "w": 48, - "x": 0, - "y": 30 - }, - "panelIndex": "9", - "panelRefName": "panel_6", - "version": "7.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Filebeat Cisco] ASA Firewall", - "version": 1 - }, - "id": "a555b160-4987-11e9-b8ce-ed898b5ef295", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "118da960-4987-11e9-b8ce-ed898b5ef295", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "5d0322d0-4987-11e9-b8ce-ed898b5ef295", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "a3b5ab10-4989-11e9-b8ce-ed898b5ef295", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "80d0c1b0-498a-11e9-b8ce-ed898b5ef295", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "d05cdf60-498b-11e9-b8ce-ed898b5ef295", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "08ef4d90-499b-11e9-b8ce-ed898b5ef295", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "fd89b1e0-49a2-11e9-b8ce-ed898b5ef295", - "name": "panel_6", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-03-18T18:39:06.844Z", - "version": "WzI2MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Destination Port and Transport [Filebeat Cisco]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "network.transport", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "destination.port", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Destination Port and Transport [Filebeat Cisco]", - "type": "pie" - } - }, - "id": "118da960-4987-11e9-b8ce-ed898b5ef295", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "753406e0-4986-11e9-b8ce-ed898b5ef295", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-03-18T14:07:22.932Z", - "version": "WzI0NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Source Port and Transport [Filebeat Cisco]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "network.transport", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "source.port", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Source Port and Transport [Filebeat Cisco]", - "type": "pie" - } - }, - "id": "5d0322d0-4987-11e9-b8ce-ed898b5ef295", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "753406e0-4986-11e9-b8ce-ed898b5ef295", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-03-18T14:08:54.141Z", - "version": "WzI0NywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "ASA Events Over Time [Filebeat Cisco]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.outcome", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "timeRange": { - "from": "now-15y", - "to": "now+1y" - }, - "time_zone": "Europe/Madrid", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "ASA Events Over Time [Filebeat Cisco]", - "type": "histogram" - } - }, - "id": "a3b5ab10-4989-11e9-b8ce-ed898b5ef295", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "96c6ff60-4986-11e9-b8ce-ed898b5ef295", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-03-18T14:27:16.950Z", - "version": "WzI1MSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "ASA Flows by Network Bytes [Filebeat Cisco]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "timeRange": { - "from": "now-15y", - "to": "now+1y" - }, - "time_zone": "Europe/Madrid", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Total bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "3", - "label": "Total bytes" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Total bytes" - }, - "type": "value" - } - ] - }, - "title": "ASA Flows by Network Bytes [Filebeat Cisco]", - "type": "histogram" - } - }, - "id": "80d0c1b0-498a-11e9-b8ce-ed898b5ef295", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "753406e0-4986-11e9-b8ce-ed898b5ef295", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-03-18T14:31:22.699Z", - "version": "WzI1MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "ASA Firewall Blocked by Source [Filebeat Cisco]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "source.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "ASA Firewall Blocked by Source [Filebeat Cisco]", - "type": "table" - } - }, - "id": "d05cdf60-498b-11e9-b8ce-ed898b5ef295", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "96c6ff60-4986-11e9-b8ce-ed898b5ef295", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-03-18T14:42:05.159Z", - "version": "WzI1NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "event.outcome:\"deny\"" - } - } - }, - "savedSearchRefName": "search_0", - "title": "ASA Top ACL by Blocked [Filebeat Cisco]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "ACL ID", - "field": "cisco.asa.rule_name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "ASA Top ACL by Blocked [Filebeat Cisco]", - "type": "table" - } - }, - "id": "08ef4d90-499b-11e9-b8ce-ed898b5ef295", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "96c6ff60-4986-11e9-b8ce-ed898b5ef295", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-03-18T16:29:43.017Z", - "version": "WzI1NywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Top ASA Messages [Filebeat Cisco]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": 1, - "direction": "desc" - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "ID", - "field": "cisco.asa.message_id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "4", - "params": { - "aggregate": "concat", - "customLabel": "Severity", - "field": "log.level", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - }, - { - "enabled": true, - "id": "1", - "params": { - "aggregate": "concat", - "customLabel": "Sample message", - "field": "event.original", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": true, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top ASA Messages [Filebeat Cisco]", - "type": "table" - } - }, - "id": "fd89b1e0-49a2-11e9-b8ce-ed898b5ef295", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "14fce5e0-498f-11e9-b8ce-ed898b5ef295", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-03-18T17:26:39.870Z", - "version": "WzI1OSwxXQ==" - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "cisco.asa.message_id:* and event.action:\"flow-expiration\"" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "ASA Firewall flows [Filebeat Cisco]", - "version": 1 - }, - "id": "753406e0-4986-11e9-b8ce-ed898b5ef295", - "migrationVersion": { - "search": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2019-03-18T14:02:44.176Z", - "version": "WzI0MywxXQ==" - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "cisco.asa.message_id:* and event.action:\"firewall-rule\"" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "ASA Firewall Events [Filebeat Cisco]", - "version": 1 - }, - "id": "96c6ff60-4986-11e9-b8ce-ed898b5ef295", - "migrationVersion": { - "search": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2019-03-18T14:03:21.558Z", - "version": "WzI0NCwxXQ==" - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "cisco.asa.message_id :*" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "All ASA Logs [Filebeat Cisco]", - "version": 1 - }, - "id": "14fce5e0-498f-11e9-b8ce-ed898b5ef295", - "migrationVersion": { - "search": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2019-03-18T15:04:09.277Z", - "version": "WzI1NiwxXQ==" - } - ], - "version": "7.0.0-SNAPSHOT" -} diff --git a/x-pack/filebeat/module/cisco/_meta/kibana/7/dashboard/Filebeat-Cisco-ASA.ndjson b/x-pack/filebeat/module/cisco/_meta/kibana/7/dashboard/Filebeat-Cisco-ASA.ndjson new file mode 100644 index 00000000000..213a5b1feb2 --- /dev/null +++ b/x-pack/filebeat/module/cisco/_meta/kibana/7/dashboard/Filebeat-Cisco-ASA.ndjson @@ -0,0 +1,11 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"cisco.asa.message_id:* and event.action:\\\"flow-expiration\\\"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"ASA Firewall flows [Filebeat Cisco]","version":1},"coreMigrationVersion":"8.0.0","id":"753406e0-4986-11e9-b8ce-ed898b5ef295","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Destination Port and Transport [Filebeat Cisco]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.transport\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"destination.port\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destination Port and Transport [Filebeat Cisco]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"118da960-4987-11e9-b8ce-ed898b5ef295","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"753406e0-4986-11e9-b8ce-ed898b5ef295","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Source Port and Transport [Filebeat Cisco]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.transport\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"source.port\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Source Port and Transport [Filebeat Cisco]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"5d0322d0-4987-11e9-b8ce-ed898b5ef295","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"753406e0-4986-11e9-b8ce-ed898b5ef295","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNDcsMV0="} +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"cisco.asa.message_id:* and event.action:\\\"firewall-rule\\\"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"ASA Firewall Events [Filebeat Cisco]","version":1},"coreMigrationVersion":"8.0.0","id":"96c6ff60-4986-11e9-b8ce-ed898b5ef295","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"ASA Events Over Time [Filebeat Cisco]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15y\",\"to\":\"now+1y\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"ASA Events Over Time [Filebeat Cisco]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"a3b5ab10-4989-11e9-b8ce-ed898b5ef295","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"96c6ff60-4986-11e9-b8ce-ed898b5ef295","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"ASA Flows by Network Bytes [Filebeat Cisco]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15y\",\"to\":\"now+1y\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Total bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"3\",\"label\":\"Total bytes\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Total bytes\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"ASA Flows by Network Bytes [Filebeat Cisco]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"80d0c1b0-498a-11e9-b8ce-ed898b5ef295","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"753406e0-4986-11e9-b8ce-ed898b5ef295","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"ASA Firewall Blocked by Source [Filebeat Cisco]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"ASA Firewall Blocked by Source [Filebeat Cisco]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"d05cdf60-498b-11e9-b8ce-ed898b5ef295","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"96c6ff60-4986-11e9-b8ce-ed898b5ef295","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"event.outcome:\\\"deny\\\"\"}}"},"savedSearchRefName":"search_0","title":"ASA Top ACL by Blocked [Filebeat Cisco]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"ACL ID\",\"field\":\"cisco.asa.rule_name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"ASA Top ACL by Blocked [Filebeat Cisco]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"08ef4d90-499b-11e9-b8ce-ed898b5ef295","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"96c6ff60-4986-11e9-b8ce-ed898b5ef295","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNTEsMV0="} +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"cisco.asa.message_id :*\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"All ASA Logs [Filebeat Cisco]","version":1},"coreMigrationVersion":"8.0.0","id":"14fce5e0-498f-11e9-b8ce-ed898b5ef295","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top ASA Messages [Filebeat Cisco]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 1, \"direction\": \"desc\"}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"ID\",\"field\":\"cisco.asa.message_id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Severity\",\"field\":\"log.level\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Sample message\",\"field\":\"event.original\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top ASA Messages [Filebeat Cisco]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"fd89b1e0-49a2-11e9-b8ce-ed898b5ef295","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"14fce5e0-498f-11e9-b8ce-ed898b5ef295","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNTIsMV0="} +{"attributes":{"description":"Sample dashboard for Cisco ASA Firewall devices","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":12,\"x\":12,\"y\":15},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Destination Port and Transport\",\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":12,\"x\":0,\"y\":15},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Source Port and Transport\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"ASA Firewall Events Over Time\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"ASA Flows by Network Bytes\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":12,\"x\":24,\"y\":15},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Blocked by Source\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":12,\"x\":36,\"y\":15},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top ACL by Blocked\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":12,\"i\":\"9\",\"w\":48,\"x\":0,\"y\":30},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Filebeat Cisco] ASA Firewall","version":1},"coreMigrationVersion":"8.0.0","id":"a555b160-4987-11e9-b8ce-ed898b5ef295","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"118da960-4987-11e9-b8ce-ed898b5ef295","name":"panel_0","type":"visualization"},{"id":"5d0322d0-4987-11e9-b8ce-ed898b5ef295","name":"panel_1","type":"visualization"},{"id":"a3b5ab10-4989-11e9-b8ce-ed898b5ef295","name":"panel_2","type":"visualization"},{"id":"80d0c1b0-498a-11e9-b8ce-ed898b5ef295","name":"panel_3","type":"visualization"},{"id":"d05cdf60-498b-11e9-b8ce-ed898b5ef295","name":"panel_4","type":"visualization"},{"id":"08ef4d90-499b-11e9-b8ce-ed898b5ef295","name":"panel_5","type":"visualization"},{"id":"fd89b1e0-49a2-11e9-b8ce-ed898b5ef295","name":"panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNDUsMV0="} diff --git a/x-pack/filebeat/module/cisco/module.yml b/x-pack/filebeat/module/cisco/module.yml index b3a9249a617..1ff7b221400 100644 --- a/x-pack/filebeat/module/cisco/module.yml +++ b/x-pack/filebeat/module/cisco/module.yml @@ -1,3 +1,3 @@ dashboards: - id: a555b160-4987-11e9-b8ce-ed898b5ef295 - file: Filebeat-Cisco-ASA.json + file: Filebeat-Cisco-ASA.ndjson diff --git a/x-pack/filebeat/module/coredns/_meta/kibana/7/dashboard/Coredns-Overview-Dashboard.json b/x-pack/filebeat/module/coredns/_meta/kibana/7/dashboard/Coredns-Overview-Dashboard.json deleted file mode 100644 index 5db6df5bdd0..00000000000 --- a/x-pack/filebeat/module/coredns/_meta/kibana/7/dashboard/Coredns-Overview-Dashboard.json +++ /dev/null @@ -1,464 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of CoreDNS", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "1", - "w": 41, - "x": 4, - "y": 7 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "2", - "w": 20, - "x": 4, - "y": 0 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "3", - "w": 21, - "x": 24, - "y": 0 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 6, - "i": "4", - "w": 41, - "x": 4, - "y": 21 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "version": "8.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Filebeat CoreDNS] Overview", - "version": 1 - }, - "id": "53aa1f70-443e-11e9-8548-ab7fbe04f038", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "3ad75810-4429-11e9-8548-ab7fbe04f038", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "9dc640e0-4432-11e9-8548-ab7fbe04f038", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "75743f70-443c-11e9-8548-ab7fbe04f038", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "cfde7fb0-443d-11e9-8548-ab7fbe04f038", - "name": "panel_3", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-03-11T20:43:54.420Z", - "version": "WzE0ODgsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top Domains [Filebeat CoreDNS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "coredns.query.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "maxFontSize": 72, - "metric": { - "accessor": 0, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - }, - "minFontSize": 18, - "orientation": "single", - "scale": "linear", - "showLabel": true - }, - "title": "Top Domains [Filebeat CoreDNS]", - "type": "tagcloud" - } - }, - "id": "3ad75810-4429-11e9-8548-ab7fbe04f038", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-03-11T18:12:28.303Z", - "version": "WzE0ODMsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Total DNS Queries [Filebeat CoreDNS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Total DNS Queries [Filebeat CoreDNS]", - "type": "metric" - } - }, - "id": "9dc640e0-4432-11e9-8548-ab7fbe04f038", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-03-11T19:19:39.757Z", - "version": "WzE0ODQsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Unique Domains [Filebeat CoreDNS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Unique Domains", - "field": "coredns.query.name" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "bucket": { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "metrics": [ - { - "accessor": 0, - "aggType": "cardinality", - "format": { - "id": "number" - }, - "params": {} - } - ], - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Unique Domains [Filebeat CoreDNS]", - "type": "metric" - } - }, - "id": "75743f70-443c-11e9-8548-ab7fbe04f038", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-03-12T01:26:19.218Z", - "version": "WzE0OTMsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "tags:\"coredns\"" - } - } - }, - "title": "Time Series Visualizer [Filebeat CoreDNS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "65ad37b0-443f-11e9-94ba-69b05a5f82b8" - } - ], - "bar_color_rules": [ - { - "id": "e1f6cda0-443e-11e9-94ba-69b05a5f82b8" - } - ], - "default_index_pattern": "filebeat-*", - "gauge_color_rules": [ - { - "id": "6996a6e0-443f-11e9-94ba-69b05a5f82b8" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": "fileset.name:kubernetes", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "CoreDNS Kubernetes", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "filter", - "stacked": "none", - "terms_field": "fileset.name" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": "fileset.name:log", - "formatter": "number", - "id": "3c8999f0-443f-11e9-94ba-69b05a5f82b8", - "label": "CoreDNS Native", - "line_width": 1, - "metrics": [ - { - "id": "3c8999f1-443f-11e9-94ba-69b05a5f82b8", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "filter", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Time Series Visualizer [Filebeat CoreDNS]", - "type": "metrics" - } - }, - "id": "cfde7fb0-443d-11e9-8548-ab7fbe04f038", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-03-11T20:51:52.103Z", - "version": "WzE0ODksM10=" - } - ], - "version": "8.0.0-SNAPSHOT" -} diff --git a/x-pack/filebeat/module/coredns/_meta/kibana/7/dashboard/Coredns-Overview-Dashboard.ndjson b/x-pack/filebeat/module/coredns/_meta/kibana/7/dashboard/Coredns-Overview-Dashboard.ndjson new file mode 100644 index 00000000000..2eeef1f50a6 --- /dev/null +++ b/x-pack/filebeat/module/coredns/_meta/kibana/7/dashboard/Coredns-Overview-Dashboard.ndjson @@ -0,0 +1,5 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top Domains [Filebeat CoreDNS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"coredns.query.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}},\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top Domains [Filebeat CoreDNS]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"3ad75810-4429-11e9-8548-ab7fbe04f038","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:40.046Z","version":"WzQyNDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Total DNS Queries [Filebeat CoreDNS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total DNS Queries [Filebeat CoreDNS]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"9dc640e0-4432-11e9-8548-ab7fbe04f038","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:40.046Z","version":"WzQyNDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Unique Domains [Filebeat CoreDNS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique Domains\",\"field\":\"coredns.query.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"bucket\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"metrics\":[{\"accessor\":0,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"params\":{}}],\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Unique Domains [Filebeat CoreDNS]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"75743f70-443c-11e9-8548-ab7fbe04f038","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:40.046Z","version":"WzQyNDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Time Series Visualizer [Filebeat CoreDNS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"65ad37b0-443f-11e9-94ba-69b05a5f82b8\"}],\"bar_color_rules\":[{\"id\":\"e1f6cda0-443e-11e9-94ba-69b05a5f82b8\"}],\"gauge_color_rules\":[{\"id\":\"6996a6e0-443f-11e9-94ba-69b05a5f82b8\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"query\":\"fileset.name:kubernetes\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"CoreDNS Kubernetes\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"terms_field\":\"fileset.name\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"query\":\"fileset.name:log\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"3c8999f0-443f-11e9-94ba-69b05a5f82b8\",\"label\":\"CoreDNS Native\",\"line_width\":1,\"metrics\":[{\"id\":\"3c8999f1-443f-11e9-94ba-69b05a5f82b8\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Time Series Visualizer [Filebeat CoreDNS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"cfde7fb0-443d-11e9-8548-ab7fbe04f038","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:40.046Z","version":"WzQyNDQsMV0="} +{"attributes":{"description":"Overview of CoreDNS","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"1\",\"w\":41,\"x\":4,\"y\":7},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"2\",\"w\":20,\"x\":4,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"3\",\"w\":21,\"x\":24,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"4\",\"w\":41,\"x\":4,\"y\":21},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Filebeat CoreDNS] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"53aa1f70-443e-11e9-8548-ab7fbe04f038","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"3ad75810-4429-11e9-8548-ab7fbe04f038","name":"1:panel_1","type":"visualization"},{"id":"9dc640e0-4432-11e9-8548-ab7fbe04f038","name":"2:panel_2","type":"visualization"},{"id":"75743f70-443c-11e9-8548-ab7fbe04f038","name":"3:panel_3","type":"visualization"},{"id":"cfde7fb0-443d-11e9-8548-ab7fbe04f038","name":"4:panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:40.046Z","version":"WzQyNDAsMV0="} diff --git a/x-pack/filebeat/module/coredns/module.yml b/x-pack/filebeat/module/coredns/module.yml index e52f7f3de7f..1442906f86c 100644 --- a/x-pack/filebeat/module/coredns/module.yml +++ b/x-pack/filebeat/module/coredns/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 53aa1f70-443e-11e9-8548-ab7fbe04f038 - file: Coredns-Overview-Dashboard.json \ No newline at end of file + file: Coredns-Overview-Dashboard.ndjson \ No newline at end of file diff --git a/x-pack/filebeat/module/crowdstrike/module.yml b/x-pack/filebeat/module/crowdstrike/module.yml index 62cdb7d5863..8f14a021e30 100644 --- a/x-pack/filebeat/module/crowdstrike/module.yml +++ b/x-pack/filebeat/module/crowdstrike/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Filebeat-crowdstrike-falcon-Dashboard - file: Filebeat-crowdstrike-falcon.json + file: Filebeat-crowdstrike-falcon.ndjson diff --git a/x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/dashboard/Filebeat-cyberarkpas-audit.json b/x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/dashboard/Filebeat-cyberarkpas-audit.json deleted file mode 100644 index bac1c083f52..00000000000 --- a/x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/dashboard/Filebeat-cyberarkpas-audit.json +++ /dev/null @@ -1,1574 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Dashboard for CyberArk Privileged Access Security events.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "cyberarkpas.audit" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "cyberarkpas.audit" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "enhancements": {}, - "hidePanelTitles": false, - "savedVis": { - "data": { - "aggs": [], - "searchSource": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "description": "", - "params": { - "controls": [ - { - "fieldName": "observer.hostname", - "id": "1617726994032", - "indexPattern": "filebeat-*", - "indexPatternRefName": "control_0_index_pattern", - "label": " By Vault host", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "event.code", - "id": "1617811797137", - "indexPattern": "filebeat-*", - "indexPatternRefName": "control_1_index_pattern", - "label": "By event code", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "", - "type": "input_control_vis", - "uiState": {} - } - }, - "gridData": { - "h": 9, - "i": "1007fa0d-a6a1-4682-a346-a90acc179da5", - "w": 10, - "x": 0, - "y": 0 - }, - "panelIndex": "1007fa0d-a6a1-4682-a346-a90acc179da5", - "title": "Filters", - "type": "visualization", - "version": "7.12.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "hidePanelTitles": false, - "savedVis": { - "data": { - "aggs": [], - "searchSource": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "description": "", - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "event.dataset:\"cyberarkpas.audit\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "hide_in_legend": 0, - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "override_index_pattern": 0, - "palette": { - "name": "rainbow", - "params": { - "colors": [ - "#68BC00", - "#009CE0", - "#B0BC00", - "#16A5A5", - "#D33115", - "#E27300", - "#FCC400", - "#7B64FF", - "#FA28FF", - "#333333", - "#808080", - "#194D33", - "#0062B1", - "#808900", - "#0C797D", - "#9F0500", - "#C45100", - "#FB9E00", - "#653294", - "#AB149E", - "#0F1419", - "#666666" - ], - "gradient": false - }, - "type": "palette" - }, - "point_size": 1, - "separate_axis": 0, - "split_color_mode": null, - "split_mode": "terms", - "stacked": "stacked", - "terms_field": "cyberarkpas.audit.desc", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "time_range_mode": "entire_time_range", - "tooltip_mode": "show_all", - "type": "timeseries", - "use_kibana_indexes": true - }, - "title": "", - "type": "metrics", - "uiState": {} - } - }, - "gridData": { - "h": 13, - "i": "f2dc3750-9b7c-4b0e-a45d-3d3b08f74f3e", - "w": 38, - "x": 10, - "y": 0 - }, - "panelIndex": "f2dc3750-9b7c-4b0e-a45d-3d3b08f74f3e", - "title": "event types by time", - "type": "visualization", - "version": "7.12.0" - }, - { - "embeddableConfig": { - "attributes": { - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-33bc0096-e418-4f81-9c7c-7fdd16cc5203", - "type": "index-pattern" - } - ], - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "33bc0096-e418-4f81-9c7c-7fdd16cc5203": { - "columnOrder": [ - "eedd5aa8-a7c4-466a-b10b-3a8cba3bac12" - ], - "columns": { - "eedd5aa8-a7c4-466a-b10b-3a8cba3bac12": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": " ", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "accessor": "eedd5aa8-a7c4-466a-b10b-3a8cba3bac12", - "layerId": "33bc0096-e418-4f81-9c7c-7fdd16cc5203" - } - }, - "title": "", - "type": "lens", - "visualizationType": "lnsMetric" - }, - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 4, - "i": "af9e9f0b-a40c-411e-b441-2a779983ed24", - "w": 10, - "x": 0, - "y": 9 - }, - "panelIndex": "af9e9f0b-a40c-411e-b441-2a779983ed24", - "title": "Count of events", - "type": "lens", - "version": "7.12.0" - }, - { - "embeddableConfig": { - "attributes": { - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-de047c06-a965-47aa-8a15-8b0266d5abc3", - "type": "index-pattern" - } - ], - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "de047c06-a965-47aa-8a15-8b0266d5abc3": { - "columnOrder": [ - "b916e5f5-a64a-49f1-b37a-ee1825fc61a4", - "3effd03e-0ed9-4e2d-ba8e-d77ae505092e" - ], - "columns": { - "3effd03e-0ed9-4e2d-ba8e-d77ae505092e": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - }, - "b916e5f5-a64a-49f1-b37a-ee1825fc61a4": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of event.outcome", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "3effd03e-0ed9-4e2d-ba8e-d77ae505092e", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 5 - }, - "scale": "ordinal", - "sourceField": "event.outcome" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "layers": [ - { - "categoryDisplay": "default", - "groups": [ - "b916e5f5-a64a-49f1-b37a-ee1825fc61a4" - ], - "layerId": "de047c06-a965-47aa-8a15-8b0266d5abc3", - "legendDisplay": "default", - "metric": "3effd03e-0ed9-4e2d-ba8e-d77ae505092e", - "nestedLegend": false, - "numberDisplay": "percent" - } - ], - "shape": "donut" - } - }, - "title": "", - "type": "lens", - "visualizationType": "lnsPie" - }, - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 13, - "i": "7031905a-92ab-4e0e-aa58-72f1c07ff409", - "w": 10, - "x": 0, - "y": 13 - }, - "panelIndex": "7031905a-92ab-4e0e-aa58-72f1c07ff409", - "title": "Breakdown by outcome", - "type": "lens", - "version": "7.12.0" - }, - { - "embeddableConfig": { - "attributes": { - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-19858811-84d1-4f50-901c-dc1451972324", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "filter-index-pattern-0", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "filter-index-pattern-1", - "type": "index-pattern" - } - ], - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "19858811-84d1-4f50-901c-dc1451972324": { - "columnOrder": [ - "81dcff19-b14a-4e4b-999e-dbbcbdfdf816", - "e3526253-18e0-4122-b112-ee5b4b9e23d7" - ], - "columns": { - "81dcff19-b14a-4e4b-999e-dbbcbdfdf816": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of destination.user.name", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "type": "alphabetical" - }, - "orderDirection": "asc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "destination.user.name" - }, - "e3526253-18e0-4122-b112-ee5b4b9e23d7": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "filter-index-pattern-0", - "key": "event.dataset", - "negate": false, - "params": { - "query": "cyberarkpas.audit" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "cyberarkpas.audit" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "filter-index-pattern-1", - "key": "event.code", - "negate": false, - "params": [ - "308", - "22", - "319", - "295" - ], - "type": "phrases" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "308" - } - }, - { - "match_phrase": { - "event.code": "22" - } - }, - { - "match_phrase": { - "event.code": "319" - } - }, - { - "match_phrase": { - "event.code": "295" - } - } - ] - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "layers": [ - { - "categoryDisplay": "default", - "groups": [ - "81dcff19-b14a-4e4b-999e-dbbcbdfdf816", - "81dcff19-b14a-4e4b-999e-dbbcbdfdf816", - "81dcff19-b14a-4e4b-999e-dbbcbdfdf816", - "81dcff19-b14a-4e4b-999e-dbbcbdfdf816", - "81dcff19-b14a-4e4b-999e-dbbcbdfdf816", - "81dcff19-b14a-4e4b-999e-dbbcbdfdf816" - ], - "layerId": "19858811-84d1-4f50-901c-dc1451972324", - "legendDisplay": "default", - "metric": "e3526253-18e0-4122-b112-ee5b4b9e23d7", - "nestedLegend": false, - "numberDisplay": "percent" - } - ], - "shape": "donut" - } - }, - "title": "", - "type": "lens", - "visualizationType": "lnsPie" - }, - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 13, - "i": "a24b9c0c-da95-4016-9fe5-2c0d34005832", - "w": 11, - "x": 10, - "y": 13 - }, - "panelIndex": "a24b9c0c-da95-4016-9fe5-2c0d34005832", - "title": "Top 10 user credentials accessed", - "type": "lens", - "version": "7.12.0" - }, - { - "embeddableConfig": { - "attributes": { - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-50325938-6a9e-4a26-946e-4468e68c6591", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "filter-index-pattern-0", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "filter-index-pattern-1", - "type": "index-pattern" - } - ], - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "50325938-6a9e-4a26-946e-4468e68c6591": { - "columnOrder": [ - "8a965540-daa1-4848-80bb-96ddf53a328f", - "c05a39ad-2983-4f4a-900d-a939ecbda504", - "a808a872-71b5-4a76-a939-354f68991881" - ], - "columns": { - "8a965540-daa1-4848-80bb-96ddf53a328f": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of event.outcome", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "a808a872-71b5-4a76-a939-354f68991881", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 2 - }, - "scale": "ordinal", - "sourceField": "event.outcome" - }, - "a808a872-71b5-4a76-a939-354f68991881": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Credentials accessed", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - }, - "c05a39ad-2983-4f4a-900d-a939ecbda504": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "filter-index-pattern-0", - "key": "event.dataset", - "negate": false, - "params": { - "query": "cyberarkpas.audit" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "cyberarkpas.audit" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "filter-index-pattern-1", - "key": "event.code", - "negate": false, - "params": [ - "308", - "22", - "319", - "295", - "38" - ], - "type": "phrases" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "308" - } - }, - { - "match_phrase": { - "event.code": "22" - } - }, - { - "match_phrase": { - "event.code": "319" - } - }, - { - "match_phrase": { - "event.code": "295" - } - }, - { - "match_phrase": { - "event.code": "38" - } - } - ] - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "a808a872-71b5-4a76-a939-354f68991881" - ], - "layerId": "50325938-6a9e-4a26-946e-4468e68c6591", - "position": "top", - "seriesType": "area_stacked", - "showGridlines": false, - "splitAccessor": "8a965540-daa1-4848-80bb-96ddf53a328f", - "xAccessor": "c05a39ad-2983-4f4a-900d-a939ecbda504" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "area_stacked", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "valueLabels": "hide" - } - }, - "title": "", - "type": "lens", - "visualizationType": "lnsXY" - }, - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 13, - "i": "1dc68cc6-e1b3-43ea-9b0e-f423d194b99a", - "w": 27, - "x": 21, - "y": 13 - }, - "panelIndex": "1dc68cc6-e1b3-43ea-9b0e-f423d194b99a", - "title": "Credential access by time", - "type": "lens", - "version": "7.12.0" - }, - { - "embeddableConfig": { - "attributes": { - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-105faf70-8330-46b3-a82a-573a383068fa", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "filter-index-pattern-0", - "type": "index-pattern" - } - ], - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "105faf70-8330-46b3-a82a-573a383068fa": { - "columnOrder": [ - "c51d6847-2fcc-4d13-a44f-49786cb979ed", - "d73b823b-ae68-4e73-bbe2-90a35bc825e7", - "c0147524-accc-4dee-a4fc-44199e3459f1" - ], - "columns": { - "c0147524-accc-4dee-a4fc-44199e3459f1": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Authentications", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - }, - "c51d6847-2fcc-4d13-a44f-49786cb979ed": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Users", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "c0147524-accc-4dee-a4fc-44199e3459f1", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 8 - }, - "scale": "ordinal", - "sourceField": "user.name" - }, - "d73b823b-ae68-4e73-bbe2-90a35bc825e7": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of event.outcome", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "type": "alphabetical" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 2 - }, - "scale": "ordinal", - "sourceField": "event.outcome" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "filter-index-pattern-0", - "key": "event.category", - "negate": false, - "params": [ - "authentication" - ], - "type": "phrases" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.category": "authentication" - } - } - ] - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "c0147524-accc-4dee-a4fc-44199e3459f1" - ], - "layerId": "105faf70-8330-46b3-a82a-573a383068fa", - "palette": { - "name": "status", - "type": "palette" - }, - "position": "top", - "seriesType": "bar_horizontal_stacked", - "showGridlines": false, - "splitAccessor": "d73b823b-ae68-4e73-bbe2-90a35bc825e7", - "xAccessor": "c51d6847-2fcc-4d13-a44f-49786cb979ed" - } - ], - "legend": { - "isVisible": true, - "position": "right", - "showSingleSeries": false - }, - "preferredSeriesType": "bar_horizontal_stacked", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "valueLabels": "hide" - } - }, - "title": "", - "type": "lens", - "visualizationType": "lnsXY" - }, - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 23, - "i": "c56b3e4d-bfb6-4b06-a62b-282753b85f7a", - "w": 15, - "x": 0, - "y": 26 - }, - "panelIndex": "c56b3e4d-bfb6-4b06-a62b-282753b85f7a", - "title": "Vault Authentication attempts", - "type": "lens", - "version": "7.12.0" - }, - { - "embeddableConfig": { - "attributes": { - "description": "", - "layerListJSON": "[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"id\":null,\"isAutoSelect\":true},\"id\":\"a3734143-d6e1-4551-b0b1-8282a37e151b\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{\"type\":\"TILE\"},\"type\":\"VECTOR_TILE\"},{\"label\":\"filebeat-* | Source Point\",\"sourceDescriptor\":{\"indexPatternId\":\"filebeat-*\",\"geoField\":\"source.geo.location\",\"scalingType\":\"TOP_HITS\",\"topHitsSplitField\":\"source.ip\",\"tooltipProperties\":[\"host.name\",\"source.ip\",\"source.domain\",\"source.geo.country_iso_code\",\"source.as.organization.name\"],\"id\":\"5f2b25a1-01ea-45ca-a4a2-f1a670c3b149\",\"type\":\"ES_SEARCH\",\"applyGlobalQuery\":true,\"applyGlobalTime\":true,\"filterByMapBounds\":true,\"sortField\":\"\",\"sortOrder\":\"desc\",\"topHitsSize\":22},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"home\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#6092C0\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":2}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":8}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"icon\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"2ad8e318-4ef4-4e89-94f2-f37e395c488c\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"joins\":[]},{\"label\":\"filebeat-* | Destination point\",\"sourceDescriptor\":{\"indexPatternId\":\"filebeat-*\",\"geoField\":\"destination.geo.location\",\"scalingType\":\"TOP_HITS\",\"topHitsSplitField\":\"destination.ip\",\"tooltipProperties\":[\"host.name\",\"destination.ip\",\"destination.domain\",\"destination.geo.country_iso_code\",\"destination.as.organization.name\"],\"id\":\"bc95f479-964f-4498-be1e-376d34a01b0a\",\"type\":\"ES_SEARCH\",\"applyGlobalQuery\":true,\"applyGlobalTime\":true,\"filterByMapBounds\":true,\"sortField\":\"\",\"sortOrder\":\"desc\",\"topHitsSize\":35},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"marker\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#D36086\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":2}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":8}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"icon\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"dbb878c8-4039-49f1-b2ff-ab7fb942ba55\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"joins\":[]},{\"label\":\"filebeat-* | Line\",\"sourceDescriptor\":{\"indexPatternId\":\"filebeat-*\",\"sourceGeoField\":\"source.geo.location\",\"destGeoField\":\"destination.geo.location\",\"metrics\":[{\"type\":\"count\"},{\"type\":\"sum\",\"field\":\"destination.bytes\"}],\"id\":\"faf6884d-b7cb-41dd-ab86-95970d7c59d2\",\"type\":\"ES_PEW_PEW\",\"applyGlobalQuery\":true,\"applyGlobalTime\":true},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"marker\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#54B399\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#6092C0\"}},\"lineWidth\":{\"type\":\"DYNAMIC\",\"options\":{\"minSize\":1,\"maxSize\":8,\"field\":{\"name\":\"doc_count\",\"origin\":\"source\"},\"fieldMetaOptions\":{\"isEnabled\":true,\"sigma\":3}}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"9c450fbf-b009-4b53-9810-2f47ca8dcfa8\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"joins\":[]}]", - "mapStateJSON": "{\"zoom\":1.24,\"center\":{\"lon\":-49.38072,\"lat\":7.87497},\"timeFilters\":{\"from\":\"now-15w\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":true,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false,\"backgroundColor\":\"#ffffff\",\"disableInteractive\":false,\"disableTooltipControl\":false,\"hideToolbarOverlay\":false,\"hideLayerControl\":false,\"hideViewControl\":false,\"initialLocation\":\"LAST_SAVED_LOCATION\",\"fixedLocation\":{\"lat\":0,\"lon\":0,\"zoom\":2},\"browserLocation\":{\"zoom\":2},\"maxZoom\":24,\"minZoom\":0,\"showScaleControl\":false,\"showSpatialFilters\":true,\"spatialFiltersAlpa\":0.3,\"spatialFiltersFillColor\":\"#DA8B45\",\"spatialFiltersLineColor\":\"#DA8B45\"}}", - "title": "", - "uiStateJSON": "{\"isLayerTOCOpen\":true,\"openTOCDetails\":[]}" - }, - "enhancements": {}, - "hiddenLayers": [], - "hidePanelTitles": false, - "isLayerTOCOpen": false, - "mapBuffer": { - "maxLat": 148.88690000000003, - "maxLon": 438.09868, - "minLat": -116.68142, - "minLon": -417.60444 - }, - "mapCenter": { - "lat": 43.83453, - "lon": 10.24712, - "zoom": 1 - }, - "openTOCDetails": [] - }, - "gridData": { - "h": 23, - "i": "cd1e20e7-706f-4d02-949c-d9f5908bad67", - "w": 33, - "x": 15, - "y": 26 - }, - "panelIndex": "cd1e20e7-706f-4d02-949c-d9f5908bad67", - "title": "Network sources and destinations", - "type": "map", - "version": "7.12.0" - }, - { - "embeddableConfig": { - "attributes": { - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-028c5c1e-79f9-4999-8438-4889ac2b714c", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "filter-index-pattern-0", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "filter-index-pattern-1", - "type": "index-pattern" - } - ], - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "028c5c1e-79f9-4999-8438-4889ac2b714c": { - "columnOrder": [ - "e55346c7-87bc-49f4-9215-8a36931d05f4", - "f2cd86e2-fb91-48b2-b8dd-e98395d28e00" - ], - "columns": { - "e55346c7-87bc-49f4-9215-8a36931d05f4": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Users", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "f2cd86e2-fb91-48b2-b8dd-e98395d28e00", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": false, - "size": 5 - }, - "scale": "ordinal", - "sourceField": "user.name" - }, - "f2cd86e2-fb91-48b2-b8dd-e98395d28e00": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Failed authentications", - "operationType": "count", - "params": {}, - "scale": "ratio", - "sourceField": "Records" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "filter-index-pattern-0", - "key": "event.category", - "negate": false, - "params": { - "query": "authentication" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.category": "authentication" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "filter-index-pattern-1", - "key": "event.outcome", - "negate": false, - "params": { - "query": "failure" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.outcome": "failure" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "f2cd86e2-fb91-48b2-b8dd-e98395d28e00" - ], - "layerId": "028c5c1e-79f9-4999-8438-4889ac2b714c", - "position": "top", - "seriesType": "bar_horizontal", - "showGridlines": false, - "xAccessor": "e55346c7-87bc-49f4-9215-8a36931d05f4", - "yConfig": [ - { - "color": "#d36086", - "forAccessor": "f2cd86e2-fb91-48b2-b8dd-e98395d28e00" - } - ] - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "bar_horizontal", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "valueLabels": "hide" - } - }, - "title": "", - "type": "lens", - "visualizationType": "lnsXY" - }, - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 15, - "i": "c6305b30-a7e2-4cc3-b49b-db99031f150e", - "w": 15, - "x": 0, - "y": 49 - }, - "panelIndex": "c6305b30-a7e2-4cc3-b49b-db99031f150e", - "title": "Top users by failed authentications to Vault", - "type": "lens", - "version": "7.12.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 15, - "i": "96a2c711-40a3-4dfc-87f5-4b193078e05a", - "w": 33, - "x": 15, - "y": 49 - }, - "panelIndex": "96a2c711-40a3-4dfc-87f5-4b193078e05a", - "panelRefName": "panel_9", - "title": "Credential Access", - "version": "7.12.0" - }, - { - "embeddableConfig": { - "columns": [ - "observer.hostname", - "cyberarkpas.audit.action", - "cyberarkpas.audit.issuer", - "cyberarkpas.audit.safe", - "file.path" - ], - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 18, - "i": "6cd62115-65e7-416f-8da7-96b0d7a9d932", - "w": 48, - "x": 0, - "y": 64 - }, - "panelIndex": "6cd62115-65e7-416f-8da7-96b0d7a9d932", - "panelRefName": "panel_10", - "title": "All logs", - "version": "7.12.0" - } - ], - "timeRestore": false, - "title": "[Filebeat CyberArk PAS] Overview", - "version": 1 - }, - "coreMigrationVersion": "7.12.0", - "id": "eb12ef60-96f6-11eb-bbf8-d77aef8ad7a6", - "migrationVersion": { - "dashboard": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-33bc0096-e418-4f81-9c7c-7fdd16cc5203", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-de047c06-a965-47aa-8a15-8b0266d5abc3", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-19858811-84d1-4f50-901c-dc1451972324", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "filter-index-pattern-0", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "filter-index-pattern-1", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-50325938-6a9e-4a26-946e-4468e68c6591", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "filter-index-pattern-0", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "filter-index-pattern-1", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-105faf70-8330-46b3-a82a-573a383068fa", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "filter-index-pattern-0", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "layer_1_source_index_pattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "layer_2_source_index_pattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "layer_3_source_index_pattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-028c5c1e-79f9-4999-8438-4889ac2b714c", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "filter-index-pattern-0", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "filter-index-pattern-1", - "type": "index-pattern" - }, - { - "id": "a9b82df0-97a5-11eb-bbf8-d77aef8ad7a6", - "name": "panel_9", - "type": "search" - }, - { - "id": "fec0d170-96f7-11eb-bbf8-d77aef8ad7a6", - "name": "panel_10", - "type": "search" - } - ], - "type": "dashboard", - "updated_at": "2021-04-13T17:04:21.111Z", - "version": "WzM0ODYsM10=" - }, - { - "attributes": { - "columns": [ - "event.action", - "event.outcome", - "source.address", - "source.user.name", - "destination.address", - "destination.user.name", - "event.reason" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "cyberarkpas.audit" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "cyberarkpas.audit" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "308", - "319", - "295", - "22", - "38", - "300", - "302" - ], - "type": "phrases", - "value": "308, 319, 295, 22, 38, 300, 302" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "308" - } - }, - { - "match_phrase": { - "event.code": "319" - } - }, - { - "match_phrase": { - "event.code": "295" - } - }, - { - "match_phrase": { - "event.code": "22" - } - }, - { - "match_phrase": { - "event.code": "38" - } - }, - { - "match_phrase": { - "event.code": "300" - } - }, - { - "match_phrase": { - "event.code": "302" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Credential Access logs [Filebeat CyberArk PAS] ECS", - "version": 1 - }, - "coreMigrationVersion": "7.12.0", - "id": "a9b82df0-97a5-11eb-bbf8-d77aef8ad7a6", - "migrationVersion": { - "search": "7.9.3" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2021-04-13T13:24:02.327Z", - "version": "WzI4NzgsM10=" - }, - { - "attributes": { - "columns": [], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.dataset:\"cyberarkpas.audit\" " - } - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "All logs [Filebeat CyberArk PAS] ECS", - "version": 1 - }, - "coreMigrationVersion": "7.12.0", - "id": "fec0d170-96f7-11eb-bbf8-d77aef8ad7a6", - "migrationVersion": { - "search": "7.9.3" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2021-04-13T13:24:02.327Z", - "version": "WzI4NzksM10=" - } - ], - "version": "7.12.0" -} diff --git a/x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/dashboard/Filebeat-cyberarkpas-audit.ndjson b/x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/dashboard/Filebeat-cyberarkpas-audit.ndjson new file mode 100644 index 00000000000..081a8d2a786 --- /dev/null +++ b/x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/dashboard/Filebeat-cyberarkpas-audit.ndjson @@ -0,0 +1,3 @@ +{"attributes":{"columns":["event.action","event.outcome","source.address","source.user.name","destination.address","destination.user.name","event.reason"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"cyberarkpas.audit\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"cyberarkpas.audit\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"308\", \"319\", \"295\", \"22\", \"38\", \"300\", \"302\"], \"type\": \"phrases\", \"value\": \"308, 319, 295, 22, 38, 300, 302\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"308\"}}, {\"match_phrase\": {\"event.code\": \"319\"}}, {\"match_phrase\": {\"event.code\": \"295\"}}, {\"match_phrase\": {\"event.code\": \"22\"}}, {\"match_phrase\": {\"event.code\": \"38\"}}, {\"match_phrase\": {\"event.code\": \"300\"}}, {\"match_phrase\": {\"event.code\": \"302\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"sort":[["@timestamp","desc"]],"title":"Credential Access logs [Filebeat CyberArk PAS] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"a9b82df0-97a5-11eb-bbf8-d77aef8ad7a6","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:04.520Z","version":"WzQ0MTEsMV0="} +{"attributes":{"columns":[],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset:\\\"cyberarkpas.audit\\\" \"}}"},"sort":[["@timestamp","desc"]],"title":"All logs [Filebeat CyberArk PAS] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"fec0d170-96f7-11eb-bbf8-d77aef8ad7a6","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:04.520Z","version":"WzQ0MTIsMV0="} +{"attributes":{"description":"Dashboard for CyberArk Privileged Access Security events.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"cyberarkpas.audit\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"cyberarkpas.audit\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.14.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1007fa0d-a6a1-4682-a346-a90acc179da5\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"1007fa0d-a6a1-4682-a346-a90acc179da5\",\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false,\"savedVis\":{\"data\":{\"aggs\":[],\"searchSource\":{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}},\"description\":\"\",\"params\":{\"controls\":[{\"fieldName\":\"observer.hostname\",\"id\":\"1617726994032\",\"indexPattern\":\"filebeat-*\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\" By Vault host\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"event.code\",\"id\":\"1617811797137\",\"indexPattern\":\"filebeat-*\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"By event code\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"\",\"type\":\"input_control_vis\",\"uiState\":{}},\"type\":\"visualization\"},\"title\":\"Filters\"},{\"version\":\"7.14.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"f2dc3750-9b7c-4b0e-a45d-3d3b08f74f3e\",\"w\":38,\"x\":10,\"y\":0},\"panelIndex\":\"f2dc3750-9b7c-4b0e-a45d-3d3b08f74f3e\",\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false,\"savedVis\":{\"data\":{\"aggs\":[],\"searchSource\":{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}},\"description\":\"\",\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset:\\\"cyberarkpas.audit\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"override_index_pattern\":0,\"palette\":{\"name\":\"rainbow\",\"params\":{\"colors\":[\"#68BC00\",\"#009CE0\",\"#B0BC00\",\"#16A5A5\",\"#D33115\",\"#E27300\",\"#FCC400\",\"#7B64FF\",\"#FA28FF\",\"#333333\",\"#808080\",\"#194D33\",\"#0062B1\",\"#808900\",\"#0C797D\",\"#9F0500\",\"#C45100\",\"#FB9E00\",\"#653294\",\"#AB149E\",\"#0F1419\",\"#666666\"],\"gradient\":false},\"type\":\"palette\"},\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":null,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"cyberarkpas.audit.desc\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"\",\"type\":\"metrics\",\"uiState\":{}},\"type\":\"visualization\"},\"title\":\"event types by time\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":4,\"i\":\"af9e9f0b-a40c-411e-b441-2a779983ed24\",\"w\":10,\"x\":0,\"y\":9},\"panelIndex\":\"af9e9f0b-a40c-411e-b441-2a779983ed24\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-layer-33bc0096-e418-4f81-9c7c-7fdd16cc5203\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"33bc0096-e418-4f81-9c7c-7fdd16cc5203\":{\"columnOrder\":[\"eedd5aa8-a7c4-466a-b10b-3a8cba3bac12\"],\"columns\":{\"eedd5aa8-a7c4-466a-b10b-3a8cba3bac12\":{\"customLabel\":true,\"dataType\":\"number\",\"isBucketed\":false,\"label\":\" \",\"operationType\":\"count\",\"scale\":\"ratio\",\"sourceField\":\"Records\"}},\"incompleteColumns\":{}}}}},\"filters\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"accessor\":\"eedd5aa8-a7c4-466a-b10b-3a8cba3bac12\",\"layerId\":\"33bc0096-e418-4f81-9c7c-7fdd16cc5203\"}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsMetric\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"Count of events\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"7031905a-92ab-4e0e-aa58-72f1c07ff409\",\"w\":10,\"x\":0,\"y\":13},\"panelIndex\":\"7031905a-92ab-4e0e-aa58-72f1c07ff409\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-layer-de047c06-a965-47aa-8a15-8b0266d5abc3\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"de047c06-a965-47aa-8a15-8b0266d5abc3\":{\"columnOrder\":[\"b916e5f5-a64a-49f1-b37a-ee1825fc61a4\",\"3effd03e-0ed9-4e2d-ba8e-d77ae505092e\"],\"columns\":{\"3effd03e-0ed9-4e2d-ba8e-d77ae505092e\":{\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Count of records\",\"operationType\":\"count\",\"scale\":\"ratio\",\"sourceField\":\"Records\"},\"b916e5f5-a64a-49f1-b37a-ee1825fc61a4\":{\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Top values of event.outcome\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"columnId\":\"3effd03e-0ed9-4e2d-ba8e-d77ae505092e\",\"type\":\"column\"},\"orderDirection\":\"desc\",\"otherBucket\":true,\"size\":5},\"scale\":\"ordinal\",\"sourceField\":\"event.outcome\"}},\"incompleteColumns\":{}}}}},\"filters\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"layers\":[{\"categoryDisplay\":\"default\",\"groups\":[\"b916e5f5-a64a-49f1-b37a-ee1825fc61a4\"],\"layerId\":\"de047c06-a965-47aa-8a15-8b0266d5abc3\",\"legendDisplay\":\"default\",\"metric\":\"3effd03e-0ed9-4e2d-ba8e-d77ae505092e\",\"nestedLegend\":false,\"numberDisplay\":\"percent\"}],\"shape\":\"donut\"}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsPie\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"Breakdown by outcome\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"a24b9c0c-da95-4016-9fe5-2c0d34005832\",\"w\":11,\"x\":10,\"y\":13},\"panelIndex\":\"a24b9c0c-da95-4016-9fe5-2c0d34005832\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-layer-19858811-84d1-4f50-901c-dc1451972324\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"filter-index-pattern-0\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"filter-index-pattern-1\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"19858811-84d1-4f50-901c-dc1451972324\":{\"columnOrder\":[\"81dcff19-b14a-4e4b-999e-dbbcbdfdf816\",\"e3526253-18e0-4122-b112-ee5b4b9e23d7\"],\"columns\":{\"81dcff19-b14a-4e4b-999e-dbbcbdfdf816\":{\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Top values of destination.user.name\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"type\":\"alphabetical\"},\"orderDirection\":\"asc\",\"otherBucket\":true,\"size\":10},\"scale\":\"ordinal\",\"sourceField\":\"destination.user.name\"},\"e3526253-18e0-4122-b112-ee5b4b9e23d7\":{\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Count of records\",\"operationType\":\"count\",\"scale\":\"ratio\",\"sourceField\":\"Records\"}},\"incompleteColumns\":{}}}}},\"filters\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"filter-index-pattern-0\",\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"cyberarkpas.audit\"},\"type\":\"phrase\"},\"query\":{\"match_phrase\":{\"event.dataset\":\"cyberarkpas.audit\"}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"filter-index-pattern-1\",\"key\":\"event.code\",\"negate\":false,\"params\":[\"308\",\"22\",\"319\",\"295\"],\"type\":\"phrases\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"event.code\":\"308\"}},{\"match_phrase\":{\"event.code\":\"22\"}},{\"match_phrase\":{\"event.code\":\"319\"}},{\"match_phrase\":{\"event.code\":\"295\"}}]}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"layers\":[{\"categoryDisplay\":\"default\",\"groups\":[\"81dcff19-b14a-4e4b-999e-dbbcbdfdf816\",\"81dcff19-b14a-4e4b-999e-dbbcbdfdf816\",\"81dcff19-b14a-4e4b-999e-dbbcbdfdf816\",\"81dcff19-b14a-4e4b-999e-dbbcbdfdf816\",\"81dcff19-b14a-4e4b-999e-dbbcbdfdf816\",\"81dcff19-b14a-4e4b-999e-dbbcbdfdf816\"],\"layerId\":\"19858811-84d1-4f50-901c-dc1451972324\",\"legendDisplay\":\"default\",\"metric\":\"e3526253-18e0-4122-b112-ee5b4b9e23d7\",\"nestedLegend\":false,\"numberDisplay\":\"percent\"}],\"shape\":\"donut\"}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsPie\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"Top 10 user credentials accessed\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"1dc68cc6-e1b3-43ea-9b0e-f423d194b99a\",\"w\":27,\"x\":21,\"y\":13},\"panelIndex\":\"1dc68cc6-e1b3-43ea-9b0e-f423d194b99a\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-layer-50325938-6a9e-4a26-946e-4468e68c6591\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"filter-index-pattern-0\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"filter-index-pattern-1\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"50325938-6a9e-4a26-946e-4468e68c6591\":{\"columnOrder\":[\"8a965540-daa1-4848-80bb-96ddf53a328f\",\"c05a39ad-2983-4f4a-900d-a939ecbda504\",\"a808a872-71b5-4a76-a939-354f68991881\"],\"columns\":{\"8a965540-daa1-4848-80bb-96ddf53a328f\":{\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Top values of event.outcome\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"columnId\":\"a808a872-71b5-4a76-a939-354f68991881\",\"type\":\"column\"},\"orderDirection\":\"desc\",\"otherBucket\":true,\"size\":2},\"scale\":\"ordinal\",\"sourceField\":\"event.outcome\"},\"a808a872-71b5-4a76-a939-354f68991881\":{\"customLabel\":true,\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Credentials accessed\",\"operationType\":\"count\",\"scale\":\"ratio\",\"sourceField\":\"Records\"},\"c05a39ad-2983-4f4a-900d-a939ecbda504\":{\"dataType\":\"date\",\"isBucketed\":true,\"label\":\"@timestamp\",\"operationType\":\"date_histogram\",\"params\":{\"interval\":\"auto\"},\"scale\":\"interval\",\"sourceField\":\"@timestamp\"}},\"incompleteColumns\":{}}}}},\"filters\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"filter-index-pattern-0\",\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"cyberarkpas.audit\"},\"type\":\"phrase\"},\"query\":{\"match_phrase\":{\"event.dataset\":\"cyberarkpas.audit\"}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"filter-index-pattern-1\",\"key\":\"event.code\",\"negate\":false,\"params\":[\"308\",\"22\",\"319\",\"295\",\"38\"],\"type\":\"phrases\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"event.code\":\"308\"}},{\"match_phrase\":{\"event.code\":\"22\"}},{\"match_phrase\":{\"event.code\":\"319\"}},{\"match_phrase\":{\"event.code\":\"295\"}},{\"match_phrase\":{\"event.code\":\"38\"}}]}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"axisTitlesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"fittingFunction\":\"None\",\"gridlinesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"layers\":[{\"accessors\":[\"a808a872-71b5-4a76-a939-354f68991881\"],\"layerId\":\"50325938-6a9e-4a26-946e-4468e68c6591\",\"position\":\"top\",\"seriesType\":\"area_stacked\",\"showGridlines\":false,\"splitAccessor\":\"8a965540-daa1-4848-80bb-96ddf53a328f\",\"xAccessor\":\"c05a39ad-2983-4f4a-900d-a939ecbda504\"}],\"legend\":{\"isVisible\":true,\"position\":\"right\"},\"preferredSeriesType\":\"area_stacked\",\"tickLabelsVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"valueLabels\":\"hide\"}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsXY\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"Credential access by time\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":23,\"i\":\"c56b3e4d-bfb6-4b06-a62b-282753b85f7a\",\"w\":15,\"x\":0,\"y\":26},\"panelIndex\":\"c56b3e4d-bfb6-4b06-a62b-282753b85f7a\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-layer-105faf70-8330-46b3-a82a-573a383068fa\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"filter-index-pattern-0\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"105faf70-8330-46b3-a82a-573a383068fa\":{\"columnOrder\":[\"c51d6847-2fcc-4d13-a44f-49786cb979ed\",\"d73b823b-ae68-4e73-bbe2-90a35bc825e7\",\"c0147524-accc-4dee-a4fc-44199e3459f1\"],\"columns\":{\"c0147524-accc-4dee-a4fc-44199e3459f1\":{\"customLabel\":true,\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Authentications\",\"operationType\":\"count\",\"scale\":\"ratio\",\"sourceField\":\"Records\"},\"c51d6847-2fcc-4d13-a44f-49786cb979ed\":{\"customLabel\":true,\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Users\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"columnId\":\"c0147524-accc-4dee-a4fc-44199e3459f1\",\"type\":\"column\"},\"orderDirection\":\"desc\",\"otherBucket\":true,\"size\":8},\"scale\":\"ordinal\",\"sourceField\":\"user.name\"},\"d73b823b-ae68-4e73-bbe2-90a35bc825e7\":{\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Top values of event.outcome\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"type\":\"alphabetical\"},\"orderDirection\":\"desc\",\"otherBucket\":true,\"size\":2},\"scale\":\"ordinal\",\"sourceField\":\"event.outcome\"}},\"incompleteColumns\":{}}}}},\"filters\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"filter-index-pattern-0\",\"key\":\"event.category\",\"negate\":false,\"params\":[\"authentication\"],\"type\":\"phrases\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"event.category\":\"authentication\"}}]}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"axisTitlesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"fittingFunction\":\"None\",\"gridlinesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"layers\":[{\"accessors\":[\"c0147524-accc-4dee-a4fc-44199e3459f1\"],\"layerId\":\"105faf70-8330-46b3-a82a-573a383068fa\",\"palette\":{\"name\":\"status\",\"type\":\"palette\"},\"position\":\"top\",\"seriesType\":\"bar_horizontal_stacked\",\"showGridlines\":false,\"splitAccessor\":\"d73b823b-ae68-4e73-bbe2-90a35bc825e7\",\"xAccessor\":\"c51d6847-2fcc-4d13-a44f-49786cb979ed\"}],\"legend\":{\"isVisible\":true,\"position\":\"right\",\"showSingleSeries\":false},\"preferredSeriesType\":\"bar_horizontal_stacked\",\"tickLabelsVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"valueLabels\":\"hide\"}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsXY\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"Vault Authentication attempts\"},{\"version\":\"7.14.0\",\"type\":\"map\",\"gridData\":{\"h\":23,\"i\":\"cd1e20e7-706f-4d02-949c-d9f5908bad67\",\"w\":33,\"x\":15,\"y\":26},\"panelIndex\":\"cd1e20e7-706f-4d02-949c-d9f5908bad67\",\"embeddableConfig\":{\"attributes\":{\"description\":\"\",\"layerListJSON\":\"[{\\\"sourceDescriptor\\\":{\\\"type\\\":\\\"EMS_TMS\\\",\\\"id\\\":null,\\\"isAutoSelect\\\":true},\\\"id\\\":\\\"a3734143-d6e1-4551-b0b1-8282a37e151b\\\",\\\"label\\\":null,\\\"minZoom\\\":0,\\\"maxZoom\\\":24,\\\"alpha\\\":1,\\\"visible\\\":true,\\\"style\\\":{\\\"type\\\":\\\"TILE\\\"},\\\"type\\\":\\\"VECTOR_TILE\\\"},{\\\"label\\\":\\\"filebeat-* | Source Point\\\",\\\"sourceDescriptor\\\":{\\\"indexPatternId\\\":\\\"filebeat-*\\\",\\\"geoField\\\":\\\"source.geo.location\\\",\\\"scalingType\\\":\\\"TOP_HITS\\\",\\\"topHitsSplitField\\\":\\\"source.ip\\\",\\\"tooltipProperties\\\":[\\\"host.name\\\",\\\"source.ip\\\",\\\"source.domain\\\",\\\"source.geo.country_iso_code\\\",\\\"source.as.organization.name\\\"],\\\"id\\\":\\\"5f2b25a1-01ea-45ca-a4a2-f1a670c3b149\\\",\\\"type\\\":\\\"ES_SEARCH\\\",\\\"applyGlobalQuery\\\":true,\\\"applyGlobalTime\\\":true,\\\"filterByMapBounds\\\":true,\\\"sortField\\\":\\\"\\\",\\\"sortOrder\\\":\\\"desc\\\",\\\"topHitsSize\\\":22},\\\"style\\\":{\\\"type\\\":\\\"VECTOR\\\",\\\"properties\\\":{\\\"icon\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"value\\\":\\\"home\\\"}},\\\"fillColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#6092C0\\\"}},\\\"lineColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#FFFFFF\\\"}},\\\"lineWidth\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"size\\\":2}},\\\"iconSize\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"size\\\":8}},\\\"iconOrientation\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"orientation\\\":0}},\\\"labelText\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"value\\\":\\\"\\\"}},\\\"labelColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#000000\\\"}},\\\"labelSize\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"size\\\":14}},\\\"labelBorderColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#FFFFFF\\\"}},\\\"symbolizeAs\\\":{\\\"options\\\":{\\\"value\\\":\\\"icon\\\"}},\\\"labelBorderSize\\\":{\\\"options\\\":{\\\"size\\\":\\\"SMALL\\\"}}},\\\"isTimeAware\\\":true},\\\"id\\\":\\\"2ad8e318-4ef4-4e89-94f2-f37e395c488c\\\",\\\"minZoom\\\":0,\\\"maxZoom\\\":24,\\\"alpha\\\":0.75,\\\"visible\\\":true,\\\"type\\\":\\\"VECTOR\\\",\\\"joins\\\":[]},{\\\"label\\\":\\\"filebeat-* | Destination point\\\",\\\"sourceDescriptor\\\":{\\\"indexPatternId\\\":\\\"filebeat-*\\\",\\\"geoField\\\":\\\"destination.geo.location\\\",\\\"scalingType\\\":\\\"TOP_HITS\\\",\\\"topHitsSplitField\\\":\\\"destination.ip\\\",\\\"tooltipProperties\\\":[\\\"host.name\\\",\\\"destination.ip\\\",\\\"destination.domain\\\",\\\"destination.geo.country_iso_code\\\",\\\"destination.as.organization.name\\\"],\\\"id\\\":\\\"bc95f479-964f-4498-be1e-376d34a01b0a\\\",\\\"type\\\":\\\"ES_SEARCH\\\",\\\"applyGlobalQuery\\\":true,\\\"applyGlobalTime\\\":true,\\\"filterByMapBounds\\\":true,\\\"sortField\\\":\\\"\\\",\\\"sortOrder\\\":\\\"desc\\\",\\\"topHitsSize\\\":35},\\\"style\\\":{\\\"type\\\":\\\"VECTOR\\\",\\\"properties\\\":{\\\"icon\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"value\\\":\\\"marker\\\"}},\\\"fillColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#D36086\\\"}},\\\"lineColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#FFFFFF\\\"}},\\\"lineWidth\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"size\\\":2}},\\\"iconSize\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"size\\\":8}},\\\"iconOrientation\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"orientation\\\":0}},\\\"labelText\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"value\\\":\\\"\\\"}},\\\"labelColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#000000\\\"}},\\\"labelSize\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"size\\\":14}},\\\"labelBorderColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#FFFFFF\\\"}},\\\"symbolizeAs\\\":{\\\"options\\\":{\\\"value\\\":\\\"icon\\\"}},\\\"labelBorderSize\\\":{\\\"options\\\":{\\\"size\\\":\\\"SMALL\\\"}}},\\\"isTimeAware\\\":true},\\\"id\\\":\\\"dbb878c8-4039-49f1-b2ff-ab7fb942ba55\\\",\\\"minZoom\\\":0,\\\"maxZoom\\\":24,\\\"alpha\\\":0.75,\\\"visible\\\":true,\\\"type\\\":\\\"VECTOR\\\",\\\"joins\\\":[]},{\\\"label\\\":\\\"filebeat-* | Line\\\",\\\"sourceDescriptor\\\":{\\\"indexPatternId\\\":\\\"filebeat-*\\\",\\\"sourceGeoField\\\":\\\"source.geo.location\\\",\\\"destGeoField\\\":\\\"destination.geo.location\\\",\\\"metrics\\\":[{\\\"type\\\":\\\"count\\\"},{\\\"type\\\":\\\"sum\\\",\\\"field\\\":\\\"destination.bytes\\\"}],\\\"id\\\":\\\"faf6884d-b7cb-41dd-ab86-95970d7c59d2\\\",\\\"type\\\":\\\"ES_PEW_PEW\\\",\\\"applyGlobalQuery\\\":true,\\\"applyGlobalTime\\\":true},\\\"style\\\":{\\\"type\\\":\\\"VECTOR\\\",\\\"properties\\\":{\\\"icon\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"value\\\":\\\"marker\\\"}},\\\"fillColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#54B399\\\"}},\\\"lineColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#6092C0\\\"}},\\\"lineWidth\\\":{\\\"type\\\":\\\"DYNAMIC\\\",\\\"options\\\":{\\\"minSize\\\":1,\\\"maxSize\\\":8,\\\"field\\\":{\\\"name\\\":\\\"doc_count\\\",\\\"origin\\\":\\\"source\\\"},\\\"fieldMetaOptions\\\":{\\\"isEnabled\\\":true,\\\"sigma\\\":3}}},\\\"iconSize\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"size\\\":6}},\\\"iconOrientation\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"orientation\\\":0}},\\\"labelText\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"value\\\":\\\"\\\"}},\\\"labelColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#000000\\\"}},\\\"labelSize\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"size\\\":14}},\\\"labelBorderColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#FFFFFF\\\"}},\\\"symbolizeAs\\\":{\\\"options\\\":{\\\"value\\\":\\\"circle\\\"}},\\\"labelBorderSize\\\":{\\\"options\\\":{\\\"size\\\":\\\"SMALL\\\"}}},\\\"isTimeAware\\\":true},\\\"id\\\":\\\"9c450fbf-b009-4b53-9810-2f47ca8dcfa8\\\",\\\"minZoom\\\":0,\\\"maxZoom\\\":24,\\\"alpha\\\":0.75,\\\"visible\\\":true,\\\"type\\\":\\\"VECTOR\\\",\\\"joins\\\":[]}]\",\"mapStateJSON\":\"{\\\"zoom\\\":1.24,\\\"center\\\":{\\\"lon\\\":-49.38072,\\\"lat\\\":7.87497},\\\"timeFilters\\\":{\\\"from\\\":\\\"now-15w\\\",\\\"to\\\":\\\"now\\\"},\\\"refreshConfig\\\":{\\\"isPaused\\\":true,\\\"interval\\\":0},\\\"query\\\":{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"},\\\"filters\\\":[],\\\"settings\\\":{\\\"autoFitToDataBounds\\\":false,\\\"backgroundColor\\\":\\\"#ffffff\\\",\\\"disableInteractive\\\":false,\\\"disableTooltipControl\\\":false,\\\"hideToolbarOverlay\\\":false,\\\"hideLayerControl\\\":false,\\\"hideViewControl\\\":false,\\\"initialLocation\\\":\\\"LAST_SAVED_LOCATION\\\",\\\"fixedLocation\\\":{\\\"lat\\\":0,\\\"lon\\\":0,\\\"zoom\\\":2},\\\"browserLocation\\\":{\\\"zoom\\\":2},\\\"maxZoom\\\":24,\\\"minZoom\\\":0,\\\"showScaleControl\\\":false,\\\"showSpatialFilters\\\":true,\\\"spatialFiltersAlpa\\\":0.3,\\\"spatialFiltersFillColor\\\":\\\"#DA8B45\\\",\\\"spatialFiltersLineColor\\\":\\\"#DA8B45\\\"}}\",\"title\":\"\",\"uiStateJSON\":\"{\\\"isLayerTOCOpen\\\":true,\\\"openTOCDetails\\\":[]}\"},\"enhancements\":{},\"hiddenLayers\":[],\"hidePanelTitles\":false,\"isLayerTOCOpen\":false,\"mapBuffer\":{\"maxLat\":148.88690000000003,\"maxLon\":438.09868,\"minLat\":-116.68142,\"minLon\":-417.60444},\"mapCenter\":{\"lat\":43.83453,\"lon\":10.24712,\"zoom\":1},\"openTOCDetails\":[],\"type\":\"map\"},\"title\":\"Network sources and destinations\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"c6305b30-a7e2-4cc3-b49b-db99031f150e\",\"w\":15,\"x\":0,\"y\":49},\"panelIndex\":\"c6305b30-a7e2-4cc3-b49b-db99031f150e\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-layer-028c5c1e-79f9-4999-8438-4889ac2b714c\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"filter-index-pattern-0\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"filter-index-pattern-1\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"028c5c1e-79f9-4999-8438-4889ac2b714c\":{\"columnOrder\":[\"e55346c7-87bc-49f4-9215-8a36931d05f4\",\"f2cd86e2-fb91-48b2-b8dd-e98395d28e00\"],\"columns\":{\"e55346c7-87bc-49f4-9215-8a36931d05f4\":{\"customLabel\":true,\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Users\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"columnId\":\"f2cd86e2-fb91-48b2-b8dd-e98395d28e00\",\"type\":\"column\"},\"orderDirection\":\"desc\",\"otherBucket\":false,\"size\":5},\"scale\":\"ordinal\",\"sourceField\":\"user.name\"},\"f2cd86e2-fb91-48b2-b8dd-e98395d28e00\":{\"customLabel\":true,\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Failed authentications\",\"operationType\":\"count\",\"params\":{},\"scale\":\"ratio\",\"sourceField\":\"Records\"}},\"incompleteColumns\":{}}}}},\"filters\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"filter-index-pattern-0\",\"key\":\"event.category\",\"negate\":false,\"params\":{\"query\":\"authentication\"},\"type\":\"phrase\"},\"query\":{\"match_phrase\":{\"event.category\":\"authentication\"}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"filter-index-pattern-1\",\"key\":\"event.outcome\",\"negate\":false,\"params\":{\"query\":\"failure\"},\"type\":\"phrase\"},\"query\":{\"match_phrase\":{\"event.outcome\":\"failure\"}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"axisTitlesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"fittingFunction\":\"None\",\"gridlinesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"layers\":[{\"accessors\":[\"f2cd86e2-fb91-48b2-b8dd-e98395d28e00\"],\"layerId\":\"028c5c1e-79f9-4999-8438-4889ac2b714c\",\"position\":\"top\",\"seriesType\":\"bar_horizontal\",\"showGridlines\":false,\"xAccessor\":\"e55346c7-87bc-49f4-9215-8a36931d05f4\",\"yConfig\":[{\"color\":\"#d36086\",\"forAccessor\":\"f2cd86e2-fb91-48b2-b8dd-e98395d28e00\"}]}],\"legend\":{\"isVisible\":true,\"position\":\"right\"},\"preferredSeriesType\":\"bar_horizontal\",\"tickLabelsVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"valueLabels\":\"hide\"}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsXY\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"Top users by failed authentications to Vault\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"96a2c711-40a3-4dfc-87f5-4b193078e05a\",\"w\":33,\"x\":15,\"y\":49},\"panelIndex\":\"96a2c711-40a3-4dfc-87f5-4b193078e05a\",\"panelRefName\":\"panel_9\",\"title\":\"Credential Access\",\"version\":\"7.12.0\"},{\"embeddableConfig\":{\"columns\":[\"observer.hostname\",\"cyberarkpas.audit.action\",\"cyberarkpas.audit.issuer\",\"cyberarkpas.audit.safe\",\"file.path\"],\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":18,\"i\":\"6cd62115-65e7-416f-8da7-96b0d7a9d932\",\"w\":48,\"x\":0,\"y\":64},\"panelIndex\":\"6cd62115-65e7-416f-8da7-96b0d7a9d932\",\"panelRefName\":\"panel_10\",\"title\":\"All logs\",\"version\":\"7.12.0\"}]","timeRestore":false,"title":"[Filebeat CyberArk PAS] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"eb12ef60-96f6-11eb-bbf8-d77aef8ad7a6","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-33bc0096-e418-4f81-9c7c-7fdd16cc5203","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-de047c06-a965-47aa-8a15-8b0266d5abc3","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-19858811-84d1-4f50-901c-dc1451972324","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-0","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-1","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-50325938-6a9e-4a26-946e-4468e68c6591","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-0","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-1","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-105faf70-8330-46b3-a82a-573a383068fa","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-0","type":"index-pattern"},{"id":"filebeat-*","name":"layer_1_source_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"layer_2_source_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"layer_3_source_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-028c5c1e-79f9-4999-8438-4889ac2b714c","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-0","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-1","type":"index-pattern"},{"id":"a9b82df0-97a5-11eb-bbf8-d77aef8ad7a6","name":"panel_9","type":"search"},{"id":"fec0d170-96f7-11eb-bbf8-d77aef8ad7a6","name":"panel_10","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:04.520Z","version":"WzQ0MTAsMV0="} diff --git a/x-pack/filebeat/module/cyberarkpas/module.yml b/x-pack/filebeat/module/cyberarkpas/module.yml index 411b4945cde..1a955da8e6d 100644 --- a/x-pack/filebeat/module/cyberarkpas/module.yml +++ b/x-pack/filebeat/module/cyberarkpas/module.yml @@ -1,3 +1,3 @@ dashboards: - id: eb12ef60-96f6-11eb-bbf8-d77aef8ad7a6 - file: Filebeat-cyberarkpas-audit.json + file: Filebeat-cyberarkpas-audit.ndjson diff --git a/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/dashboard/Filebeat-Envoyproxy-Overview.json b/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/dashboard/Filebeat-Envoyproxy-Overview.json deleted file mode 100644 index d80081b896f..00000000000 --- a/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/dashboard/Filebeat-Envoyproxy-Overview.json +++ /dev/null @@ -1,910 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Filebeat Envoyproxy Overview Dashboard", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "1", - "w": 22, - "x": 22, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "2", - "w": 22, - "x": 22, - "y": 7 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "3", - "w": 22, - "x": 0, - "y": 7 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "4", - "w": 22, - "x": 0, - "y": 0 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "5", - "w": 22, - "x": 0, - "y": 17 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "6", - "w": 22, - "x": 22, - "y": 17 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "version": "8.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Filebeat Envoyproxy] Overview", - "version": 1 - }, - "id": "0c610510-5cbd-11e9-8477-077ec9664dbd", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "36f872a0-5c03-11e9-85b4-19d0072eb4f2", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "80844540-5c97-11e9-8477-077ec9664dbd", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "38f96190-5c99-11e9-8477-077ec9664dbd", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "7e4084e0-5c99-11e9-8477-077ec9664dbd", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "0a994af0-5c9d-11e9-8477-077ec9664dbd", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "ab48c3f0-5ca6-11e9-8477-077ec9664dbd", - "name": "panel_5", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-04-12T01:00:18.033Z", - "version": "WzExNjU4LDld" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "envoyproxy.log" - }, - "type": "phrase", - "value": "envoyproxy.log" - }, - "query": { - "match": { - "event.dataset": { - "query": "envoyproxy.log", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top HTTP Response Codes [Filebeat Envoyproxy]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "http.response.status_code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "bucket": { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "number", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - "maxFontSize": 72, - "metric": { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - }, - "minFontSize": 18, - "orientation": "single", - "scale": "linear", - "showLabel": false - }, - "title": "Top HTTP Response Codes [Filebeat Envoyproxy]", - "type": "tagcloud" - } - }, - "id": "36f872a0-5c03-11e9-85b4-19d0072eb4f2", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-04-12T00:58:13.110Z", - "version": "WzExNjUzLDld" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "envoyproxy.log" - }, - "type": "phrase", - "value": "envoyproxy.log" - }, - "query": { - "match": { - "event.dataset": { - "query": "envoyproxy.log", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top Domains [Filebeat Envoyproxy]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "url.domain", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "metric": { - "accessor": 0, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Top Domains [Filebeat Envoyproxy]", - "type": "pie" - } - }, - "id": "80844540-5c97-11e9-8477-077ec9664dbd", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-04-12T00:58:53.299Z", - "version": "WzExNjU1LDld" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "envoyproxy.log" - }, - "type": "phrase", - "value": "envoyproxy.log" - }, - "query": { - "match": { - "event.dataset": { - "query": "envoyproxy.log", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Requests per Source [Filebeat Envoyproxy]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "source.address", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "dimensions": { - "x": null, - "y": [ - { - "accessor": 0, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "grid": { - "categoryLines": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Requests per Source [Filebeat Envoyproxy]", - "type": "histogram" - } - }, - "id": "38f96190-5c99-11e9-8477-077ec9664dbd", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-04-12T00:58:36.398Z", - "version": "WzExNjU0LDld" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "envoyproxy.log" - }, - "type": "phrase", - "value": "envoyproxy.log" - }, - "query": { - "match": { - "event.dataset": { - "query": "envoyproxy.log", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Unique Domains [Filebeat Envoyproxy]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "url.domain" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "bucket": { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": false - }, - "metricColorMode": "None", - "metrics": [ - { - "accessor": 0, - "aggType": "cardinality", - "format": { - "id": "number" - }, - "params": {} - } - ], - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Unique Domains [Filebeat Envoyproxy]", - "type": "metric" - } - }, - "id": "7e4084e0-5c99-11e9-8477-077ec9664dbd", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-04-12T00:57:42.389Z", - "version": "WzExNjUyLDld" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "envoyproxy.log" - }, - "type": "phrase", - "value": "envoyproxy.log" - }, - "query": { - "match": { - "event.dataset": { - "query": "envoyproxy.log", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Top User Agents [Filebeat Envoyproxy]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user_agent.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "metric": { - "accessor": 0, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Top User Agents [Filebeat Envoyproxy]", - "type": "pie" - } - }, - "id": "0a994af0-5c9d-11e9-8477-077ec9664dbd", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-04-12T00:59:11.691Z", - "version": "WzExNjU2LDld" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "envoyproxy.log" - }, - "type": "phrase", - "value": "envoyproxy.log" - }, - "query": { - "match": { - "event.dataset": { - "query": "envoyproxy.log", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.dataset:envoyproxy.log" - } - } - }, - "title": "Proxy Request Distribution [Filebeat Envoyproxy]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "envoyproxy.proxy_type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "metric": { - "accessor": 0, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Proxy Request Distribution [Filebeat Envoyproxy] ", - "type": "pie" - } - }, - "id": "ab48c3f0-5ca6-11e9-8477-077ec9664dbd", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-04-11T22:10:51.951Z", - "version": "WzExNjQ5LDld" - } - ], - "version": "8.0.0-SNAPSHOT" -} diff --git a/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/dashboard/Filebeat-Envoyproxy-Overview.ndjson b/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/dashboard/Filebeat-Envoyproxy-Overview.ndjson new file mode 100644 index 00000000000..1f0b705996e --- /dev/null +++ b/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/dashboard/Filebeat-Envoyproxy-Overview.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"envoyproxy.log\"}, \"type\": \"phrase\", \"value\": \"envoyproxy.log\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"envoyproxy.log\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top HTTP Response Codes [Filebeat Envoyproxy]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"http.response.status_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"bucket\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"number\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},\"maxFontSize\":72,\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}},\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top HTTP Response Codes [Filebeat Envoyproxy]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"36f872a0-5c03-11e9-85b4-19d0072eb4f2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:42.085Z","version":"WzQyNTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"envoyproxy.log\"}, \"type\": \"phrase\", \"value\": \"envoyproxy.log\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"envoyproxy.log\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top Domains [Filebeat Envoyproxy]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"url.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top Domains [Filebeat Envoyproxy]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"80844540-5c97-11e9-8477-077ec9664dbd","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:42.085Z","version":"WzQyNTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"envoyproxy.log\"}, \"type\": \"phrase\", \"value\": \"envoyproxy.log\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"envoyproxy.log\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Requests per Source [Filebeat Envoyproxy]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.address\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"x\":null,\"y\":[{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Requests per Source [Filebeat Envoyproxy]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"38f96190-5c99-11e9-8477-077ec9664dbd","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:42.085Z","version":"WzQyNTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"envoyproxy.log\"}, \"type\": \"phrase\", \"value\": \"envoyproxy.log\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"envoyproxy.log\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Unique Domains [Filebeat Envoyproxy]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"url.domain\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"bucket\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":false},\"metricColorMode\":\"None\",\"metrics\":[{\"accessor\":0,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"params\":{}}],\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Unique Domains [Filebeat Envoyproxy]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"7e4084e0-5c99-11e9-8477-077ec9664dbd","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:42.085Z","version":"WzQyNjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"envoyproxy.log\"}, \"type\": \"phrase\", \"value\": \"envoyproxy.log\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"envoyproxy.log\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Top User Agents [Filebeat Envoyproxy]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top User Agents [Filebeat Envoyproxy]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0a994af0-5c9d-11e9-8477-077ec9664dbd","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:42.085Z","version":"WzQyNjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"envoyproxy.log\"}, \"type\": \"phrase\", \"value\": \"envoyproxy.log\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"envoyproxy.log\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset:envoyproxy.log\"}}"},"title":"Proxy Request Distribution [Filebeat Envoyproxy]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"envoyproxy.proxy_type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Proxy Request Distribution [Filebeat Envoyproxy] \",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"ab48c3f0-5ca6-11e9-8477-077ec9664dbd","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:42.085Z","version":"WzQyNjIsMV0="} +{"attributes":{"description":"Filebeat Envoyproxy Overview Dashboard","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"1\",\"w\":22,\"x\":22,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"2\",\"w\":22,\"x\":22,\"y\":7},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3\",\"w\":22,\"x\":0,\"y\":7},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"4\",\"w\":22,\"x\":0,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"5\",\"w\":22,\"x\":0,\"y\":17},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"6\",\"w\":22,\"x\":22,\"y\":17},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Filebeat Envoyproxy] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"0c610510-5cbd-11e9-8477-077ec9664dbd","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"36f872a0-5c03-11e9-85b4-19d0072eb4f2","name":"1:panel_1","type":"visualization"},{"id":"80844540-5c97-11e9-8477-077ec9664dbd","name":"2:panel_2","type":"visualization"},{"id":"38f96190-5c99-11e9-8477-077ec9664dbd","name":"3:panel_3","type":"visualization"},{"id":"7e4084e0-5c99-11e9-8477-077ec9664dbd","name":"4:panel_4","type":"visualization"},{"id":"0a994af0-5c9d-11e9-8477-077ec9664dbd","name":"5:panel_5","type":"visualization"},{"id":"ab48c3f0-5ca6-11e9-8477-077ec9664dbd","name":"6:panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:42.085Z","version":"WzQyNTYsMV0="} diff --git a/x-pack/filebeat/module/envoyproxy/module.yml b/x-pack/filebeat/module/envoyproxy/module.yml index ec3662ad001..2d6633cc76e 100644 --- a/x-pack/filebeat/module/envoyproxy/module.yml +++ b/x-pack/filebeat/module/envoyproxy/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 0c610510-5cbd-11e9-8477-077ec9664dbd - file: Filebeat-Envoyproxy-Overview.json \ No newline at end of file + file: Filebeat-Envoyproxy-Overview.ndjson \ No newline at end of file diff --git a/x-pack/filebeat/module/gcp/_meta/kibana/7/dashboard/filebeat-gcp-audit.json b/x-pack/filebeat/module/gcp/_meta/kibana/7/dashboard/filebeat-gcp-audit.json deleted file mode 100644 index 0c6cc78c153..00000000000 --- a/x-pack/filebeat/module/gcp/_meta/kibana/7/dashboard/filebeat-gcp-audit.json +++ /dev/null @@ -1,741 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of audit events from Google Cloud.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "hiddenLayers": [], - "isLayerTOCOpen": false, - "mapCenter": { - "lat": 32.1625, - "lon": -48.67493, - "zoom": 1.97 - }, - "openTOCDetails": [] - }, - "gridData": { - "h": 15, - "i": "a808a985-5cf3-463a-9aad-5159cb64cef1", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "a808a985-5cf3-463a-9aad-5159cb64cef1", - "panelRefName": "panel_0", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "9e7025b6-c3bf-424f-b541-d22d00e1fa64", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "9e7025b6-c3bf-424f-b541-d22d00e1fa64", - "panelRefName": "panel_1", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "5b6a8479-2c18-495e-88fa-9e3239277e3d", - "w": 12, - "x": 0, - "y": 15 - }, - "panelIndex": "5b6a8479-2c18-495e-88fa-9e3239277e3d", - "panelRefName": "panel_2", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "46da4e61-e0bb-4595-a2c7-05210bfbea64", - "w": 12, - "x": 12, - "y": 15 - }, - "panelIndex": "46da4e61-e0bb-4595-a2c7-05210bfbea64", - "panelRefName": "panel_3", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "4d698f07-2caf-45c0-bd48-51ea72ea79b0", - "w": 12, - "x": 24, - "y": 15 - }, - "panelIndex": "4d698f07-2caf-45c0-bd48-51ea72ea79b0", - "panelRefName": "panel_4", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "c5e31da0-d4c8-4554-ab32-61da2495ab6c", - "w": 12, - "x": 36, - "y": 15 - }, - "panelIndex": "c5e31da0-d4c8-4554-ab32-61da2495ab6c", - "panelRefName": "panel_5", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "95ebbda8-9b00-4b23-b116-72569ea031e3", - "w": 48, - "x": 0, - "y": 29 - }, - "panelIndex": "95ebbda8-9b00-4b23-b116-72569ea031e3", - "panelRefName": "panel_6", - "version": "8.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Filebeat GCP] Audit", - "version": 1 - }, - "id": "6576c480-73a2-11ea-a345-f985c61fe654", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "a97de660-73a5-11ea-a345-f985c61fe654", - "name": "panel_0", - "type": "map" - }, - { - "id": "4627efa0-73a2-11ea-a345-f985c61fe654", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "eb5bf570-73a2-11ea-a345-f985c61fe654", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "33ee1320-73a5-11ea-a345-f985c61fe654", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "a8e40240-73a3-11ea-a345-f985c61fe654", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "6d90d320-73a4-11ea-a345-f985c61fe654", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "d88364c0-73a1-11ea-a345-f985c61fe654", - "name": "panel_6", - "type": "search" - } - ], - "type": "dashboard", - "updated_at": "2020-03-31T23:18:30.933Z", - "version": "WzE1MTYsM10=" - }, - { - "attributes": { - "bounds": { - "coordinates": [ - [ - [ - -180, - 74.14342 - ], - [ - -180, - -58.35006 - ], - [ - 180, - -58.35006 - ], - [ - 180, - 74.14342 - ], - [ - -180, - 74.14342 - ] - ] - ], - "type": "Polygon" - }, - "description": "", - "layerListJSON": "[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"866b5ce1-6ca0-47db-a6f2-54c5e0dcd2f0\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"id\":\"79ec6461-7561-45e4-a6a2-9d6fbd4cf986\",\"geoField\":\"source.geo.location\",\"filterByMapBounds\":true,\"scalingType\":\"LIMIT\",\"topHitsSize\":1,\"type\":\"ES_SEARCH\",\"tooltipProperties\":[],\"sortField\":\"\",\"sortOrder\":\"desc\",\"applyGlobalQuery\":true,\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"marker\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#54B399\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#41937c\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"279da950-e9a7-4287-ab37-25906e448455\",\"label\":\"Source Locations\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"joins\":[],\"query\":{\"query\":\"event.dataset:gcp.audit\",\"language\":\"kuery\"}}]", - "mapStateJSON": "{\"zoom\":1.97,\"center\":{\"lon\":0,\"lat\":19.94277},\"timeFilters\":{\"from\":\"now-7d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[]}", - "title": "Audit Source Locations [Filebeat GCP]", - "uiStateJSON": { - "isLayerTOCOpen": true, - "openTOCDetails": [] - } - }, - "id": "a97de660-73a5-11ea-a345-f985c61fe654", - "references": [ - { - "id": "filebeat-*", - "name": "layer_1_source_index_pattern", - "type": "index-pattern" - } - ], - "type": "map", - "updated_at": "2020-03-31T23:16:33.861Z", - "version": "WzE1MDksM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Audit Events Outcome over time [Filebeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "now-7d", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "event.outcome", - "missingBucket": true, - "missingBucketLabel": "[unknown]", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false - }, - "labels": { - "show": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Audit Event Outcome over time [Filebeat GCP]", - "type": "histogram" - } - }, - "id": "4627efa0-73a2-11ea-a345-f985c61fe654", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "d88364c0-73a1-11ea-a345-f985c61fe654", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-03-31T22:52:18.713Z", - "version": "WzE0MjQsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Audit Event Action [Filebeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Audit Event Action [Filebeat GCP]", - "type": "pie" - } - }, - "id": "eb5bf570-73a2-11ea-a345-f985c61fe654", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "d88364c0-73a1-11ea-a345-f985c61fe654", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-03-31T22:56:55.878Z", - "version": "WzE0MzgsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Audit Top User Email [Filebeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user.email", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "maxFontSize": 72, - "minFontSize": 18, - "orientation": "single", - "scale": "linear", - "showLabel": true - }, - "title": "Audit Top User Email [Filebeat GCP]", - "type": "tagcloud" - } - }, - "id": "33ee1320-73a5-11ea-a345-f985c61fe654", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "d88364c0-73a1-11ea-a345-f985c61fe654", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-03-31T23:13:16.626Z", - "version": "WzE0OTQsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Audit User Agent [Filebeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user_agent.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Audit User Agent [Filebeat GCP]", - "type": "pie" - } - }, - "id": "a8e40240-73a3-11ea-a345-f985c61fe654", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "d88364c0-73a1-11ea-a345-f985c61fe654", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-03-31T23:02:13.859Z", - "version": "WzE0NTksM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Audit Resource Name [Filebeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "gcp.audit.resource_name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Audit Resource Name [Filebeat GCP]", - "type": "pie" - } - }, - "id": "6d90d320-73a4-11ea-a345-f985c61fe654", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "d88364c0-73a1-11ea-a345-f985c61fe654", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-03-31T23:07:43.826Z", - "version": "WzE0NzEsM10=" - }, - { - "attributes": { - "columns": [ - "user.email", - "service.name", - "gcp.audit.type", - "event.action", - "event.outcome", - "source.ip", - "source.geo.region_name" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "gcp.audit" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "gcp.audit" - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [], - "title": "Audit [Filebeat GCP]", - "version": 1 - }, - "id": "d88364c0-73a1-11ea-a345-f985c61fe654", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-03-31T22:49:14.763Z", - "version": "WzE0MTUsM10=" - } - ], - "version": "8.0.0-SNAPSHOT" -} diff --git a/x-pack/filebeat/module/gcp/_meta/kibana/7/dashboard/filebeat-gcp-audit.ndjson b/x-pack/filebeat/module/gcp/_meta/kibana/7/dashboard/filebeat-gcp-audit.ndjson new file mode 100644 index 00000000000..f6431ee8304 --- /dev/null +++ b/x-pack/filebeat/module/gcp/_meta/kibana/7/dashboard/filebeat-gcp-audit.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"description":"","layerListJSON":"[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"866b5ce1-6ca0-47db-a6f2-54c5e0dcd2f0\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"id\":\"79ec6461-7561-45e4-a6a2-9d6fbd4cf986\",\"geoField\":\"source.geo.location\",\"filterByMapBounds\":true,\"scalingType\":\"LIMIT\",\"topHitsSize\":1,\"type\":\"ES_SEARCH\",\"tooltipProperties\":[],\"sortField\":\"\",\"sortOrder\":\"desc\",\"applyGlobalQuery\":true,\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"marker\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#54B399\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#41937c\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"279da950-e9a7-4287-ab37-25906e448455\",\"label\":\"Source Locations\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"joins\":[],\"query\":{\"query\":\"event.dataset:gcp.audit\",\"language\":\"kuery\"}}]","mapStateJSON":"{\"zoom\":1.97,\"center\":{\"lon\":0,\"lat\":19.94277},\"timeFilters\":{\"from\":\"now-7d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false}}","title":"Audit Source Locations [Filebeat GCP]","uiStateJSON":"{\"isLayerTOCOpen\": true, \"openTOCDetails\": []}"},"coreMigrationVersion":"8.0.0","id":"a97de660-73a5-11ea-a345-f985c61fe654","migrationVersion":{"map":"7.14.0"},"references":[{"id":"filebeat-*","name":"layer_1_source_index_pattern","type":"index-pattern"}],"type":"map","updated_at":"2021-08-04T16:34:41.323Z","version":"WzQ3NzksMV0="} +{"attributes":{"columns":["user.email","service.name","gcp.audit.type","event.action","event.outcome","source.ip","source.geo.region_name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"gcp.audit\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"gcp.audit\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[],"title":"Audit [Filebeat GCP]","version":1},"coreMigrationVersion":"8.0.0","id":"d88364c0-73a1-11ea-a345-f985c61fe654","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:41.323Z","version":"WzQ3ODUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Audit Events Outcome over time [Filebeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-7d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":true,\"missingBucketLabel\":\"[unknown]\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Audit Event Outcome over time [Filebeat GCP]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"4627efa0-73a2-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d88364c0-73a1-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:41.323Z","version":"WzQ3ODAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Audit Event Action [Filebeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Audit Event Action [Filebeat GCP]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"eb5bf570-73a2-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d88364c0-73a1-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:41.323Z","version":"WzQ3ODEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Audit Top User Email [Filebeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.email\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Audit Top User Email [Filebeat GCP]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"33ee1320-73a5-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d88364c0-73a1-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:41.323Z","version":"WzQ3ODIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Audit User Agent [Filebeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Audit User Agent [Filebeat GCP]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"a8e40240-73a3-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d88364c0-73a1-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:41.323Z","version":"WzQ3ODMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Audit Resource Name [Filebeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"gcp.audit.resource_name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Audit Resource Name [Filebeat GCP]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"6d90d320-73a4-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d88364c0-73a1-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:41.323Z","version":"WzQ3ODQsMV0="} +{"attributes":{"description":"Overview of audit events from Google Cloud.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"map\",\"gridData\":{\"h\":15,\"i\":\"a808a985-5cf3-463a-9aad-5159cb64cef1\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"a808a985-5cf3-463a-9aad-5159cb64cef1\",\"embeddableConfig\":{\"hiddenLayers\":[],\"isLayerTOCOpen\":false,\"mapCenter\":{\"lat\":32.1625,\"lon\":-48.67493,\"zoom\":1.97},\"openTOCDetails\":[],\"enhancements\":{}},\"panelRefName\":\"panel_a808a985-5cf3-463a-9aad-5159cb64cef1\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"9e7025b6-c3bf-424f-b541-d22d00e1fa64\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"9e7025b6-c3bf-424f-b541-d22d00e1fa64\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9e7025b6-c3bf-424f-b541-d22d00e1fa64\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"5b6a8479-2c18-495e-88fa-9e3239277e3d\",\"w\":12,\"x\":0,\"y\":15},\"panelIndex\":\"5b6a8479-2c18-495e-88fa-9e3239277e3d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5b6a8479-2c18-495e-88fa-9e3239277e3d\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"46da4e61-e0bb-4595-a2c7-05210bfbea64\",\"w\":12,\"x\":12,\"y\":15},\"panelIndex\":\"46da4e61-e0bb-4595-a2c7-05210bfbea64\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_46da4e61-e0bb-4595-a2c7-05210bfbea64\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"4d698f07-2caf-45c0-bd48-51ea72ea79b0\",\"w\":12,\"x\":24,\"y\":15},\"panelIndex\":\"4d698f07-2caf-45c0-bd48-51ea72ea79b0\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4d698f07-2caf-45c0-bd48-51ea72ea79b0\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"c5e31da0-d4c8-4554-ab32-61da2495ab6c\",\"w\":12,\"x\":36,\"y\":15},\"panelIndex\":\"c5e31da0-d4c8-4554-ab32-61da2495ab6c\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_c5e31da0-d4c8-4554-ab32-61da2495ab6c\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"search\",\"gridData\":{\"h\":9,\"i\":\"95ebbda8-9b00-4b23-b116-72569ea031e3\",\"w\":48,\"x\":0,\"y\":29},\"panelIndex\":\"95ebbda8-9b00-4b23-b116-72569ea031e3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_95ebbda8-9b00-4b23-b116-72569ea031e3\"}]","timeRestore":false,"title":"[Filebeat GCP] Audit","version":1},"coreMigrationVersion":"8.0.0","id":"6576c480-73a2-11ea-a345-f985c61fe654","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a97de660-73a5-11ea-a345-f985c61fe654","name":"a808a985-5cf3-463a-9aad-5159cb64cef1:panel_a808a985-5cf3-463a-9aad-5159cb64cef1","type":"map"},{"id":"4627efa0-73a2-11ea-a345-f985c61fe654","name":"9e7025b6-c3bf-424f-b541-d22d00e1fa64:panel_9e7025b6-c3bf-424f-b541-d22d00e1fa64","type":"visualization"},{"id":"eb5bf570-73a2-11ea-a345-f985c61fe654","name":"5b6a8479-2c18-495e-88fa-9e3239277e3d:panel_5b6a8479-2c18-495e-88fa-9e3239277e3d","type":"visualization"},{"id":"33ee1320-73a5-11ea-a345-f985c61fe654","name":"46da4e61-e0bb-4595-a2c7-05210bfbea64:panel_46da4e61-e0bb-4595-a2c7-05210bfbea64","type":"visualization"},{"id":"a8e40240-73a3-11ea-a345-f985c61fe654","name":"4d698f07-2caf-45c0-bd48-51ea72ea79b0:panel_4d698f07-2caf-45c0-bd48-51ea72ea79b0","type":"visualization"},{"id":"6d90d320-73a4-11ea-a345-f985c61fe654","name":"c5e31da0-d4c8-4554-ab32-61da2495ab6c:panel_c5e31da0-d4c8-4554-ab32-61da2495ab6c","type":"visualization"},{"id":"d88364c0-73a1-11ea-a345-f985c61fe654","name":"95ebbda8-9b00-4b23-b116-72569ea031e3:panel_95ebbda8-9b00-4b23-b116-72569ea031e3","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:41.323Z","version":"WzQ3NzgsMV0="} diff --git a/x-pack/filebeat/module/ibmmq/_meta/kibana/7/dashboard/Filebeat-IBMMQ-Overview.json b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/dashboard/Filebeat-IBMMQ-Overview.json deleted file mode 100644 index 737cc4e76b6..00000000000 --- a/x-pack/filebeat/module/ibmmq/_meta/kibana/7/dashboard/Filebeat-IBMMQ-Overview.json +++ /dev/null @@ -1,931 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of IBM MQ", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "1", - "w": 24, - "x": 0, - "y": 7 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "6", - "w": 48, - "x": 0, - "y": 16 - }, - "panelIndex": "6", - "panelRefName": "panel_1", - "title": "Top 5 Errors [Filebeat IBM MQ]", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "8", - "w": 13, - "x": 0, - "y": 0 - }, - "panelIndex": "8", - "panelRefName": "panel_2", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 27, - "i": "9", - "w": 48, - "x": 0, - "y": 30 - }, - "panelIndex": "9", - "panelRefName": "panel_3", - "version": "7.2.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "10", - "w": 24, - "x": 24, - "y": 7 - }, - "panelIndex": "10", - "panelRefName": "panel_4", - "version": "7.2.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "11", - "w": 7, - "x": 13, - "y": 0 - }, - "panelIndex": "11", - "panelRefName": "panel_5", - "version": "7.2.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "12", - "w": 7, - "x": 20, - "y": 0 - }, - "panelIndex": "12", - "panelRefName": "panel_6", - "version": "7.2.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "13", - "w": 21, - "x": 27, - "y": 0 - }, - "panelIndex": "13", - "panelRefName": "panel_7", - "version": "7.2.0" - } - ], - "refreshInterval": { - "pause": true, - "value": 0 - }, - "timeFrom": "now-2M", - "timeRestore": true, - "timeTo": "now", - "title": "[Filebeat IBM MQ] Overview of error log overview", - "version": 1 - }, - "id": "ba1d8830-7c7b-11e9-9645-e37efaf5baff", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "4b2794c0-d901-11e8-aa1c-3fc8e6195a8e", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "b6308f30-7c7e-11e9-9645-e37efaf5baff", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "bf8e5de0-7c7f-11e9-9645-e37efaf5baff", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "82db7ba0-adec-11e9-8358-1517661d7c84", - "name": "panel_3", - "type": "search" - }, - { - "id": "df35c4b0-adf0-11e9-8358-1517661d7c84", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "3ff778d0-adf0-11e9-8358-1517661d7c84", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "57eae940-adf0-11e9-8358-1517661d7c84", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "845fca50-adef-11e9-8358-1517661d7c84", - "name": "panel_7", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-07-24T09:05:03.616Z", - "version": "WzI4OSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Errors over time by Queue Manager [Filebeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": "event.module:ibmmq", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "stacked", - "terms_field": "ibmmq.errorlog.qmgr", - "terms_size": "50", - "value_template": "{{value}} Errors" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Errors over time by Queue Manager [Filebeat IBM MQ]", - "type": "metrics" - } - }, - "id": "4b2794c0-d901-11e8-aa1c-3fc8e6195a8e", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-24T08:44:22.220Z", - "version": "WzI3OCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.module", - "negate": false, - "params": { - "query": "ibmmq" - }, - "type": "phrase", - "value": "ibmmq" - }, - "query": { - "match": { - "event.module": { - "query": "ibmmq", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top 5 Errors [Filebeat IBM MQ]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Occurences" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "3", - "params": { - "aggregate": "concat", - "customLabel": "Description", - "field": "message", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - }, - { - "enabled": true, - "id": "5", - "params": { - "aggregate": "concat", - "customLabel": "Explanation", - "field": "ibmmq.errorlog.explanation", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - }, - { - "enabled": true, - "id": "4", - "params": { - "aggregate": "concat", - "customLabel": "Recommended Action", - "field": "ibmmq.errorlog.action", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Error Codes", - "field": "ibmmq.errorlog.code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 5, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top 5 Errors [Filebeat IBM MQ]", - "type": "table" - } - }, - "id": "b6308f30-7c7e-11e9-9645-e37efaf5baff", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-24T09:03:08.635Z", - "version": "WzI4OCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Control [Filebeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "ibmmq.errorlog.qmgr", - "id": "1558522305526", - "indexPatternRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "label": "Queue Manager", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": false, - "useTimeFilter": false - }, - "title": "Control [Filebeat IBM MQ]", - "type": "input_control_vis" - } - }, - "id": "bf8e5de0-7c7f-11e9-9645-e37efaf5baff", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-24T08:20:32.926Z", - "version": "WzI2NSwxXQ==" - }, - { - "attributes": { - "columns": [ - "@timestamp", - "message", - "ibmmq.errorlog.explanation", - "ibmmq.errorlog.action" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.module", - "negate": false, - "params": { - "query": "ibmmq" - }, - "type": "phrase", - "value": "ibmmq" - }, - "query": { - "match": { - "event.module": { - "query": "ibmmq", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "lucene", - "query": "" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Errorlogs [Filebeat IBM MQ]", - "version": 1 - }, - "id": "82db7ba0-adec-11e9-8358-1517661d7c84", - "migrationVersion": { - "search": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2019-07-24T08:36:18.357Z", - "version": "WzI3NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Errors per code, queue manager and host [Filebeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Errorcodes", - "field": "ibmmq.errorlog.code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": true, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Queue Manager", - "field": "ibmmq.errorlog.qmgr", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Host", - "field": "host.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "metric": { - "accessor": 0, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Errors per code, queue manager and host [Filebeat IBM MQ]", - "type": "pie" - } - }, - "id": "df35c4b0-adf0-11e9-8358-1517661d7c84", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "82db7ba0-adec-11e9-8358-1517661d7c84", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-07-24T08:56:55.163Z", - "version": "WzI4NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Different error codes [Filebeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Different error codes", - "field": "ibmmq.errorlog.code" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Different error codes [Filebeat IBM MQ]", - "type": "metric" - } - }, - "id": "3ff778d0-adf0-11e9-8358-1517661d7c84", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "82db7ba0-adec-11e9-8358-1517661d7c84", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-07-24T08:51:38.844Z", - "version": "WzI4MSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Number of Queue Manager [Filebeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Queue Manager", - "field": "ibmmq.errorlog.qmgr" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "aggType": "cardinality", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Number of Queue Manager [Filebeat IBM MQ]", - "type": "metric" - } - }, - "id": "57eae940-adf0-11e9-8358-1517661d7c84", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "82db7ba0-adec-11e9-8358-1517661d7c84", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-07-24T08:52:19.027Z", - "version": "WzI4MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Last error [Filebeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Last error", - "field": "@timestamp" - }, - "schema": "metric", - "type": "max" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Last error [Filebeat IBM MQ]", - "type": "metric" - } - }, - "id": "845fca50-adef-11e9-8358-1517661d7c84", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "82db7ba0-adec-11e9-8358-1517661d7c84", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-07-24T08:46:24.117Z", - "version": "WzI3OSwxXQ==" - } - ], - "version": "7.2.0" -} diff --git a/x-pack/filebeat/module/ibmmq/_meta/kibana/7/dashboard/Filebeat-IBMMQ-Overview.ndjson b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/dashboard/Filebeat-IBMMQ-Overview.ndjson new file mode 100644 index 00000000000..f65c8da022a --- /dev/null +++ b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/dashboard/Filebeat-IBMMQ-Overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Errors over time by Queue Manager [Filebeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"query\":\"event.module:ibmmq\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"ibmmq.errorlog.qmgr\",\"terms_size\":\"50\",\"value_template\":\"{{value}} Errors\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Errors over time by Queue Manager [Filebeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4b2794c0-d901-11e8-aa1c-3fc8e6195a8e","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:43.104Z","version":"WzQyNjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"ibmmq\"}, \"type\": \"phrase\", \"value\": \"ibmmq\"}, \"query\": {\"match\": {\"event.module\": {\"query\": \"ibmmq\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top 5 Errors [Filebeat IBM MQ]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Occurences\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Description\",\"field\":\"message\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Explanation\",\"field\":\"ibmmq.errorlog.explanation\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Recommended Action\",\"field\":\"ibmmq.errorlog.action\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Error Codes\",\"field\":\"ibmmq.errorlog.code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":5,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 5 Errors [Filebeat IBM MQ]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"b6308f30-7c7e-11e9-9645-e37efaf5baff","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:43.104Z","version":"WzQyNjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Control [Filebeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"ibmmq.errorlog.qmgr\",\"id\":\"1558522305526\",\"indexPatternRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"label\":\"Queue Manager\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Control [Filebeat IBM MQ]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"bf8e5de0-7c7f-11e9-9645-e37efaf5baff","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:43.104Z","version":"WzQyNjYsMV0="} +{"attributes":{"columns":["@timestamp","message","ibmmq.errorlog.explanation","ibmmq.errorlog.action"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"ibmmq\"}, \"type\": \"phrase\", \"value\": \"ibmmq\"}, \"query\": {\"match\": {\"event.module\": {\"query\": \"ibmmq\", \"type\": \"phrase\"}}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Errorlogs [Filebeat IBM MQ]","version":1},"coreMigrationVersion":"8.0.0","id":"82db7ba0-adec-11e9-8358-1517661d7c84","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:43.104Z","version":"WzQyNjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Errors per code, queue manager and host [Filebeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Errorcodes\",\"field\":\"ibmmq.errorlog.code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Queue Manager\",\"field\":\"ibmmq.errorlog.qmgr\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Host\",\"field\":\"host.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Errors per code, queue manager and host [Filebeat IBM MQ]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"df35c4b0-adf0-11e9-8358-1517661d7c84","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"82db7ba0-adec-11e9-8358-1517661d7c84","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:43.104Z","version":"WzQyNjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Different error codes [Filebeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Different error codes\",\"field\":\"ibmmq.errorlog.code\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Different error codes [Filebeat IBM MQ]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"3ff778d0-adf0-11e9-8358-1517661d7c84","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"82db7ba0-adec-11e9-8358-1517661d7c84","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:43.104Z","version":"WzQyNjksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Number of Queue Manager [Filebeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Queue Manager\",\"field\":\"ibmmq.errorlog.qmgr\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Number of Queue Manager [Filebeat IBM MQ]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"57eae940-adf0-11e9-8358-1517661d7c84","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"82db7ba0-adec-11e9-8358-1517661d7c84","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:43.104Z","version":"WzQyNzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Last error [Filebeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Last error\",\"field\":\"@timestamp\"},\"schema\":\"metric\",\"type\":\"max\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Last error [Filebeat IBM MQ]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"845fca50-adef-11e9-8358-1517661d7c84","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"82db7ba0-adec-11e9-8358-1517661d7c84","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:43.104Z","version":"WzQyNzEsMV0="} +{"attributes":{"description":"Overview of IBM MQ","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":7},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":16},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top 5 Errors [Filebeat IBM MQ]\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"8\",\"w\":13,\"x\":0,\"y\":0},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":27,\"i\":\"9\",\"w\":48,\"x\":0,\"y\":30},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"10\",\"w\":24,\"x\":24,\"y\":7},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"11\",\"w\":7,\"x\":13,\"y\":0},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"12\",\"w\":7,\"x\":20,\"y\":0},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"13\",\"w\":21,\"x\":27,\"y\":0},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"}]","refreshInterval":{"pause":true,"value":0},"timeFrom":"now-2M","timeRestore":true,"timeTo":"now","title":"[Filebeat IBM MQ] Overview of error log overview","version":1},"coreMigrationVersion":"8.0.0","id":"ba1d8830-7c7b-11e9-9645-e37efaf5baff","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"4b2794c0-d901-11e8-aa1c-3fc8e6195a8e","name":"1:panel_1","type":"visualization"},{"id":"b6308f30-7c7e-11e9-9645-e37efaf5baff","name":"6:panel_6","type":"visualization"},{"id":"bf8e5de0-7c7f-11e9-9645-e37efaf5baff","name":"8:panel_8","type":"visualization"},{"id":"82db7ba0-adec-11e9-8358-1517661d7c84","name":"9:panel_9","type":"search"},{"id":"df35c4b0-adf0-11e9-8358-1517661d7c84","name":"10:panel_10","type":"visualization"},{"id":"3ff778d0-adf0-11e9-8358-1517661d7c84","name":"11:panel_11","type":"visualization"},{"id":"57eae940-adf0-11e9-8358-1517661d7c84","name":"12:panel_12","type":"visualization"},{"id":"845fca50-adef-11e9-8358-1517661d7c84","name":"13:panel_13","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:43.104Z","version":"WzQyNjMsMV0="} diff --git a/x-pack/filebeat/module/ibmmq/module.yml b/x-pack/filebeat/module/ibmmq/module.yml index 7551ba72055..89370161e2c 100644 --- a/x-pack/filebeat/module/ibmmq/module.yml +++ b/x-pack/filebeat/module/ibmmq/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Filebeat-ibmmq-errorlog-Dashboard - file: Filebeat-ibmmq-errorlog.json + file: Filebeat-ibmmq-errorlog.ndjson diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Overview.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Overview.json deleted file mode 100644 index 066c8f16221..00000000000 --- a/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Overview.json +++ /dev/null @@ -1,759 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs", - "title": "Events Timeline [Filebeat Iptables] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "time_zone": "Europe/Berlin", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Events Timeline [Filebeat Iptables] ECS", - "type": "area" - } - }, - "id": "4c913eb0-1f51-11e9-93ed-f7e068f4aebb-ecs", - "type": "visualization", - "updated_at": "2019-01-23T20:56:04.891Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "iptables.length:*" - } - } - }, - "savedSearchId": "b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs", - "title": "Top Source Countries [Filebeat Iptables] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Country", - "field": "source.geo.country_iso_code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top Source Countries [Filebeat Iptables] ECS", - "type": "table" - } - }, - "id": "2599f5e0-1e98-11e9-8ec4-cf5d91a864b3-ecs", - "type": "visualization", - "updated_at": "2019-01-23T20:51:02.293Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "iptables.length:*" - } - } - }, - "savedSearchId": "b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs", - "title": "Source Map [Filebeat Iptables] ECS", - "uiStateJSON": { - "mapCenter": [ - 45.02695045318546, - -44.82421875000001 - ], - "mapZoom": 3 - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "source.geo.location", - "isFilteredByCollar": true, - "mapCenter": [ - 0, - 0 - ], - "mapZoom": 2, - "precision": 2, - "useGeocentroid": true - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "params": { - "addTooltip": true, - "colorSchema": "Yellow to Red", - "heatClusterSize": 1.5, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 0, - 0 - ], - "mapType": "Scaled Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "format": "image/png", - "transparent": true - }, - "selectedTmsLayer": { - "attribution": "\u003cp\u003e\u0026#169; \u003ca href=\"http://www.openstreetmap.org/copyright\"\u003eOpenStreetMap\u003c/a\u003e contributors | \u003ca href=\"https://www.elastic.co/elastic-maps-service\"\u003eElastic Maps Service\u003c/a\u003e\u003c/p\u003e\u0026#10;", - "id": "road_map", - "maxZoom": 18, - "minZoom": 0, - "origin": "elastic_maps_service" - } - } - }, - "title": "Source Map [Filebeat Iptables] ECS", - "type": "tile_map" - } - }, - "id": "c4394ec0-1efd-11e9-8ec4-cf5d91a864b3-ecs", - "type": "visualization", - "updated_at": "2019-01-23T20:51:02.293Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "iptables.length:*" - } - } - }, - "savedSearchId": "b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs", - "title": "Destination Map [Filebeat Iptables] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "destination.geo.location", - "isFilteredByCollar": true, - "mapCenter": [ - 0, - 0 - ], - "mapZoom": 2, - "precision": 2, - "useGeocentroid": true - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "params": { - "addTooltip": true, - "colorSchema": "Yellow to Red", - "heatClusterSize": 1.5, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 0, - 0 - ], - "mapType": "Scaled Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "format": "image/png", - "transparent": true - }, - "selectedTmsLayer": { - "attribution": "\u003cp\u003e\u0026#169; \u003ca href=\"http://www.openstreetmap.org/copyright\"\u003eOpenStreetMap\u003c/a\u003e contributors | \u003ca href=\"https://www.elastic.co/elastic-maps-service\"\u003eElastic Maps Service\u003c/a\u003e\u003c/p\u003e\u0026#10;", - "id": "road_map", - "maxZoom": 18, - "minZoom": 0, - "origin": "elastic_maps_service" - } - } - }, - "title": "Destination Map [Filebeat Iptables] ECS", - "type": "tile_map" - } - }, - "id": "d8cea010-1efd-11e9-8ec4-cf5d91a864b3-ecs", - "type": "visualization", - "updated_at": "2019-01-23T20:51:02.293Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "iptables.length:*" - } - } - }, - "savedSearchId": "b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs", - "title": "Network Type Breakdown [Filebeat Iptables] ECS", - "uiStateJSON": { - "vis": { - "legendOpen": false - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "network.type", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": true, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": true, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Network Type Breakdown [Filebeat Iptables] ECS", - "type": "pie" - } - }, - "id": "b57b7370-1f1d-11e9-8ec4-cf5d91a864b3-ecs", - "type": "visualization", - "updated_at": "2019-01-23T20:51:02.293Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "iptables.length:*" - } - } - }, - "savedSearchId": "b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs", - "title": "Network Transport Breakdown [Filebeat Iptables] ECS", - "uiStateJSON": { - "vis": { - "legendOpen": false - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "network.transport", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": true, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": true, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Network Transport Breakdown [Filebeat Iptables] ECS", - "type": "pie" - } - }, - "id": "35fe0910-1f26-11e9-8ec4-cf5d91a864b3-ecs", - "type": "visualization", - "updated_at": "2019-01-23T20:51:02.293Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "iptables.length:*" - } - } - }, - "savedSearchId": "b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs", - "title": "Top Destination Ports [Filebeat Iptables] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Port", - "field": "destination.port", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top Destination Ports [Filebeat Iptables] ECS", - "type": "table" - } - }, - "id": "683402b0-1f29-11e9-8ec4-cf5d91a864b3-ecs", - "type": "visualization", - "updated_at": "2019-01-23T20:51:02.293Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "iptables.length :*" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Events Search [Filebeat Iptables] ECS", - "version": 1 - }, - "id": "b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs", - "type": "search", - "updated_at": "2019-01-23T20:51:02.293Z", - "version": 1 - }, - { - "attributes": { - "description": "Overview of the iptables events dashboard.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 15, - "i": "1", - "w": 37, - "x": 0, - "y": 0 - }, - "id": "4c913eb0-1f51-11e9-93ed-f7e068f4aebb-ecs", - "panelIndex": "1", - "type": "visualization", - "version": "6.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "2", - "w": 11, - "x": 37, - "y": 0 - }, - "id": "2599f5e0-1e98-11e9-8ec4-cf5d91a864b3-ecs", - "panelIndex": "2", - "type": "visualization", - "version": "6.6.0" - }, - { - "embeddableConfig": { - "mapCenter": [ - 47.15984001304432, - -47.02148437500001 - ], - "mapZoom": 2 - }, - "gridData": { - "h": 15, - "i": "3", - "w": 24, - "x": 0, - "y": 15 - }, - "id": "c4394ec0-1efd-11e9-8ec4-cf5d91a864b3-ecs", - "panelIndex": "3", - "type": "visualization", - "version": "6.6.0" - }, - { - "embeddableConfig": { - "mapCenter": [ - 49.15296965617042, - -27.949218750000004 - ], - "mapZoom": 2 - }, - "gridData": { - "h": 15, - "i": "4", - "w": 24, - "x": 24, - "y": 15 - }, - "id": "d8cea010-1efd-11e9-8ec4-cf5d91a864b3-ecs", - "panelIndex": "4", - "type": "visualization", - "version": "6.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "5", - "w": 19, - "x": 0, - "y": 30 - }, - "id": "b57b7370-1f1d-11e9-8ec4-cf5d91a864b3-ecs", - "panelIndex": "5", - "type": "visualization", - "version": "6.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "6", - "w": 18, - "x": 19, - "y": 30 - }, - "id": "35fe0910-1f26-11e9-8ec4-cf5d91a864b3-ecs", - "panelIndex": "6", - "type": "visualization", - "version": "6.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "7", - "w": 11, - "x": 37, - "y": 30 - }, - "id": "683402b0-1f29-11e9-8ec4-cf5d91a864b3-ecs", - "panelIndex": "7", - "type": "visualization", - "version": "6.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 19, - "i": "8", - "w": 48, - "x": 0, - "y": 45 - }, - "id": "b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs", - "panelIndex": "8", - "type": "search", - "version": "6.6.0" - } - ], - "timeRestore": false, - "title": "[Filebeat Iptables] Overview ECS", - "version": 1 - }, - "id": "ceefb9e0-1f51-11e9-93ed-f7e068f4aebb-ecs", - "type": "dashboard", - "updated_at": "2019-01-23T20:59:43.614Z", - "version": 1 - } - ], - "version": "6.6.0" -} diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Overview.ndjson b/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Overview.ndjson new file mode 100644 index 00000000000..08d0ccbca3c --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"iptables.length :*\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Events Search [Filebeat Iptables] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:44.176Z","version":"WzQyNzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Events Timeline [Filebeat Iptables] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Events Timeline [Filebeat Iptables] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"4c913eb0-1f51-11e9-93ed-f7e068f4aebb-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:44.176Z","version":"WzQyNzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"iptables.length:*\"}}"},"savedSearchRefName":"search_0","title":"Top Source Countries [Filebeat Iptables] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Country\",\"field\":\"source.geo.country_iso_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Source Countries [Filebeat Iptables] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"2599f5e0-1e98-11e9-8ec4-cf5d91a864b3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:44.176Z","version":"WzQyNzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"iptables.length:*\"}}"},"savedSearchRefName":"search_0","title":"Source Map [Filebeat Iptables] ECS","uiStateJSON":"{\"mapCenter\": [45.02695045318546, -44.82421875000001], \"mapZoom\": 3}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"isFilteredByCollar\":true,\"mapCenter\":[0,0],\"mapZoom\":2,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true},\"selectedTmsLayer\":{\"attribution\":\"

© OpenStreetMap contributors | Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"origin\":\"elastic_maps_service\"}}},\"title\":\"Source Map [Filebeat Iptables] ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"c4394ec0-1efd-11e9-8ec4-cf5d91a864b3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:44.176Z","version":"WzQyNzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"iptables.length:*\"}}"},"savedSearchRefName":"search_0","title":"Destination Map [Filebeat Iptables] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"destination.geo.location\",\"isFilteredByCollar\":true,\"mapCenter\":[0,0],\"mapZoom\":2,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true},\"selectedTmsLayer\":{\"attribution\":\"

© OpenStreetMap contributors | Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"origin\":\"elastic_maps_service\"}}},\"title\":\"Destination Map [Filebeat Iptables] ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"d8cea010-1efd-11e9-8ec4-cf5d91a864b3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:44.176Z","version":"WzQyNzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"iptables.length:*\"}}"},"savedSearchRefName":"search_0","title":"Network Type Breakdown [Filebeat Iptables] ECS","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.type\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Network Type Breakdown [Filebeat Iptables] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"b57b7370-1f1d-11e9-8ec4-cf5d91a864b3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:44.176Z","version":"WzQyNzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"iptables.length:*\"}}"},"savedSearchRefName":"search_0","title":"Network Transport Breakdown [Filebeat Iptables] ECS","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.transport\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Network Transport Breakdown [Filebeat Iptables] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"35fe0910-1f26-11e9-8ec4-cf5d91a864b3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:44.176Z","version":"WzQyNzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"iptables.length:*\"}}"},"savedSearchRefName":"search_0","title":"Top Destination Ports [Filebeat Iptables] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Port\",\"field\":\"destination.port\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Destination Ports [Filebeat Iptables] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"683402b0-1f29-11e9-8ec4-cf5d91a864b3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:44.176Z","version":"WzQyNzgsMV0="} +{"attributes":{"description":"Overview of the iptables events dashboard.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":37,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":11,\"x\":37,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"mapCenter\":[47.15984001304432,-47.02148437500001],\"mapZoom\":2,\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"4\",\"embeddableConfig\":{\"mapCenter\":[49.15296965617042,-27.949218750000004],\"mapZoom\":2,\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":19,\"x\":0,\"y\":30},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":18,\"x\":19,\"y\":30},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":11,\"x\":37,\"y\":30},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":19,\"i\":\"8\",\"w\":48,\"x\":0,\"y\":45},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Filebeat Iptables] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"ceefb9e0-1f51-11e9-93ed-f7e068f4aebb-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"4c913eb0-1f51-11e9-93ed-f7e068f4aebb-ecs","name":"1:panel_1","type":"visualization"},{"id":"2599f5e0-1e98-11e9-8ec4-cf5d91a864b3-ecs","name":"2:panel_2","type":"visualization"},{"id":"c4394ec0-1efd-11e9-8ec4-cf5d91a864b3-ecs","name":"3:panel_3","type":"visualization"},{"id":"d8cea010-1efd-11e9-8ec4-cf5d91a864b3-ecs","name":"4:panel_4","type":"visualization"},{"id":"b57b7370-1f1d-11e9-8ec4-cf5d91a864b3-ecs","name":"5:panel_5","type":"visualization"},{"id":"35fe0910-1f26-11e9-8ec4-cf5d91a864b3-ecs","name":"6:panel_6","type":"visualization"},{"id":"683402b0-1f29-11e9-8ec4-cf5d91a864b3-ecs","name":"7:panel_7","type":"visualization"},{"id":"b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs","name":"8:panel_8","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:44.176Z","version":"WzQyODAsMV0="} diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Ubiquiti-Firewall-Overview.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Ubiquiti-Firewall-Overview.json deleted file mode 100644 index 16233a61341..00000000000 --- a/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Ubiquiti-Firewall-Overview.json +++ /dev/null @@ -1,848 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs", - "title": "Ubiquiti Firewall Event Timeline [Filebeat Iptables] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "allow": "#64B0C8", - "deny": "#E24D42" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "timeRange": { - "from": "2019-01-24T15:47:12.171Z", - "mode": "absolute", - "to": "2019-01-24T15:47:52.785Z" - }, - "time_zone": "Europe/Berlin", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "event.outcome", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": true, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "top", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Ubiquiti Firewall Event Timeline [Filebeat Iptables] ECS", - "type": "histogram" - } - }, - "id": "758b3620-1fda-11e9-ae2a-939083c6a64e-ecs", - "type": "visualization", - "updated_at": "2019-01-24T16:37:11.788Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "9f7d97c0-1fe9-11e9-ae2a-939083c6a64e-ecs", - "title": "Ubiquiti Firewall Top Blocked IPs [Filebeat Iptables] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Source IP", - "field": "source.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Ubiquiti Firewall Top Blocked IPs [Filebeat Iptables] ECS", - "type": "table" - } - }, - "id": "1ba82fd0-1ff0-11e9-ae2a-939083c6a64e-ecs", - "type": "visualization", - "updated_at": "2019-01-24T16:06:20.635Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "7862cab0-1fdb-11e9-ae2a-939083c6a64e-ecs", - "title": "Ubiquiti Firewall Allowed Traffic Map [Filebeat Iptables] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "source.geo.location", - "isFilteredByCollar": true, - "mapCenter": [ - 0, - 0 - ], - "mapZoom": 2, - "precision": 2, - "useGeocentroid": true - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "params": { - "addTooltip": true, - "colorSchema": "Yellow to Red", - "heatClusterSize": 1.5, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 0, - 0 - ], - "mapType": "Scaled Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "format": "image/png", - "transparent": true - }, - "selectedTmsLayer": { - "attribution": "\u003cp\u003e\u0026#169; \u003ca href=\"http://www.openstreetmap.org/copyright\"\u003eOpenStreetMap\u003c/a\u003e contributors | \u003ca href=\"https://www.elastic.co/elastic-maps-service\"\u003eElastic Maps Service\u003c/a\u003e\u003c/p\u003e\u0026#10;", - "id": "road_map", - "maxZoom": 18, - "minZoom": 0, - "origin": "elastic_maps_service" - } - } - }, - "title": "Ubiquiti Firewall Allowed Traffic Map [Filebeat Iptables] ECS", - "type": "tile_map" - } - }, - "id": "5bd53050-1fe9-11e9-ae2a-939083c6a64e-ecs", - "type": "visualization", - "updated_at": "2019-01-24T15:04:34.005Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "9f7d97c0-1fe9-11e9-ae2a-939083c6a64e-ecs", - "title": "Ubiquiti Firewall Blocked Traffic Map [Filebeat Iptables] ECS", - "uiStateJSON": { - "mapCenter": [ - 19.228176737766262, - -22.851562500000004 - ], - "mapZoom": 3 - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "source.geo.location", - "isFilteredByCollar": true, - "mapCenter": [ - 0, - 0 - ], - "mapZoom": 2, - "precision": 2, - "useGeocentroid": true - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "params": { - "addTooltip": true, - "colorSchema": "Yellow to Red", - "heatClusterSize": 1.5, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 0, - 0 - ], - "mapType": "Scaled Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "format": "image/png", - "transparent": true - }, - "selectedTmsLayer": { - "attribution": "\u003cp\u003e\u0026#169; \u003ca href=\"http://www.openstreetmap.org/copyright\"\u003eOpenStreetMap\u003c/a\u003e contributors | \u003ca href=\"https://www.elastic.co/elastic-maps-service\"\u003eElastic Maps Service\u003c/a\u003e\u003c/p\u003e\u0026#10;", - "id": "road_map", - "maxZoom": 18, - "minZoom": 0, - "origin": "elastic_maps_service" - } - } - }, - "title": "Ubiquiti Firewall Blocked Traffic Map [Filebeat Iptables] ECS", - "type": "tile_map" - } - }, - "id": "8853aa20-1fef-11e9-ae2a-939083c6a64e-ecs", - "type": "visualization", - "updated_at": "2019-01-24T15:50:31.689Z", - "version": 2 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs", - "title": "Ubiquiti Firewall Traffic Breakdown [Filebeat Iptables] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "deny": "#E24D42", - "icmp": "#F29191", - "ipv4": "#65C5DB", - "ipv6": "#D683CE", - "ipv6-icmp": "#EA6460", - "tcp": "#447EBC", - "udp": "#F2C96D" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.outcome", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": true, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "network.type", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": true, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "field": "network.transport", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": true, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": false, - "show": true, - "truncate": 100, - "values": false - }, - "legendPosition": "top", - "type": "pie" - }, - "title": "Ubiquiti Firewall Traffic Breakdown [Filebeat Iptables] ECS", - "type": "pie" - } - }, - "id": "fdea1ad0-1ff4-11e9-ae2a-939083c6a64e-ecs", - "type": "visualization", - "updated_at": "2019-01-24T16:27:50.397Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "iptables.ubiquiti.rule_set :*" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Ubiquiti Firewall Events [Filebeat Iptables] ECS", - "version": 1 - }, - "id": "c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs", - "type": "search", - "updated_at": "2019-01-24T12:37:10.858Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchId": "c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs", - "title": "Ubiquiti Firewall Traffic by Port [Filebeat Iptables] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "event.outcome", - "field": "event.outcome", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "row": false, - "size": 5 - }, - "schema": "split", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Destination port", - "field": "destination.port", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Ubiquiti Firewall Traffic by Port [Filebeat Iptables] ECS", - "type": "table" - } - }, - "id": "190bcb50-1ff6-11e9-ae2a-939083c6a64e-ecs", - "type": "visualization", - "updated_at": "2019-01-24T16:35:45.413Z", - "version": 1 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "iptables.ubiquiti.rule_set :* and event.action : \"drop\"" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Ubiquiti Firewall Blocked Events [Filebeat Iptables] ECS", - "version": 1 - }, - "id": "9f7d97c0-1fe9-11e9-ae2a-939083c6a64e-ecs", - "type": "search", - "updated_at": "2019-01-24T15:35:33.942Z", - "version": 2 - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "index": "filebeat-*", - "query": { - "language": "kuery", - "query": "iptables.ubiquiti.rule_set :* and event.action : \"accept\"" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Ubiquiti Firewall Allowed Events [Filebeat Iptables] ECS", - "version": 1 - }, - "id": "7862cab0-1fdb-11e9-ae2a-939083c6a64e-ecs", - "type": "search", - "updated_at": "2019-01-24T15:04:12.010Z", - "version": 3 - }, - { - "attributes": { - "description": "Overview of the Ubiquiti Firewall iptables events dashboard.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "vis": { - "colors": { - "allow": "#64B0C8", - "deny": "#E24D42" - }, - "legendOpen": true - } - }, - "gridData": { - "h": 15, - "i": "1", - "w": 33, - "x": 0, - "y": 0 - }, - "id": "758b3620-1fda-11e9-ae2a-939083c6a64e-ecs", - "panelIndex": "1", - "title": "Event Timeline", - "type": "visualization", - "version": "6.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "2", - "w": 15, - "x": 33, - "y": 0 - }, - "id": "1ba82fd0-1ff0-11e9-ae2a-939083c6a64e-ecs", - "panelIndex": "2", - "title": "Top Blocked by source IP", - "type": "visualization", - "version": "6.6.0" - }, - { - "embeddableConfig": { - "mapCenter": [ - 39.095962936305476, - -22.148437500000004 - ], - "mapZoom": 2 - }, - "gridData": { - "h": 15, - "i": "3", - "w": 24, - "x": 0, - "y": 15 - }, - "id": "5bd53050-1fe9-11e9-ae2a-939083c6a64e-ecs", - "panelIndex": "3", - "title": "Allowed Traffic Map", - "type": "visualization", - "version": "6.6.0" - }, - { - "embeddableConfig": { - "mapCenter": [ - 46.31658418182218, - -34.10156250000001 - ], - "mapZoom": 2 - }, - "gridData": { - "h": 15, - "i": "4", - "w": 24, - "x": 24, - "y": 15 - }, - "id": "8853aa20-1fef-11e9-ae2a-939083c6a64e-ecs", - "panelIndex": "4", - "title": "Blocked Traffic Map", - "type": "visualization", - "version": "6.6.0" - }, - { - "embeddableConfig": { - "vis": { - "colors": { - "allow": "#7EB26D", - "deny": "#E24D42", - "icmp": "#F29191", - "ipv4": "#65C5DB", - "ipv6": "#D683CE", - "ipv6-icmp": "#EA6460", - "tcp": "#447EBC", - "udp": "#F2C96D" - } - } - }, - "gridData": { - "h": 18, - "i": "5", - "w": 24, - "x": 0, - "y": 30 - }, - "id": "fdea1ad0-1ff4-11e9-ae2a-939083c6a64e-ecs", - "panelIndex": "5", - "title": "Traffic Breakdown by Protocol", - "type": "visualization", - "version": "6.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 27, - "i": "6", - "w": 48, - "x": 0, - "y": 48 - }, - "id": "c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs", - "panelIndex": "6", - "title": "Event View", - "type": "search", - "version": "6.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 18, - "i": "7", - "w": 24, - "x": 24, - "y": 30 - }, - "id": "190bcb50-1ff6-11e9-ae2a-939083c6a64e-ecs", - "panelIndex": "7", - "title": "Traffic Breakdown by Port", - "type": "visualization", - "version": "6.6.0" - } - ], - "timeRestore": false, - "title": "[Filebeat Iptables] Ubiquiti Firewall Overview ECS", - "version": 1 - }, - "id": "d39f0980-1ff3-11e9-ae2a-939083c6a64e-ecs", - "type": "dashboard", - "updated_at": "2019-01-24T16:38:35.174Z", - "version": 4 - } - ], - "version": "6.6.0" -} diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Ubiquiti-Firewall-Overview.ndjson b/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Ubiquiti-Firewall-Overview.ndjson new file mode 100644 index 00000000000..90052b109c9 --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Ubiquiti-Firewall-Overview.ndjson @@ -0,0 +1,10 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"iptables.ubiquiti.rule_set :*\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Ubiquiti Firewall Events [Filebeat Iptables] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyODYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Ubiquiti Firewall Event Timeline [Filebeat Iptables] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"allow\": \"#64B0C8\", \"deny\": \"#E24D42\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"2019-01-24T15:47:12.171Z\",\"mode\":\"absolute\",\"to\":\"2019-01-24T15:47:52.785Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"top\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Ubiquiti Firewall Event Timeline [Filebeat Iptables] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"758b3620-1fda-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyODEsMV0="} +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"iptables.ubiquiti.rule_set :* and event.action : \\\"drop\\\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Ubiquiti Firewall Blocked Events [Filebeat Iptables] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"9f7d97c0-1fe9-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyODgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Ubiquiti Firewall Top Blocked IPs [Filebeat Iptables] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source IP\",\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Ubiquiti Firewall Top Blocked IPs [Filebeat Iptables] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"1ba82fd0-1ff0-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9f7d97c0-1fe9-11e9-ae2a-939083c6a64e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyODIsMV0="} +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"iptables.ubiquiti.rule_set :* and event.action : \\\"accept\\\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Ubiquiti Firewall Allowed Events [Filebeat Iptables] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"7862cab0-1fdb-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyODksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Ubiquiti Firewall Allowed Traffic Map [Filebeat Iptables] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"isFilteredByCollar\":true,\"mapCenter\":[0,0],\"mapZoom\":2,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true},\"selectedTmsLayer\":{\"attribution\":\"

© OpenStreetMap contributors | Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"origin\":\"elastic_maps_service\"}}},\"title\":\"Ubiquiti Firewall Allowed Traffic Map [Filebeat Iptables] ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"5bd53050-1fe9-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"7862cab0-1fdb-11e9-ae2a-939083c6a64e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyODMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Ubiquiti Firewall Blocked Traffic Map [Filebeat Iptables] ECS","uiStateJSON":"{\"mapCenter\": [19.228176737766262, -22.851562500000004], \"mapZoom\": 3}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"isFilteredByCollar\":true,\"mapCenter\":[0,0],\"mapZoom\":2,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true},\"selectedTmsLayer\":{\"attribution\":\"

© OpenStreetMap contributors | Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"origin\":\"elastic_maps_service\"}}},\"title\":\"Ubiquiti Firewall Blocked Traffic Map [Filebeat Iptables] ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"8853aa20-1fef-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9f7d97c0-1fe9-11e9-ae2a-939083c6a64e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyODQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Ubiquiti Firewall Traffic Breakdown [Filebeat Iptables] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"deny\": \"#E24D42\", \"icmp\": \"#F29191\", \"ipv4\": \"#65C5DB\", \"ipv6\": \"#D683CE\", \"ipv6-icmp\": \"#EA6460\", \"tcp\": \"#447EBC\", \"udp\": \"#F2C96D\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"network.type\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"network.transport\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":false,\"show\":true,\"truncate\":100,\"values\":false},\"legendPosition\":\"top\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Ubiquiti Firewall Traffic Breakdown [Filebeat Iptables] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"fdea1ad0-1ff4-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyODUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Ubiquiti Firewall Traffic by Port [Filebeat Iptables] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"event.outcome\",\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Destination port\",\"field\":\"destination.port\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"row\":false,\"showToolbar\":true},\"title\":\"Ubiquiti Firewall Traffic by Port [Filebeat Iptables] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"190bcb50-1ff6-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyODcsMV0="} +{"attributes":{"description":"Overview of the Ubiquiti Firewall iptables events dashboard.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":33,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"allow\":\"#64B0C8\",\"deny\":\"#E24D42\"},\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Event Timeline\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":15,\"x\":33,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Blocked by source IP\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"mapCenter\":[39.095962936305476,-22.148437500000004],\"mapZoom\":2,\"enhancements\":{}},\"title\":\"Allowed Traffic Map\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"4\",\"embeddableConfig\":{\"mapCenter\":[46.31658418182218,-34.10156250000001],\"mapZoom\":2,\"enhancements\":{}},\"title\":\"Blocked Traffic Map\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"5\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"allow\":\"#7EB26D\",\"deny\":\"#E24D42\",\"icmp\":\"#F29191\",\"ipv4\":\"#65C5DB\",\"ipv6\":\"#D683CE\",\"ipv6-icmp\":\"#EA6460\",\"tcp\":\"#447EBC\",\"udp\":\"#F2C96D\"}},\"enhancements\":{}},\"title\":\"Traffic Breakdown by Protocol\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":27,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":48},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Event View\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Traffic Breakdown by Port\",\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Filebeat Iptables] Ubiquiti Firewall Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"d39f0980-1ff3-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"758b3620-1fda-11e9-ae2a-939083c6a64e-ecs","name":"1:panel_1","type":"visualization"},{"id":"1ba82fd0-1ff0-11e9-ae2a-939083c6a64e-ecs","name":"2:panel_2","type":"visualization"},{"id":"5bd53050-1fe9-11e9-ae2a-939083c6a64e-ecs","name":"3:panel_3","type":"visualization"},{"id":"8853aa20-1fef-11e9-ae2a-939083c6a64e-ecs","name":"4:panel_4","type":"visualization"},{"id":"fdea1ad0-1ff4-11e9-ae2a-939083c6a64e-ecs","name":"5:panel_5","type":"visualization"},{"id":"c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs","name":"6:panel_6","type":"search"},{"id":"190bcb50-1ff6-11e9-ae2a-939083c6a64e-ecs","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyOTAsMV0="} diff --git a/x-pack/filebeat/module/iptables/module.yml b/x-pack/filebeat/module/iptables/module.yml index 3129ecbdbc3..3de1299cba5 100644 --- a/x-pack/filebeat/module/iptables/module.yml +++ b/x-pack/filebeat/module/iptables/module.yml @@ -1,5 +1,5 @@ dashboards: - id: ceefb9e0-1f51-11e9-93ed-f7e068f4aebb - file: Filebeat-Iptables-Overview.json + file: Filebeat-Iptables-Overview.ndjson - id: d39f0980-1ff3-11e9-ae2a-939083c6a64e - file: Filebeat-Iptables-Ubiquiti-Firewall-Overview.json + file: Filebeat-Iptables-Ubiquiti-Firewall-Overview.ndjson diff --git a/x-pack/filebeat/module/microsoft/_meta/kibana/7/dashboard/Filebeat-microsoft-atp-overview.json b/x-pack/filebeat/module/microsoft/_meta/kibana/7/dashboard/Filebeat-microsoft-atp-overview.json deleted file mode 100644 index 1cede27b376..00000000000 --- a/x-pack/filebeat/module/microsoft/_meta/kibana/7/dashboard/Filebeat-microsoft-atp-overview.json +++ /dev/null @@ -1,1221 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Microsoft Defender ATP Alert Overview", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "8343f7ea-b977-44bf-bf81-6d41742093a4", - "w": 4, - "x": 0, - "y": 0 - }, - "panelIndex": "8343f7ea-b977-44bf-bf81-6d41742093a4", - "panelRefName": "panel_0", - "version": "7.8.1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 24, - "i": "74d36139-4d22-44d4-bfc8-020c575febb1", - "w": 25, - "x": 4, - "y": 0 - }, - "panelIndex": "74d36139-4d22-44d4-bfc8-020c575febb1", - "panelRefName": "panel_1", - "version": "7.8.1" - }, - { - "embeddableConfig": { - "title": "ATP Techniques [Filebeat Microsoft]" - }, - "gridData": { - "h": 24, - "i": "a3e140ed-a0ed-4da0-8142-72d68fd7c5e5", - "w": 19, - "x": 29, - "y": 0 - }, - "panelIndex": "a3e140ed-a0ed-4da0-8142-72d68fd7c5e5", - "panelRefName": "panel_2", - "title": "ATP Techniques [Filebeat Microsoft]", - "version": "7.8.1" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "f3843ab0-8b0f-4f64-805c-4ab0d0965d8a", - "w": 4, - "x": 0, - "y": 6 - }, - "panelIndex": "f3843ab0-8b0f-4f64-805c-4ab0d0965d8a", - "panelRefName": "panel_3", - "version": "7.8.1" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "16e7059b-70a5-4ea4-b622-9015d7430419", - "w": 4, - "x": 0, - "y": 12 - }, - "panelIndex": "16e7059b-70a5-4ea4-b622-9015d7430419", - "panelRefName": "panel_4", - "version": "7.8.1" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "d8a5a667-ed0b-42ed-ae7d-edbfa722677f", - "w": 4, - "x": 0, - "y": 18 - }, - "panelIndex": "d8a5a667-ed0b-42ed-ae7d-edbfa722677f", - "panelRefName": "panel_5", - "version": "7.8.1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 16, - "i": "cb8de6bb-1096-427d-834e-210963aad3e5", - "w": 48, - "x": 0, - "y": 24 - }, - "panelIndex": "cb8de6bb-1096-427d-834e-210963aad3e5", - "panelRefName": "panel_6", - "version": "7.8.1" - } - ], - "timeRestore": false, - "title": "[Filebeat Microsoft] ATP Overview", - "version": 1 - }, - "id": "65402c30-ca6a-11ea-9d4d-9737a63aaa55", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "3c64f400-ca68-11ea-9d4d-9737a63aaa55", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "e415af10-ca67-11ea-9d4d-9737a63aaa55", - "name": "panel_1", - "type": "lens" - }, - { - "id": "14d367f0-ca68-11ea-9d4d-9737a63aaa55", - "name": "panel_2", - "type": "lens" - }, - { - "id": "9e902dc0-ca68-11ea-9d4d-9737a63aaa55", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "b9fcbf60-ca68-11ea-9d4d-9737a63aaa55", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "62f081c0-ca68-11ea-9d4d-9737a63aaa55", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "00e8fca0-ca68-11ea-9d4d-9737a63aaa55", - "name": "panel_6", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-07-20T09:45:23.877Z", - "version": "WzEzLDFd" - }, - { - "attributes": { - "description": "Microsoft Defender ATP Counter for new incidents", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.module", - "negate": false, - "params": { - "query": "microsoft" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.module": "microsoft" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "microsoft.defender_atp" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "microsoft.defender_atp" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.dataset:\"microsoft.defender_atp\" " - } - } - }, - "title": "ATP New Incidents Counter [Filebeat Microsoft]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "New Incidents", - "field": "microsoft.defender_atp.incidentId" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 1 - }, - { - "from": 1, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 30, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "ATP New Incidents Counter [Filebeat Microsoft]", - "type": "metric" - } - }, - "id": "3c64f400-ca68-11ea-9d4d-9737a63aaa55", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-07-20T09:45:23.877Z", - "version": "WzYsMV0=" - }, - { - "attributes": { - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" \n filters=\"[{\\\"meta\\\":{\\\"index\\\":\\\"filebeat-*\\\",\\\"alias\\\":null,\\\"negate\\\":false,\\\"disabled\\\":false,\\\"type\\\":\\\"phrase\\\",\\\"key\\\":\\\"event.module\\\",\\\"params\\\":{\\\"query\\\":\\\"microsoft\\\"}},\\\"query\\\":{\\\"match_phrase\\\":{\\\"event.module\\\":\\\"microsoft\\\"}},\\\"$state\\\":{\\\"store\\\":\\\"appState\\\"}},{\\\"meta\\\":{\\\"index\\\":\\\"filebeat-*\\\",\\\"alias\\\":null,\\\"negate\\\":false,\\\"disabled\\\":false,\\\"type\\\":\\\"phrase\\\",\\\"key\\\":\\\"event.dataset\\\",\\\"params\\\":{\\\"query\\\":\\\"microsoft.defender_atp\\\"}},\\\"query\\\":{\\\"match_phrase\\\":{\\\"event.dataset\\\":\\\"microsoft.defender_atp\\\"}},\\\"$state\\\":{\\\"store\\\":\\\"appState\\\"}}]\"\n| lens_merge_tables layerIds=\"ac550ae9-6e17-4944-9545-25bbe83d9dbb\" \n tables={esaggs index=\"filebeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true timeFields=\"@timestamp\" aggConfigs=\"[{\\\"id\\\":\\\"19ade524-0042-4ecd-ac59-9696c8c2e225\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"event.severity\\\",\\\"orderBy\\\":\\\"27212c7c-83ee-4292-a4c6-396d9b77dce6\\\",\\\"order\\\":\\\"desc\\\",\\\"size\\\":6,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"677e5501-ca31-435c-8eab-38b5297e54c2\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"date_histogram\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"@timestamp\\\",\\\"useNormalizedEsInterval\\\":true,\\\"interval\\\":\\\"24h\\\",\\\"drop_partials\\\":false,\\\"min_doc_count\\\":0,\\\"extended_bounds\\\":{}}},{\\\"id\\\":\\\"27212c7c-83ee-4292-a4c6-396d9b77dce6\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"cardinality\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"microsoft.defender_atp.incidentId\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-19ade524-0042-4ecd-ac59-9696c8c2e225\\\":{\\\"label\\\":\\\"Top values of event.severity\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"terms\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"event.severity\\\",\\\"isBucketed\\\":true,\\\"params\\\":{\\\"size\\\":6,\\\"orderBy\\\":{\\\"type\\\":\\\"column\\\",\\\"columnId\\\":\\\"27212c7c-83ee-4292-a4c6-396d9b77dce6\\\"},\\\"orderDirection\\\":\\\"desc\\\"},\\\"id\\\":\\\"19ade524-0042-4ecd-ac59-9696c8c2e225\\\"},\\\"col-2-677e5501-ca31-435c-8eab-38b5297e54c2\\\":{\\\"label\\\":\\\"@timestamp\\\",\\\"dataType\\\":\\\"date\\\",\\\"operationType\\\":\\\"date_histogram\\\",\\\"sourceField\\\":\\\"@timestamp\\\",\\\"isBucketed\\\":true,\\\"scale\\\":\\\"interval\\\",\\\"params\\\":{\\\"interval\\\":\\\"24h\\\"},\\\"id\\\":\\\"677e5501-ca31-435c-8eab-38b5297e54c2\\\"},\\\"col-3-27212c7c-83ee-4292-a4c6-396d9b77dce6\\\":{\\\"label\\\":\\\"Number of incidents\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"cardinality\\\",\\\"scale\\\":\\\"ratio\\\",\\\"sourceField\\\":\\\"microsoft.defender_atp.incidentId\\\",\\\"isBucketed\\\":false,\\\"params\\\":{\\\"format\\\":{\\\"id\\\":\\\"number\\\",\\\"params\\\":{\\\"decimals\\\":0}}},\\\"id\\\":\\\"27212c7c-83ee-4292-a4c6-396d9b77dce6\\\"}}\" | lens_format_column format=\"number\" columnId=\"27212c7c-83ee-4292-a4c6-396d9b77dce6\" decimals=0}\n| lens_xy_chart xTitle=\"@timestamp\" yTitle=\"Number of incidents\" legend={lens_xy_legendConfig isVisible=true position=\"right\"} \n layers={lens_xy_layer layerId=\"ac550ae9-6e17-4944-9545-25bbe83d9dbb\" hide=false xAccessor=\"677e5501-ca31-435c-8eab-38b5297e54c2\" yScaleType=\"linear\" xScaleType=\"time\" isHistogram=true splitAccessor=\"19ade524-0042-4ecd-ac59-9696c8c2e225\" seriesType=\"line\" accessors=\"27212c7c-83ee-4292-a4c6-396d9b77dce6\" columnToLabel=\"{\\\"27212c7c-83ee-4292-a4c6-396d9b77dce6\\\":\\\"Number of incidents\\\",\\\"19ade524-0042-4ecd-ac59-9696c8c2e225\\\":\\\"Top values of event.severity\\\"}\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "filebeat-*", - "title": "filebeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "filebeat-*", - "layers": { - "ac550ae9-6e17-4944-9545-25bbe83d9dbb": { - "columnOrder": [ - "19ade524-0042-4ecd-ac59-9696c8c2e225", - "677e5501-ca31-435c-8eab-38b5297e54c2", - "27212c7c-83ee-4292-a4c6-396d9b77dce6" - ], - "columns": { - "19ade524-0042-4ecd-ac59-9696c8c2e225": { - "dataType": "number", - "isBucketed": true, - "label": "Top values of event.severity", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "27212c7c-83ee-4292-a4c6-396d9b77dce6", - "type": "column" - }, - "orderDirection": "desc", - "size": 6 - }, - "scale": "ordinal", - "sourceField": "event.severity" - }, - "27212c7c-83ee-4292-a4c6-396d9b77dce6": { - "dataType": "number", - "isBucketed": false, - "label": "Number of incidents", - "operationType": "cardinality", - "params": { - "format": { - "id": "number", - "params": { - "decimals": 0 - } - } - }, - "scale": "ratio", - "sourceField": "microsoft.defender_atp.incidentId" - }, - "677e5501-ca31-435c-8eab-38b5297e54c2": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "24h" - }, - "scale": "interval", - "sourceField": "@timestamp" - } - }, - "indexPatternId": "filebeat-*" - } - } - } - }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "microsoft" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.module": "microsoft" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "microsoft.defender_atp" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "microsoft.defender_atp" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "layers": [ - { - "accessors": [ - "27212c7c-83ee-4292-a4c6-396d9b77dce6" - ], - "layerId": "ac550ae9-6e17-4944-9545-25bbe83d9dbb", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "19ade524-0042-4ecd-ac59-9696c8c2e225", - "xAccessor": "677e5501-ca31-435c-8eab-38b5297e54c2" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line" - } - }, - "title": "ATP New Incidents [Filebeat Microsoft]", - "visualizationType": "lnsXY" - }, - "id": "e415af10-ca67-11ea-9d4d-9737a63aaa55", - "migrationVersion": { - "lens": "7.8.0" - }, - "references": [], - "type": "lens", - "updated_at": "2020-07-20T09:45:23.877Z", - "version": "WzcsMV0=" - }, - { - "attributes": { - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" \n filters=\"[{\\\"meta\\\":{\\\"index\\\":\\\"filebeat-*\\\",\\\"alias\\\":null,\\\"negate\\\":false,\\\"disabled\\\":false,\\\"type\\\":\\\"phrase\\\",\\\"key\\\":\\\"event.module\\\",\\\"params\\\":{\\\"query\\\":\\\"microsoft\\\"}},\\\"query\\\":{\\\"match_phrase\\\":{\\\"event.module\\\":\\\"microsoft\\\"}},\\\"$state\\\":{\\\"store\\\":\\\"appState\\\"}},{\\\"meta\\\":{\\\"index\\\":\\\"filebeat-*\\\",\\\"alias\\\":null,\\\"negate\\\":false,\\\"disabled\\\":false,\\\"type\\\":\\\"phrase\\\",\\\"key\\\":\\\"event.dataset\\\",\\\"params\\\":{\\\"query\\\":\\\"microsoft.defender_atp\\\"}},\\\"query\\\":{\\\"match_phrase\\\":{\\\"event.dataset\\\":\\\"microsoft.defender_atp\\\"}},\\\"$state\\\":{\\\"store\\\":\\\"appState\\\"}}]\"\n| lens_merge_tables layerIds=\"f93e2634-0dd5-4aec-b6de-45284dd39630\" \n tables={esaggs index=\"filebeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true aggConfigs=\"[{\\\"id\\\":\\\"12ecaf1f-b957-4c15-8f43-8f043a7d1d51\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"threat.technique.name\\\",\\\"orderBy\\\":\\\"_key\\\",\\\"order\\\":\\\"asc\\\",\\\"size\\\":10,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"0f67be87-cc6f-48e7-8afd-d9401037d006\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"count\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{}}]\" | lens_rename_columns idMap=\"{\\\"col-0-12ecaf1f-b957-4c15-8f43-8f043a7d1d51\\\":{\\\"label\\\":\\\"Related MITRE attach techniques\\\",\\\"dataType\\\":\\\"string\\\",\\\"operationType\\\":\\\"terms\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"threat.technique.name\\\",\\\"isBucketed\\\":true,\\\"params\\\":{\\\"size\\\":10,\\\"orderBy\\\":{\\\"type\\\":\\\"alphabetical\\\"},\\\"orderDirection\\\":\\\"asc\\\"},\\\"id\\\":\\\"12ecaf1f-b957-4c15-8f43-8f043a7d1d51\\\"},\\\"col-1-0f67be87-cc6f-48e7-8afd-d9401037d006\\\":{\\\"label\\\":\\\"Number of techniques\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"count\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"sourceField\\\":\\\"Records\\\",\\\"id\\\":\\\"0f67be87-cc6f-48e7-8afd-d9401037d006\\\"}}\"}\n| lens_pie shape=\"treemap\" hideLabels=false groups=\"12ecaf1f-b957-4c15-8f43-8f043a7d1d51\" metric=\"0f67be87-cc6f-48e7-8afd-d9401037d006\" numberDisplay=\"percent\" categoryDisplay=\"default\" legendDisplay=\"default\" percentDecimals=3 nestedLegend=false", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "filebeat-*", - "title": "filebeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "filebeat-*", - "layers": { - "f93e2634-0dd5-4aec-b6de-45284dd39630": { - "columnOrder": [ - "12ecaf1f-b957-4c15-8f43-8f043a7d1d51", - "0f67be87-cc6f-48e7-8afd-d9401037d006" - ], - "columns": { - "0f67be87-cc6f-48e7-8afd-d9401037d006": { - "dataType": "number", - "isBucketed": false, - "label": "Number of techniques", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - }, - "12ecaf1f-b957-4c15-8f43-8f043a7d1d51": { - "dataType": "string", - "isBucketed": true, - "label": "Related MITRE attach techniques", - "operationType": "terms", - "params": { - "orderBy": { - "type": "alphabetical" - }, - "orderDirection": "asc", - "size": 10 - }, - "scale": "ordinal", - "sourceField": "threat.technique.name" - } - }, - "indexPatternId": "filebeat-*" - } - } - } - }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "event.module", - "negate": false, - "params": { - "query": "microsoft" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.module": "microsoft" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "filebeat-*", - "key": "event.dataset", - "negate": false, - "params": { - "query": "microsoft.defender_atp" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "microsoft.defender_atp" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "layers": [ - { - "categoryDisplay": "default", - "groups": [ - "12ecaf1f-b957-4c15-8f43-8f043a7d1d51" - ], - "layerId": "f93e2634-0dd5-4aec-b6de-45284dd39630", - "legendDisplay": "default", - "metric": "0f67be87-cc6f-48e7-8afd-d9401037d006", - "nestedLegend": false, - "numberDisplay": "percent" - } - ], - "shape": "treemap" - } - }, - "title": "ATP Techniques [Filebeat Microsoft]", - "visualizationType": "lnsPie" - }, - "id": "14d367f0-ca68-11ea-9d4d-9737a63aaa55", - "migrationVersion": { - "lens": "7.8.0" - }, - "references": [], - "type": "lens", - "updated_at": "2020-07-20T09:45:23.877Z", - "version": "WzgsMV0=" - }, - { - "attributes": { - "description": "Microsoft Defender ATP counter for related domains", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.module", - "negate": false, - "params": { - "query": "microsoft" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.module": "microsoft" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "microsoft.defender_atp" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "microsoft.defender_atp" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.dataset:\"microsoft.defender_atp\" " - } - } - }, - "title": "ATP Domains Counter [Filebeat Microsoft]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Related Domains", - "field": "microsoft.defender_atp.evidence.domainName" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 30, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "ATP Domains Counter [Filebeat Microsoft]", - "type": "metric" - } - }, - "id": "9e902dc0-ca68-11ea-9d4d-9737a63aaa55", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-07-20T09:45:23.877Z", - "version": "WzksMV0=" - }, - { - "attributes": { - "description": "Microsoft Defender ATP counter for related IP Addresses", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.module", - "negate": false, - "params": { - "query": "microsoft" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.module": "microsoft" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "microsoft.defender_atp" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "microsoft.defender_atp" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.dataset:\"microsoft.defender_atp\" " - } - } - }, - "title": "ATP IP Addresses Counter [Filebeat Microsoft]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Related Networks", - "field": "microsoft.defender_atp.evidence.ipAddress" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 30, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "ATP IP Addresses Counter [Filebeat Microsoft]", - "type": "metric" - } - }, - "id": "b9fcbf60-ca68-11ea-9d4d-9737a63aaa55", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-07-20T09:45:23.877Z", - "version": "WzEwLDFd" - }, - { - "attributes": { - "description": "Microsoft Defender ATP counter for related Users", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.module", - "negate": false, - "params": { - "query": "microsoft" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.module": "microsoft" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "microsoft.defender_atp" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "microsoft.defender_atp" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.dataset:\"microsoft.defender_atp\" " - } - } - }, - "title": "ATP Related Users Counter [Filebeat Microsoft]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Related Users", - "field": "host.user.name" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 30, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "ATP Related Users Counter [Filebeat Microsoft]", - "type": "metric" - } - }, - "id": "62f081c0-ca68-11ea-9d4d-9737a63aaa55", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-07-20T09:45:23.877Z", - "version": "WzExLDFd" - }, - { - "attributes": { - "description": "Microsoft Defender ATP Incident Table", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.module", - "negate": false, - "params": { - "query": "microsoft" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.module": "microsoft" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "microsoft.defender_atp" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "microsoft.defender_atp" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ATP Incident Table [Filebeat Microsoft]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Incident ID", - "field": "microsoft.defender_atp.incidentId", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Current Status", - "field": "microsoft.defender_atp.status", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 1 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Assigned To", - "field": "microsoft.defender_atp.assignedTo", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 1 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "9", - "params": { - "customLabel": "Severity", - "field": "event.severity", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Hostname", - "field": "host.hostname", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 1 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "Title", - "field": "event.test.message", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 1 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "8", - "params": { - "aggregate": "concat", - "field": "@timestamp", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - }, - { - "enabled": true, - "id": "10", - "params": { - "customLabel": "Category", - "field": "threat.technique.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 1 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "row": true, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "ATP Incident Table [Filebeat Microsoft]", - "type": "table" - } - }, - "id": "00e8fca0-ca68-11ea-9d4d-9737a63aaa55", - "migrationVersion": { - "visualization": "7.8.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-07-20T09:45:23.877Z", - "version": "WzEyLDFd" - } - ], - "version": "7.8.0" -} \ No newline at end of file diff --git a/x-pack/filebeat/module/microsoft/_meta/kibana/7/dashboard/Filebeat-microsoft-atp-overview.ndjson b/x-pack/filebeat/module/microsoft/_meta/kibana/7/dashboard/Filebeat-microsoft-atp-overview.ndjson new file mode 100644 index 00000000000..ae8dff82f64 --- /dev/null +++ b/x-pack/filebeat/module/microsoft/_meta/kibana/7/dashboard/Filebeat-microsoft-atp-overview.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"description":"Microsoft Defender ATP Counter for new incidents","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"microsoft\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"microsoft\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"microsoft.defender_atp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"microsoft.defender_atp\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset:\\\"microsoft.defender_atp\\\" \"}}"},"title":"ATP New Incidents Counter [Filebeat Microsoft]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"New Incidents\",\"field\":\"microsoft.defender_atp.incidentId\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":1},{\"from\":1,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":30,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"ATP New Incidents Counter [Filebeat Microsoft]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"3c64f400-ca68-11ea-9d4d-9737a63aaa55","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:12.667Z","version":"WzQ0NDcsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"ac550ae9-6e17-4944-9545-25bbe83d9dbb":{"columnOrder":["19ade524-0042-4ecd-ac59-9696c8c2e225","677e5501-ca31-435c-8eab-38b5297e54c2","27212c7c-83ee-4292-a4c6-396d9b77dce6"],"columns":{"19ade524-0042-4ecd-ac59-9696c8c2e225":{"dataType":"number","isBucketed":true,"label":"Top values of event.severity","operationType":"terms","params":{"orderBy":{"columnId":"27212c7c-83ee-4292-a4c6-396d9b77dce6","type":"column"},"orderDirection":"desc","size":6},"scale":"ordinal","sourceField":"event.severity"},"27212c7c-83ee-4292-a4c6-396d9b77dce6":{"dataType":"number","isBucketed":false,"label":"Number of incidents","operationType":"unique_count","params":{"format":{"id":"number","params":{"decimals":0}}},"scale":"ratio","sourceField":"microsoft.defender_atp.incidentId"},"677e5501-ca31-435c-8eab-38b5297e54c2":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"24h"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[{"$state":{"store":"appState"},"meta":{"alias":null,"disabled":false,"indexRefName":"filter-index-pattern-0","key":"event.module","negate":false,"params":{"query":"microsoft"},"type":"phrase"},"query":{"match_phrase":{"event.module":"microsoft"}}},{"$state":{"store":"appState"},"meta":{"alias":null,"disabled":false,"indexRefName":"filter-index-pattern-1","key":"event.dataset","negate":false,"params":{"query":"microsoft.defender_atp"},"type":"phrase"},"query":{"match_phrase":{"event.dataset":"microsoft.defender_atp"}}}],"query":{"language":"kuery","query":""},"visualization":{"layers":[{"accessors":["27212c7c-83ee-4292-a4c6-396d9b77dce6"],"layerId":"ac550ae9-6e17-4944-9545-25bbe83d9dbb","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"19ade524-0042-4ecd-ac59-9696c8c2e225","xAccessor":"677e5501-ca31-435c-8eab-38b5297e54c2"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"ATP New Incidents [Filebeat Microsoft]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"e415af10-ca67-11ea-9d4d-9737a63aaa55","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-ac550ae9-6e17-4944-9545-25bbe83d9dbb","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-0","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-1","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:34:12.667Z","version":"WzQ0NDgsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"f93e2634-0dd5-4aec-b6de-45284dd39630":{"columnOrder":["12ecaf1f-b957-4c15-8f43-8f043a7d1d51","0f67be87-cc6f-48e7-8afd-d9401037d006"],"columns":{"0f67be87-cc6f-48e7-8afd-d9401037d006":{"dataType":"number","isBucketed":false,"label":"Number of techniques","operationType":"count","scale":"ratio","sourceField":"Records"},"12ecaf1f-b957-4c15-8f43-8f043a7d1d51":{"dataType":"string","isBucketed":true,"label":"Related MITRE attach techniques","operationType":"terms","params":{"orderBy":{"type":"alphabetical"},"orderDirection":"asc","size":10},"scale":"ordinal","sourceField":"threat.technique.name"}}}}}},"filters":[{"$state":{"store":"appState"},"meta":{"alias":null,"disabled":false,"indexRefName":"filter-index-pattern-0","key":"event.module","negate":false,"params":{"query":"microsoft"},"type":"phrase"},"query":{"match_phrase":{"event.module":"microsoft"}}},{"$state":{"store":"appState"},"meta":{"alias":null,"disabled":false,"indexRefName":"filter-index-pattern-1","key":"event.dataset","negate":false,"params":{"query":"microsoft.defender_atp"},"type":"phrase"},"query":{"match_phrase":{"event.dataset":"microsoft.defender_atp"}}}],"query":{"language":"kuery","query":""},"visualization":{"layers":[{"categoryDisplay":"default","groups":["12ecaf1f-b957-4c15-8f43-8f043a7d1d51"],"layerId":"f93e2634-0dd5-4aec-b6de-45284dd39630","legendDisplay":"default","metric":"0f67be87-cc6f-48e7-8afd-d9401037d006","nestedLegend":false,"numberDisplay":"percent"}],"shape":"treemap"}},"title":"ATP Techniques [Filebeat Microsoft]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"14d367f0-ca68-11ea-9d4d-9737a63aaa55","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-f93e2634-0dd5-4aec-b6de-45284dd39630","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-0","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-1","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:34:12.667Z","version":"WzQ0NDksMV0="} +{"attributes":{"description":"Microsoft Defender ATP counter for related domains","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"microsoft\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"microsoft\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"microsoft.defender_atp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"microsoft.defender_atp\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset:\\\"microsoft.defender_atp\\\" \"}}"},"title":"ATP Domains Counter [Filebeat Microsoft]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Related Domains\",\"field\":\"microsoft.defender_atp.evidence.domainName\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":30,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"ATP Domains Counter [Filebeat Microsoft]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"9e902dc0-ca68-11ea-9d4d-9737a63aaa55","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:12.667Z","version":"WzQ0NTAsMV0="} +{"attributes":{"description":"Microsoft Defender ATP counter for related IP Addresses","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"microsoft\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"microsoft\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"microsoft.defender_atp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"microsoft.defender_atp\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset:\\\"microsoft.defender_atp\\\" \"}}"},"title":"ATP IP Addresses Counter [Filebeat Microsoft]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Related Networks\",\"field\":\"microsoft.defender_atp.evidence.ipAddress\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":30,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"ATP IP Addresses Counter [Filebeat Microsoft]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"b9fcbf60-ca68-11ea-9d4d-9737a63aaa55","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:12.667Z","version":"WzQ0NTEsMV0="} +{"attributes":{"description":"Microsoft Defender ATP counter for related Users","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"microsoft\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"microsoft\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"microsoft.defender_atp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"microsoft.defender_atp\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset:\\\"microsoft.defender_atp\\\" \"}}"},"title":"ATP Related Users Counter [Filebeat Microsoft]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Related Users\",\"field\":\"host.user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":30,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"ATP Related Users Counter [Filebeat Microsoft]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"62f081c0-ca68-11ea-9d4d-9737a63aaa55","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:12.667Z","version":"WzQ0NTIsMV0="} +{"attributes":{"description":"Microsoft Defender ATP Incident Table","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"microsoft\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"microsoft\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"microsoft.defender_atp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"microsoft.defender_atp\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"ATP Incident Table [Filebeat Microsoft]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Incident ID\",\"field\":\"microsoft.defender_atp.incidentId\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Current Status\",\"field\":\"microsoft.defender_atp.status\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":1},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Assigned To\",\"field\":\"microsoft.defender_atp.assignedTo\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":1},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"9\",\"params\":{\"customLabel\":\"Severity\",\"field\":\"event.severity\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Hostname\",\"field\":\"host.hostname\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":1},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Title\",\"field\":\"event.test.message\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":1},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"8\",\"params\":{\"aggregate\":\"concat\",\"field\":\"@timestamp\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"10\",\"params\":{\"customLabel\":\"Category\",\"field\":\"threat.technique.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":1},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"row\":true,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"ATP Incident Table [Filebeat Microsoft]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"00e8fca0-ca68-11ea-9d4d-9737a63aaa55","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:12.667Z","version":"WzQ0NTMsMV0="} +{"attributes":{"description":"Microsoft Defender ATP Alert Overview","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.8.1\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"8343f7ea-b977-44bf-bf81-6d41742093a4\",\"w\":4,\"x\":0,\"y\":0},\"panelIndex\":\"8343f7ea-b977-44bf-bf81-6d41742093a4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_8343f7ea-b977-44bf-bf81-6d41742093a4\"},{\"version\":\"7.8.1\",\"type\":\"lens\",\"gridData\":{\"h\":24,\"i\":\"74d36139-4d22-44d4-bfc8-020c575febb1\",\"w\":25,\"x\":4,\"y\":0},\"panelIndex\":\"74d36139-4d22-44d4-bfc8-020c575febb1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_74d36139-4d22-44d4-bfc8-020c575febb1\"},{\"version\":\"7.8.1\",\"type\":\"lens\",\"gridData\":{\"h\":24,\"i\":\"a3e140ed-a0ed-4da0-8142-72d68fd7c5e5\",\"w\":19,\"x\":29,\"y\":0},\"panelIndex\":\"a3e140ed-a0ed-4da0-8142-72d68fd7c5e5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"ATP Techniques [Filebeat Microsoft]\",\"panelRefName\":\"panel_a3e140ed-a0ed-4da0-8142-72d68fd7c5e5\"},{\"version\":\"7.8.1\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"f3843ab0-8b0f-4f64-805c-4ab0d0965d8a\",\"w\":4,\"x\":0,\"y\":6},\"panelIndex\":\"f3843ab0-8b0f-4f64-805c-4ab0d0965d8a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_f3843ab0-8b0f-4f64-805c-4ab0d0965d8a\"},{\"version\":\"7.8.1\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"16e7059b-70a5-4ea4-b622-9015d7430419\",\"w\":4,\"x\":0,\"y\":12},\"panelIndex\":\"16e7059b-70a5-4ea4-b622-9015d7430419\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_16e7059b-70a5-4ea4-b622-9015d7430419\"},{\"version\":\"7.8.1\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"d8a5a667-ed0b-42ed-ae7d-edbfa722677f\",\"w\":4,\"x\":0,\"y\":18},\"panelIndex\":\"d8a5a667-ed0b-42ed-ae7d-edbfa722677f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_d8a5a667-ed0b-42ed-ae7d-edbfa722677f\"},{\"version\":\"7.8.1\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"cb8de6bb-1096-427d-834e-210963aad3e5\",\"w\":48,\"x\":0,\"y\":24},\"panelIndex\":\"cb8de6bb-1096-427d-834e-210963aad3e5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_cb8de6bb-1096-427d-834e-210963aad3e5\"}]","timeRestore":false,"title":"[Filebeat Microsoft] ATP Overview","version":1},"coreMigrationVersion":"8.0.0","id":"65402c30-ca6a-11ea-9d4d-9737a63aaa55","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"3c64f400-ca68-11ea-9d4d-9737a63aaa55","name":"8343f7ea-b977-44bf-bf81-6d41742093a4:panel_8343f7ea-b977-44bf-bf81-6d41742093a4","type":"visualization"},{"id":"e415af10-ca67-11ea-9d4d-9737a63aaa55","name":"74d36139-4d22-44d4-bfc8-020c575febb1:panel_74d36139-4d22-44d4-bfc8-020c575febb1","type":"lens"},{"id":"14d367f0-ca68-11ea-9d4d-9737a63aaa55","name":"a3e140ed-a0ed-4da0-8142-72d68fd7c5e5:panel_a3e140ed-a0ed-4da0-8142-72d68fd7c5e5","type":"lens"},{"id":"9e902dc0-ca68-11ea-9d4d-9737a63aaa55","name":"f3843ab0-8b0f-4f64-805c-4ab0d0965d8a:panel_f3843ab0-8b0f-4f64-805c-4ab0d0965d8a","type":"visualization"},{"id":"b9fcbf60-ca68-11ea-9d4d-9737a63aaa55","name":"16e7059b-70a5-4ea4-b622-9015d7430419:panel_16e7059b-70a5-4ea4-b622-9015d7430419","type":"visualization"},{"id":"62f081c0-ca68-11ea-9d4d-9737a63aaa55","name":"d8a5a667-ed0b-42ed-ae7d-edbfa722677f:panel_d8a5a667-ed0b-42ed-ae7d-edbfa722677f","type":"visualization"},{"id":"00e8fca0-ca68-11ea-9d4d-9737a63aaa55","name":"cb8de6bb-1096-427d-834e-210963aad3e5:panel_cb8de6bb-1096-427d-834e-210963aad3e5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:12.667Z","version":"WzQ0NDYsMV0="} diff --git a/x-pack/filebeat/module/microsoft/module.yml b/x-pack/filebeat/module/microsoft/module.yml index 991a3a8d25c..c193392a2d8 100644 --- a/x-pack/filebeat/module/microsoft/module.yml +++ b/x-pack/filebeat/module/microsoft/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 65402c30-ca6a-11ea-9d4d-9737a63aaa55 - file: Filebeat-microsoft-atp-overview.json \ No newline at end of file + file: Filebeat-microsoft-atp-overview.ndjson \ No newline at end of file diff --git a/x-pack/filebeat/module/misp/_meta/kibana/7/dashboard/Filebeat-MISP-Overview.json b/x-pack/filebeat/module/misp/_meta/kibana/7/dashboard/Filebeat-MISP-Overview.json deleted file mode 100644 index 6f8e08986d4..00000000000 --- a/x-pack/filebeat/module/misp/_meta/kibana/7/dashboard/Filebeat-MISP-Overview.json +++ /dev/null @@ -1,417 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview dashboard for Filebeat MISP module.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "1", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "2", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "mapCenter": [ - 24.686952411999155, - 12.128906250000002 - ], - "mapZoom": 3 - }, - "gridData": { - "h": 24, - "i": "3", - "w": 48, - "x": 0, - "y": 15 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "version": "8.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Filebeat MISP] Overview", - "version": 1 - }, - "id": "c6cac9e0-f105-11e9-9a88-690b10c8ee99", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "8fc4b140-ed36-11e9-9a88-690b10c8ee99", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "7d369390-f105-11e9-9a88-690b10c8ee99", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "73287f70-f1fb-11e9-9a88-690b10c8ee99", - "name": "panel_2", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-10-19T18:56:55.244Z", - "version": "WzM2NCwxNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Threat Indicator Type [Filebeat MISP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "misp.threat_indicator.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Threat Indicator Type [Filebeat MISP]", - "type": "pie" - } - }, - "id": "8fc4b140-ed36-11e9-9a88-690b10c8ee99", - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-10-19T19:03:26.386Z", - "version": "WzM2NSwxNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Threat Indicators per Month [Filebeat MISP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Indicators Per Month" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "M", - "min_doc_count": 1, - "timeRange": { - "from": "now-15M", - "to": "now" - }, - "time_zone": "America/Los_Angeles", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "misp.threat_indicator.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Indicators Per Month" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Indicators Per Month" - }, - "type": "value" - } - ] - }, - "title": "Threat Indicators per Month [Filebeat MISP]", - "type": "histogram" - } - }, - "id": "7d369390-f105-11e9-9a88-690b10c8ee99", - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-10-19T19:03:46.399Z", - "version": "WzM2NiwxNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Threat Indicator Geo Map [Filebeat MISP]", - "uiStateJSON": { - "mapCenter": [ - -0.17578097424708533, - 0 - ], - "mapZoom": 2 - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "source.geo.location", - "isFilteredByCollar": true, - "mapBounds": { - "bottom_right": { - "lat": -42.68243539838622, - "lon": 60.99609375000001 - }, - "top_left": { - "lat": 42.35854391749705, - "lon": -60.99609375000001 - } - }, - "mapCenter": { - "lat": -0.17578097424708533, - "lon": 0 - }, - "mapZoom": 4, - "precision": 2, - "useGeocentroid": true - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "params": { - "addTooltip": true, - "colorSchema": "Yellow to Red", - "heatClusterSize": 1.5, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 0, - 0 - ], - "mapType": "Scaled Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "format": "image/png", - "transparent": true - }, - "selectedTmsLayer": { - "attribution": "\u003cp\u003e\u0026#169; \u003ca href=\"https://www.openstreetmap.org/copyright\"\u003eOpenStreetMap contributors\u003c/a\u003e|\u003ca href=\"https://openmaptiles.org\"\u003eOpenMapTiles\u003c/a\u003e|\u003ca href=\"https://www.maptiler.com\"\u003eMapTiler\u003c/a\u003e|\u003ca href=\"https://www.elastic.co/elastic-maps-service\"\u003eElastic Maps Service\u003c/a\u003e\u003c/p\u003e\u0026#10;", - "id": "road_map", - "maxZoom": 18, - "minZoom": 0, - "origin": "elastic_maps_service" - } - } - }, - "title": "Threat Indicator Geo Map [Filebeat MISP]", - "type": "tile_map" - } - }, - "id": "73287f70-f1fb-11e9-9a88-690b10c8ee99", - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-10-19T19:04:04.029Z", - "version": "WzM2NywxNV0=" - } - ], - "version": "8.0.0-SNAPSHOT" -} diff --git a/x-pack/filebeat/module/misp/_meta/kibana/7/dashboard/Filebeat-MISP-Overview.ndjson b/x-pack/filebeat/module/misp/_meta/kibana/7/dashboard/Filebeat-MISP-Overview.ndjson new file mode 100644 index 00000000000..e46e32c6682 --- /dev/null +++ b/x-pack/filebeat/module/misp/_meta/kibana/7/dashboard/Filebeat-MISP-Overview.ndjson @@ -0,0 +1,4 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Threat Indicator Type [Filebeat MISP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"misp.threat_indicator.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Threat Indicator Type [Filebeat MISP]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"8fc4b140-ed36-11e9-9a88-690b10c8ee99","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:47.233Z","version":"WzQyOTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Threat Indicators per Month [Filebeat MISP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Indicators Per Month\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"M\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15M\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"misp.threat_indicator.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Indicators Per Month\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Indicators Per Month\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Threat Indicators per Month [Filebeat MISP]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"7d369390-f105-11e9-9a88-690b10c8ee99","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:47.233Z","version":"WzQyOTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Threat Indicator Geo Map [Filebeat MISP]","uiStateJSON":"{\"mapCenter\": [-0.17578097424708533, 0], \"mapZoom\": 2}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"isFilteredByCollar\":true,\"mapBounds\":{\"bottom_right\":{\"lat\":-42.68243539838622,\"lon\":60.99609375000001},\"top_left\":{\"lat\":42.35854391749705,\"lon\":-60.99609375000001}},\"mapCenter\":{\"lat\":-0.17578097424708533,\"lon\":0},\"mapZoom\":4,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true},\"selectedTmsLayer\":{\"attribution\":\"

© OpenStreetMap contributors|OpenMapTiles|MapTiler|Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"origin\":\"elastic_maps_service\"}}},\"title\":\"Threat Indicator Geo Map [Filebeat MISP]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"73287f70-f1fb-11e9-9a88-690b10c8ee99","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:47.233Z","version":"WzQyOTksMV0="} +{"attributes":{"description":"Overview dashboard for Filebeat MISP module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":24,\"i\":\"3\",\"w\":48,\"x\":0,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"mapCenter\":[24.686952411999155,12.128906250000002],\"mapZoom\":3,\"enhancements\":{}},\"panelRefName\":\"panel_3\"}]","timeRestore":false,"title":"[Filebeat MISP] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"c6cac9e0-f105-11e9-9a88-690b10c8ee99","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"8fc4b140-ed36-11e9-9a88-690b10c8ee99","name":"1:panel_1","type":"visualization"},{"id":"7d369390-f105-11e9-9a88-690b10c8ee99","name":"2:panel_2","type":"visualization"},{"id":"73287f70-f1fb-11e9-9a88-690b10c8ee99","name":"3:panel_3","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:47.233Z","version":"WzQyOTYsMV0="} diff --git a/x-pack/filebeat/module/misp/module.yml b/x-pack/filebeat/module/misp/module.yml index d3b327c7eb5..7f5d5f15d17 100644 --- a/x-pack/filebeat/module/misp/module.yml +++ b/x-pack/filebeat/module/misp/module.yml @@ -1,3 +1,3 @@ dashboards: - id: c6cac9e0-f105-11e9-9a88-690b10c8ee99 - file: Filebeat-MISP-Overview.json + file: Filebeat-MISP-Overview.ndjson diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-autonomous-systems.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-autonomous-systems.json deleted file mode 100644 index ad064618ead..00000000000 --- a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-autonomous-systems.json +++ /dev/null @@ -1,597 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Autonomous systems Netflow", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "globalState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "input.type", - "negate": false, - "params": { - "query": "netflow" - }, - "type": "phrase", - "value": "netflow" - }, - "query": { - "match": { - "input.type": { - "query": "netflow", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "panelIndex": 1, - "panelRefName": "panel_0", - "row": 1, - "size_x": 12, - "size_y": 1 - }, - { - "col": 7, - "panelIndex": 2, - "panelRefName": "panel_1", - "row": 4, - "size_x": 6, - "size_y": 2 - }, - { - "col": 7, - "panelIndex": 3, - "panelRefName": "panel_2", - "row": 6, - "size_x": 6, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 4, - "panelRefName": "panel_3", - "row": 4, - "size_x": 6, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 5, - "panelRefName": "panel_4", - "row": 6, - "size_x": 6, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 6, - "panelRefName": "panel_5", - "row": 2, - "size_x": 4, - "size_y": 2 - }, - { - "col": 5, - "panelIndex": 7, - "panelRefName": "panel_6", - "row": 2, - "size_x": 4, - "size_y": 2 - }, - { - "col": 9, - "panelIndex": 8, - "panelRefName": "panel_7", - "row": 2, - "size_x": 4, - "size_y": 2 - } - ], - "timeRestore": false, - "title": "[Filebeat Netflow] Autonomous Systems", - "uiStateJSON": {}, - "version": 1 - }, - "id": "c64665f9-d222-421e-90b0-c7310d944b8a", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "12aad647-c45d-4667-a029-152c1a97cbbc", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "d27b5d74-b3b4-4311-a0e6-08ff8f4345df", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "751ecb6f-11c3-458d-b039-f6d57a6379fa", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "f75063c7-48b7-4de4-b8cb-d07eb2cea0e9", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "f7808e70-df2a-4532-a350-966704567c24", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "aed09724-0a69-4331-84f5-3d2067c43930", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "f531f957-e8c0-497a-ad41-ef39c2d29671", - "name": "panel_7", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-07-11T04:44:31.601Z", - "version": "WzM0MDMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Dashboard Navigation [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "markdown": "[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\n***" - }, - "title": "Dashboard Navigation [Filebeat Netflow]", - "type": "markdown" - } - }, - "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NjQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Destination Autonomous Systems (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"destination.as.organization.name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.as.organization.name:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", - "interval": "auto" - }, - "title": "Destination Autonomous Systems (bytes) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "12aad647-c45d-4667-a029-152c1a97cbbc", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:31.601Z", - "version": "WzM0MDUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Destination Autonomous Systems (packets) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"destination.as.organization.name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.as.organization.name:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", - "interval": "auto" - }, - "title": "Destination Autonomous Systems (packets) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "d27b5d74-b3b4-4311-a0e6-08ff8f4345df", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:31.601Z", - "version": "WzM0MDYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Source Autonomous Systems (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"source.as.organization.name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* source.as.organization.name:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", - "interval": "auto" - }, - "title": "Source Autonomous Systems (bytes) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "751ecb6f-11c3-458d-b039-f6d57a6379fa", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:31.601Z", - "version": "WzM0MDcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Source Autonomous Systems (packets) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"source.as.organization.name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* source.as.organization.name:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", - "interval": "auto" - }, - "title": "Source Autonomous Systems (packets) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "f75063c7-48b7-4de4-b8cb-d07eb2cea0e9", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:31.601Z", - "version": "WzM0MDgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Destination and Source ASs (flow records) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Flow Records" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Destination AS", - "field": "destination.as.organization.name", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Source AS", - "field": "source.as.organization.name", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Destination and Source ASs (flow records) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "f7808e70-df2a-4532-a350-966704567c24", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:31.601Z", - "version": "WzM0MDksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Destinations and Sources (flow records) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Flow Records" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Destination", - "field": "destination.ip", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Source", - "field": "source.ip", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Destinations and Sources (flow records) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "aed09724-0a69-4331-84f5-3d2067c43930", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:35.630Z", - "version": "WzM0MzUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Destination and Source Ports (flow records) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Flow Records" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Destination Port", - "field": "destination.port", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Source Port", - "field": "source.port", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Destination and Source Ports (flow records) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "f531f957-e8c0-497a-ad41-ef39c2d29671", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:35.630Z", - "version": "WzM0MzYsMV0=" - } - ], - "version": "7.2.0" -} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-autonomous-systems.ndjson b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-autonomous-systems.ndjson new file mode 100644 index 00000000000..b405ecc83b9 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-autonomous-systems.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Dashboard Navigation [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\\n***\"},\"title\":\"Dashboard Navigation [Filebeat Netflow]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Destination Autonomous Systems (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"destination.as.organization.name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.as.organization.name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Destination Autonomous Systems (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"12aad647-c45d-4667-a029-152c1a97cbbc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:42.347Z","version":"WzQ3ODgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Destination Autonomous Systems (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"destination.as.organization.name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.as.organization.name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Destination Autonomous Systems (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"d27b5d74-b3b4-4311-a0e6-08ff8f4345df","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:42.347Z","version":"WzQ3ODksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Source Autonomous Systems (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"source.as.organization.name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* source.as.organization.name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Source Autonomous Systems (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"751ecb6f-11c3-458d-b039-f6d57a6379fa","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:42.347Z","version":"WzQ3OTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Source Autonomous Systems (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"source.as.organization.name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* source.as.organization.name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Source Autonomous Systems (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"f75063c7-48b7-4de4-b8cb-d07eb2cea0e9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:42.347Z","version":"WzQ3OTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destination and Source ASs (flow records) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination AS\",\"field\":\"destination.as.organization.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source AS\",\"field\":\"source.as.organization.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destination and Source ASs (flow records) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"f7808e70-df2a-4532-a350-966704567c24","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:42.347Z","version":"WzQ3OTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destinations and Sources (flow records) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination\",\"field\":\"destination.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destinations and Sources (flow records) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"aed09724-0a69-4331-84f5-3d2067c43930","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:46.471Z","version":"WzQ4MTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destination and Source Ports (flow records) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Port\",\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source Port\",\"field\":\"source.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destination and Source Ports (flow records) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"f531f957-e8c0-497a-ad41-ef39c2d29671","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:46.471Z","version":"WzQ4MTksMV0="} +{"attributes":{"description":"Autonomous systems Netflow","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"globalState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"input.type\",\"negate\":false,\"params\":{\"query\":\"netflow\"},\"type\":\"phrase\",\"value\":\"netflow\"},\"query\":{\"match\":{\"input.type\":{\"query\":\"netflow\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"version\":true,\"query\":{\"query\":\"\",\"language\":\"kuery\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":12,\"w\":24,\"h\":8,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":20,\"w\":24,\"h\":8,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":24,\"h\":8,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":24,\"h\":8,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":16,\"h\":8,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":4,\"w\":16,\"h\":8,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":4,\"w\":16,\"h\":8,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Filebeat Netflow] Autonomous Systems","version":1},"coreMigrationVersion":"8.0.0","id":"c64665f9-d222-421e-90b0-c7310d944b8a","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","name":"1:panel_1","type":"visualization"},{"id":"12aad647-c45d-4667-a029-152c1a97cbbc","name":"2:panel_2","type":"visualization"},{"id":"d27b5d74-b3b4-4311-a0e6-08ff8f4345df","name":"3:panel_3","type":"visualization"},{"id":"751ecb6f-11c3-458d-b039-f6d57a6379fa","name":"4:panel_4","type":"visualization"},{"id":"f75063c7-48b7-4de4-b8cb-d07eb2cea0e9","name":"5:panel_5","type":"visualization"},{"id":"f7808e70-df2a-4532-a350-966704567c24","name":"6:panel_6","type":"visualization"},{"id":"aed09724-0a69-4331-84f5-3d2067c43930","name":"7:panel_7","type":"visualization"},{"id":"f531f957-e8c0-497a-ad41-ef39c2d29671","name":"8:panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:42.347Z","version":"WzQ3ODYsMV0="} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-conversation-partners.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-conversation-partners.json deleted file mode 100644 index 767679e38ad..00000000000 --- a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-conversation-partners.json +++ /dev/null @@ -1,599 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Netflow conversation partners", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "globalState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "input.type", - "negate": false, - "params": { - "query": "netflow" - }, - "type": "phrase", - "value": "netflow" - }, - "query": { - "match": { - "input.type": { - "query": "netflow", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "panelIndex": 1, - "panelRefName": "panel_0", - "row": 4, - "size_x": 12, - "size_y": 5 - }, - { - "col": 9, - "panelIndex": 2, - "panelRefName": "panel_1", - "row": 2, - "size_x": 4, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 3, - "panelRefName": "panel_2", - "row": 2, - "size_x": 4, - "size_y": 2 - }, - { - "col": 5, - "panelIndex": 4, - "panelRefName": "panel_3", - "row": 2, - "size_x": 4, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 5, - "panelRefName": "panel_4", - "row": 1, - "size_x": 12, - "size_y": 1 - } - ], - "timeRestore": false, - "title": "[Filebeat Netflow] Conversation Partners", - "uiStateJSON": { - "P-1": { - "vis": { - "params": { - "sort": { - "columnIndex": 2, - "direction": "desc" - } - } - } - } - }, - "version": 1 - }, - "id": "acd7a630-0c71-4840-bc9e-4a3801374a32", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "ebea013f-9b5b-4f61-a9c8-c62bebf62ae9", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "ae334aec-31fa-4df7-a064-40b18831d819", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "e822f94c-5f65-4963-a540-74ca9c25bd2d", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "c54f5529-e6d7-4c26-8e8e-3b35de132035", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", - "name": "panel_4", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-07-11T04:44:32.531Z", - "version": "WzM0MTIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Conversation Partners [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": 2, - "direction": "desc" - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Packets", - "field": "network.packets" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Source", - "field": "source.ip", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Destination", - "field": "destination.ip", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Flow Records" - }, - "schema": "metric", - "type": "count" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": 2, - "direction": "desc" - }, - "totalFunc": "sum" - }, - "title": "Conversation Partners [Filebeat Netflow]", - "type": "table" - } - }, - "id": "ebea013f-9b5b-4f61-a9c8-c62bebf62ae9", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:32.531Z", - "version": "WzM0MTMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "lucene", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - } - }, - "title": "IP Version and Protocols (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "IP Version", - "field": "network.type", - "missingBucket": true, - "missingBucketLabel": "unset ip version", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Protocol", - "field": "network.transport", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "sum", - "format": { - "id": "bytes" - }, - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "IP Version and Protocols (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "ae334aec-31fa-4df7-a064-40b18831d819", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:36.725Z", - "version": "WzM0MzksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Destinations and Sources (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Destination", - "field": "destination.ip", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Source", - "field": "source.ip", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Destinations and Sources (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "e822f94c-5f65-4963-a540-74ca9c25bd2d", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:32.531Z", - "version": "WzM0MTUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Destination and Source Ports (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Destination Port", - "field": "destination.port", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Source Port", - "field": "source.port", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Destination and Source Ports (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "c54f5529-e6d7-4c26-8e8e-3b35de132035", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:32.531Z", - "version": "WzM0MTYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Dashboard Navigation [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "markdown": "[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\n***" - }, - "title": "Dashboard Navigation [Filebeat Netflow]", - "type": "markdown" - } - }, - "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NjQsMV0=" - } - ], - "version": "7.2.0" -} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-conversation-partners.ndjson b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-conversation-partners.ndjson new file mode 100644 index 00000000000..a6169765e9e --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-conversation-partners.ndjson @@ -0,0 +1,6 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Conversation Partners [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 2, \"direction\": \"desc\"}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Packets\",\"field\":\"network.packets\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination\",\"field\":\"destination.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":2,\"direction\":\"desc\"},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Conversation Partners [Filebeat Netflow]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"ebea013f-9b5b-4f61-a9c8-c62bebf62ae9","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:43.370Z","version":"WzQ3OTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}}"},"title":"IP Version and Protocols (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"IP Version\",\"field\":\"network.type\",\"missingBucket\":true,\"missingBucketLabel\":\"unset ip version\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Protocol\",\"field\":\"network.transport\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"sum\",\"format\":{\"id\":\"bytes\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"IP Version and Protocols (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"ae334aec-31fa-4df7-a064-40b18831d819","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destinations and Sources (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination\",\"field\":\"destination.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destinations and Sources (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"e822f94c-5f65-4963-a540-74ca9c25bd2d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:43.370Z","version":"WzQ3OTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destination and Source Ports (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Port\",\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source Port\",\"field\":\"source.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destination and Source Ports (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"c54f5529-e6d7-4c26-8e8e-3b35de132035","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:43.370Z","version":"WzQ3OTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Dashboard Navigation [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\\n***\"},\"title\":\"Dashboard Navigation [Filebeat Netflow]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDcsMV0="} +{"attributes":{"description":"Netflow conversation partners","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"globalState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"input.type\",\"negate\":false,\"params\":{\"query\":\"netflow\"},\"type\":\"phrase\",\"value\":\"netflow\"},\"query\":{\"match\":{\"input.type\":{\"query\":\"netflow\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"version\":true,\"query\":{\"query\":\"\",\"language\":\"kuery\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":20,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":2,\"direction\":\"desc\"}}},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":4,\"w\":16,\"h\":8,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":16,\"h\":8,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":4,\"w\":16,\"h\":8,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Filebeat Netflow] Conversation Partners","version":1},"coreMigrationVersion":"8.0.0","id":"acd7a630-0c71-4840-bc9e-4a3801374a32","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"ebea013f-9b5b-4f61-a9c8-c62bebf62ae9","name":"1:panel_1","type":"visualization"},{"id":"ae334aec-31fa-4df7-a064-40b18831d819","name":"2:panel_2","type":"visualization"},{"id":"e822f94c-5f65-4963-a540-74ca9c25bd2d","name":"3:panel_3","type":"visualization"},{"id":"c54f5529-e6d7-4c26-8e8e-3b35de132035","name":"4:panel_4","type":"visualization"},{"id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","name":"5:panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:43.370Z","version":"WzQ3OTUsMV0="} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-exporters.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-exporters.json deleted file mode 100644 index f7e39060649..00000000000 --- a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-exporters.json +++ /dev/null @@ -1,554 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Netflow exporters", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "globalState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "input.type", - "negate": false, - "params": { - "query": "netflow" - }, - "type": "phrase", - "value": "netflow" - }, - "query": { - "match": { - "input.type": { - "query": "netflow", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "panelIndex": 1, - "panelRefName": "panel_0", - "row": 1, - "size_x": 12, - "size_y": 1 - }, - { - "col": 1, - "panelIndex": 2, - "panelRefName": "panel_1", - "row": 2, - "size_x": 4, - "size_y": 2 - }, - { - "col": 5, - "panelIndex": 3, - "panelRefName": "panel_2", - "row": 2, - "size_x": 4, - "size_y": 2 - }, - { - "col": 9, - "panelIndex": 4, - "panelRefName": "panel_3", - "row": 2, - "size_x": 4, - "size_y": 2 - }, - { - "col": 7, - "panelIndex": 5, - "panelRefName": "panel_4", - "row": 4, - "size_x": 6, - "size_y": 2 - }, - { - "col": 7, - "panelIndex": 6, - "panelRefName": "panel_5", - "row": 6, - "size_x": 6, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 8, - "panelRefName": "panel_6", - "row": 6, - "size_x": 6, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 10, - "panelRefName": "panel_7", - "row": 4, - "size_x": 6, - "size_y": 2 - } - ], - "timeRestore": false, - "title": "[Filebeat Netflow] Flow Exporters", - "uiStateJSON": {}, - "version": 1 - }, - "id": "feebb4e6-b13e-4e4e-b9fc-d3a178276425", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "441c6c50-fa1a-489c-96c6-76f7925dea24", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "14c7136d-b4aa-4367-9461-52bf8b5c4796", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "4ac97841-c89f-4d50-b3c6-6253f7e1dd1a", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "85ebf558-402b-45d2-a186-e15f8673ec07", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "f86a7769-8ef6-408d-bbe3-985d0ea0a3f7", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "1cd36f5d-d9c7-4098-acdb-14d312ecfb72", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "d3df8d28-65f8-4ea1-8b33-f479380a0600", - "name": "panel_7", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-07-11T04:44:33.653Z", - "version": "WzM0MTgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Dashboard Navigation [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "markdown": "[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\n***" - }, - "title": "Dashboard Navigation [Filebeat Netflow]", - "type": "markdown" - } - }, - "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NjQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Flow Exporters (flow records) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Flow Exporter", - "field": "agent.hostname", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Flow Exporters (flow records) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "441c6c50-fa1a-489c-96c6-76f7925dea24", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:33.653Z", - "version": "WzM0MjAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Ingress Interfaces (flow records) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Ingress Interface", - "field": "netflow.ingress_interface", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Ingress Interfaces (flow records) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "14c7136d-b4aa-4367-9461-52bf8b5c4796", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:33.653Z", - "version": "WzM0MjEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Egress Interfaces (flow records) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Flow Records" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Egress Interface", - "field": "netflow.egress_interface", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Egress Interfaces (flow records) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "4ac97841-c89f-4d50-b3c6-6253f7e1dd1a", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:33.653Z", - "version": "WzM0MjIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Egress Interfaces (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"netflow.egress_interface:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.egress_interface:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", - "interval": "auto" - }, - "title": "Egress Interfaces (bytes) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "85ebf558-402b-45d2-a186-e15f8673ec07", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:33.653Z", - "version": "WzM0MjMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Egress Interfaces (packets) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"netflow.egress_interface:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.egress_interface:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", - "interval": "auto" - }, - "title": "Egress Interfaces (packets) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "f86a7769-8ef6-408d-bbe3-985d0ea0a3f7", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:33.653Z", - "version": "WzM0MjQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Ingress Interfaces (packets) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"netflow.ingress_interface:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.ingress_interface:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", - "interval": "auto" - }, - "title": "Ingress Interfaces (packets) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "1cd36f5d-d9c7-4098-acdb-14d312ecfb72", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:33.653Z", - "version": "WzM0MjUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Ingress Interfaces (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"netflow.ingress_interface:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.ingress_interface:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", - "interval": "auto" - }, - "title": "Ingress Interfaces (bytes) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "d3df8d28-65f8-4ea1-8b33-f479380a0600", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:33.653Z", - "version": "WzM0MjYsMV0=" - } - ], - "version": "7.2.0" -} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-exporters.ndjson b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-exporters.ndjson new file mode 100644 index 00000000000..ced7af755cf --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-exporters.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Dashboard Navigation [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\\n***\"},\"title\":\"Dashboard Navigation [Filebeat Netflow]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Flow Exporters (flow records) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Flow Exporter\",\"field\":\"agent.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Flow Exporters (flow records) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"441c6c50-fa1a-489c-96c6-76f7925dea24","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:44.454Z","version":"WzQ4MDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Ingress Interfaces (flow records) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Ingress Interface\",\"field\":\"netflow.ingress_interface\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Ingress Interfaces (flow records) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"14c7136d-b4aa-4367-9461-52bf8b5c4796","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:44.454Z","version":"WzQ4MDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Egress Interfaces (flow records) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Egress Interface\",\"field\":\"netflow.egress_interface\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Egress Interfaces (flow records) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"4ac97841-c89f-4d50-b3c6-6253f7e1dd1a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:44.454Z","version":"WzQ4MDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Egress Interfaces (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"netflow.egress_interface:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.egress_interface:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Egress Interfaces (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"85ebf558-402b-45d2-a186-e15f8673ec07","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:44.454Z","version":"WzQ4MDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Egress Interfaces (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"netflow.egress_interface:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.egress_interface:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Egress Interfaces (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"f86a7769-8ef6-408d-bbe3-985d0ea0a3f7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:44.454Z","version":"WzQ4MDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Ingress Interfaces (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"netflow.ingress_interface:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.ingress_interface:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Ingress Interfaces (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"1cd36f5d-d9c7-4098-acdb-14d312ecfb72","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:44.454Z","version":"WzQ4MDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Ingress Interfaces (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"netflow.ingress_interface:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.ingress_interface:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Ingress Interfaces (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"d3df8d28-65f8-4ea1-8b33-f479380a0600","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:44.454Z","version":"WzQ4MDksMV0="} +{"attributes":{"description":"Netflow exporters","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"globalState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"input.type\",\"negate\":false,\"params\":{\"query\":\"netflow\"},\"type\":\"phrase\",\"value\":\"netflow\"},\"query\":{\"match\":{\"input.type\":{\"query\":\"netflow\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"version\":true,\"query\":{\"query\":\"\",\"language\":\"kuery\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":16,\"h\":8,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":4,\"w\":16,\"h\":8,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":4,\"w\":16,\"h\":8,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":12,\"w\":24,\"h\":8,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":20,\"w\":24,\"h\":8,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":24,\"h\":8,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":24,\"h\":8,\"i\":\"10\"},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"}]","timeRestore":false,"title":"[Filebeat Netflow] Flow Exporters","version":1},"coreMigrationVersion":"8.0.0","id":"feebb4e6-b13e-4e4e-b9fc-d3a178276425","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","name":"1:panel_1","type":"visualization"},{"id":"441c6c50-fa1a-489c-96c6-76f7925dea24","name":"2:panel_2","type":"visualization"},{"id":"14c7136d-b4aa-4367-9461-52bf8b5c4796","name":"3:panel_3","type":"visualization"},{"id":"4ac97841-c89f-4d50-b3c6-6253f7e1dd1a","name":"4:panel_4","type":"visualization"},{"id":"85ebf558-402b-45d2-a186-e15f8673ec07","name":"5:panel_5","type":"visualization"},{"id":"f86a7769-8ef6-408d-bbe3-985d0ea0a3f7","name":"6:panel_6","type":"visualization"},{"id":"1cd36f5d-d9c7-4098-acdb-14d312ecfb72","name":"8:panel_8","type":"visualization"},{"id":"d3df8d28-65f8-4ea1-8b33-f479380a0600","name":"10:panel_10","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:44.454Z","version":"WzQ4MDEsMV0="} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-records.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-records.json deleted file mode 100644 index c39a0fe2272..00000000000 --- a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-records.json +++ /dev/null @@ -1,476 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Netflow flow records", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "globalState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "input.type", - "negate": false, - "params": { - "query": "netflow" - }, - "type": "phrase", - "value": "netflow" - }, - "query": { - "match": { - "input.type": { - "query": "netflow", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 4, - "panelIndex": 2, - "panelRefName": "panel_0", - "row": 2, - "size_x": 9, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 3, - "panelRefName": "panel_1", - "row": 2, - "size_x": 3, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 4, - "panelRefName": "panel_2", - "row": 1, - "size_x": 12, - "size_y": 1 - }, - { - "col": 1, - "columns": [ - "source.ip", - "source.port", - "destination.ip", - "destination.port", - "network.transport", - "network.bytes", - "network.packets" - ], - "panelIndex": 5, - "panelRefName": "panel_3", - "row": 4, - "size_x": 12, - "size_y": 4, - "sort": [ - "@timestamp", - "desc" - ] - } - ], - "timeRestore": false, - "title": "[Filebeat Netflow] Flow records", - "uiStateJSON": { - "P-3": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - } - }, - "version": 1 - }, - "id": "94972700-de4a-4272-9143-2fa8d4981365", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "4bb0255e-18ed-45e4-bfb9-de8e35b12094", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "c27c6a3b-93ee-44d5-8d0c-9b097e575f52", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "a34c6611-79d8-4b50-ae3f-8b328d28e24a", - "name": "panel_3", - "type": "search" - } - ], - "type": "dashboard", - "updated_at": "2019-07-11T04:44:34.680Z", - "version": "WzM0MjcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Flow Records [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "legendOpen": true - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Flow Records" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Timeline", - "extended_bounds": {}, - "field": "event.end", - "interval": "s", - "min_doc_count": 1 - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Version", - "field": "netflow.exporter.version", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "defaultYExtents": false, - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "mode": "stacked", - "scale": "linear", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Flow Records" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "setYExtents": false, - "times": [], - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Flow Records [Filebeat Netflow]", - "type": "histogram" - } - }, - "id": "4bb0255e-18ed-45e4-bfb9-de8e35b12094", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:34.680Z", - "version": "WzM0MjgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Flow Records [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Flow Records" - }, - "schema": "metric", - "type": "count" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "fontSize": "32", - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "36", - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "handleNoResults": true, - "type": "gauge" - }, - "title": "Flow Records [Filebeat Netflow]", - "type": "metric" - } - }, - "id": "c27c6a3b-93ee-44d5-8d0c-9b097e575f52", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:34.680Z", - "version": "WzM0MjksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Dashboard Navigation [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "markdown": "[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\n***" - }, - "title": "Dashboard Navigation [Filebeat Netflow]", - "type": "markdown" - } - }, - "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NjQsMV0=" - }, - { - "attributes": { - "columns": [ - "source.ip", - "source.port", - "destination.ip", - "destination.port", - "network.transport", - "network.bytes", - "network.packets" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Flow Records [Filebeat Netflow]", - "version": 1 - }, - "id": "a34c6611-79d8-4b50-ae3f-8b328d28e24a", - "migrationVersion": { - "search": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2019-07-11T04:44:34.680Z", - "version": "WzM0MzEsMV0=" - } - ], - "version": "7.2.0" -} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-records.ndjson b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-records.ndjson new file mode 100644 index 00000000000..3de7f79f5ba --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-records.ndjson @@ -0,0 +1,5 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Flow Records [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Timeline\",\"extended_bounds\":{},\"field\":\"event.end\",\"interval\":\"s\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Version\",\"field\":\"netflow.exporter.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Flow Records\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}]},\"title\":\"Flow Records [Filebeat Netflow]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"4bb0255e-18ed-45e4-bfb9-de8e35b12094","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:45.451Z","version":"WzQ4MTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Flow Records [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Flow Records [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"c27c6a3b-93ee-44d5-8d0c-9b097e575f52","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:45.451Z","version":"WzQ4MTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Dashboard Navigation [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\\n***\"},\"title\":\"Dashboard Navigation [Filebeat Netflow]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDcsMV0="} +{"attributes":{"columns":["source.ip","source.port","destination.ip","destination.port","network.transport","network.bytes","network.packets"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Flow Records [Filebeat Netflow]","version":1},"coreMigrationVersion":"8.0.0","id":"a34c6611-79d8-4b50-ae3f-8b328d28e24a","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:45.451Z","version":"WzQ4MTQsMV0="} +{"attributes":{"description":"Netflow flow records","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"globalState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"input.type\",\"negate\":false,\"params\":{\"query\":\"netflow\"},\"type\":\"phrase\",\"value\":\"netflow\"},\"query\":{\"match\":{\"input.type\":{\"query\":\"netflow\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"version\":true,\"query\":{\"query\":\"\",\"language\":\"kuery\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":12,\"y\":4,\"w\":36,\"h\":8,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":12,\"h\":8,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":16,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"columns\":[\"source.ip\",\"source.port\",\"destination.ip\",\"destination.port\",\"network.transport\",\"network.bytes\",\"network.packets\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Filebeat Netflow] Flow records","version":1},"coreMigrationVersion":"8.0.0","id":"94972700-de4a-4272-9143-2fa8d4981365","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"4bb0255e-18ed-45e4-bfb9-de8e35b12094","name":"2:panel_2","type":"visualization"},{"id":"c27c6a3b-93ee-44d5-8d0c-9b097e575f52","name":"3:panel_3","type":"visualization"},{"id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","name":"4:panel_4","type":"visualization"},{"id":"a34c6611-79d8-4b50-ae3f-8b328d28e24a","name":"5:panel_5","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:45.451Z","version":"WzQ4MTAsMV0="} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-geo-location.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-geo-location.json deleted file mode 100644 index 4b3a59f635e..00000000000 --- a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-geo-location.json +++ /dev/null @@ -1,515 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Netflow geo location", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "globalState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "input.type", - "negate": false, - "params": { - "query": "netflow" - }, - "type": "phrase", - "value": "netflow" - }, - "query": { - "match": { - "input.type": { - "query": "netflow", - "type": "phrase" - } - } - } - } - ] - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 5, - "panelIndex": 16, - "panelRefName": "panel_0", - "row": 2, - "size_x": 8, - "size_y": 6 - }, - { - "col": 1, - "panelIndex": 17, - "panelRefName": "panel_1", - "row": 2, - "size_x": 4, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 18, - "panelRefName": "panel_2", - "row": 4, - "size_x": 4, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 19, - "panelRefName": "panel_3", - "row": 6, - "size_x": 4, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 20, - "panelRefName": "panel_4", - "row": 1, - "size_x": 12, - "size_y": 1 - } - ], - "timeRestore": false, - "title": "[Filebeat Netflow] Geo Location", - "uiStateJSON": { - "P-16": { - "mapCenter": [ - 20.632784250388028, - 16.69921875 - ], - "mapZoom": 2 - } - }, - "version": 1 - }, - "id": "77326664-23be-4bf1-a126-6d7e60cfc024", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "f4c8cb5a-7336-449e-ab99-6e867b435b85", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "2316bb53-d98a-4f0f-8cd8-51e9fb317823", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "aed09724-0a69-4331-84f5-3d2067c43930", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "f531f957-e8c0-497a-ad41-ef39c2d29671", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", - "name": "panel_4", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-07-11T04:44:35.630Z", - "version": "WzM0MzIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Destination Geo Location Heatmap [Filebeat Netflow]", - "uiStateJSON": { - "mapCenter": [ - 8.407168163601076, - 9.4921875 - ] - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Records" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "customLabel": "Location", - "field": "destination.geo.location", - "precision": 2 - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "listeners": {}, - "params": { - "addTooltip": true, - "heatBlur": "16", - "heatMaxZoom": 16, - "heatMinOpacity": "0.32", - "heatNormalizeData": true, - "heatRadius": "24", - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 15, - 5 - ], - "mapType": "Heatmap", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "attribution": "Maps provided by USGS", - "format": "image/png", - "layers": "0", - "styles": "", - "transparent": true, - "version": "1.3.0" - }, - "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" - } - }, - "title": "Destination Geo Location Heatmap [Filebeat Netflow]", - "type": "tile_map" - } - }, - "id": "f4c8cb5a-7336-449e-ab99-6e867b435b85", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:35.630Z", - "version": "WzM0MzMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Countries and Cities (flow records) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Flow Records" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Country", - "field": "destination.geo.country_name", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "City", - "field": "destination.geo.city_name", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Countries and Cities (flow records) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "2316bb53-d98a-4f0f-8cd8-51e9fb317823", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:35.630Z", - "version": "WzM0MzQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Destinations and Sources (flow records) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Flow Records" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Destination", - "field": "destination.ip", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Source", - "field": "source.ip", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Destinations and Sources (flow records) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "aed09724-0a69-4331-84f5-3d2067c43930", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:35.630Z", - "version": "WzM0MzUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Destination and Source Ports (flow records) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Flow Records" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Destination Port", - "field": "destination.port", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Source Port", - "field": "source.port", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Destination and Source Ports (flow records) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "f531f957-e8c0-497a-ad41-ef39c2d29671", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:35.630Z", - "version": "WzM0MzYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Dashboard Navigation [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "markdown": "[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\n***" - }, - "title": "Dashboard Navigation [Filebeat Netflow]", - "type": "markdown" - } - }, - "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NjQsMV0=" - } - ], - "version": "7.2.0" -} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-geo-location.ndjson b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-geo-location.ndjson new file mode 100644 index 00000000000..9a2a0a099aa --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-geo-location.ndjson @@ -0,0 +1,6 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destination Geo Location Heatmap [Filebeat Netflow]","uiStateJSON":"{\"mapCenter\": [8.407168163601076, 9.4921875]}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"customLabel\":\"Location\",\"field\":\"destination.geo.location\",\"precision\":2},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":\"16\",\"heatMaxZoom\":16,\"heatMinOpacity\":\"0.32\",\"heatNormalizeData\":true,\"heatRadius\":\"24\",\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[15,5],\"mapType\":\"Heatmap\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Destination Geo Location Heatmap [Filebeat Netflow]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"f4c8cb5a-7336-449e-ab99-6e867b435b85","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:46.471Z","version":"WzQ4MTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Countries and Cities (flow records) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Country\",\"field\":\"destination.geo.country_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"City\",\"field\":\"destination.geo.city_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Countries and Cities (flow records) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"2316bb53-d98a-4f0f-8cd8-51e9fb317823","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:46.471Z","version":"WzQ4MTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destinations and Sources (flow records) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination\",\"field\":\"destination.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destinations and Sources (flow records) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"aed09724-0a69-4331-84f5-3d2067c43930","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:46.471Z","version":"WzQ4MTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destination and Source Ports (flow records) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Port\",\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source Port\",\"field\":\"source.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destination and Source Ports (flow records) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"f531f957-e8c0-497a-ad41-ef39c2d29671","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:46.471Z","version":"WzQ4MTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Dashboard Navigation [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\\n***\"},\"title\":\"Dashboard Navigation [Filebeat Netflow]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDcsMV0="} +{"attributes":{"description":"Netflow geo location","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"globalState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"input.type\",\"negate\":false,\"params\":{\"query\":\"netflow\"},\"type\":\"phrase\",\"value\":\"netflow\"},\"query\":{\"match\":{\"input.type\":{\"query\":\"netflow\",\"type\":\"phrase\"}}}}],\"query\":{\"query\":\"\",\"language\":\"kuery\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":4,\"w\":32,\"h\":24,\"i\":\"16\"},\"panelIndex\":\"16\",\"embeddableConfig\":{\"mapCenter\":[20.632784250388028,16.69921875],\"mapZoom\":2,\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":16,\"h\":8,\"i\":\"17\"},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":16,\"h\":8,\"i\":\"18\"},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":16,\"h\":8,\"i\":\"19\"},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"20\"},\"panelIndex\":\"20\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_20\"}]","timeRestore":false,"title":"[Filebeat Netflow] Geo Location","version":1},"coreMigrationVersion":"8.0.0","id":"77326664-23be-4bf1-a126-6d7e60cfc024","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"f4c8cb5a-7336-449e-ab99-6e867b435b85","name":"16:panel_16","type":"visualization"},{"id":"2316bb53-d98a-4f0f-8cd8-51e9fb317823","name":"17:panel_17","type":"visualization"},{"id":"aed09724-0a69-4331-84f5-3d2067c43930","name":"18:panel_18","type":"visualization"},{"id":"f531f957-e8c0-497a-ad41-ef39c2d29671","name":"19:panel_19","type":"visualization"},{"id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","name":"20:panel_20","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:46.471Z","version":"WzQ4MTUsMV0="} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-overview.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-overview.json deleted file mode 100644 index c0380395a02..00000000000 --- a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-overview.json +++ /dev/null @@ -1,1219 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of Netflow", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "globalState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "input.type", - "negate": false, - "params": { - "query": "netflow" - }, - "type": "phrase", - "value": "netflow" - }, - "query": { - "match": { - "input.type": { - "query": "netflow", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "panelIndex": 12, - "panelRefName": "panel_0", - "row": 2, - "size_x": 4, - "size_y": 2 - }, - { - "col": 5, - "panelIndex": 13, - "panelRefName": "panel_1", - "row": 2, - "size_x": 4, - "size_y": 2 - }, - { - "col": 9, - "panelIndex": 14, - "panelRefName": "panel_2", - "row": 2, - "size_x": 4, - "size_y": 2 - }, - { - "col": 5, - "panelIndex": 15, - "panelRefName": "panel_3", - "row": 4, - "size_x": 4, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 17, - "panelRefName": "panel_4", - "row": 1, - "size_x": 12, - "size_y": 1 - }, - { - "col": 9, - "panelIndex": 21, - "panelRefName": "panel_5", - "row": 4, - "size_x": 4, - "size_y": 2 - }, - { - "col": 5, - "panelIndex": 22, - "panelRefName": "panel_6", - "row": 6, - "size_x": 4, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 23, - "panelRefName": "panel_7", - "row": 4, - "size_x": 4, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 24, - "panelRefName": "panel_8", - "row": 6, - "size_x": 4, - "size_y": 2 - }, - { - "col": 9, - "panelIndex": 25, - "panelRefName": "panel_9", - "row": 6, - "size_x": 4, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 26, - "panelRefName": "panel_10", - "row": 8, - "size_x": 4, - "size_y": 2 - }, - { - "col": 5, - "panelIndex": 27, - "panelRefName": "panel_11", - "row": 8, - "size_x": 4, - "size_y": 2 - }, - { - "col": 9, - "panelIndex": 29, - "panelRefName": "panel_12", - "row": 8, - "size_x": 4, - "size_y": 2 - } - ], - "timeRestore": false, - "title": "[Filebeat Netflow] Overview", - "uiStateJSON": {}, - "version": 1 - }, - "id": "34e26884-161a-4448-9556-43b5bf2f62a2", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "ae334aec-31fa-4df7-a064-40b18831d819", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "67fdca65-a9df-47f0-a8a4-1e8b056325de", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "1558508d-591c-49be-bef4-85fdac18a960", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "1cf30eac-aae8-47fa-a156-37f6346d2d5a", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "7fa6cb0a-518d-46e9-a228-15cd4253a957", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "f772028b-d5a6-4d55-b441-493871981a60", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "57e13a20-e94f-4465-a942-42148634a1d2", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "b02c2713-17f0-41dd-88a3-ce33b446f19d", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "5ccac452-e90a-4dde-ae9b-1be36ce3f761", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "31708a70-4957-4a8a-8065-5c88a344ad02", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "b677cd82-b33e-49b3-8b6e-0e110177b163", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "3dec20c0-0d4f-43ef-8864-3779e1a1b33f", - "name": "panel_12", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-07-11T04:44:36.725Z", - "version": "WzM0MzgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "lucene", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - } - }, - "title": "IP Version and Protocols (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "IP Version", - "field": "network.type", - "missingBucket": true, - "missingBucketLabel": "unset ip version", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Protocol", - "field": "network.transport", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "sum", - "format": { - "id": "bytes" - }, - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "IP Version and Protocols (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "ae334aec-31fa-4df7-a064-40b18831d819", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:36.725Z", - "version": "WzM0MzksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Destinations and Ports (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Destination", - "field": "destination.ip", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Port", - "field": "destination.port", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Destinations and Ports (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "67fdca65-a9df-47f0-a8a4-1e8b056325de", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:36.725Z", - "version": "WzM0NDAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Sources and Ports (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Source", - "field": "source.ip", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Port", - "field": "source.port", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Sources and Ports (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "1558508d-591c-49be-bef4-85fdac18a960", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:36.725Z", - "version": "WzM0NDEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Types of Service (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Type of Service", - "field": "netflow.ip_class_of_service", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Types of Service (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "1cf30eac-aae8-47fa-a156-37f6346d2d5a", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NzgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Dashboard Navigation [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "markdown": "[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\n***" - }, - "title": "Dashboard Navigation [Filebeat Netflow]", - "type": "markdown" - } - }, - "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NjQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "VLANs (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "VLAN", - "field": "netflow.vlan_id", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "VLANs (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "7fa6cb0a-518d-46e9-a228-15cd4253a957", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NzksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Autonomous Systems (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Autonomous System", - "field": "destination.as.organization.name", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Autonomous Systems (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "f772028b-d5a6-4d55-b441-493871981a60", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0ODEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "TCP Flags (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "TCP Flags", - "field": "netflow.tcp_control_bits", - "order": "desc", - "orderBy": "1", - "size": 255 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "TCP Flags (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "57e13a20-e94f-4465-a942-42148634a1d2", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0ODAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Locality (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Locality", - "field": "flow.locality", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Locality (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "b02c2713-17f0-41dd-88a3-ce33b446f19d", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:36.725Z", - "version": "WzM0NDcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Countries and Cities (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Country", - "field": "destination.geo.country_name", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "City", - "field": "destination.geo.city_name", - "order": "desc", - "orderBy": "1", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Countries and Cities (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "5ccac452-e90a-4dde-ae9b-1be36ce3f761", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:36.725Z", - "version": "WzM0NDgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Flow Exporters (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Flow Exporter", - "field": "agent.hostname", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Flow Exporters (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "31708a70-4957-4a8a-8065-5c88a344ad02", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:36.725Z", - "version": "WzM0NDksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Direction (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Direction", - "field": "network.direction", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Direction (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "b677cd82-b33e-49b3-8b6e-0e110177b163", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:36.725Z", - "version": "WzM0NTAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Version (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Version", - "field": "netflow.exporter.version", - "order": "desc", - "orderBy": "1", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Version (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "3dec20c0-0d4f-43ef-8864-3779e1a1b33f", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:36.725Z", - "version": "WzM0NTEsMV0=" - } - ], - "version": "7.2.0" -} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-overview.ndjson b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-overview.ndjson new file mode 100644 index 00000000000..be0fea87ae0 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-overview.ndjson @@ -0,0 +1,14 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}}"},"title":"IP Version and Protocols (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"IP Version\",\"field\":\"network.type\",\"missingBucket\":true,\"missingBucketLabel\":\"unset ip version\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Protocol\",\"field\":\"network.transport\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"sum\",\"format\":{\"id\":\"bytes\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"IP Version and Protocols (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"ae334aec-31fa-4df7-a064-40b18831d819","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destinations and Ports (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination\",\"field\":\"destination.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Port\",\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destinations and Ports (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"67fdca65-a9df-47f0-a8a4-1e8b056325de","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Sources and Ports (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Port\",\"field\":\"source.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Sources and Ports (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"1558508d-591c-49be-bef4-85fdac18a960","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Types of Service (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Type of Service\",\"field\":\"netflow.ip_class_of_service\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Types of Service (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"1cf30eac-aae8-47fa-a156-37f6346d2d5a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Dashboard Navigation [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\\n***\"},\"title\":\"Dashboard Navigation [Filebeat Netflow]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"VLANs (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"VLAN\",\"field\":\"netflow.vlan_id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"VLANs (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"7fa6cb0a-518d-46e9-a228-15cd4253a957","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Autonomous Systems (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Autonomous System\",\"field\":\"destination.as.organization.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Autonomous Systems (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"f772028b-d5a6-4d55-b441-493871981a60","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"TCP Flags (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"TCP Flags\",\"field\":\"netflow.tcp_control_bits\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":255},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"TCP Flags (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"57e13a20-e94f-4465-a942-42148634a1d2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Locality (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Locality\",\"field\":\"flow.locality\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Locality (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"b02c2713-17f0-41dd-88a3-ce33b446f19d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Countries and Cities (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Country\",\"field\":\"destination.geo.country_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"City\",\"field\":\"destination.geo.city_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Countries and Cities (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"5ccac452-e90a-4dde-ae9b-1be36ce3f761","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MzEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Flow Exporters (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Flow Exporter\",\"field\":\"agent.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Flow Exporters (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"31708a70-4957-4a8a-8065-5c88a344ad02","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Direction (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Direction\",\"field\":\"network.direction\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Direction (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"b677cd82-b33e-49b3-8b6e-0e110177b163","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Version (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Version\",\"field\":\"netflow.exporter.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Version (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"3dec20c0-0d4f-43ef-8864-3779e1a1b33f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MzQsMV0="} +{"attributes":{"description":"Overview of Netflow","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"globalState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"input.type\",\"negate\":false,\"params\":{\"query\":\"netflow\"},\"type\":\"phrase\",\"value\":\"netflow\"},\"query\":{\"match\":{\"input.type\":{\"query\":\"netflow\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"version\":true,\"query\":{\"query\":\"\",\"language\":\"kuery\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":16,\"h\":8,\"i\":\"12\"},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":4,\"w\":16,\"h\":8,\"i\":\"13\"},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":4,\"w\":16,\"h\":8,\"i\":\"14\"},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":12,\"w\":16,\"h\":8,\"i\":\"15\"},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"17\"},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":12,\"w\":16,\"h\":8,\"i\":\"21\"},\"panelIndex\":\"21\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_21\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":20,\"w\":16,\"h\":8,\"i\":\"22\"},\"panelIndex\":\"22\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_22\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":16,\"h\":8,\"i\":\"23\"},\"panelIndex\":\"23\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_23\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":16,\"h\":8,\"i\":\"24\"},\"panelIndex\":\"24\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_24\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":20,\"w\":16,\"h\":8,\"i\":\"25\"},\"panelIndex\":\"25\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_25\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":28,\"w\":16,\"h\":8,\"i\":\"26\"},\"panelIndex\":\"26\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_26\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":28,\"w\":16,\"h\":8,\"i\":\"27\"},\"panelIndex\":\"27\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_27\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":28,\"w\":16,\"h\":8,\"i\":\"29\"},\"panelIndex\":\"29\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_29\"}]","timeRestore":false,"title":"[Filebeat Netflow] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"34e26884-161a-4448-9556-43b5bf2f62a2","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"ae334aec-31fa-4df7-a064-40b18831d819","name":"12:panel_12","type":"visualization"},{"id":"67fdca65-a9df-47f0-a8a4-1e8b056325de","name":"13:panel_13","type":"visualization"},{"id":"1558508d-591c-49be-bef4-85fdac18a960","name":"14:panel_14","type":"visualization"},{"id":"1cf30eac-aae8-47fa-a156-37f6346d2d5a","name":"15:panel_15","type":"visualization"},{"id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","name":"17:panel_17","type":"visualization"},{"id":"7fa6cb0a-518d-46e9-a228-15cd4253a957","name":"21:panel_21","type":"visualization"},{"id":"f772028b-d5a6-4d55-b441-493871981a60","name":"22:panel_22","type":"visualization"},{"id":"57e13a20-e94f-4465-a942-42148634a1d2","name":"23:panel_23","type":"visualization"},{"id":"b02c2713-17f0-41dd-88a3-ce33b446f19d","name":"24:panel_24","type":"visualization"},{"id":"5ccac452-e90a-4dde-ae9b-1be36ce3f761","name":"25:panel_25","type":"visualization"},{"id":"31708a70-4957-4a8a-8065-5c88a344ad02","name":"26:panel_26","type":"visualization"},{"id":"b677cd82-b33e-49b3-8b6e-0e110177b163","name":"27:panel_27","type":"visualization"},{"id":"3dec20c0-0d4f-43ef-8864-3779e1a1b33f","name":"29:panel_29","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MjEsMV0="} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-top-n.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-top-n.json deleted file mode 100644 index 437bc4c32b9..00000000000 --- a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-top-n.json +++ /dev/null @@ -1,1138 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Netflow Top N flows", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "globalState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "input.type", - "negate": false, - "params": { - "query": "netflow" - }, - "type": "phrase", - "value": "netflow" - }, - "query": { - "match": { - "input.type": { - "query": "netflow", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 1, - "panelIndex": 1, - "panelRefName": "panel_0", - "row": 1, - "size_x": 12, - "size_y": 1 - }, - { - "col": 1, - "panelIndex": 2, - "panelRefName": "panel_1", - "row": 2, - "size_x": 6, - "size_y": 5 - }, - { - "col": 7, - "panelIndex": 3, - "panelRefName": "panel_2", - "row": 2, - "size_x": 6, - "size_y": 5 - }, - { - "col": 1, - "panelIndex": 4, - "panelRefName": "panel_3", - "row": 7, - "size_x": 6, - "size_y": 5 - }, - { - "col": 7, - "panelIndex": 5, - "panelRefName": "panel_4", - "row": 7, - "size_x": 6, - "size_y": 5 - }, - { - "col": 1, - "panelIndex": 6, - "panelRefName": "panel_5", - "row": 12, - "size_x": 6, - "size_y": 5 - }, - { - "col": 7, - "panelIndex": 7, - "panelRefName": "panel_6", - "row": 12, - "size_x": 6, - "size_y": 5 - }, - { - "col": 1, - "panelIndex": 8, - "panelRefName": "panel_7", - "row": 17, - "size_x": 6, - "size_y": 5 - }, - { - "col": 7, - "panelIndex": 9, - "panelRefName": "panel_8", - "row": 17, - "size_x": 6, - "size_y": 5 - } - ], - "timeRestore": false, - "title": "[Filebeat Netflow] Top-N", - "uiStateJSON": { - "P-2": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-3": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-4": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-5": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-6": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-7": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "P-8": { - "vis": { - "params": { - "sort": { - "columnIndex": 2, - "direction": "desc" - } - } - } - }, - "P-9": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - } - }, - "version": 1 - }, - "id": "14387a13-53bc-43a4-b9cd-63977aa8d87c", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "15295ea6-ba84-47db-8ced-9312abbf495c", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "5303e99b-389c-47b7-ae7a-945c5a92ba49", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "e9ad835b-b2f2-42d3-a3e7-555a593deacf", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "31b5f6fd-eb9d-4e97-90fd-367062ef217f", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "2b3d4e86-2254-4033-8fe3-ce4753fafd03", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "036aef95-ec90-468d-ad7c-3cc4405e9e81", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "5292a65b-c532-422a-9008-1251a8073a3a", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "cccff92f-cb71-49a9-9caf-84867751d31e", - "name": "panel_8", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-07-11T04:44:37.748Z", - "version": "WzM0NTIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Dashboard Navigation [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "markdown": "[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\n***" - }, - "title": "Dashboard Navigation [Filebeat Netflow]", - "type": "markdown" - } - }, - "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NjQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Top Sources [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Packets", - "field": "network.packets" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Flow Records" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Source", - "field": "source.ip", - "order": "desc", - "orderBy": "2", - "size": 500 - }, - "schema": "bucket", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": true, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top Sources [Filebeat Netflow]", - "type": "table" - } - }, - "id": "15295ea6-ba84-47db-8ced-9312abbf495c", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:37.748Z", - "version": "WzM0NTQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Top Destinations [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Packets", - "field": "network.packets" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Flow Records" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Destination", - "field": "destination.ip", - "order": "desc", - "orderBy": "2", - "size": 500 - }, - "schema": "bucket", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": true, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top Destinations [Filebeat Netflow]", - "type": "table" - } - }, - "id": "5303e99b-389c-47b7-ae7a-945c5a92ba49", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:37.748Z", - "version": "WzM0NTUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Top Source Ports [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Packets", - "field": "network.packets" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Flow Records" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Source", - "field": "source.port", - "order": "desc", - "orderBy": "2", - "size": 500 - }, - "schema": "bucket", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": true, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top Source Ports [Filebeat Netflow]", - "type": "table" - } - }, - "id": "e9ad835b-b2f2-42d3-a3e7-555a593deacf", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:37.748Z", - "version": "WzM0NTYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Top Destination Ports [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Packets", - "field": "network.packets" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Flow Records" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Destination", - "field": "destination.port", - "order": "desc", - "orderBy": "2", - "size": 500 - }, - "schema": "bucket", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": true, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top Destination Ports [Filebeat Netflow]", - "type": "table" - } - }, - "id": "31b5f6fd-eb9d-4e97-90fd-367062ef217f", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:37.748Z", - "version": "WzM0NTcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Top Protocols [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Packets", - "field": "network.packets" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Flow Records" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Protocol", - "field": "network.transport", - "order": "desc", - "orderBy": "2", - "size": 500 - }, - "schema": "bucket", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": true, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top Protocols [Filebeat Netflow]", - "type": "table" - } - }, - "id": "2b3d4e86-2254-4033-8fe3-ce4753fafd03", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:37.748Z", - "version": "WzM0NTgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Top Autonomous Systems [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Packets", - "field": "network.packets" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Flow Records" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Autonomous System", - "field": "destination.as.organization.name", - "order": "desc", - "orderBy": "2", - "size": 500 - }, - "schema": "bucket", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": true, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top Autonomous Systems [Filebeat Netflow]", - "type": "table" - } - }, - "id": "036aef95-ec90-468d-ad7c-3cc4405e9e81", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:37.748Z", - "version": "WzM0NTksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Top Cities [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": 2, - "direction": "desc" - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Packets", - "field": "network.packets" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Flow Records" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Country", - "field": "destination.geo.country_name", - "order": "desc", - "orderBy": "2", - "size": 500 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "City", - "field": "destination.geo.city_name", - "order": "desc", - "orderBy": "2", - "size": 500 - }, - "schema": "bucket", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": true, - "showTotal": true, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top Cities [Filebeat Netflow]", - "type": "table" - } - }, - "id": "5292a65b-c532-422a-9008-1251a8073a3a", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:37.748Z", - "version": "WzM0NjAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Top Flow Exporters [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Packets", - "field": "network.packets" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Flow Records" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Flow Exporter", - "field": "agent.hostname", - "order": "desc", - "orderBy": "2", - "size": 500 - }, - "schema": "bucket", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "perPage": 10, - "showMeticsAtAllLevels": false, - "showPartialRows": false, - "showTotal": true, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top Flow Exporters [Filebeat Netflow]", - "type": "table" - } - }, - "id": "cccff92f-cb71-49a9-9caf-84867751d31e", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:37.748Z", - "version": "WzM0NjEsMV0=" - } - ], - "version": "7.2.0" -} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-top-n.ndjson b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-top-n.ndjson new file mode 100644 index 00000000000..bfdd7c29b8b --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-top-n.ndjson @@ -0,0 +1,10 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Dashboard Navigation [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\\n***\"},\"title\":\"Dashboard Navigation [Filebeat Netflow]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Top Sources [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Packets\",\"field\":\"network.packets\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Source\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":500},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Sources [Filebeat Netflow]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"15295ea6-ba84-47db-8ced-9312abbf495c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:48.527Z","version":"WzQ4MzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Top Destinations [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Packets\",\"field\":\"network.packets\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination\",\"field\":\"destination.ip\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":500},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Destinations [Filebeat Netflow]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"5303e99b-389c-47b7-ae7a-945c5a92ba49","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:48.527Z","version":"WzQ4MzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Top Source Ports [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Packets\",\"field\":\"network.packets\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Source\",\"field\":\"source.port\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":500},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Source Ports [Filebeat Netflow]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"e9ad835b-b2f2-42d3-a3e7-555a593deacf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:48.527Z","version":"WzQ4MzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Top Destination Ports [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Packets\",\"field\":\"network.packets\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination\",\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":500},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Destination Ports [Filebeat Netflow]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"31b5f6fd-eb9d-4e97-90fd-367062ef217f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:48.527Z","version":"WzQ4NDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Top Protocols [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Packets\",\"field\":\"network.packets\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Protocol\",\"field\":\"network.transport\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":500},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Protocols [Filebeat Netflow]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"2b3d4e86-2254-4033-8fe3-ce4753fafd03","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:48.527Z","version":"WzQ4NDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Top Autonomous Systems [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Packets\",\"field\":\"network.packets\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Autonomous System\",\"field\":\"destination.as.organization.name\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":500},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Autonomous Systems [Filebeat Netflow]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"036aef95-ec90-468d-ad7c-3cc4405e9e81","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:48.527Z","version":"WzQ4NDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Top Cities [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 2, \"direction\": \"desc\"}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Packets\",\"field\":\"network.packets\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Country\",\"field\":\"destination.geo.country_name\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":500},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"City\",\"field\":\"destination.geo.city_name\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":500},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":true,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Cities [Filebeat Netflow]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"5292a65b-c532-422a-9008-1251a8073a3a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:48.527Z","version":"WzQ4NDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Top Flow Exporters [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Packets\",\"field\":\"network.packets\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Flow Exporter\",\"field\":\"agent.name\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":500},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Flow Exporters [Filebeat Netflow]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"cccff92f-cb71-49a9-9caf-84867751d31e","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:48.527Z","version":"WzQ4NDQsMV0="} +{"attributes":{"description":"Netflow Top N flows","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"globalState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"input.type\",\"negate\":false,\"params\":{\"query\":\"netflow\"},\"type\":\"phrase\",\"value\":\"netflow\"},\"query\":{\"match\":{\"input.type\":{\"query\":\"netflow\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"version\":true,\"query\":{\"query\":\"\",\"language\":\"kuery\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":24,\"h\":20,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":4,\"w\":24,\"h\":20,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":24,\"w\":24,\"h\":20,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":24,\"w\":24,\"h\":20,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":44,\"w\":24,\"h\":20,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":44,\"w\":24,\"h\":20,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":64,\"w\":24,\"h\":20,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":2,\"direction\":\"desc\"}}},\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":64,\"w\":24,\"h\":20,\"i\":\"9\"},\"panelIndex\":\"9\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_9\"}]","timeRestore":false,"title":"[Filebeat Netflow] Top-N","version":1},"coreMigrationVersion":"8.0.0","id":"14387a13-53bc-43a4-b9cd-63977aa8d87c","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","name":"1:panel_1","type":"visualization"},{"id":"15295ea6-ba84-47db-8ced-9312abbf495c","name":"2:panel_2","type":"visualization"},{"id":"5303e99b-389c-47b7-ae7a-945c5a92ba49","name":"3:panel_3","type":"visualization"},{"id":"e9ad835b-b2f2-42d3-a3e7-555a593deacf","name":"4:panel_4","type":"visualization"},{"id":"31b5f6fd-eb9d-4e97-90fd-367062ef217f","name":"5:panel_5","type":"visualization"},{"id":"2b3d4e86-2254-4033-8fe3-ce4753fafd03","name":"6:panel_6","type":"visualization"},{"id":"036aef95-ec90-468d-ad7c-3cc4405e9e81","name":"7:panel_7","type":"visualization"},{"id":"5292a65b-c532-422a-9008-1251a8073a3a","name":"8:panel_8","type":"visualization"},{"id":"cccff92f-cb71-49a9-9caf-84867751d31e","name":"9:panel_9","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:48.527Z","version":"WzQ4MzUsMV0="} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-traffic-analysis.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-traffic-analysis.json deleted file mode 100644 index cab5c2a0e0b..00000000000 --- a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-traffic-analysis.json +++ /dev/null @@ -1,3096 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Netflow traffic analysis", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "globalState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "input.type", - "negate": false, - "params": { - "query": "netflow" - }, - "type": "phrase", - "value": "netflow" - }, - "query": { - "match": { - "input.type": { - "query": "netflow", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false - }, - "panelsJSON": [ - { - "col": 7, - "panelIndex": 1, - "panelRefName": "panel_0", - "row": 22, - "size_x": 6, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 4, - "panelRefName": "panel_1", - "row": 1, - "size_x": 12, - "size_y": 1 - }, - { - "col": 7, - "panelIndex": 5, - "panelRefName": "panel_2", - "row": 28, - "size_x": 6, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 6, - "panelRefName": "panel_3", - "row": 28, - "size_x": 6, - "size_y": 2 - }, - { - "col": 7, - "panelIndex": 7, - "panelRefName": "panel_4", - "row": 10, - "size_x": 6, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 9, - "panelRefName": "panel_5", - "row": 22, - "size_x": 6, - "size_y": 2 - }, - { - "col": 7, - "panelIndex": 10, - "panelRefName": "panel_6", - "row": 16, - "size_x": 6, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 11, - "panelRefName": "panel_7", - "row": 16, - "size_x": 6, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 12, - "panelRefName": "panel_8", - "row": 10, - "size_x": 6, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 13, - "panelRefName": "panel_9", - "row": 4, - "size_x": 6, - "size_y": 2 - }, - { - "col": 7, - "panelIndex": 14, - "panelRefName": "panel_10", - "row": 4, - "size_x": 6, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 15, - "panelRefName": "panel_11", - "row": 2, - "size_x": 4, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 16, - "panelRefName": "panel_12", - "row": 8, - "size_x": 4, - "size_y": 2 - }, - { - "col": 7, - "panelIndex": 17, - "panelRefName": "panel_13", - "row": 2, - "size_x": 4, - "size_y": 2 - }, - { - "col": 7, - "panelIndex": 18, - "panelRefName": "panel_14", - "row": 8, - "size_x": 4, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 19, - "panelRefName": "panel_15", - "row": 14, - "size_x": 4, - "size_y": 2 - }, - { - "col": 7, - "panelIndex": 20, - "panelRefName": "panel_16", - "row": 14, - "size_x": 4, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 21, - "panelRefName": "panel_17", - "row": 20, - "size_x": 4, - "size_y": 2 - }, - { - "col": 7, - "panelIndex": 22, - "panelRefName": "panel_18", - "row": 20, - "size_x": 4, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 23, - "panelRefName": "panel_19", - "row": 26, - "size_x": 4, - "size_y": 2 - }, - { - "col": 7, - "panelIndex": 24, - "panelRefName": "panel_20", - "row": 26, - "size_x": 4, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 25, - "panelRefName": "panel_21", - "row": 6, - "size_x": 6, - "size_y": 2 - }, - { - "col": 11, - "panelIndex": 26, - "panelRefName": "panel_22", - "row": 2, - "size_x": 2, - "size_y": 2 - }, - { - "col": 5, - "panelIndex": 27, - "panelRefName": "panel_23", - "row": 2, - "size_x": 2, - "size_y": 2 - }, - { - "col": 7, - "panelIndex": 28, - "panelRefName": "panel_24", - "row": 6, - "size_x": 6, - "size_y": 2 - }, - { - "col": 11, - "panelIndex": 29, - "panelRefName": "panel_25", - "row": 8, - "size_x": 2, - "size_y": 2 - }, - { - "col": 5, - "panelIndex": 30, - "panelRefName": "panel_26", - "row": 8, - "size_x": 2, - "size_y": 2 - }, - { - "col": 7, - "panelIndex": 31, - "panelRefName": "panel_27", - "row": 24, - "size_x": 6, - "size_y": 2 - }, - { - "col": 7, - "panelIndex": 34, - "panelRefName": "panel_28", - "row": 30, - "size_x": 6, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 35, - "panelRefName": "panel_29", - "row": 30, - "size_x": 6, - "size_y": 2 - }, - { - "col": 7, - "panelIndex": 38, - "panelRefName": "panel_30", - "row": 12, - "size_x": 6, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 42, - "panelRefName": "panel_31", - "row": 12, - "size_x": 6, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 44, - "panelRefName": "panel_32", - "row": 24, - "size_x": 6, - "size_y": 2 - }, - { - "col": 1, - "panelIndex": 45, - "panelRefName": "panel_33", - "row": 18, - "size_x": 6, - "size_y": 2 - }, - { - "col": 7, - "panelIndex": 47, - "panelRefName": "panel_34", - "row": 18, - "size_x": 6, - "size_y": 2 - }, - { - "col": 5, - "panelIndex": 48, - "panelRefName": "panel_35", - "row": 14, - "size_x": 2, - "size_y": 2 - }, - { - "col": 11, - "panelIndex": 49, - "panelRefName": "panel_36", - "row": 14, - "size_x": 2, - "size_y": 2 - }, - { - "col": 11, - "panelIndex": 50, - "panelRefName": "panel_37", - "row": 20, - "size_x": 2, - "size_y": 2 - }, - { - "col": 11, - "panelIndex": 51, - "panelRefName": "panel_38", - "row": 26, - "size_x": 2, - "size_y": 2 - }, - { - "col": 5, - "panelIndex": 52, - "panelRefName": "panel_39", - "row": 26, - "size_x": 2, - "size_y": 2 - }, - { - "col": 5, - "panelIndex": 53, - "panelRefName": "panel_40", - "row": 20, - "size_x": 2, - "size_y": 2 - } - ], - "timeRestore": false, - "title": "[Filebeat Netflow] Traffic Analysis", - "uiStateJSON": { - "P-15": { - "vis": { - "legendOpen": true - } - }, - "P-26": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "P-27": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "P-29": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "P-30": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "P-48": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "P-49": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "P-50": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "P-51": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "P-52": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "P-53": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - } - }, - "version": 1 - }, - "id": "38012abe-c611-4124-8497-381fcd85acc8", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "abfa0b19-60cd-4984-9c3d-02ebf0aa1dfb", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "1e74d5cb-556d-42ee-8042-88f6c1af47f0", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "5cfb2c9a-4815-4a25-9d7e-ab0ef55ffe63", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "3e27fb83-b3e3-4c15-b999-ed6da49b7a86", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "5d868836-c7b2-4812-bf47-4838aac281d9", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "a5efa3dd-f53a-4d14-9d3f-ee73345fd93d", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "717cd7c7-bfca-435d-8ee7-38259927aade", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "f668ecdb-eec7-44c6-9060-26aaf9fc8404", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "6bbd6712-494a-4fd9-b3d3-757304681f0f", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "681f0ce4-d828-4a99-b643-0c0715530050", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "fd6c1144-5026-4795-b7af-a9aa3fc28c56", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "0b2818fd-aecc-4bef-b566-9466eb702ae4", - "name": "panel_12", - "type": "visualization" - }, - { - "id": "248e00b4-8fc2-406f-8907-729d5380aaa7", - "name": "panel_13", - "type": "visualization" - }, - { - "id": "cf399a85-e348-4ac1-a399-e8f5a44114c4", - "name": "panel_14", - "type": "visualization" - }, - { - "id": "1cf30eac-aae8-47fa-a156-37f6346d2d5a", - "name": "panel_15", - "type": "visualization" - }, - { - "id": "7fa6cb0a-518d-46e9-a228-15cd4253a957", - "name": "panel_16", - "type": "visualization" - }, - { - "id": "57e13a20-e94f-4465-a942-42148634a1d2", - "name": "panel_17", - "type": "visualization" - }, - { - "id": "f772028b-d5a6-4d55-b441-493871981a60", - "name": "panel_18", - "type": "visualization" - }, - { - "id": "a14c3248-952d-42aa-bd7d-9b39157a776f", - "name": "panel_19", - "type": "visualization" - }, - { - "id": "a685420e-c45f-4b62-932b-5b76ac8b8ca2", - "name": "panel_20", - "type": "visualization" - }, - { - "id": "0528bc66-6981-400a-a02d-c1d221b38890", - "name": "panel_21", - "type": "visualization" - }, - { - "id": "e99dc327-03de-4561-9e0c-f550710125c2", - "name": "panel_22", - "type": "visualization" - }, - { - "id": "32e712ed-fa15-4db7-8575-8476e8d65b03", - "name": "panel_23", - "type": "visualization" - }, - { - "id": "d59a031c-70d6-47d7-966d-7fcb805be9be", - "name": "panel_24", - "type": "visualization" - }, - { - "id": "af707b01-29f1-462b-b279-6d2e803f3645", - "name": "panel_25", - "type": "visualization" - }, - { - "id": "ddd27657-c3c8-4f82-8059-6d7763dd599b", - "name": "panel_26", - "type": "visualization" - }, - { - "id": "30cd1009-2925-4c9b-820d-d689f5d1efda", - "name": "panel_27", - "type": "visualization" - }, - { - "id": "7d447b22-89dc-4f32-b549-4b8620af4d76", - "name": "panel_28", - "type": "visualization" - }, - { - "id": "d41a9663-e5ad-47a7-955e-3803ae4e23c0", - "name": "panel_29", - "type": "visualization" - }, - { - "id": "3a4209e2-281c-467e-b5cb-315bf4a2661f", - "name": "panel_30", - "type": "visualization" - }, - { - "id": "201d7dd1-a880-4a64-b631-db5629340db9", - "name": "panel_31", - "type": "visualization" - }, - { - "id": "8f83cf97-4a48-421f-8db5-690297d1f4fb", - "name": "panel_32", - "type": "visualization" - }, - { - "id": "a1704d46-15fc-41c2-851d-796ceb49877f", - "name": "panel_33", - "type": "visualization" - }, - { - "id": "15e2a267-2495-4df2-a121-abe410d2f18c", - "name": "panel_34", - "type": "visualization" - }, - { - "id": "f27c1479-0625-4cdc-92de-672e47db0f87", - "name": "panel_35", - "type": "visualization" - }, - { - "id": "0177bf1a-cba8-4ba6-a1d7-73caed86ffc2", - "name": "panel_36", - "type": "visualization" - }, - { - "id": "d5568704-e30b-4108-bb49-06a9b8dce6a6", - "name": "panel_37", - "type": "visualization" - }, - { - "id": "16262df9-a979-4136-935e-d883c7d373d7", - "name": "panel_38", - "type": "visualization" - }, - { - "id": "63ef5338-fdf2-488e-b78a-f0e98daccc95", - "name": "panel_39", - "type": "visualization" - }, - { - "id": "2dca3025-692c-4876-8bcc-e0b248dc9819", - "name": "panel_40", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NjIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Autonomous Systems (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"destination.as.organization.name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.as.organization.name:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", - "interval": "auto" - }, - "title": "Autonomous Systems (bytes) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "abfa0b19-60cd-4984-9c3d-02ebf0aa1dfb", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NjMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Dashboard Navigation [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "markdown": "[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\n***" - }, - "title": "Dashboard Navigation [Filebeat Netflow]", - "type": "markdown" - } - }, - "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NjQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Cities (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"destination.geo.city_name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.geo.city_name:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", - "interval": "auto" - }, - "title": "Cities (bytes) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "1e74d5cb-556d-42ee-8042-88f6c1af47f0", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NjUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Countries (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"destination.geo.country_name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.geo.country_name:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", - "interval": "auto" - }, - "title": "Countries (bytes) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "5cfb2c9a-4815-4a25-9d7e-ab0ef55ffe63", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NjYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Destination Ports (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"destination.port:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.port:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", - "interval": "auto" - }, - "title": "Destination Ports (bytes) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "3e27fb83-b3e3-4c15-b999-ed6da49b7a86", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NjcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "TCP Flags (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"netflow.tcp_control_bits:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.tcp_control_bits:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", - "interval": "auto" - }, - "title": "TCP Flags (bytes) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "5d868836-c7b2-4812-bf47-4838aac281d9", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NjgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "VLANs (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"netflow.vlan_id:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.vlan_id:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", - "interval": "auto" - }, - "title": "VLANs (bytes) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "a5efa3dd-f53a-4d14-9d3f-ee73345fd93d", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NjksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Types of Service (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"netflow.ip_class_of_service:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.ip_class_of_service:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", - "interval": "auto" - }, - "title": "Types of Service (bytes) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "717cd7c7-bfca-435d-8ee7-38259927aade", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NzAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Source Ports (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"source.port:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* source.port:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", - "interval": "auto" - }, - "title": "Source Ports (bytes) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "f668ecdb-eec7-44c6-9060-26aaf9fc8404", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NzEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Sources (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"source.ip:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* source.ip:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", - "interval": "auto" - }, - "title": "Sources (bytes) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "6bbd6712-494a-4fd9-b3d3-757304681f0f", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NzIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Destinations (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"destination.ip:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.ip:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", - "interval": "auto" - }, - "title": "Destinations (bytes) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "681f0ce4-d828-4a99-b643-0c0715530050", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NzMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Sources (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Source", - "field": "source.ip", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Sources (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "fd6c1144-5026-4795-b7af-a9aa3fc28c56", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NzQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Source Ports (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Source Port", - "field": "source.port", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Source Ports (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "0b2818fd-aecc-4bef-b566-9466eb702ae4", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NzUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Destinations (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Destination", - "field": "destination.ip", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Destinations (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "248e00b4-8fc2-406f-8907-729d5380aaa7", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NzYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Destination Ports (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Destination Port", - "field": "destination.port", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Destination Ports (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "cf399a85-e348-4ac1-a399-e8f5a44114c4", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NzcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Types of Service (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Type of Service", - "field": "netflow.ip_class_of_service", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Types of Service (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "1cf30eac-aae8-47fa-a156-37f6346d2d5a", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NzgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "VLANs (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "VLAN", - "field": "netflow.vlan_id", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "VLANs (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "7fa6cb0a-518d-46e9-a228-15cd4253a957", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0NzksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "TCP Flags (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "TCP Flags", - "field": "netflow.tcp_control_bits", - "order": "desc", - "orderBy": "1", - "size": 255 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "TCP Flags (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "57e13a20-e94f-4465-a942-42148634a1d2", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0ODAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Autonomous Systems (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Autonomous System", - "field": "destination.as.organization.name", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Autonomous Systems (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "f772028b-d5a6-4d55-b441-493871981a60", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0ODEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Countries (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Country", - "field": "destination.geo.country_name", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Countries (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "a14c3248-952d-42aa-bd7d-9b39157a776f", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0ODIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Cities (bytes) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Bytes", - "field": "network.bytes" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "City", - "field": "destination.geo.city_name", - "order": "desc", - "orderBy": "1", - "size": 50 - }, - "schema": "segment", - "type": "terms" - } - ], - "listeners": {}, - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "legendPosition": "right" - }, - "title": "Cities (bytes) [Filebeat Netflow]", - "type": "pie" - } - }, - "id": "a685420e-c45f-4b62-932b-5b76ac8b8ca2", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0ODMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Sources (packets) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"source.ip:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* source.ip:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", - "interval": "auto" - }, - "title": "Sources (packets) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "0528bc66-6981-400a-a02d-c1d221b38890", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0ODQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Destination Count [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Destinations", - "field": "destination.ip" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "fontSize": "32", - "handleNoResults": true - }, - "title": "Destination Count [Filebeat Netflow]", - "type": "metric" - } - }, - "id": "e99dc327-03de-4561-9e0c-f550710125c2", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0ODUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Source Count [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Sources", - "field": "source.ip" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "fontSize": "32", - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "36", - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "handleNoResults": true, - "type": "gauge" - }, - "title": "Source Count [Filebeat Netflow]", - "type": "metric" - } - }, - "id": "32e712ed-fa15-4db7-8575-8476e8d65b03", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0ODYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Destinations (packets) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"destination.ip:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.ip:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", - "interval": "auto" - }, - "title": "Destinations (packets) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "d59a031c-70d6-47d7-966d-7fcb805be9be", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0ODcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Destination Port Count [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Destination Ports", - "field": "destination.port" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "fontSize": "32", - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "36", - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "handleNoResults": true, - "type": "gauge" - }, - "title": "Destination Port Count [Filebeat Netflow]", - "type": "metric" - } - }, - "id": "af707b01-29f1-462b-b279-6d2e803f3645", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0ODgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Source Port Count [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Source Ports", - "field": "source.port" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "fontSize": "32", - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "36", - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "handleNoResults": true, - "type": "gauge" - }, - "title": "Source Port Count [Filebeat Netflow]", - "type": "metric" - } - }, - "id": "ddd27657-c3c8-4f82-8059-6d7763dd599b", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0ODksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Autonomous Systems (packets) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"destination.as.organization.name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.as.organization.name:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", - "interval": "auto" - }, - "title": "Autonomous Systems (packets) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "30cd1009-2925-4c9b-820d-d689f5d1efda", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0OTAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Cities (packets) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"destination.geo.city_name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.geo.city_name:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", - "interval": "auto" - }, - "title": "Cities (packets) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "7d447b22-89dc-4f32-b549-4b8620af4d76", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0OTEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Countries (packets) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"destination.geo.country_name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.geo.country_name:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", - "interval": "auto" - }, - "title": "Countries (packets) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "d41a9663-e5ad-47a7-955e-3803ae4e23c0", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0OTIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Destination Ports (packets) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"destination.port:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.port:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", - "interval": "auto" - }, - "title": "Destination Ports (packets) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "3a4209e2-281c-467e-b5cb-315bf4a2661f", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0OTMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Source Ports (packets) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"source.port:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* source.port:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", - "interval": "auto" - }, - "title": "Source Ports (packets) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "201d7dd1-a880-4a64-b631-db5629340db9", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0OTQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "TCP Flags (packets) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"netflow.tcp_control_bits:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.tcp_control_bits:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", - "interval": "auto" - }, - "title": "TCP Flags (packets) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "8f83cf97-4a48-421f-8db5-690297d1f4fb", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0OTUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "Types of Service (packets) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"netflow.ip_class_of_service:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.ip_class_of_service:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", - "interval": "auto" - }, - "title": "Types of Service (packets) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "a1704d46-15fc-41c2-851d-796ceb49877f", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0OTYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "query_string": { - "query": "*" - } - } - } - }, - "title": "VLANs (packets) [Filebeat Netflow]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "listeners": {}, - "params": { - "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"netflow.vlan_id:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.vlan_id:(.+) \u003e .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", - "interval": "auto" - }, - "title": "VLANs (packets) [Filebeat Netflow]", - "type": "timelion" - } - }, - "id": "15e2a267-2495-4df2-a121-abe410d2f18c", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0OTcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "ToS Count [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Types of Service", - "field": "netflow.ip_class_of_service" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "fontSize": "32", - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "36", - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "handleNoResults": true, - "type": "gauge" - }, - "title": "ToS Count [Filebeat Netflow]", - "type": "metric" - } - }, - "id": "f27c1479-0625-4cdc-92de-672e47db0f87", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0OTgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "VLAN Count [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "VLANs", - "field": "netflow.vlan_id" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "fontSize": "32", - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "36", - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "handleNoResults": true, - "type": "gauge" - }, - "title": "VLAN Count [Filebeat Netflow]", - "type": "metric" - } - }, - "id": "0177bf1a-cba8-4ba6-a1d7-73caed86ffc2", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM0OTksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Autonomous System Count [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Autonomous Systems", - "field": "destination.as.organization.name" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "fontSize": "32", - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "36", - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "handleNoResults": true, - "type": "gauge" - }, - "title": "Autonomous System Count [Filebeat Netflow]", - "type": "metric" - } - }, - "id": "d5568704-e30b-4108-bb49-06a9b8dce6a6", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM1MDAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "City Count [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Cities", - "field": "destination.geo.city_name" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "fontSize": "32", - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "36", - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "handleNoResults": true, - "type": "gauge" - }, - "title": "City Count [Filebeat Netflow]", - "type": "metric" - } - }, - "id": "16262df9-a979-4136-935e-d883c7d373d7", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM1MDEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "Country Count [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Countries", - "field": "destination.geo.country_name" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "fontSize": "32", - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "36", - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "handleNoResults": true, - "type": "gauge" - }, - "title": "Country Count [Filebeat Netflow]", - "type": "metric" - } - }, - "id": "63ef5338-fdf2-488e-b78a-f0e98daccc95", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM1MDIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "query_string": { - "analyze_wildcard": true, - "query": "*" - } - } - } - }, - "title": "TCP Flags Count [Filebeat Netflow]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "TCP Flag States", - "field": "netflow.tcp_control_bits" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "listeners": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "fontSize": "32", - "gauge": { - "autoExtend": false, - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 100 - } - ], - "gaugeColorMode": "None", - "gaugeStyle": "Full", - "gaugeType": "Metric", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "#333", - "labels": false, - "show": false, - "width": 2 - }, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": "36", - "labelColor": false, - "subText": "" - }, - "type": "simple", - "useRange": false, - "verticalSplit": false - }, - "handleNoResults": true, - "type": "gauge" - }, - "title": "TCP Flags Count [Filebeat Netflow]", - "type": "metric" - } - }, - "id": "2dca3025-692c-4876-8bcc-e0b248dc9819", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-07-11T04:44:38.685Z", - "version": "WzM1MDMsMV0=" - } - ], - "version": "7.2.0" -} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-traffic-analysis.ndjson b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-traffic-analysis.ndjson new file mode 100644 index 00000000000..3b08f8de185 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-traffic-analysis.ndjson @@ -0,0 +1,42 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Autonomous Systems (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"destination.as.organization.name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.as.organization.name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Autonomous Systems (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"abfa0b19-60cd-4984-9c3d-02ebf0aa1dfb","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Dashboard Navigation [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\\n***\"},\"title\":\"Dashboard Navigation [Filebeat Netflow]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Cities (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"destination.geo.city_name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.geo.city_name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Cities (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"1e74d5cb-556d-42ee-8042-88f6c1af47f0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Countries (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"destination.geo.country_name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.geo.country_name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Countries (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"5cfb2c9a-4815-4a25-9d7e-ab0ef55ffe63","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Destination Ports (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"destination.port:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.port:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Destination Ports (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"3e27fb83-b3e3-4c15-b999-ed6da49b7a86","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"TCP Flags (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"netflow.tcp_control_bits:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.tcp_control_bits:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"TCP Flags (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"5d868836-c7b2-4812-bf47-4838aac281d9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"VLANs (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"netflow.vlan_id:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.vlan_id:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"VLANs (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"a5efa3dd-f53a-4d14-9d3f-ee73345fd93d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Types of Service (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"netflow.ip_class_of_service:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.ip_class_of_service:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Types of Service (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"717cd7c7-bfca-435d-8ee7-38259927aade","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Source Ports (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"source.port:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* source.port:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Source Ports (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"f668ecdb-eec7-44c6-9060-26aaf9fc8404","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Sources (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"source.ip:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* source.ip:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Sources (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"6bbd6712-494a-4fd9-b3d3-757304681f0f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Destinations (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"destination.ip:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.ip:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Destinations (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"681f0ce4-d828-4a99-b643-0c0715530050","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Sources (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Sources (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"fd6c1144-5026-4795-b7af-a9aa3fc28c56","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Source Ports (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Port\",\"field\":\"source.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Source Ports (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0b2818fd-aecc-4bef-b566-9466eb702ae4","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destinations (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination\",\"field\":\"destination.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destinations (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"248e00b4-8fc2-406f-8907-729d5380aaa7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destination Ports (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Port\",\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destination Ports (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"cf399a85-e348-4ac1-a399-e8f5a44114c4","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Types of Service (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Type of Service\",\"field\":\"netflow.ip_class_of_service\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Types of Service (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"1cf30eac-aae8-47fa-a156-37f6346d2d5a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"VLANs (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"VLAN\",\"field\":\"netflow.vlan_id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"VLANs (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"7fa6cb0a-518d-46e9-a228-15cd4253a957","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"TCP Flags (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"TCP Flags\",\"field\":\"netflow.tcp_control_bits\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":255},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"TCP Flags (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"57e13a20-e94f-4465-a942-42148634a1d2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Autonomous Systems (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Autonomous System\",\"field\":\"destination.as.organization.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Autonomous Systems (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"f772028b-d5a6-4d55-b441-493871981a60","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Countries (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Country\",\"field\":\"destination.geo.country_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Countries (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"a14c3248-952d-42aa-bd7d-9b39157a776f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Cities (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"City\",\"field\":\"destination.geo.city_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Cities (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"a685420e-c45f-4b62-932b-5b76ac8b8ca2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Sources (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"source.ip:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* source.ip:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Sources (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"0528bc66-6981-400a-a02d-c1d221b38890","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destination Count [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Destinations\",\"field\":\"destination.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"fontSize\":\"32\",\"handleNoResults\":true},\"title\":\"Destination Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"e99dc327-03de-4561-9e0c-f550710125c2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Source Count [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Sources\",\"field\":\"source.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Source Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"32e712ed-fa15-4db7-8575-8476e8d65b03","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Destinations (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"destination.ip:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.ip:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Destinations (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"d59a031c-70d6-47d7-966d-7fcb805be9be","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destination Port Count [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Destination Ports\",\"field\":\"destination.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Destination Port Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"af707b01-29f1-462b-b279-6d2e803f3645","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Source Port Count [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Source Ports\",\"field\":\"source.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Source Port Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"ddd27657-c3c8-4f82-8059-6d7763dd599b","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Autonomous Systems (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"destination.as.organization.name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.as.organization.name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Autonomous Systems (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"30cd1009-2925-4c9b-820d-d689f5d1efda","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Cities (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"destination.geo.city_name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.geo.city_name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Cities (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"7d447b22-89dc-4f32-b549-4b8620af4d76","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Countries (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"destination.geo.country_name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.geo.country_name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Countries (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"d41a9663-e5ad-47a7-955e-3803ae4e23c0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Destination Ports (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"destination.port:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.port:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Destination Ports (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"3a4209e2-281c-467e-b5cb-315bf4a2661f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Source Ports (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"source.port:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* source.port:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Source Ports (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"201d7dd1-a880-4a64-b631-db5629340db9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"TCP Flags (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"netflow.tcp_control_bits:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.tcp_control_bits:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"TCP Flags (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"8f83cf97-4a48-421f-8db5-690297d1f4fb","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Types of Service (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"netflow.ip_class_of_service:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.ip_class_of_service:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Types of Service (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"a1704d46-15fc-41c2-851d-796ceb49877f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"VLANs (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"netflow.vlan_id:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.vlan_id:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"VLANs (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"15e2a267-2495-4df2-a121-abe410d2f18c","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4ODAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"ToS Count [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Types of Service\",\"field\":\"netflow.ip_class_of_service\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"ToS Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"f27c1479-0625-4cdc-92de-672e47db0f87","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4ODEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"VLAN Count [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"VLANs\",\"field\":\"netflow.vlan_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"VLAN Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"0177bf1a-cba8-4ba6-a1d7-73caed86ffc2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4ODIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Autonomous System Count [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Autonomous Systems\",\"field\":\"destination.as.organization.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Autonomous System Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"d5568704-e30b-4108-bb49-06a9b8dce6a6","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4ODMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"City Count [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Cities\",\"field\":\"destination.geo.city_name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"City Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"16262df9-a979-4136-935e-d883c7d373d7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4ODQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Country Count [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Countries\",\"field\":\"destination.geo.country_name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Country Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"63ef5338-fdf2-488e-b78a-f0e98daccc95","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4ODUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"TCP Flags Count [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"TCP Flag States\",\"field\":\"netflow.tcp_control_bits\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"TCP Flags Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"2dca3025-692c-4876-8bcc-e0b248dc9819","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4ODYsMV0="} +{"attributes":{"description":"Netflow traffic analysis","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"globalState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"input.type\",\"negate\":false,\"params\":{\"query\":\"netflow\"},\"type\":\"phrase\",\"value\":\"netflow\"},\"query\":{\"match\":{\"input.type\":{\"query\":\"netflow\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"version\":true,\"query\":{\"query\":\"\",\"language\":\"kuery\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":84,\"w\":24,\"h\":8,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":108,\"w\":24,\"h\":8,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":108,\"w\":24,\"h\":8,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":36,\"w\":24,\"h\":8,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":84,\"w\":24,\"h\":8,\"i\":\"9\"},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":60,\"w\":24,\"h\":8,\"i\":\"10\"},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":60,\"w\":24,\"h\":8,\"i\":\"11\"},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":36,\"w\":24,\"h\":8,\"i\":\"12\"},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":24,\"h\":8,\"i\":\"13\"},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":12,\"w\":24,\"h\":8,\"i\":\"14\"},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":16,\"h\":8,\"i\":\"15\"},\"panelIndex\":\"15\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":28,\"w\":16,\"h\":8,\"i\":\"16\"},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":4,\"w\":16,\"h\":8,\"i\":\"17\"},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":28,\"w\":16,\"h\":8,\"i\":\"18\"},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":52,\"w\":16,\"h\":8,\"i\":\"19\"},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":52,\"w\":16,\"h\":8,\"i\":\"20\"},\"panelIndex\":\"20\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_20\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":76,\"w\":16,\"h\":8,\"i\":\"21\"},\"panelIndex\":\"21\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_21\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":76,\"w\":16,\"h\":8,\"i\":\"22\"},\"panelIndex\":\"22\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_22\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":100,\"w\":16,\"h\":8,\"i\":\"23\"},\"panelIndex\":\"23\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_23\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":100,\"w\":16,\"h\":8,\"i\":\"24\"},\"panelIndex\":\"24\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_24\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":24,\"h\":8,\"i\":\"25\"},\"panelIndex\":\"25\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_25\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":40,\"y\":4,\"w\":8,\"h\":8,\"i\":\"26\"},\"panelIndex\":\"26\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_26\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":4,\"w\":8,\"h\":8,\"i\":\"27\"},\"panelIndex\":\"27\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_27\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":20,\"w\":24,\"h\":8,\"i\":\"28\"},\"panelIndex\":\"28\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_28\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":40,\"y\":28,\"w\":8,\"h\":8,\"i\":\"29\"},\"panelIndex\":\"29\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_29\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":28,\"w\":8,\"h\":8,\"i\":\"30\"},\"panelIndex\":\"30\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_30\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":92,\"w\":24,\"h\":8,\"i\":\"31\"},\"panelIndex\":\"31\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_31\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":116,\"w\":24,\"h\":8,\"i\":\"34\"},\"panelIndex\":\"34\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_34\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":116,\"w\":24,\"h\":8,\"i\":\"35\"},\"panelIndex\":\"35\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_35\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":44,\"w\":24,\"h\":8,\"i\":\"38\"},\"panelIndex\":\"38\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_38\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":44,\"w\":24,\"h\":8,\"i\":\"42\"},\"panelIndex\":\"42\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_42\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":92,\"w\":24,\"h\":8,\"i\":\"44\"},\"panelIndex\":\"44\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_44\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":68,\"w\":24,\"h\":8,\"i\":\"45\"},\"panelIndex\":\"45\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_45\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":68,\"w\":24,\"h\":8,\"i\":\"47\"},\"panelIndex\":\"47\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_47\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":52,\"w\":8,\"h\":8,\"i\":\"48\"},\"panelIndex\":\"48\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_48\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":40,\"y\":52,\"w\":8,\"h\":8,\"i\":\"49\"},\"panelIndex\":\"49\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_49\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":40,\"y\":76,\"w\":8,\"h\":8,\"i\":\"50\"},\"panelIndex\":\"50\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_50\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":40,\"y\":100,\"w\":8,\"h\":8,\"i\":\"51\"},\"panelIndex\":\"51\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_51\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":100,\"w\":8,\"h\":8,\"i\":\"52\"},\"panelIndex\":\"52\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_52\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":76,\"w\":8,\"h\":8,\"i\":\"53\"},\"panelIndex\":\"53\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_53\"}]","timeRestore":false,"title":"[Filebeat Netflow] Traffic Analysis","version":1},"coreMigrationVersion":"8.0.0","id":"38012abe-c611-4124-8497-381fcd85acc8","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"abfa0b19-60cd-4984-9c3d-02ebf0aa1dfb","name":"1:panel_1","type":"visualization"},{"id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","name":"4:panel_4","type":"visualization"},{"id":"1e74d5cb-556d-42ee-8042-88f6c1af47f0","name":"5:panel_5","type":"visualization"},{"id":"5cfb2c9a-4815-4a25-9d7e-ab0ef55ffe63","name":"6:panel_6","type":"visualization"},{"id":"3e27fb83-b3e3-4c15-b999-ed6da49b7a86","name":"7:panel_7","type":"visualization"},{"id":"5d868836-c7b2-4812-bf47-4838aac281d9","name":"9:panel_9","type":"visualization"},{"id":"a5efa3dd-f53a-4d14-9d3f-ee73345fd93d","name":"10:panel_10","type":"visualization"},{"id":"717cd7c7-bfca-435d-8ee7-38259927aade","name":"11:panel_11","type":"visualization"},{"id":"f668ecdb-eec7-44c6-9060-26aaf9fc8404","name":"12:panel_12","type":"visualization"},{"id":"6bbd6712-494a-4fd9-b3d3-757304681f0f","name":"13:panel_13","type":"visualization"},{"id":"681f0ce4-d828-4a99-b643-0c0715530050","name":"14:panel_14","type":"visualization"},{"id":"fd6c1144-5026-4795-b7af-a9aa3fc28c56","name":"15:panel_15","type":"visualization"},{"id":"0b2818fd-aecc-4bef-b566-9466eb702ae4","name":"16:panel_16","type":"visualization"},{"id":"248e00b4-8fc2-406f-8907-729d5380aaa7","name":"17:panel_17","type":"visualization"},{"id":"cf399a85-e348-4ac1-a399-e8f5a44114c4","name":"18:panel_18","type":"visualization"},{"id":"1cf30eac-aae8-47fa-a156-37f6346d2d5a","name":"19:panel_19","type":"visualization"},{"id":"7fa6cb0a-518d-46e9-a228-15cd4253a957","name":"20:panel_20","type":"visualization"},{"id":"57e13a20-e94f-4465-a942-42148634a1d2","name":"21:panel_21","type":"visualization"},{"id":"f772028b-d5a6-4d55-b441-493871981a60","name":"22:panel_22","type":"visualization"},{"id":"a14c3248-952d-42aa-bd7d-9b39157a776f","name":"23:panel_23","type":"visualization"},{"id":"a685420e-c45f-4b62-932b-5b76ac8b8ca2","name":"24:panel_24","type":"visualization"},{"id":"0528bc66-6981-400a-a02d-c1d221b38890","name":"25:panel_25","type":"visualization"},{"id":"e99dc327-03de-4561-9e0c-f550710125c2","name":"26:panel_26","type":"visualization"},{"id":"32e712ed-fa15-4db7-8575-8476e8d65b03","name":"27:panel_27","type":"visualization"},{"id":"d59a031c-70d6-47d7-966d-7fcb805be9be","name":"28:panel_28","type":"visualization"},{"id":"af707b01-29f1-462b-b279-6d2e803f3645","name":"29:panel_29","type":"visualization"},{"id":"ddd27657-c3c8-4f82-8059-6d7763dd599b","name":"30:panel_30","type":"visualization"},{"id":"30cd1009-2925-4c9b-820d-d689f5d1efda","name":"31:panel_31","type":"visualization"},{"id":"7d447b22-89dc-4f32-b549-4b8620af4d76","name":"34:panel_34","type":"visualization"},{"id":"d41a9663-e5ad-47a7-955e-3803ae4e23c0","name":"35:panel_35","type":"visualization"},{"id":"3a4209e2-281c-467e-b5cb-315bf4a2661f","name":"38:panel_38","type":"visualization"},{"id":"201d7dd1-a880-4a64-b631-db5629340db9","name":"42:panel_42","type":"visualization"},{"id":"8f83cf97-4a48-421f-8db5-690297d1f4fb","name":"44:panel_44","type":"visualization"},{"id":"a1704d46-15fc-41c2-851d-796ceb49877f","name":"45:panel_45","type":"visualization"},{"id":"15e2a267-2495-4df2-a121-abe410d2f18c","name":"47:panel_47","type":"visualization"},{"id":"f27c1479-0625-4cdc-92de-672e47db0f87","name":"48:panel_48","type":"visualization"},{"id":"0177bf1a-cba8-4ba6-a1d7-73caed86ffc2","name":"49:panel_49","type":"visualization"},{"id":"d5568704-e30b-4108-bb49-06a9b8dce6a6","name":"50:panel_50","type":"visualization"},{"id":"16262df9-a979-4136-935e-d883c7d373d7","name":"51:panel_51","type":"visualization"},{"id":"63ef5338-fdf2-488e-b78a-f0e98daccc95","name":"52:panel_52","type":"visualization"},{"id":"2dca3025-692c-4876-8bcc-e0b248dc9819","name":"53:panel_53","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDUsMV0="} diff --git a/x-pack/filebeat/module/o365/_meta/kibana/7/dashboard/Filebeat-O365-Audit.json b/x-pack/filebeat/module/o365/_meta/kibana/7/dashboard/Filebeat-O365-Audit.json deleted file mode 100644 index e3f04a31234..00000000000 --- a/x-pack/filebeat/module/o365/_meta/kibana/7/dashboard/Filebeat-O365-Audit.json +++ /dev/null @@ -1,1051 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Sample dashboard for Office 365 Management Activity events", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Total audit events" - }, - "gridData": { - "h": 6, - "i": "b6942e2a-81dc-40e4-a932-8b7a864b28bc", - "w": 10, - "x": 0, - "y": 0 - }, - "panelIndex": "b6942e2a-81dc-40e4-a932-8b7a864b28bc", - "panelRefName": "panel_0", - "title": "Total audit events", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Event histogram by service" - }, - "gridData": { - "h": 14, - "i": "9673e6df-4b1e-4771-b1c6-c41c9bfc7272", - "w": 38, - "x": 10, - "y": 0 - }, - "panelIndex": "9673e6df-4b1e-4771-b1c6-c41c9bfc7272", - "panelRefName": "panel_1", - "title": "Event histogram by service", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "colors": { - "alert": "#EF843C", - "event": "#7EB26D" - }, - "legendOpen": true, - "title": "Events by type", - "vis": { - "colors": { - "alert": "#E24D42", - "event": "#7EB26D" - }, - "legendOpen": true - } - }, - "gridData": { - "h": 8, - "i": "70ab7239-c65c-41da-8242-da61750745d7", - "w": 10, - "x": 0, - "y": 6 - }, - "panelIndex": "70ab7239-c65c-41da-8242-da61750745d7", - "panelRefName": "panel_2", - "title": "Events by type", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "colors": { - "failure": "#E24D42", - "success": "#629E51" - }, - "legendOpen": false, - "title": "Top users by authentication failures", - "vis": { - "colors": { - "failure": "#E24D42", - "success": "#629E51" - }, - "legendOpen": true - } - }, - "gridData": { - "h": 17, - "i": "775ced7d-7c58-44bc-8d4e-2a757d2c218c", - "w": 10, - "x": 0, - "y": 14 - }, - "panelIndex": "775ced7d-7c58-44bc-8d4e-2a757d2c218c", - "panelRefName": "panel_3", - "title": "Top users by authentication failures", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "hiddenLayers": [], - "isLayerTOCOpen": false, - "mapCenter": { - "lat": 42.68781, - "lon": -48.94209, - "zoom": 1.88 - }, - "openTOCDetails": [], - "title": "Client geolocation map" - }, - "gridData": { - "h": 17, - "i": "15fe975b-6b8b-4445-872d-e06c041e2c31", - "w": 38, - "x": 10, - "y": 14 - }, - "panelIndex": "15fe975b-6b8b-4445-872d-e06c041e2c31", - "panelRefName": "panel_4", - "title": "Client geolocation map", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Data Loss Prevention alerts" - }, - "gridData": { - "h": 13, - "i": "481f1778-caad-4971-b598-bb61c94bf998", - "w": 48, - "x": 0, - "y": 31 - }, - "panelIndex": "481f1778-caad-4971-b598-bb61c94bf998", - "panelRefName": "panel_5", - "title": "Data Loss Prevention alerts", - "version": "7.6.0" - } - ], - "timeRestore": false, - "title": "[Filebeat o365] Audit Dashboard ECS", - "version": 1 - }, - "id": "712e2c00-685d-11ea-8d6a-292ef5d68366", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "0be1adb0-6860-11ea-8d6a-292ef5d68366", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "8b033510-685a-11ea-8d6a-292ef5d68366", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "d43c95a0-6864-11ea-8d6a-292ef5d68366", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "897d0c70-6869-11ea-8d6a-292ef5d68366", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "dbae13c0-685c-11ea-8d6a-292ef5d68366", - "name": "panel_4", - "type": "map" - }, - { - "id": "8b8e5a10-6886-11ea-8d6a-292ef5d68366", - "name": "panel_5", - "type": "search" - } - ], - "type": "dashboard", - "updated_at": "2020-03-17T19:40:51.528Z", - "version": "WzY3MywyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "savedSearchRefName": "search_0", - "title": "Audit Event Count [Filebeat o365]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 40, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Audit Event Count [Filebeat o365]", - "type": "metric" - } - }, - "id": "0be1adb0-6860-11ea-8d6a-292ef5d68366", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "fdc14020-6859-11ea-8d6a-292ef5d68366", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-03-17T15:42:14.802Z", - "version": "WzU5OCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "savedSearchRefName": "search_0", - "title": "Events Histogram [Filebeat o365]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": true, - "otherBucketLabel": "Other", - "size": 50 - }, - "schema": "group", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "2020-02-05T03:25:59.045Z", - "to": "2020-02-29T10:59:01.067Z" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "dimensions": { - "series": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "", - "origin": "http://localhost:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "event.code: Descending", - "params": {} - } - ], - "x": { - "accessor": 1, - "aggType": "date_histogram", - "format": { - "id": "date", - "params": { - "pattern": "YYYY-MM-DD HH:mm" - } - }, - "label": "@timestamp per 12 hours", - "params": { - "bounds": { - "max": "2020-02-29T10:59:01.067Z", - "min": "2020-02-05T03:25:59.045Z" - }, - "date": true, - "format": "YYYY-MM-DD HH:mm", - "interval": "PT12H", - "intervalESUnit": "h", - "intervalESValue": 12 - } - }, - "y": [ - { - "accessor": 2, - "aggType": "count", - "format": { - "id": "number" - }, - "label": "Count", - "params": {} - } - ] - }, - "grid": { - "categoryLines": false - }, - "labels": { - "show": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Events Histogram [Filebeat o365]", - "type": "histogram" - } - }, - "id": "8b033510-685a-11ea-8d6a-292ef5d68366", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "fdc14020-6859-11ea-8d6a-292ef5d68366", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-03-17T14:21:07.680Z", - "version": "WzU3MSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "savedSearchRefName": "search_0", - "title": "Audit Event Type [Filebeat o365]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.kind", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": true, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "metric": { - "accessor": 0, - "aggType": "count", - "format": { - "id": "number" - }, - "label": "Count", - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Audit Event Type [Filebeat o365]", - "type": "pie" - } - }, - "id": "d43c95a0-6864-11ea-8d6a-292ef5d68366", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "fdc14020-6859-11ea-8d6a-292ef5d68366", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-03-17T15:34:45.498Z", - "version": "WzU5NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.category", - "negate": false, - "params": { - "query": "authentication" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.category": "authentication" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Top Authentication Failures [Filebeat o365]", - "uiStateJSON": { - "vis": { - "colors": { - "failure": "#E24D42", - "success": "#629E51" - }, - "legendOpen": true - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "event.outcome", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "asc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 2 - }, - "schema": "group", - "type": "terms" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "row": true, - "size": 15 - }, - "schema": "split", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 200 - }, - "position": "left", - "scale": { - "type": "linear" - }, - "show": false, - "style": {}, - "title": {}, - "type": "category" - } - ], - "dimensions": { - "series": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "", - "origin": "http://localhost:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "event.outcome: Ascending", - "params": {} - } - ], - "splitRow": [ - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "", - "origin": "http://localhost:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "user.name: Descending", - "params": {} - } - ], - "x": null, - "y": [ - { - "accessor": 2, - "aggType": "count", - "format": { - "id": "number" - }, - "label": "Count", - "params": {} - } - ] - }, - "grid": { - "categoryLines": false, - "valueAxis": "" - }, - "labels": { - "show": true - }, - "legendPosition": "bottom", - "orderBucketsBySum": true, - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": true, - "rotate": 75, - "show": false, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "bottom", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": false, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Top Authentication Failures [Filebeat o365]", - "type": "horizontal_bar" - } - }, - "id": "897d0c70-6869-11ea-8d6a-292ef5d68366", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "fdc14020-6859-11ea-8d6a-292ef5d68366", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-03-17T17:33:41.990Z", - "version": "WzYwOCwxXQ==" - }, - { - "attributes": { - "bounds": { - "coordinates": [ - [ - [ - -52.43037, - 65.94892 - ], - [ - -52.43037, - -22.98633 - ], - [ - 85.77811, - -22.98633 - ], - [ - 85.77811, - 65.94892 - ], - [ - -52.43037, - 65.94892 - ] - ] - ], - "type": "Polygon" - }, - "description": "", - "layerListJSON": "[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"0b910b6c-77c8-4223-892a-1ebf69b0ccb4\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"type\":\"ES_GEO_GRID\",\"id\":\"3ba31ffc-7051-44bf-96a0-a684020cd2a3\",\"geoField\":\"source.geo.location\",\"requestType\":\"point\",\"resolution\":\"FINE\",\"applyGlobalQuery\":true,\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"fillColor\":{\"type\":\"DYNAMIC\",\"options\":{\"color\":\"Yellow to Red\",\"colorCategory\":\"palette_0\",\"field\":{\"name\":\"doc_count\",\"origin\":\"source\"},\"fieldMetaOptions\":{\"isEnabled\":true,\"sigma\":3},\"type\":\"ORDINAL\",\"useCustomColorRamp\":false}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFF\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":0}},\"iconSize\":{\"type\":\"DYNAMIC\",\"options\":{\"minSize\":8,\"maxSize\":32,\"field\":{\"name\":\"doc_count\",\"origin\":\"source\"},\"fieldMetaOptions\":{\"isEnabled\":true,\"sigma\":3}}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"DYNAMIC\",\"options\":{\"field\":{\"name\":\"doc_count\",\"origin\":\"source\"}}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbol\":{\"options\":{\"symbolizeAs\":\"circle\",\"symbolId\":\"airfield\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"acc53b7b-3411-406b-9371-6fa62b6b9365\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\"}]", - "mapStateJSON": "{\"zoom\":2.88,\"center\":{\"lon\":16.67387,\"lat\":30.87292},\"timeFilters\":{\"from\":\"now-7d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"event.dataset:\\\"o365.audit\\\" \",\"language\":\"kuery\"},\"filters\":[]}", - "title": "Client Geo Map [Filebeat o365 audit]", - "uiStateJSON": { - "isLayerTOCOpen": true, - "openTOCDetails": [] - } - }, - "id": "dbae13c0-685c-11ea-8d6a-292ef5d68366", - "migrationVersion": { - "map": "7.6.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "layer_1_source_index_pattern", - "type": "index-pattern" - } - ], - "type": "map", - "updated_at": "2020-03-17T14:45:09.571Z", - "version": "WzU4NCwxXQ==" - }, - { - "attributes": { - "columns": [ - "event.category", - "event.type", - "event.action", - "event.outcome", - "user.name", - "file.name", - "rule.name" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "o365.audit" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "o365.audit" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "event.kind", - "negate": false, - "params": { - "query": "alert" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.kind": "alert" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "ComplianceDLPSharePoint", - "ComplianceDLPExchange" - ], - "type": "phrases", - "value": "ComplianceDLPSharePoint, ComplianceDLPExchange" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "ComplianceDLPSharePoint" - } - }, - { - "match_phrase": { - "event.code": "ComplianceDLPExchange" - } - } - ] - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Data Loss Prevention [Filebeat o365]", - "version": 1 - }, - "id": "8b8e5a10-6886-11ea-8d6a-292ef5d68366", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-03-17T19:36:06.449Z", - "version": "WzY3MCwyXQ==" - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.dataset:\"o365.audit\" " - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Audit Events [Filebeat O365]", - "version": 1 - }, - "id": "fdc14020-6859-11ea-8d6a-292ef5d68366", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-03-17T14:17:10.688Z", - "version": "WzU2OSwxXQ==" - } - ], - "version": "7.6.0" -} diff --git a/x-pack/filebeat/module/o365/_meta/kibana/7/dashboard/Filebeat-O365-Audit.ndjson b/x-pack/filebeat/module/o365/_meta/kibana/7/dashboard/Filebeat-O365-Audit.ndjson new file mode 100644 index 00000000000..43b3588ee68 --- /dev/null +++ b/x-pack/filebeat/module/o365/_meta/kibana/7/dashboard/Filebeat-O365-Audit.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset:\\\"o365.audit\\\" \"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Audit Events [Filebeat O365]","version":1},"coreMigrationVersion":"8.0.0","id":"fdc14020-6859-11ea-8d6a-292ef5d68366","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:49.253Z","version":"WzQzMTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"savedSearchRefName":"search_0","title":"Audit Event Count [Filebeat o365]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":40,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Audit Event Count [Filebeat o365]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"0be1adb0-6860-11ea-8d6a-292ef5d68366","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"fdc14020-6859-11ea-8d6a-292ef5d68366","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:49.253Z","version":"WzQzMDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"savedSearchRefName":"search_0","title":"Events Histogram [Filebeat o365]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":50},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-02-05T03:25:59.045Z\",\"to\":\"2020-02-29T10:59:01.067Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"event.code: Descending\",\"params\":{}}],\"x\":{\"accessor\":1,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"label\":\"@timestamp per 12 hours\",\"params\":{\"bounds\":{\"max\":\"2020-02-29T10:59:01.067Z\",\"min\":\"2020-02-05T03:25:59.045Z\"},\"date\":true,\"format\":\"YYYY-MM-DD HH:mm\",\"interval\":\"PT12H\",\"intervalESUnit\":\"h\",\"intervalESValue\":12}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Events Histogram [Filebeat o365]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"8b033510-685a-11ea-8d6a-292ef5d68366","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"fdc14020-6859-11ea-8d6a-292ef5d68366","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:49.253Z","version":"WzQzMDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"savedSearchRefName":"search_0","title":"Audit Event Type [Filebeat o365]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.kind\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Audit Event Type [Filebeat o365]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"d43c95a0-6864-11ea-8d6a-292ef5d68366","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"fdc14020-6859-11ea-8d6a-292ef5d68366","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:49.253Z","version":"WzQzMDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.category\", \"negate\": false, \"params\": {\"query\": \"authentication\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.category\": \"authentication\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top Authentication Failures [Filebeat o365]","uiStateJSON":"{\"vis\": {\"colors\": {\"failure\": \"#E24D42\", \"success\": \"#629E51\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"asc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":2},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"split\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":false,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"event.outcome: Ascending\",\"params\":{}}],\"splitRow\":[{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"user.name: Descending\",\"params\":{}}],\"x\":null,\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}]},\"grid\":{\"categoryLines\":false,\"valueAxis\":\"\"},\"labels\":{\"show\":true},\"legendPosition\":\"bottom\",\"orderBucketsBySum\":true,\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":false,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":false,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"row\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Top Authentication Failures [Filebeat o365]\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"897d0c70-6869-11ea-8d6a-292ef5d68366","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"fdc14020-6859-11ea-8d6a-292ef5d68366","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:49.253Z","version":"WzQzMDgsMV0="} +{"attributes":{"description":"","layerListJSON":"[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"0b910b6c-77c8-4223-892a-1ebf69b0ccb4\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"type\":\"ES_GEO_GRID\",\"id\":\"3ba31ffc-7051-44bf-96a0-a684020cd2a3\",\"geoField\":\"source.geo.location\",\"requestType\":\"point\",\"resolution\":\"FINE\",\"applyGlobalQuery\":true,\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"fillColor\":{\"type\":\"DYNAMIC\",\"options\":{\"color\":\"Yellow to Red\",\"colorCategory\":\"palette_0\",\"field\":{\"name\":\"doc_count\",\"origin\":\"source\"},\"fieldMetaOptions\":{\"isEnabled\":true,\"sigma\":3},\"type\":\"ORDINAL\",\"useCustomColorRamp\":false}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFF\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":0}},\"iconSize\":{\"type\":\"DYNAMIC\",\"options\":{\"minSize\":8,\"maxSize\":32,\"field\":{\"name\":\"doc_count\",\"origin\":\"source\"},\"fieldMetaOptions\":{\"isEnabled\":true,\"sigma\":3}}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"DYNAMIC\",\"options\":{\"field\":{\"name\":\"doc_count\",\"origin\":\"source\"}}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"airfield\"}}},\"isTimeAware\":true},\"id\":\"acc53b7b-3411-406b-9371-6fa62b6b9365\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\"}]","mapStateJSON":"{\"zoom\":2.88,\"center\":{\"lon\":16.67387,\"lat\":30.87292},\"timeFilters\":{\"from\":\"now-7d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"event.dataset:\\\"o365.audit\\\" \",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false}}","title":"Client Geo Map [Filebeat o365 audit]","uiStateJSON":"{\"isLayerTOCOpen\": true, \"openTOCDetails\": []}"},"coreMigrationVersion":"8.0.0","id":"dbae13c0-685c-11ea-8d6a-292ef5d68366","migrationVersion":{"map":"7.14.0"},"references":[{"id":"filebeat-*","name":"layer_1_source_index_pattern","type":"index-pattern"}],"type":"map","updated_at":"2021-08-04T16:33:49.253Z","version":"WzQzMDksMV0="} +{"attributes":{"columns":["event.category","event.type","event.action","event.outcome","user.name","file.name","rule.name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"o365.audit\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"o365.audit\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"alert\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"alert\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"ComplianceDLPSharePoint\", \"ComplianceDLPExchange\"], \"type\": \"phrases\", \"value\": \"ComplianceDLPSharePoint, ComplianceDLPExchange\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"ComplianceDLPSharePoint\"}}, {\"match_phrase\": {\"event.code\": \"ComplianceDLPExchange\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Data Loss Prevention [Filebeat o365]","version":1},"coreMigrationVersion":"8.0.0","id":"8b8e5a10-6886-11ea-8d6a-292ef5d68366","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:49.253Z","version":"WzQzMTAsMV0="} +{"attributes":{"description":"Sample dashboard for Office 365 Management Activity events","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"b6942e2a-81dc-40e4-a932-8b7a864b28bc\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"b6942e2a-81dc-40e4-a932-8b7a864b28bc\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total audit events\",\"panelRefName\":\"panel_b6942e2a-81dc-40e4-a932-8b7a864b28bc\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"9673e6df-4b1e-4771-b1c6-c41c9bfc7272\",\"w\":38,\"x\":10,\"y\":0},\"panelIndex\":\"9673e6df-4b1e-4771-b1c6-c41c9bfc7272\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Event histogram by service\",\"panelRefName\":\"panel_9673e6df-4b1e-4771-b1c6-c41c9bfc7272\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"70ab7239-c65c-41da-8242-da61750745d7\",\"w\":10,\"x\":0,\"y\":6},\"panelIndex\":\"70ab7239-c65c-41da-8242-da61750745d7\",\"embeddableConfig\":{\"colors\":{\"alert\":\"#EF843C\",\"event\":\"#7EB26D\"},\"legendOpen\":true,\"vis\":{\"colors\":{\"alert\":\"#E24D42\",\"event\":\"#7EB26D\"},\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Events by type\",\"panelRefName\":\"panel_70ab7239-c65c-41da-8242-da61750745d7\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":17,\"i\":\"775ced7d-7c58-44bc-8d4e-2a757d2c218c\",\"w\":10,\"x\":0,\"y\":14},\"panelIndex\":\"775ced7d-7c58-44bc-8d4e-2a757d2c218c\",\"embeddableConfig\":{\"colors\":{\"failure\":\"#E24D42\",\"success\":\"#629E51\"},\"legendOpen\":false,\"vis\":{\"colors\":{\"failure\":\"#E24D42\",\"success\":\"#629E51\"},\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Top users by authentication failures\",\"panelRefName\":\"panel_775ced7d-7c58-44bc-8d4e-2a757d2c218c\"},{\"version\":\"7.6.0\",\"type\":\"map\",\"gridData\":{\"h\":17,\"i\":\"15fe975b-6b8b-4445-872d-e06c041e2c31\",\"w\":38,\"x\":10,\"y\":14},\"panelIndex\":\"15fe975b-6b8b-4445-872d-e06c041e2c31\",\"embeddableConfig\":{\"hiddenLayers\":[],\"isLayerTOCOpen\":false,\"mapCenter\":{\"lat\":42.68781,\"lon\":-48.94209,\"zoom\":1.88},\"openTOCDetails\":[],\"enhancements\":{}},\"title\":\"Client geolocation map\",\"panelRefName\":\"panel_15fe975b-6b8b-4445-872d-e06c041e2c31\"},{\"version\":\"7.6.0\",\"type\":\"search\",\"gridData\":{\"h\":13,\"i\":\"481f1778-caad-4971-b598-bb61c94bf998\",\"w\":48,\"x\":0,\"y\":31},\"panelIndex\":\"481f1778-caad-4971-b598-bb61c94bf998\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Data Loss Prevention alerts\",\"panelRefName\":\"panel_481f1778-caad-4971-b598-bb61c94bf998\"}]","timeRestore":false,"title":"[Filebeat o365] Audit Dashboard ECS","version":1},"coreMigrationVersion":"8.0.0","id":"712e2c00-685d-11ea-8d6a-292ef5d68366","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"0be1adb0-6860-11ea-8d6a-292ef5d68366","name":"b6942e2a-81dc-40e4-a932-8b7a864b28bc:panel_b6942e2a-81dc-40e4-a932-8b7a864b28bc","type":"visualization"},{"id":"8b033510-685a-11ea-8d6a-292ef5d68366","name":"9673e6df-4b1e-4771-b1c6-c41c9bfc7272:panel_9673e6df-4b1e-4771-b1c6-c41c9bfc7272","type":"visualization"},{"id":"d43c95a0-6864-11ea-8d6a-292ef5d68366","name":"70ab7239-c65c-41da-8242-da61750745d7:panel_70ab7239-c65c-41da-8242-da61750745d7","type":"visualization"},{"id":"897d0c70-6869-11ea-8d6a-292ef5d68366","name":"775ced7d-7c58-44bc-8d4e-2a757d2c218c:panel_775ced7d-7c58-44bc-8d4e-2a757d2c218c","type":"visualization"},{"id":"dbae13c0-685c-11ea-8d6a-292ef5d68366","name":"15fe975b-6b8b-4445-872d-e06c041e2c31:panel_15fe975b-6b8b-4445-872d-e06c041e2c31","type":"map"},{"id":"8b8e5a10-6886-11ea-8d6a-292ef5d68366","name":"481f1778-caad-4971-b598-bb61c94bf998:panel_481f1778-caad-4971-b598-bb61c94bf998","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:49.253Z","version":"WzQzMDQsMV0="} diff --git a/x-pack/filebeat/module/o365/module.yml b/x-pack/filebeat/module/o365/module.yml index 2ef22242db8..22fc12c7878 100644 --- a/x-pack/filebeat/module/o365/module.yml +++ b/x-pack/filebeat/module/o365/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 712e2c00-685d-11ea-8d6a-292ef5d68366 - file: Filebeat-O365-Audit.json + file: Filebeat-O365-Audit.ndjson diff --git a/x-pack/filebeat/module/okta/_meta/kibana/7/dashboard/749203a0-67b1-11ea-a76f-bf44814e437d.json b/x-pack/filebeat/module/okta/_meta/kibana/7/dashboard/749203a0-67b1-11ea-a76f-bf44814e437d.json deleted file mode 100644 index a6d7d1c337b..00000000000 --- a/x-pack/filebeat/module/okta/_meta/kibana/7/dashboard/749203a0-67b1-11ea-a76f-bf44814e437d.json +++ /dev/null @@ -1,677 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Filebeat Okta module Kibana dashboard", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "hiddenLayers": [], - "isLayerTOCOpen": false, - "mapCenter": { - "lat": 26.54701, - "lon": -44.69098, - "zoom": 2.75 - }, - "openTOCDetails": [] - }, - "gridData": { - "h": 22, - "i": "8013824b-5a66-494c-acc5-3df8b7678879", - "w": 48, - "x": 0, - "y": 0 - }, - "panelIndex": "8013824b-5a66-494c-acc5-3df8b7678879", - "panelRefName": "panel_0", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "c6a66fe5-21a2-4308-8563-d4a7f5135d25", - "w": 10, - "x": 0, - "y": 22 - }, - "panelIndex": "c6a66fe5-21a2-4308-8563-d4a7f5135d25", - "panelRefName": "panel_1", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "195db901-dc2b-4b7d-80c3-742e2712ac2a", - "w": 9, - "x": 10, - "y": 22 - }, - "panelIndex": "195db901-dc2b-4b7d-80c3-742e2712ac2a", - "panelRefName": "panel_2", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "dc5128e2-0b4d-4dd5-bbc2-624f64467a77", - "w": 19, - "x": 29, - "y": 22 - }, - "panelIndex": "dc5128e2-0b4d-4dd5-bbc2-624f64467a77", - "panelRefName": "panel_3", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "a25a43ed-3262-486c-a482-1fac52f26128", - "w": 10, - "x": 19, - "y": 22 - }, - "panelIndex": "a25a43ed-3262-486c-a482-1fac52f26128", - "panelRefName": "panel_4", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 16, - "i": "c0d5bac3-7e50-4ef9-a401-5a596ec84ee9", - "w": 48, - "x": 0, - "y": 33 - }, - "panelIndex": "c0d5bac3-7e50-4ef9-a401-5a596ec84ee9", - "panelRefName": "panel_5", - "version": "8.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Filebeat Okta] Overview", - "version": 1 - }, - "id": "749203a0-67b1-11ea-a76f-bf44814e437d", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "281ca660-67b1-11ea-a76f-bf44814e437d", - "name": "panel_0", - "type": "map" - }, - { - "id": "545d6a00-67ae-11ea-a76f-bf44814e437d", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "7c6ec080-67c6-11ea-a76f-bf44814e437d", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "cda883a0-67c6-11ea-a76f-bf44814e437d", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "0a784b30-67c7-11ea-a76f-bf44814e437d", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "21028750-67ca-11ea-a76f-bf44814e437d", - "name": "panel_5", - "type": "search" - } - ], - "type": "dashboard", - "updated_at": "2020-03-17T00:05:24.763Z", - "version": "Wzk5LDJd" - }, - { - "attributes": { - "bounds": { - "coordinates": [ - [ - [ - -138.87786, - 64.23743 - ], - [ - -138.87786, - -28.21681 - ], - [ - 49.49591, - -28.21681 - ], - [ - 49.49591, - 64.23743 - ], - [ - -138.87786, - 64.23743 - ] - ] - ], - "type": "Polygon" - }, - "description": "", - "layerListJSON": "[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"6908e81b-1695-4445-aee4-8bc8c9f65600\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"id\":\"4b8bd321-4b90-4d97-83e0-2b12bf091f66\",\"geoField\":\"client.geo.location\",\"filterByMapBounds\":false,\"type\":\"ES_SEARCH\",\"tooltipProperties\":[],\"sortField\":\"\",\"sortOrder\":\"desc\",\"useTopHits\":false,\"topHitsSize\":1,\"applyGlobalQuery\":false,\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"airfield\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#54B399\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#41937c\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"dc52e707-92d7-4de7-becf-a3a8bfaa2c2d\",\"label\":\"Okta \",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"query\":{\"query\":\"event.dataset : \\\"okta.system\\\" \",\"language\":\"kuery\"}}]", - "mapStateJSON": "{\"zoom\":2.75,\"center\":{\"lon\":-44.69098,\"lat\":26.54701},\"timeFilters\":{\"from\":\"now-15w\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"index\":\"filebeat-*\",\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"okta.system\"},\"type\":\"phrase\"},\"query\":{\"match_phrase\":{\"event.dataset\":\"okta.system\"}}}]}", - "title": "Geolocation [Filebeat Okta]", - "uiStateJSON": { - "isLayerTOCOpen": true, - "openTOCDetails": [] - } - }, - "id": "281ca660-67b1-11ea-a76f-bf44814e437d", - "references": [ - { - "id": "filebeat-*", - "name": "layer_1_source_index_pattern", - "type": "index-pattern" - } - ], - "type": "map", - "updated_at": "2020-03-16T18:08:36.806Z", - "version": "WzYyLDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "okta.system" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "okta.system" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Event Outcome [Filebeat Okta]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.outcome", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Event Outcome [Filebeat Okta]", - "type": "pie" - } - }, - "id": "545d6a00-67ae-11ea-a76f-bf44814e437d", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-03-16T17:59:26.029Z", - "version": "WzU5LDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "okta.system" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "okta.system" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Transaction Types [Filebeat Okta]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "okta.transaction.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Transaction Types [Filebeat Okta]", - "type": "pie" - } - }, - "id": "7c6ec080-67c6-11ea-a76f-bf44814e437d", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-03-16T20:41:17.703Z", - "version": "WzY3LDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Time Series [Filebeat Okta]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "abd68650-67c6-11ea-8c7d-ed286611413e" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "event.dataset : \"okta.system\"" - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Time Series [Filebeat Okta]", - "type": "metrics" - } - }, - "id": "cda883a0-67c6-11ea-a76f-bf44814e437d", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-16T20:43:33.977Z", - "version": "WzcwLDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "okta.system" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "okta.system" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Actor Types [Filebeat Okta]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "okta.actor.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Actor Types [Filebeat Okta]", - "type": "pie" - } - }, - "id": "0a784b30-67c7-11ea-a76f-bf44814e437d", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-03-16T20:45:16.003Z", - "version": "WzcyLDJd" - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "okta.system" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "okta.system" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "event.outcome", - "negate": false, - "params": { - "query": "FAILURE" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.outcome": "FAILURE" - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ], - [ - "event.created", - "desc" - ] - ], - "title": "Okta Failure Events", - "version": 1 - }, - "id": "21028750-67ca-11ea-a76f-bf44814e437d", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-03-16T21:11:52.041Z", - "version": "Wzg5LDJd" - } - ], - "version": "8.0.0-SNAPSHOT" -} diff --git a/x-pack/filebeat/module/okta/_meta/kibana/7/dashboard/749203a0-67b1-11ea-a76f-bf44814e437d.ndjson b/x-pack/filebeat/module/okta/_meta/kibana/7/dashboard/749203a0-67b1-11ea-a76f-bf44814e437d.ndjson new file mode 100644 index 00000000000..b9688f8af3c --- /dev/null +++ b/x-pack/filebeat/module/okta/_meta/kibana/7/dashboard/749203a0-67b1-11ea-a76f-bf44814e437d.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"description":"","layerListJSON":"[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"6908e81b-1695-4445-aee4-8bc8c9f65600\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"id\":\"4b8bd321-4b90-4d97-83e0-2b12bf091f66\",\"geoField\":\"client.geo.location\",\"filterByMapBounds\":false,\"type\":\"ES_SEARCH\",\"tooltipProperties\":[],\"sortField\":\"\",\"sortOrder\":\"desc\",\"topHitsSize\":1,\"applyGlobalQuery\":true,\"indexPatternRefName\":\"layer_1_source_index_pattern\",\"scalingType\":\"LIMIT\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"marker\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#54B399\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#41937c\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"dc52e707-92d7-4de7-becf-a3a8bfaa2c2d\",\"label\":\"Okta \",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"query\":{\"query\":\"event.dataset : \\\"okta.system\\\" \",\"language\":\"kuery\"}}]","mapStateJSON":"{\"zoom\":2.75,\"center\":{\"lon\":-44.69098,\"lat\":26.54701},\"timeFilters\":{\"from\":\"now-15w\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"index\":\"filebeat-*\",\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"okta.system\"},\"type\":\"phrase\"},\"query\":{\"match_phrase\":{\"event.dataset\":\"okta.system\"}}}],\"settings\":{\"autoFitToDataBounds\":false}}","title":"Geolocation [Filebeat Okta]","uiStateJSON":"{\"isLayerTOCOpen\": true, \"openTOCDetails\": []}"},"coreMigrationVersion":"8.0.0","id":"281ca660-67b1-11ea-a76f-bf44814e437d","migrationVersion":{"map":"7.14.0"},"references":[{"id":"filebeat-*","name":"layer_1_source_index_pattern","type":"index-pattern"}],"type":"map","updated_at":"2021-08-04T16:33:39.099Z","version":"WzQyMzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"okta.system\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"okta.system\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Event Outcome [Filebeat Okta]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Event Outcome [Filebeat Okta]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"545d6a00-67ae-11ea-a76f-bf44814e437d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:39.099Z","version":"WzQyMzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"okta.system\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"okta.system\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Transaction Types [Filebeat Okta]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"okta.transaction.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Transaction Types [Filebeat Okta]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"7c6ec080-67c6-11ea-a76f-bf44814e437d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:39.099Z","version":"WzQyMzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Time Series [Filebeat Okta]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"abd68650-67c6-11ea-8c7d-ed286611413e\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset : \\\"okta.system\\\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Time Series [Filebeat Okta]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"cda883a0-67c6-11ea-a76f-bf44814e437d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:39.099Z","version":"WzQyMzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"okta.system\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"okta.system\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Actor Types [Filebeat Okta]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"okta.actor.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Actor Types [Filebeat Okta]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0a784b30-67c7-11ea-a76f-bf44814e437d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:39.099Z","version":"WzQyMzgsMV0="} +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"okta.system\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"okta.system\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.outcome\", \"negate\": false, \"params\": {\"query\": \"FAILURE\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.outcome\": \"FAILURE\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"],["event.created","desc"]],"title":"Okta Failure Events","version":1},"coreMigrationVersion":"8.0.0","id":"21028750-67ca-11ea-a76f-bf44814e437d","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:39.099Z","version":"WzQyMzksMV0="} +{"attributes":{"description":"Filebeat Okta module Kibana dashboard","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"map\",\"gridData\":{\"h\":22,\"i\":\"8013824b-5a66-494c-acc5-3df8b7678879\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"8013824b-5a66-494c-acc5-3df8b7678879\",\"embeddableConfig\":{\"hiddenLayers\":[],\"isLayerTOCOpen\":false,\"mapCenter\":{\"lat\":26.54701,\"lon\":-44.69098,\"zoom\":2.75},\"openTOCDetails\":[],\"enhancements\":{}},\"panelRefName\":\"panel_8013824b-5a66-494c-acc5-3df8b7678879\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"c6a66fe5-21a2-4308-8563-d4a7f5135d25\",\"w\":10,\"x\":0,\"y\":22},\"panelIndex\":\"c6a66fe5-21a2-4308-8563-d4a7f5135d25\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_c6a66fe5-21a2-4308-8563-d4a7f5135d25\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"195db901-dc2b-4b7d-80c3-742e2712ac2a\",\"w\":9,\"x\":10,\"y\":22},\"panelIndex\":\"195db901-dc2b-4b7d-80c3-742e2712ac2a\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_195db901-dc2b-4b7d-80c3-742e2712ac2a\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"dc5128e2-0b4d-4dd5-bbc2-624f64467a77\",\"w\":19,\"x\":29,\"y\":22},\"panelIndex\":\"dc5128e2-0b4d-4dd5-bbc2-624f64467a77\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_dc5128e2-0b4d-4dd5-bbc2-624f64467a77\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"a25a43ed-3262-486c-a482-1fac52f26128\",\"w\":10,\"x\":19,\"y\":22},\"panelIndex\":\"a25a43ed-3262-486c-a482-1fac52f26128\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a25a43ed-3262-486c-a482-1fac52f26128\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"search\",\"gridData\":{\"h\":16,\"i\":\"c0d5bac3-7e50-4ef9-a401-5a596ec84ee9\",\"w\":48,\"x\":0,\"y\":33},\"panelIndex\":\"c0d5bac3-7e50-4ef9-a401-5a596ec84ee9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_c0d5bac3-7e50-4ef9-a401-5a596ec84ee9\"}]","timeRestore":false,"title":"[Filebeat Okta] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"749203a0-67b1-11ea-a76f-bf44814e437d","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"281ca660-67b1-11ea-a76f-bf44814e437d","name":"8013824b-5a66-494c-acc5-3df8b7678879:panel_8013824b-5a66-494c-acc5-3df8b7678879","type":"map"},{"id":"545d6a00-67ae-11ea-a76f-bf44814e437d","name":"c6a66fe5-21a2-4308-8563-d4a7f5135d25:panel_c6a66fe5-21a2-4308-8563-d4a7f5135d25","type":"visualization"},{"id":"7c6ec080-67c6-11ea-a76f-bf44814e437d","name":"195db901-dc2b-4b7d-80c3-742e2712ac2a:panel_195db901-dc2b-4b7d-80c3-742e2712ac2a","type":"visualization"},{"id":"cda883a0-67c6-11ea-a76f-bf44814e437d","name":"dc5128e2-0b4d-4dd5-bbc2-624f64467a77:panel_dc5128e2-0b4d-4dd5-bbc2-624f64467a77","type":"visualization"},{"id":"0a784b30-67c7-11ea-a76f-bf44814e437d","name":"a25a43ed-3262-486c-a482-1fac52f26128:panel_a25a43ed-3262-486c-a482-1fac52f26128","type":"visualization"},{"id":"21028750-67ca-11ea-a76f-bf44814e437d","name":"c0d5bac3-7e50-4ef9-a401-5a596ec84ee9:panel_c0d5bac3-7e50-4ef9-a401-5a596ec84ee9","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:39.099Z","version":"WzQyMzMsMV0="} diff --git a/x-pack/filebeat/module/okta/module.yml b/x-pack/filebeat/module/okta/module.yml index ecdcb3a47ff..1b948b24a64 100644 --- a/x-pack/filebeat/module/okta/module.yml +++ b/x-pack/filebeat/module/okta/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 749203a0-67b1-11ea-a76f-bf44814e437d - file: 749203a0-67b1-11ea-a76f-bf44814e437d.json + file: 749203a0-67b1-11ea-a76f-bf44814e437d.ndjson diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-network-overview.json b/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-network-overview.json deleted file mode 100644 index a348f151b30..00000000000 --- a/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-network-overview.json +++ /dev/null @@ -1,1107 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Palo Alto Networks PAN-OS Networks Overview", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "1", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.1.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "2", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "version": "7.1.0" - }, - { - "embeddableConfig": { - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 15, - "i": "3", - "w": 24, - "x": 0, - "y": 15 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "version": "7.1.0" - }, - { - "embeddableConfig": { - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 15, - "i": "4", - "w": 12, - "x": 24, - "y": 15 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "version": "7.1.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "5", - "w": 12, - "x": 36, - "y": 15 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "version": "7.1.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "6", - "w": 24, - "x": 0, - "y": 30 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "version": "7.1.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "7", - "w": 24, - "x": 24, - "y": 30 - }, - "panelIndex": "7", - "panelRefName": "panel_6", - "version": "7.1.0" - } - ], - "timeRestore": false, - "title": "[Filebeat PANW] Network Flows ECS", - "version": 1 - }, - "id": "e40ba240-7572-11e9-976e-65a8f47cc4c1", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "091fe860-756a-11e9-976e-65a8f47cc4c1", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "87f30f60-7569-11e9-976e-65a8f47cc4c1", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "78e7e820-756d-11e9-976e-65a8f47cc4c1", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "d9cab170-756f-11e9-976e-65a8f47cc4c1", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "135930b0-7570-11e9-976e-65a8f47cc4c1", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "e46331c0-756a-11e9-976e-65a8f47cc4c1", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "0407a3e0-756f-11e9-976e-65a8f47cc4c1", - "name": "panel_6", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-05-13T11:33:12.420Z", - "version": "WzI0NSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Destination Flows Map [Filebeat PANW] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "destination.geo.location", - "isFilteredByCollar": true, - "mapCenter": [ - 0, - 0 - ], - "mapZoom": 2, - "precision": 2, - "useGeocentroid": true - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "params": { - "addTooltip": true, - "colorSchema": "Yellow to Red", - "heatClusterSize": 1.5, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 0, - 0 - ], - "mapType": "Scaled Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "format": "image/png", - "transparent": true - } - } - }, - "title": "Destination Flows Map [Filebeat PANW] ECS", - "type": "tile_map" - } - }, - "id": "091fe860-756a-11e9-976e-65a8f47cc4c1", - "migrationVersion": { - "visualization": "7.0.1" - }, - "references": [ - { - "id": "290685e0-7569-11e9-976e-65a8f47cc4c1", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-05-13T10:29:49.158Z", - "version": "WzIzOCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Source Flows Map [Filebeat PANW] ECS", - "uiStateJSON": { - "mapCenter": [ - -0.17578097424708533, - 0.17578125 - ], - "mapZoom": 1 - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "source.geo.location", - "isFilteredByCollar": true, - "mapCenter": [ - 0, - 0 - ], - "mapZoom": 2, - "precision": 2, - "useGeocentroid": true - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "params": { - "addTooltip": true, - "colorSchema": "Yellow to Red", - "heatClusterSize": 1.5, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 0, - 0 - ], - "mapType": "Scaled Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "format": "image/png", - "transparent": true - } - } - }, - "title": "Source Flows Map [Filebeat PANW] ECS", - "type": "tile_map" - } - }, - "id": "87f30f60-7569-11e9-976e-65a8f47cc4c1", - "migrationVersion": { - "visualization": "7.0.1" - }, - "references": [ - { - "id": "290685e0-7569-11e9-976e-65a8f47cc4c1", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-05-13T10:26:12.438Z", - "version": "WzIzNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.action", - "negate": true, - "params": { - "query": "flow_terminated" - }, - "type": "phrase", - "value": "flow_terminated" - }, - "query": { - "match": { - "event.action": { - "query": "flow_terminated", - "type": "phrase" - } - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Flow Creation Histogram [Filebeat PANW] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "timeRange": { - "from": "2018-04-10T04:36:19.586Z", - "to": "2018-04-10T04:39:56.264Z" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "event.outcome", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Flow Creation Histogram [Filebeat PANW] ECS", - "type": "histogram" - } - }, - "id": "78e7e820-756d-11e9-976e-65a8f47cc4c1", - "migrationVersion": { - "visualization": "7.0.1" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "290685e0-7569-11e9-976e-65a8f47cc4c1", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-05-13T10:54:25.186Z", - "version": "WzI0MCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.action", - "negate": true, - "params": { - "query": "flow_started" - }, - "type": "phrase", - "value": "flow_started" - }, - "query": { - "match": { - "event.action": { - "query": "flow_started", - "type": "phrase" - } - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Source Zone breakout [Filebeat PANW] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "panw.panos.source.zone", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "event.outcome", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 200 - }, - "position": "left", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": true, - "rotate": 75, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "bottom", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Source Zone breakout [Filebeat PANW] ECS", - "type": "horizontal_bar" - } - }, - "id": "d9cab170-756f-11e9-976e-65a8f47cc4c1", - "migrationVersion": { - "visualization": "7.0.1" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "290685e0-7569-11e9-976e-65a8f47cc4c1", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-05-13T11:12:26.462Z", - "version": "WzI0MywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.action", - "negate": true, - "params": { - "query": "flow_started" - }, - "type": "phrase", - "value": "flow_started" - }, - "query": { - "match": { - "event.action": { - "query": "flow_started", - "type": "phrase" - } - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Destination Zone breakout [Filebeat PANW] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "panw.panos.destination.zone", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "event.outcome", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 200 - }, - "position": "left", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": true, - "rotate": 75, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "bottom", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Destination Zone breakout [Filebeat PANW] ECS", - "type": "horizontal_bar" - } - }, - "id": "135930b0-7570-11e9-976e-65a8f47cc4c1", - "migrationVersion": { - "visualization": "7.0.1" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "290685e0-7569-11e9-976e-65a8f47cc4c1", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-05-13T11:13:03.291Z", - "version": "WzI0NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Event Outcome by Transport and Destination Port [Filebeat PANW] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.outcome", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "network.transport", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "field": "destination.port", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Event Outcome by Transport and Destination Port [Filebeat PANW] ECS", - "type": "pie" - } - }, - "id": "e46331c0-756a-11e9-976e-65a8f47cc4c1", - "migrationVersion": { - "visualization": "7.0.1" - }, - "references": [ - { - "id": "290685e0-7569-11e9-976e-65a8f47cc4c1", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-05-13T10:35:57.020Z", - "version": "WzIzOSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Network Application breakout [Filebeat PANW] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.outcome", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "network.application", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Network Application breakout [Filebeat PANW] ECS", - "type": "pie" - } - }, - "id": "0407a3e0-756f-11e9-976e-65a8f47cc4c1", - "migrationVersion": { - "visualization": "7.0.1" - }, - "references": [ - { - "id": "290685e0-7569-11e9-976e-65a8f47cc4c1", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-05-13T11:05:28.094Z", - "version": "WzI0MSwxXQ==" - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.dataset: \"panw.panos\" and event.category: \"network_traffic\"" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "PAN-OS Flows [Filebeat PANW] ECS", - "version": 1 - }, - "id": "290685e0-7569-11e9-976e-65a8f47cc4c1", - "migrationVersion": { - "search": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2019-05-13T10:23:33.182Z", - "version": "WzIzNSwxXQ==" - } - ], - "version": "7.1.0" -} diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-network-overview.ndjson b/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-network-overview.ndjson new file mode 100644 index 00000000000..0dfc149eacf --- /dev/null +++ b/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-network-overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset: \\\"panw.panos\\\" and event.category: \\\"network_traffic\\\"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"PAN-OS Flows [Filebeat PANW] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"290685e0-7569-11e9-976e-65a8f47cc4c1","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:20.886Z","version":"WzQ1MjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Destination Flows Map [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"destination.geo.location\",\"isFilteredByCollar\":true,\"mapCenter\":[0,0],\"mapZoom\":2,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true}}},\"title\":\"Destination Flows Map [Filebeat PANW] ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"091fe860-756a-11e9-976e-65a8f47cc4c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"290685e0-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:20.886Z","version":"WzQ1MTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Source Flows Map [Filebeat PANW] ECS","uiStateJSON":"{\"mapCenter\": [-0.17578097424708533, 0.17578125], \"mapZoom\": 1}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"isFilteredByCollar\":true,\"mapCenter\":[0,0],\"mapZoom\":2,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true}}},\"title\":\"Source Flows Map [Filebeat PANW] ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"87f30f60-7569-11e9-976e-65a8f47cc4c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"290685e0-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:20.886Z","version":"WzQ1MTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.action\", \"negate\": true, \"params\": {\"query\": \"flow_terminated\"}, \"type\": \"phrase\", \"value\": \"flow_terminated\"}, \"query\": {\"match\": {\"event.action\": {\"query\": \"flow_terminated\", \"type\": \"phrase\"}}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Flow Creation Histogram [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"2018-04-10T04:36:19.586Z\",\"to\":\"2018-04-10T04:39:56.264Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Flow Creation Histogram [Filebeat PANW] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"78e7e820-756d-11e9-976e-65a8f47cc4c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"290685e0-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:20.886Z","version":"WzQ1MTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.action\", \"negate\": true, \"params\": {\"query\": \"flow_started\"}, \"type\": \"phrase\", \"value\": \"flow_started\"}, \"query\": {\"match\": {\"event.action\": {\"query\": \"flow_started\", \"type\": \"phrase\"}}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Source Zone breakout [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"panw.panos.source.zone\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Source Zone breakout [Filebeat PANW] ECS\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"d9cab170-756f-11e9-976e-65a8f47cc4c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"290685e0-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:20.886Z","version":"WzQ1MTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.action\", \"negate\": true, \"params\": {\"query\": \"flow_started\"}, \"type\": \"phrase\", \"value\": \"flow_started\"}, \"query\": {\"match\": {\"event.action\": {\"query\": \"flow_started\", \"type\": \"phrase\"}}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Destination Zone breakout [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"panw.panos.destination.zone\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Destination Zone breakout [Filebeat PANW] ECS\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"135930b0-7570-11e9-976e-65a8f47cc4c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"290685e0-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:20.886Z","version":"WzQ1MTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Event Outcome by Transport and Destination Port [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"network.transport\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"destination.port\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Event Outcome by Transport and Destination Port [Filebeat PANW] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"e46331c0-756a-11e9-976e-65a8f47cc4c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"290685e0-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:20.886Z","version":"WzQ1MjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Network Application breakout [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"network.application\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Network Application breakout [Filebeat PANW] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0407a3e0-756f-11e9-976e-65a8f47cc4c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"290685e0-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:20.886Z","version":"WzQ1MjEsMV0="} +{"attributes":{"description":"Palo Alto Networks PAN-OS Networks Overview","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":12,\"x\":24,\"y\":15},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":12,\"x\":36,\"y\":15},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Filebeat PANW] Network Flows ECS","version":1},"coreMigrationVersion":"8.0.0","id":"e40ba240-7572-11e9-976e-65a8f47cc4c1","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"091fe860-756a-11e9-976e-65a8f47cc4c1","name":"1:panel_1","type":"visualization"},{"id":"87f30f60-7569-11e9-976e-65a8f47cc4c1","name":"2:panel_2","type":"visualization"},{"id":"78e7e820-756d-11e9-976e-65a8f47cc4c1","name":"3:panel_3","type":"visualization"},{"id":"d9cab170-756f-11e9-976e-65a8f47cc4c1","name":"4:panel_4","type":"visualization"},{"id":"135930b0-7570-11e9-976e-65a8f47cc4c1","name":"5:panel_5","type":"visualization"},{"id":"e46331c0-756a-11e9-976e-65a8f47cc4c1","name":"6:panel_6","type":"visualization"},{"id":"0407a3e0-756f-11e9-976e-65a8f47cc4c1","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:20.886Z","version":"WzQ1MTQsMV0="} diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-threat-overview.json b/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-threat-overview.json deleted file mode 100644 index 834328c3469..00000000000 --- a/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-threat-overview.json +++ /dev/null @@ -1,796 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Palo Alto Networks PAN-OS Threats Overview", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 15, - "i": "1", - "w": 31, - "x": 0, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "Threat outcome histogram", - "version": "7.1.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "2", - "w": 24, - "x": 0, - "y": 15 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "Top threats by name", - "version": "7.1.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "3", - "w": 24, - "x": 24, - "y": 15 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "Top threats by resource", - "version": "7.1.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "4", - "w": 24, - "x": 0, - "y": 30 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "title": "Top attackers (clients)", - "version": "7.1.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "5", - "w": 24, - "x": 24, - "y": 30 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "title": "Top attackers (servers)", - "version": "7.1.0" - }, - { - "embeddableConfig": { - "vis": { - "legendOpen": true - } - }, - "gridData": { - "h": 15, - "i": "6", - "w": 17, - "x": 31, - "y": 0 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "title": "Outcome by threat type", - "version": "7.1.0" - } - ], - "timeRestore": false, - "title": "[Filebeat PANW] Threats Overview ECS", - "version": 1 - }, - "id": "772964e0-7591-11e9-aacf-79a3704914a0", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "0bd2a0c0-7574-11e9-976e-65a8f47cc4c1", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "3eca1070-7589-11e9-aacf-79a3704914a0", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "5bd32b20-7575-11e9-976e-65a8f47cc4c1", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "90ce3300-758a-11e9-aacf-79a3704914a0", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "a95aaf20-758a-11e9-aacf-79a3704914a0", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "6dce7930-758c-11e9-aacf-79a3704914a0", - "name": "panel_5", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-05-13T15:12:04.141Z", - "version": "WzI1NiwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Threat outcome histogram [Filebeat PANW] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "timeRange": { - "from": "2018-04-10T04:36:19.586Z", - "to": "2018-04-10T04:39:56.264Z" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "event.outcome", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Threat outcome histogram [Filebeat PANW] ECS", - "type": "histogram" - } - }, - "id": "0bd2a0c0-7574-11e9-976e-65a8f47cc4c1", - "migrationVersion": { - "visualization": "7.0.1" - }, - "references": [ - { - "id": "3cea1360-7569-11e9-976e-65a8f47cc4c1", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-05-13T11:41:28.652Z", - "version": "WzI0NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Threat ID Cloud [Filebeat PANW] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "panw.panos.threat.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "maxFontSize": 72, - "minFontSize": 18, - "orientation": "single", - "scale": "linear", - "showLabel": true - }, - "title": "Threat ID Cloud [Filebeat PANW] ECS", - "type": "tagcloud" - } - }, - "id": "3eca1070-7589-11e9-aacf-79a3704914a0", - "migrationVersion": { - "visualization": "7.0.1" - }, - "references": [ - { - "id": "3cea1360-7569-11e9-976e-65a8f47cc4c1", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-05-13T15:06:36.839Z", - "version": "WzI1NSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Threat Resource Cloud [Filebeat PANW] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "url.original", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "maxFontSize": 72, - "minFontSize": 18, - "orientation": "single", - "scale": "linear", - "showLabel": true - }, - "title": "Threat Resource Cloud [Filebeat PANW] ECS", - "type": "tagcloud" - } - }, - "id": "5bd32b20-7575-11e9-976e-65a8f47cc4c1", - "migrationVersion": { - "visualization": "7.0.1" - }, - "references": [ - { - "id": "3cea1360-7569-11e9-976e-65a8f47cc4c1", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-05-13T11:50:52.370Z", - "version": "WzI0NywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "network.direction", - "negate": false, - "params": { - "query": "inbound" - }, - "type": "phrase", - "value": "inbound" - }, - "query": { - "match": { - "network.direction": { - "query": "inbound", - "type": "phrase" - } - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Top attackers (clients) [Filebeat PANW] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "client.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top attackers (clients) [Filebeat PANW] ECS", - "type": "table" - } - }, - "id": "90ce3300-758a-11e9-aacf-79a3704914a0", - "migrationVersion": { - "visualization": "7.0.1" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "3cea1360-7569-11e9-976e-65a8f47cc4c1", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-05-13T14:22:40.688Z", - "version": "WzI1MSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "network.direction", - "negate": false, - "params": { - "query": "outbound" - }, - "type": "phrase", - "value": "outbound" - }, - "query": { - "match": { - "network.direction": { - "query": "outbound", - "type": "phrase" - } - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Top attackers (servers) [Filebeat PANW] ECS", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "server.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top attackers (servers) [Filebeat PANW] ECS", - "type": "table" - } - }, - "id": "a95aaf20-758a-11e9-aacf-79a3704914a0", - "migrationVersion": { - "visualization": "7.0.1" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "3cea1360-7569-11e9-976e-65a8f47cc4c1", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-05-13T14:23:21.874Z", - "version": "WzI1MiwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Outcome by Threat Type [Filebeat PANW] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.outcome", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Outcome by Threat Type [Filebeat PANW] ECS", - "type": "pie" - } - }, - "id": "6dce7930-758c-11e9-aacf-79a3704914a0", - "migrationVersion": { - "visualization": "7.0.1" - }, - "references": [ - { - "id": "3cea1360-7569-11e9-976e-65a8f47cc4c1", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2019-05-13T14:36:00.962Z", - "version": "WzI1MywyXQ==" - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "event.dataset: \"panw.panos\" and event.category: \"security_threat\"" - }, - "version": true - } - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "PAN-OS Threats [Filebeat PANW] ECS", - "version": 1 - }, - "id": "3cea1360-7569-11e9-976e-65a8f47cc4c1", - "migrationVersion": { - "search": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2019-05-13T10:24:06.550Z", - "version": "WzIzNiwxXQ==" - } - ], - "version": "7.1.0" -} diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-threat-overview.ndjson b/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-threat-overview.ndjson new file mode 100644 index 00000000000..4e229fd1274 --- /dev/null +++ b/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-threat-overview.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset: \\\"panw.panos\\\" and event.category: \\\"security_threat\\\"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"PAN-OS Threats [Filebeat PANW] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"3cea1360-7569-11e9-976e-65a8f47cc4c1","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:21.950Z","version":"WzQ1MzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Threat outcome histogram [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"2018-04-10T04:36:19.586Z\",\"to\":\"2018-04-10T04:39:56.264Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Threat outcome histogram [Filebeat PANW] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"0bd2a0c0-7574-11e9-976e-65a8f47cc4c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"3cea1360-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:21.950Z","version":"WzQ1MjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Threat ID Cloud [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"panw.panos.threat.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Threat ID Cloud [Filebeat PANW] ECS\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"3eca1070-7589-11e9-aacf-79a3704914a0","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"3cea1360-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:21.950Z","version":"WzQ1MjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Threat Resource Cloud [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"url.original\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Threat Resource Cloud [Filebeat PANW] ECS\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"5bd32b20-7575-11e9-976e-65a8f47cc4c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"3cea1360-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:21.950Z","version":"WzQ1MjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"network.direction\", \"negate\": false, \"params\": {\"query\": \"inbound\"}, \"type\": \"phrase\", \"value\": \"inbound\"}, \"query\": {\"match\": {\"network.direction\": {\"query\": \"inbound\", \"type\": \"phrase\"}}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top attackers (clients) [Filebeat PANW] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"client.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top attackers (clients) [Filebeat PANW] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"90ce3300-758a-11e9-aacf-79a3704914a0","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"3cea1360-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:21.950Z","version":"WzQ1MjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"network.direction\", \"negate\": false, \"params\": {\"query\": \"outbound\"}, \"type\": \"phrase\", \"value\": \"outbound\"}, \"query\": {\"match\": {\"network.direction\": {\"query\": \"outbound\", \"type\": \"phrase\"}}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top attackers (servers) [Filebeat PANW] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"server.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top attackers (servers) [Filebeat PANW] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"a95aaf20-758a-11e9-aacf-79a3704914a0","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"3cea1360-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:21.950Z","version":"WzQ1MjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Outcome by Threat Type [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Outcome by Threat Type [Filebeat PANW] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"6dce7930-758c-11e9-aacf-79a3704914a0","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"3cea1360-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:21.950Z","version":"WzQ1MjksMV0="} +{"attributes":{"description":"Palo Alto Networks PAN-OS Threats Overview","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":31,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Threat outcome histogram\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top threats by name\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top threats by resource\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"4\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top attackers (clients)\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top attackers (servers)\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":17,\"x\":31,\"y\":0},\"panelIndex\":\"6\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Outcome by threat type\",\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Filebeat PANW] Threats Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"772964e0-7591-11e9-aacf-79a3704914a0","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"0bd2a0c0-7574-11e9-976e-65a8f47cc4c1","name":"1:panel_1","type":"visualization"},{"id":"3eca1070-7589-11e9-aacf-79a3704914a0","name":"2:panel_2","type":"visualization"},{"id":"5bd32b20-7575-11e9-976e-65a8f47cc4c1","name":"3:panel_3","type":"visualization"},{"id":"90ce3300-758a-11e9-aacf-79a3704914a0","name":"4:panel_4","type":"visualization"},{"id":"a95aaf20-758a-11e9-aacf-79a3704914a0","name":"5:panel_5","type":"visualization"},{"id":"6dce7930-758c-11e9-aacf-79a3704914a0","name":"6:panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:21.950Z","version":"WzQ1MjMsMV0="} diff --git a/x-pack/filebeat/module/panw/module.yml b/x-pack/filebeat/module/panw/module.yml index ed975d78f70..26a39accb59 100644 --- a/x-pack/filebeat/module/panw/module.yml +++ b/x-pack/filebeat/module/panw/module.yml @@ -1,5 +1,5 @@ dashboards: - id: 772964e0-7591-11e9-aacf-79a3704914a0 - file: Filebeat-panw-threat-overview.json + file: Filebeat-panw-threat-overview.ndjson - id: e40ba240-7572-11e9-976e-65a8f47cc4c1 - file: Filebeat-panw-network-overview.json + file: Filebeat-panw-network-overview.ndjson diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-alert-overview.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-alert-overview.json deleted file mode 100644 index bf71ad88838..00000000000 --- a/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-alert-overview.json +++ /dev/null @@ -1,983 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of the Suricata Alerts dashboard.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "1", - "w": 23, - "x": 0, - "y": 4 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.9.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 26, - "i": "2", - "w": 25, - "x": 23, - "y": 0 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "version": "7.9.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 16, - "i": "3", - "w": 48, - "x": 0, - "y": 41 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "version": "7.9.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "mapCenter": [ - 38.548165423046584, - -6.328125000000001 - ], - "mapZoom": 2 - }, - "gridData": { - "h": 15, - "i": "4", - "w": 23, - "x": 0, - "y": 26 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "version": "7.9.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "mapCenter": [ - 41.77131167976407, - 1.9335937500000002 - ], - "mapZoom": 2 - }, - "gridData": { - "h": 15, - "i": "5", - "w": 25, - "x": 23, - "y": 26 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "version": "7.9.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "7", - "w": 12, - "x": 11, - "y": 14 - }, - "panelIndex": "7", - "panelRefName": "panel_5", - "version": "7.9.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "8", - "w": 11, - "x": 0, - "y": 14 - }, - "panelIndex": "8", - "panelRefName": "panel_6", - "version": "7.9.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 4, - "i": "e86b7f30-96da-4f52-9ff0-cefcaadcc914", - "w": 23, - "x": 0, - "y": 0 - }, - "panelIndex": "e86b7f30-96da-4f52-9ff0-cefcaadcc914", - "panelRefName": "panel_7", - "version": "7.9.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Filebeat Suricata] Alert Overview", - "version": 1 - }, - "id": "05268ee0-86d1-11e8-b59d-21efb914e65c-ecs", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "494fa290-86d2-11e8-b59d-21efb914e65c-ecs", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "16033310-86d3-11e8-b59d-21efb914e65c-ecs", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs", - "name": "panel_2", - "type": "search" - }, - { - "id": "85fed080-86d7-11e8-b59d-21efb914e65c-ecs", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "a09ca070-86d7-11e8-b59d-21efb914e65c-ecs", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "2ccdc1a0-86d8-11e8-b59d-21efb914e65c-ecs", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "c7b8b8f0-86d8-11e8-b59d-21efb914e65c-ecs", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "908e8c90-d296-11ea-90e3-8767fe7ccf14", - "name": "panel_7", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-07-30T19:13:51.743Z", - "version": "WzEwMTUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Top Alerting Hosts [Filebeat Suricata]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "now-6y", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "host.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "labels": { - "show": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Top Alerting Hosts [Filebeat Suricata]", - "type": "histogram" - } - }, - "id": "494fa290-86d2-11e8-b59d-21efb914e65c-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-07-30T19:09:55.677Z", - "version": "WzkwNCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Top Alert Signatures [Filebeat Suricata]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Alert Signature", - "field": "rule.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Alert Category", - "field": "rule.category", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top Alert Signatures [Filebeat Suricata]", - "type": "table" - } - }, - "id": "16033310-86d3-11e8-b59d-21efb914e65c-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-07-30T19:11:35.746Z", - "version": "Wzk0MywxXQ==" - }, - { - "attributes": { - "columns": [ - "host.name", - "suricata.eve.flow_id", - "source.ip", - "source.port", - "destination.ip", - "destination.port", - "source.geo.country_iso_code", - "destination.geo.country_iso_code" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.kind", - "negate": false, - "params": { - "query": "alert" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.kind": "alert" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "event.module", - "negate": false, - "params": { - "query": "suricata" - }, - "type": "phrase" - }, - "query": { - "match": { - "event.module": { - "query": "suricata", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Alerts [Filebeat Suricata]", - "version": 1 - }, - "id": "1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs", - "migrationVersion": { - "search": "7.4.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-07-30T18:46:18.887Z", - "version": "WzYyNiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Alert - Source Location [Filebeat Suricata]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "source.geo.location", - "isFilteredByCollar": true, - "precision": 2, - "useGeocentroid": true - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "params": { - "addTooltip": true, - "colorSchema": "Yellow to Red", - "heatClusterSize": 1.5, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 0, - 0 - ], - "mapType": "Scaled Circle Markers", - "mapZoom": 2, - "wms": { - "baseLayersAreLoaded": {}, - "enabled": false, - "options": { - "format": "image/png", - "transparent": true - }, - "selectedTmsLayer": { - "attribution": "\u003cp\u003e\u0026#169; \u003ca href=\"http://www.openstreetmap.org/copyright\"\u003eOpenStreetMap\u003c/a\u003e contributors | \u003ca href=\"https://www.elastic.co/elastic-maps-service\"\u003eElastic Maps Service\u003c/a\u003e\u003c/p\u003e\u0026#10;", - "id": "road_map", - "maxZoom": 18, - "minZoom": 0, - "subdomains": [], - "url": "https://tiles.maps.elastic.co/v2/default/{z}/{x}/{y}.png?elastic_tile_service_tos=agree\u0026my_app_name=kibana\u0026my_app_version=6.3.0\u0026license=fc9de2c1-5f06-4080-8dd0-8a334171d89a" - }, - "tmsLayers": [ - { - "attribution": "\u003cp\u003e\u0026#169; \u003ca href=\"http://www.openstreetmap.org/copyright\"\u003eOpenStreetMap\u003c/a\u003e contributors | \u003ca href=\"https://www.elastic.co/elastic-maps-service\"\u003eElastic Maps Service\u003c/a\u003e\u003c/p\u003e\u0026#10;", - "id": "road_map", - "maxZoom": 18, - "minZoom": 0, - "subdomains": [], - "url": "https://tiles.maps.elastic.co/v2/default/{z}/{x}/{y}.png?elastic_tile_service_tos=agree\u0026my_app_name=kibana\u0026my_app_version=6.3.0\u0026license=fc9de2c1-5f06-4080-8dd0-8a334171d89a" - } - ] - } - }, - "title": "Alert - Source Location [Filebeat Suricata]", - "type": "tile_map" - } - }, - "id": "85fed080-86d7-11e8-b59d-21efb914e65c-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-07-30T19:13:13.311Z", - "version": "Wzk5MCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Alert - Destination Location [Filebeat Suricata]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "destination.geo.location", - "isFilteredByCollar": true, - "precision": 2, - "useGeocentroid": true - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "params": { - "addTooltip": true, - "colorSchema": "Yellow to Red", - "heatClusterSize": 1.5, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 0, - 0 - ], - "mapType": "Scaled Circle Markers", - "mapZoom": 2, - "wms": { - "baseLayersAreLoaded": {}, - "enabled": false, - "options": { - "format": "image/png", - "transparent": true - }, - "selectedTmsLayer": { - "attribution": "\u003cp\u003e\u0026#169; \u003ca href=\"http://www.openstreetmap.org/copyright\"\u003eOpenStreetMap\u003c/a\u003e contributors | \u003ca href=\"https://www.elastic.co/elastic-maps-service\"\u003eElastic Maps Service\u003c/a\u003e\u003c/p\u003e\u0026#10;", - "id": "road_map", - "maxZoom": 18, - "minZoom": 0, - "subdomains": [], - "url": "https://tiles.maps.elastic.co/v2/default/{z}/{x}/{y}.png?elastic_tile_service_tos=agree\u0026my_app_name=kibana\u0026my_app_version=6.3.0\u0026license=fc9de2c1-5f06-4080-8dd0-8a334171d89a" - }, - "tmsLayers": [ - { - "attribution": "\u003cp\u003e\u0026#169; \u003ca href=\"http://www.openstreetmap.org/copyright\"\u003eOpenStreetMap\u003c/a\u003e contributors | \u003ca href=\"https://www.elastic.co/elastic-maps-service\"\u003eElastic Maps Service\u003c/a\u003e\u003c/p\u003e\u0026#10;", - "id": "road_map", - "maxZoom": 18, - "minZoom": 0, - "subdomains": [], - "url": "https://tiles.maps.elastic.co/v2/default/{z}/{x}/{y}.png?elastic_tile_service_tos=agree\u0026my_app_name=kibana\u0026my_app_version=6.3.0\u0026license=fc9de2c1-5f06-4080-8dd0-8a334171d89a" - } - ] - } - }, - "title": "Alert - Destination Location [Filebeat Suricata]", - "type": "tile_map" - } - }, - "id": "a09ca070-86d7-11e8-b59d-21efb914e65c-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-07-30T19:13:34.582Z", - "version": "WzEwMDQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Alerts - Top Destination Countries [Filebeat Suricata]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Source Country", - "field": "destination.geo.country_iso_code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 5, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Alerts - Top Destination Countries [Filebeat Suricata]", - "type": "table" - } - }, - "id": "2ccdc1a0-86d8-11e8-b59d-21efb914e65c-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-07-30T19:12:34.381Z", - "version": "Wzk2OSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Alerts - Top Source Countries [Filebeat Suricata]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Source Country", - "field": "source.geo.country_iso_code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 5, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Alerts - Top Source Countries [Filebeat Suricata]", - "type": "table" - } - }, - "id": "c7b8b8f0-86d8-11e8-b59d-21efb914e65c-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-07-30T19:12:12.735Z", - "version": "Wzk1NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation [Filebeat Suricata]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 18, - "markdown": "![Hello World](data:image/png;base64,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) [Events](/app/dashboards#/view/78289c40-86da-11e8-b59d-21efb914e65c-ecs) | [Alerts](/app/dashboards#/view/05268ee0-86d1-11e8-b59d-21efb914e65c-ecs)", - "openLinksInNewTab": false - }, - "title": "Navigation [Filebeat Suricata]", - "type": "markdown" - } - }, - "id": "908e8c90-d296-11ea-90e3-8767fe7ccf14", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-07-30T18:57:50.040Z", - "version": "Wzc1MywxXQ==" - } - ], - "version": "7.9.0-SNAPSHOT" -} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-alert-overview.ndjson b/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-alert-overview.ndjson new file mode 100644 index 00000000000..a6e4f008175 --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-alert-overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"columns":["host.name","suricata.eve.flow_id","source.ip","source.port","destination.ip","destination.port","source.geo.country_iso_code","destination.geo.country_iso_code"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"alert\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"alert\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"suricata\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.module\": {\"query\": \"suricata\", \"type\": \"phrase\"}}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Alerts [Filebeat Suricata]","version":1},"coreMigrationVersion":"8.0.0","id":"1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:52.614Z","version":"WzQ5MDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top Alerting Hosts [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-6y\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"host.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Top Alerting Hosts [Filebeat Suricata]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"494fa290-86d2-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:52.614Z","version":"WzQ5MDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top Alert Signatures [Filebeat Suricata]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Alert Signature\",\"field\":\"rule.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Alert Category\",\"field\":\"rule.category\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Alert Signatures [Filebeat Suricata]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"16033310-86d3-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:52.614Z","version":"WzQ5MDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Alert - Source Location [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"isFilteredByCollar\":true,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"baseLayersAreLoaded\":{},\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true},\"selectedTmsLayer\":{\"attribution\":\"

© OpenStreetMap contributors | Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"subdomains\":[],\"url\":\"https://tiles.maps.elastic.co/v2/default/{z}/{x}/{y}.png?elastic_tile_service_tos=agree&my_app_name=kibana&my_app_version=6.3.0&license=fc9de2c1-5f06-4080-8dd0-8a334171d89a\"},\"tmsLayers\":[{\"attribution\":\"

© OpenStreetMap contributors | Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"subdomains\":[],\"url\":\"https://tiles.maps.elastic.co/v2/default/{z}/{x}/{y}.png?elastic_tile_service_tos=agree&my_app_name=kibana&my_app_version=6.3.0&license=fc9de2c1-5f06-4080-8dd0-8a334171d89a\"}]}},\"title\":\"Alert - Source Location [Filebeat Suricata]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"85fed080-86d7-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:52.614Z","version":"WzQ5MDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Alert - Destination Location [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"destination.geo.location\",\"isFilteredByCollar\":true,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"baseLayersAreLoaded\":{},\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true},\"selectedTmsLayer\":{\"attribution\":\"

© OpenStreetMap contributors | Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"subdomains\":[],\"url\":\"https://tiles.maps.elastic.co/v2/default/{z}/{x}/{y}.png?elastic_tile_service_tos=agree&my_app_name=kibana&my_app_version=6.3.0&license=fc9de2c1-5f06-4080-8dd0-8a334171d89a\"},\"tmsLayers\":[{\"attribution\":\"

© OpenStreetMap contributors | Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"subdomains\":[],\"url\":\"https://tiles.maps.elastic.co/v2/default/{z}/{x}/{y}.png?elastic_tile_service_tos=agree&my_app_name=kibana&my_app_version=6.3.0&license=fc9de2c1-5f06-4080-8dd0-8a334171d89a\"}]}},\"title\":\"Alert - Destination Location [Filebeat Suricata]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"a09ca070-86d7-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:52.614Z","version":"WzQ5MDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Alerts - Top Destination Countries [Filebeat Suricata]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Country\",\"field\":\"destination.geo.country_iso_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Alerts - Top Destination Countries [Filebeat Suricata]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"2ccdc1a0-86d8-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:52.614Z","version":"WzQ5MDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Alerts - Top Source Countries [Filebeat Suricata]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Country\",\"field\":\"source.geo.country_iso_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Alerts - Top Source Countries [Filebeat Suricata]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"c7b8b8f0-86d8-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:52.614Z","version":"WzQ5MTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":18,\"markdown\":\"![Hello World](data:image/png;base64,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) [Events](/app/dashboards#/view/78289c40-86da-11e8-b59d-21efb914e65c-ecs) | [Alerts](/app/dashboards#/view/05268ee0-86d1-11e8-b59d-21efb914e65c-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Filebeat Suricata]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"908e8c90-d296-11ea-90e3-8767fe7ccf14","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MjIsMV0="} +{"attributes":{"description":"Overview of the Suricata Alerts dashboard.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1\",\"w\":23,\"x\":0,\"y\":4},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":26,\"i\":\"2\",\"w\":25,\"x\":23,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"search\",\"gridData\":{\"h\":16,\"i\":\"3\",\"w\":48,\"x\":0,\"y\":41},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":23,\"x\":0,\"y\":26},\"panelIndex\":\"4\",\"embeddableConfig\":{\"mapCenter\":[38.548165423046584,-6.328125000000001],\"mapZoom\":2,\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":25,\"x\":23,\"y\":26},\"panelIndex\":\"5\",\"embeddableConfig\":{\"mapCenter\":[41.77131167976407,1.9335937500000002],\"mapZoom\":2,\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"7\",\"w\":12,\"x\":11,\"y\":14},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"8\",\"w\":11,\"x\":0,\"y\":14},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"e86b7f30-96da-4f52-9ff0-cefcaadcc914\",\"w\":23,\"x\":0,\"y\":0},\"panelIndex\":\"e86b7f30-96da-4f52-9ff0-cefcaadcc914\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_e86b7f30-96da-4f52-9ff0-cefcaadcc914\"}]","timeRestore":false,"title":"[Filebeat Suricata] Alert Overview","version":1},"coreMigrationVersion":"8.0.0","id":"05268ee0-86d1-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"494fa290-86d2-11e8-b59d-21efb914e65c-ecs","name":"1:panel_1","type":"visualization"},{"id":"16033310-86d3-11e8-b59d-21efb914e65c-ecs","name":"2:panel_2","type":"visualization"},{"id":"1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs","name":"3:panel_3","type":"search"},{"id":"85fed080-86d7-11e8-b59d-21efb914e65c-ecs","name":"4:panel_4","type":"visualization"},{"id":"a09ca070-86d7-11e8-b59d-21efb914e65c-ecs","name":"5:panel_5","type":"visualization"},{"id":"2ccdc1a0-86d8-11e8-b59d-21efb914e65c-ecs","name":"7:panel_7","type":"visualization"},{"id":"c7b8b8f0-86d8-11e8-b59d-21efb914e65c-ecs","name":"8:panel_8","type":"visualization"},{"id":"908e8c90-d296-11ea-90e3-8767fe7ccf14","name":"e86b7f30-96da-4f52-9ff0-cefcaadcc914:panel_e86b7f30-96da-4f52-9ff0-cefcaadcc914","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:52.614Z","version":"WzQ5MDMsMV0="} diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-event-overview.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-event-overview.json deleted file mode 100644 index 908f98394cb..00000000000 --- a/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-event-overview.json +++ /dev/null @@ -1,1293 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of the Surcata events dashboard.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "1", - "w": 48, - "x": 0, - "y": 4 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.9.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "2", - "w": 9, - "x": 0, - "y": 24 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "version": "7.9.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "3", - "w": 11, - "x": 19, - "y": 24 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "version": "7.9.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "4", - "w": 48, - "x": 0, - "y": 14 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "version": "7.9.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 19, - "i": "5", - "w": 48, - "x": 0, - "y": 38 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "version": "7.9.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "6", - "w": 9, - "x": 30, - "y": 24 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "version": "7.9.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "7", - "w": 9, - "x": 39, - "y": 24 - }, - "panelIndex": "7", - "panelRefName": "panel_6", - "version": "7.9.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "8", - "w": 10, - "x": 9, - "y": 24 - }, - "panelIndex": "8", - "panelRefName": "panel_7", - "version": "7.9.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 16, - "i": "9", - "w": 48, - "x": 0, - "y": 57 - }, - "panelIndex": "9", - "panelRefName": "panel_8", - "version": "7.9.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 4, - "i": "78f64fb8-a6ed-4960-a73b-a8c42c40f799", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "78f64fb8-a6ed-4960-a73b-a8c42c40f799", - "panelRefName": "panel_9", - "version": "7.9.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 4, - "i": "63e14057-b48b-48fe-b3e2-84f7690d60e8", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "63e14057-b48b-48fe-b3e2-84f7690d60e8", - "panelRefName": "panel_10", - "version": "7.9.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Filebeat Suricata] Events Overview", - "version": 1 - }, - "id": "78289c40-86da-11e8-b59d-21efb914e65c-ecs", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "c7d46c60-86da-11e8-b59d-21efb914e65c-ecs", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "0a0aa630-86db-11e8-b59d-21efb914e65c-ecs", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "728f64c0-86db-11e8-b59d-21efb914e65c-ecs", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "9d5b5b50-86db-11e8-b59d-21efb914e65c-ecs", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", - "name": "panel_4", - "type": "search" - }, - { - "id": "5f99eb50-86dc-11e8-b59d-21efb914e65c-ecs", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "8e7f88d0-86dc-11e8-b59d-21efb914e65c-ecs", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "0a363820-86dd-11e8-b59d-21efb914e65c-ecs", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "d57a2db0-86ca-11e8-b59d-21efb914e65c-ecs", - "name": "panel_8", - "type": "search" - }, - { - "id": "908e8c90-d296-11ea-90e3-8767fe7ccf14", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "169c0600-d297-11ea-90e3-8767fe7ccf14", - "name": "panel_10", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-07-30T19:08:06.676Z", - "version": "Wzg3MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Activity Types over Time [Filebeat Suricata]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "now-6y", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "suricata.eve.event_type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "labels": { - "show": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Activity Types over Time [Filebeat Suricata]", - "type": "histogram" - } - }, - "id": "c7d46c60-86da-11e8-b59d-21efb914e65c-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-07-30T18:59:25.617Z", - "version": "Wzc2OCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Event Types [Filebeat Suricata]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "ECS Event Type", - "field": "event.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Suricata Event Type", - "field": "suricata.eve.event_type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "bottom", - "type": "pie" - }, - "title": "Event Types [Filebeat Suricata]", - "type": "pie" - } - }, - "id": "0a0aa630-86db-11e8-b59d-21efb914e65c-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-07-30T19:06:59.207Z", - "version": "Wzg1OCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Top Network Protocols [Filebeat Suricata]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "network.protocol", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "bottom", - "type": "pie" - }, - "title": "Top Network Protocols [Filebeat Suricata]", - "type": "pie" - } - }, - "id": "728f64c0-86db-11e8-b59d-21efb914e65c-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-07-30T18:49:07.711Z", - "version": "WzY3NSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Top Hosts Generating Events [Filebeat Suricata]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "now-6y", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "host.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "labels": { - "show": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Top Hosts Generating Events [Filebeat Suricata]", - "type": "histogram" - } - }, - "id": "9d5b5b50-86db-11e8-b59d-21efb914e65c-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-07-30T18:59:45.518Z", - "version": "Wzc4MCwxXQ==" - }, - { - "attributes": { - "columns": [ - "host.name", - "suricata.eve.flow_id", - "network.transport", - "source.ip", - "source.port", - "destination.ip", - "destination.port", - "destination.geo.region_name", - "destination.geo.country_iso_code" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.kind", - "negate": false, - "params": { - "query": "event" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.kind": "event" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "event.module", - "negate": false, - "params": { - "query": "suricata" - }, - "type": "phrase" - }, - "query": { - "match": { - "event.module": { - "query": "suricata", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Events [Filebeat Suricata]", - "version": 1 - }, - "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", - "migrationVersion": { - "search": "7.4.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-07-30T18:45:13.363Z", - "version": "WzYyMCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Top Connection Source Countries [Filebeat Suricata]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Top Connection Source Countries", - "field": "source.geo.country_iso_code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "maxFontSize": 72, - "minFontSize": 18, - "orientation": "single", - "scale": "linear", - "showLabel": false - }, - "title": "Top Connection Source Countries [Filebeat Suricata]", - "type": "tagcloud" - } - }, - "id": "5f99eb50-86dc-11e8-b59d-21efb914e65c-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-07-30T18:49:36.842Z", - "version": "WzY4OCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Top Connection Destination Countries [Filebeat Suricata]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Top Connection Destination Countries", - "field": "destination.geo.country_iso_code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "maxFontSize": 72, - "minFontSize": 18, - "orientation": "single", - "scale": "linear", - "showLabel": false - }, - "title": "Top Connection Destination Countries [Filebeat Suricata]", - "type": "tagcloud" - } - }, - "id": "8e7f88d0-86dc-11e8-b59d-21efb914e65c-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-07-30T18:50:04.448Z", - "version": "WzcwNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Top Transport Protocols [Filebeat Suricata]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "network.transport", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "bottom", - "type": "pie" - }, - "title": "Top Transport Protocols [Filebeat Suricata]", - "type": "pie" - } - }, - "id": "0a363820-86dd-11e8-b59d-21efb914e65c-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-07-30T18:48:19.957Z", - "version": "WzY0NiwxXQ==" - }, - { - "attributes": { - "columns": [ - "host.name", - "suricata.eve.stats.detect.alert", - "suricata.eve.stats.app_layer.flow.dns_udp", - "suricata.eve.stats.app_layer.flow.tls", - "suricata.eve.stats.app_layer.flow.http", - "suricata.eve.stats.app_layer.flow.ssh", - "suricata.eve.stats.tcp.sessions" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.kind", - "negate": false, - "params": { - "query": "metric" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.kind": "metric" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "event.module", - "negate": false, - "params": { - "query": "suricata" - }, - "type": "phrase" - }, - "query": { - "match": { - "event.module": { - "query": "suricata", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Host Stats [Filebeat Suricata]", - "version": 1 - }, - "id": "d57a2db0-86ca-11e8-b59d-21efb914e65c-ecs", - "migrationVersion": { - "search": "7.4.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-07-30T18:45:50.678Z", - "version": "WzYyMywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation [Filebeat Suricata]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 18, - "markdown": "![Hello World](data:image/png;base64,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) [Events](/app/dashboards#/view/78289c40-86da-11e8-b59d-21efb914e65c-ecs) | [Alerts](/app/dashboards#/view/05268ee0-86d1-11e8-b59d-21efb914e65c-ecs)", - "openLinksInNewTab": false - }, - "title": "Navigation [Filebeat Suricata]", - "type": "markdown" - } - }, - "id": "908e8c90-d296-11ea-90e3-8767fe7ccf14", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-07-30T18:57:50.040Z", - "version": "Wzc1MywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Event Count [Filebeat Suricata]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Events" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 30, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Event Count [Filebeat Suricata]", - "type": "metric" - } - }, - "id": "169c0600-d297-11ea-90e3-8767fe7ccf14", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-07-30T19:02:39.133Z", - "version": "WzgyNCwxXQ==" - } - ], - "version": "7.9.0-SNAPSHOT" -} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-event-overview.ndjson b/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-event-overview.ndjson new file mode 100644 index 00000000000..243fe867e4b --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-event-overview.ndjson @@ -0,0 +1,12 @@ +{"attributes":{"columns":["host.name","suricata.eve.flow_id","network.transport","source.ip","source.port","destination.ip","destination.port","destination.geo.region_name","destination.geo.country_iso_code"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"event\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"event\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"suricata\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.module\": {\"query\": \"suricata\", \"type\": \"phrase\"}}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Events [Filebeat Suricata]","version":1},"coreMigrationVersion":"8.0.0","id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Activity Types over Time [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-6y\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"suricata.eve.event_type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Activity Types over Time [Filebeat Suricata]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"c7d46c60-86da-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Event Types [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"ECS Event Type\",\"field\":\"event.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Suricata Event Type\",\"field\":\"suricata.eve.event_type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"bottom\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Event Types [Filebeat Suricata]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0a0aa630-86db-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top Network Protocols [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.protocol\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"bottom\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top Network Protocols [Filebeat Suricata]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"728f64c0-86db-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top Hosts Generating Events [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-6y\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"host.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Top Hosts Generating Events [Filebeat Suricata]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"9d5b5b50-86db-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top Connection Source Countries [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Top Connection Source Countries\",\"field\":\"source.geo.country_iso_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top Connection Source Countries [Filebeat Suricata]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"5f99eb50-86dc-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top Connection Destination Countries [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Top Connection Destination Countries\",\"field\":\"destination.geo.country_iso_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top Connection Destination Countries [Filebeat Suricata]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"8e7f88d0-86dc-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top Transport Protocols [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.transport\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"bottom\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top Transport Protocols [Filebeat Suricata]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0a363820-86dd-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MjAsMV0="} +{"attributes":{"columns":["host.name","suricata.eve.stats.detect.alert","suricata.eve.stats.app_layer.flow.dns_udp","suricata.eve.stats.app_layer.flow.tls","suricata.eve.stats.app_layer.flow.http","suricata.eve.stats.app_layer.flow.ssh","suricata.eve.stats.tcp.sessions"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"metric\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"metric\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"suricata\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.module\": {\"query\": \"suricata\", \"type\": \"phrase\"}}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Host Stats [Filebeat Suricata]","version":1},"coreMigrationVersion":"8.0.0","id":"d57a2db0-86ca-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":18,\"markdown\":\"![Hello World](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAADwAAAAyCAYAAAAA9rgCAAAABGdBTUEAALGPC/xhBQAAACBjSFJNAAB6JgAAgIQAAPoAAACA6AAAdTAAAOpgAAA6mAAAF3CculE8AAAACXBIWXMAAJ17AACdewE8n3fEAAABWWlUWHRYTUw6Y29tLmFkb2JlLnhtcAAAAAAAPHg6eG1wbWV0YSB4bWxuczp4PSJhZG9iZTpuczptZXRhLyIgeDp4bXB0az0iWE1QIENvcmUgNS40LjAiPgogICA8cmRmOlJERiB4bWxuczpyZGY9Imh0dHA6Ly93d3cudzMub3JnLzE5OTkvMDIvMjItcmRmLXN5bnRheC1ucyMiPgogICAgICA8cmRmOkRlc2NyaXB0aW9uIHJkZjphYm91dD0iIgogICAgICAgICAgICB4bWxuczp0aWZmPSJodHRwOi8vbnMuYWRvYmUuY29tL3RpZmYvMS4wLyI+CiAgICAgICAgIDx0aWZmOk9yaWVudGF0aW9uPjE8L3RpZmY6T3JpZW50YXRpb24+CiAgICAgIDwvcmRmOkRlc2NyaXB0aW9uPgogICA8L3JkZjpSREY+CjwveDp4bXBtZXRhPgpMwidZAAAN5UlEQVRoBe1ZeXCU5Rn/7b25s9nEHJAQAhggCIKCThFpFRXFa+yhTtVSndaZUvWPVjqt1bGHY6cdrVNq66C21UpbT7wwxqMjAh4oBCGQC8KRY7Ob3WQ3e9/9Pe/uh2ukrePM7h/oM2S/73ve87l+z/O+6NIkfIFI/wWSVYn6pcAnu8W/tPCXFj7JNPClS59kBv2UOF84Cxs/pYJ8M1jYHS/udIBOV1idF1ZgqWJ1Ov6jpFlKp1PqrVCCF07grLDJeBT+oX5Ex52wVk9DxYy5muwFeRbGn7LCphIx9G26A933noZ0KoFEyAvHe1uUAgoiLRcpiMCMWiVPYGQAvg/vg7lhFpLRIGL+cQxsuBTO95/PyCuKyTMVxqVFDoZtPBSAjivqjJUY/OfXYWlciXl370bVnMUZMXNiO19yF0bg7O6jXicgGJWKw1y3CG3rNsNcZlOonQtk+RJW5i2MwFnLBYcOQGeSZVNIx4eRSiblo6CU/xhmXIr1ktEwQke2Qm+lfPoixMcnEHQMZIQtQOxqWs27wBoMxYKTFHILLdwMmhdSb4RdR7V9FOyZd4G1EsNosUJfvATppI+opVe4HXFnBS4AWGkazbvAUlkJGYvLYKlZhnR0AqnIXpS2fgeRsV5Ibs4AluYL2tby88y/wLJvFcd6GIpsMNpWwFx9BUzl05Dw9SPgOCI9WIicRAJrohiLK5COuVA0/UyEht7m8xwMvvIA3TxBLxfdaz2VDvLyUxALazk2HvAQuHqRDPtgrVvKdBxFMngMrn3blXCFsHLeBdaOglGfB6HDj9Gl52Dyo9+w2rLSsnEYy5sI2uG8WPNEk+ZdYIlfId+RLlrXRUHLVS6OjOyEscSORGBUAdeJNpcPXt4F1tzZ270NejNFSEUodDOSoR7+uVExbw0q5yxVsun0WhLLh6iZOfNbWop1mZbiLDqCBzczD5cTjUMEqDLEJ/ahePpizLhwbVY68YT8C/yxhbk5FW/KBXPQUr4VL7sveUzlad/aM4u2WvwGRg4h5tpNC7dwbIzDo6qmrllykZo0LTW1WiZnXW05bU55apTLy33PRflP8LWB2cODXLPIFcsn9SsLkHOiKmgqb+o3R2pXN7KUt/f9zMlbXecYlFvrLWQZ+E7SaU/1NeXnBHOfcE9Thv23PkaxlgibjEV4IJ+guxlgKa/iJtjE/Jhg0S+KM1gs0BvNPOEk1EEgw2O5aDQhEQnRVeXkIwqiFq3Fak55jwUmMLFnIwxl4s5+SmmhkfthqroUxqJStU0ZG/W61VhzuZ2K+DjSZLzK0+SZSyvVGmo98YocZYiCDSYzDGY5nfDsHfRlqjjKY+I47c7MKIPGmAeH23/BnPgRuxphbbgM827agAg30f3HFUiFBzDz+u2oXrAcQecg+jZeSOw5iJa178M+dxkOv/QgvJ3rmWJWUVEmVlGNsC26HA1nr4G3fw9io50w10odPcn5TUhFAWv9UqWYycE+HHvpXsTcO5Dw96P+4ifQeN63Zc9UZBDdD11LdO+AseIctN3yCkwsUQeevx/+nk1E+wbOGYLeVMGqrQN1qzdj+ooraZQ4+p74McJHH2Ho6NB2mwPWqlraNg3jeH8nDm5YAWM1PU2MGaN2PBtZFNxHA+mQCg2wUCBfWZC74KBU6KDicWa1sVQ8osamjHsRG3MhVsw09MFGRFx/gKmsCpVn3QH/gXuoDHpK0VJ6ElC14DzlUT33t2bPyPSGY0B0YkjNKT/RSQ9jvwP60oWcdzuiPrcSOObpReRgDywto9yhAQkWMuEuKmjFuBobD/gQGWmHztKGhGc/wuOjSmDZu9657XEY6CmG4jPQdM0WzPkhrbbilxxIPxYPpXfJX677yLVBLk/cX7qbbOdg5k2voXjO92CZ1gxn+62I+VwoaVyI6CCFXPoAXXkB21pR3XY2jr3+VxlGS1Wj9sLHMfv2DpQ2LVKblp+IxyFZjBasQoqGCHtGVFv9+bei5dZ2mCrPZbsHRTO+jzl3vQ7b/OWqXYqcpH+YIFmlvsNj1GSWjOGRfyurVi66EfVnXaLY9nnL1DPq92a6qatj2VqW5FX701hxbsxcjrozL0B583wc+P3DKu+aK+pQVNOE4tb5mH7+Dej7++1ovbkDcl3r2/eg0mPF6T9F06rrtdmVNwmWhJxHxCikpOgeYX6DYWWfm8nbnt3PMgwYHjWzUHfGKumoSBTDWyTukR5Irwo5+hVfagK9zlCiXCrqOaKY6RSvX/iX+eBqstJnIfaTvaUScRTZ6mCpv0G5vfq216Fs/ncJfPR1HhJKamcg5B5h3A1AlrK1natWkL5CGsCEHb1KaWkpVli0hB09ql1iMckwkpCSMElnxwmgCoVGD8mRW5HcsEQcexXwiXb1pXOuUA3+fb/D0LZnM6eWjFozIz7LL/vLEJV3Oam6lqUPEtRpnBjMFXakQ2N0MzeqWldi4MUN8O7fCpHfWsI/IrOQCg1RG+eQg0XEsRu6IqC0hZ7Hu7Dw6B6VNcRSmlKUlvktpNdL7KU5rluFXMms1cSM0xB1PosYUVv1qT/namqK2GxbhqGnvgF31ztcmGr7H5QRLmNRNQlLQhPXMhv1KqUEHUcQHP4Xgoy7dHE1TEVl0M2+EFtumw437Kg5cw2cww70HAQOyUWmiVJlSdO1hFPE+QIsZSsYmyupnFlITbyMOO+yFYmC+SJ/x4lyy1VwxLlTeURl6woYSlpY1QWY9sZUN31pXTMar25HzLGTqeMsDPxtOfzDh1RjbvFwfFK+GKkPMzWulb7BaApDo0D3oXG8tflpPPbzW9D+KvDiw0DJnAweHOjqw9NPAE/+6GKUNbQg0bwczz8J7PigHrHkx3GjVWeOESee+y2wzzUNxpoWDPtnQK7Agh5qSBFTDDeg7SHLVMge92wnCC9ESf1MClyrMkh4bEh14eVSGvXLVqPuskeYjt4nYhpw+On1qlFHF5HMIx6T9RqlUV+AwjGcvJGMfrtGUtjyFLCt413846pv4dieHaD3Yu32t1FT36DmMpkMqOBb1YIraRa6VCwMG79LSnj4133CTqr/6NAgBGpitlNha5iB/lgrHtsE9PQdUe1yQTIeSCPGsFd3B4orSO5AglhrqlqisMJinymYRwA8rHrotaWaV9+EiiU/Y3AnEex7Dp7eXZCLNzOtGScWRDN4ggDd9KVngI4tnCTLE2WIU1a3tGLWNZfAoPOjYv4CnHr64uw2KCMVy3WRYEUn2rOWlCjlxdxjiEdZiQixj3a6Gh3oRzlZRVYTxp0jKCu1giGP4f4+6cmxOuw8mMLmjQwLlyYFFeQ6DBO9z2gtZ/5lGuNaggPh0W41Si8LaOjWdPE6ImkdzKxzIyO9iCWS2NcLvPAg4A5lJqVtYCDyMXUf/48puZ6h0VF/+nKsXrcekT2A640uHOraS26GpIgRUk9OVV5lFxxCiGYM+DKAkqSyZT/JRAJDXZ2wzwC6Nj+MXzdMw+G3noN9NgXu2qXaDQY9TPoUaEx4gh8L/FHnfjhCnHfoTfTePw2B/RtgtFcRyHYwvv3QS5xqtWtxdT30lSvRd4BaGw0hntLhg210HU6qXb9I6kgMkEEyWTN1q7xLFoiFgphJy1ZfuVJZ78C726XpOMm2JL+mGCf22jqUssYQBR7a26n6GMU0pMCkF67OdmJKDWLOYzA20gBDR2GqaYTrvWeoIK86eIiCZIQhGxLRcAi7dnyIN7cCr7yyH4QNTHqHacAapCd3IsKCRD/42qMY+7ADvtFB7Hj5eXS078BLr1GAyjrYaIVTzlgCKfG7dmxFJBhAV1YIK0OjsvoU2R+tolf/ZxPx+5Tl5p5/ubJnz6tPwj+RQVVRrNhYHTbicY6twcyLboGFgb3tT3eic9tbGDjQhd49uzHpGYfvPaIqq4obn9qJOzvduH7TVsRdgwjQMydYvoqvyJyiRA3oJicmEOp9DUbixyW/fRNr/uxGw9pd2NWdwAR5MQ+rr/Ej+/Didatx36omPHnZVXBsH0IjXantjKUqPS3+5s3KbXpefBS/+moN3nnobgS5yPwb1qOGriakeYiG6nPP+ooSzt2xG0f7iG6kFFFGvEBnJBBmC5vzrrsJXnqznNQ2XfM1/KTtNHS9s42bc4FeifJZ52LmvDaU2eyY2bYQRU3zIKXF2MgwfzOKljm1VDbucsK/n3m9zYbZCxbCZrejed4CONKL8PRfBPCOQj9WvgQ7Gac+7otpFPVrVuEHHd2wnVKrJr3g2htw/j13wfvuILwfRjDx7hAWrluLq25dr9rlJ84jJCs8SNEuq89onYcK4pXwOt9oly6q0pFIjU44lUcIb/Zpi7DurTeQjmRypHhSma0KQ33d8PC9vKEJJgEUkrWoCOWNpyrlD3bzpECSI6Ccv+S4KDR8sA9i+7KmxbAWC8Qx7Jg/G2Y1q3773mGNQXdIe6lRn9tNdzOirpGLEJ01N9FQc+hQP/xeL4qIro2zT4WBfaWPtIuLRUMhVlZm2OvqFc8z6kA8FmM/Az1hOibHPQj6/URQE6rYR0+g08b7vRNwO0a4OTNOmd6I4OQkIsQDa3EJbDWZsJHNjztHEY1EYCmykl8LWSPBNSwUTvp5ifhhhp2Z2GKvrZchioQv8xl4yFECaw3aU2rpzMV4Jj40obV2eWqbzeV9nvfctT7PeG3MZ92PElg6U4LMWMlb/JtK6lBBpmqZ0uf4+Bz+VN7U79z5j7cJU1tb9pMznzQd75fl/79vGSOU2+8/QDU5FFmyNvEAAAAASUVORK5CYII=) [Events](/app/dashboards#/view/78289c40-86da-11e8-b59d-21efb914e65c-ecs) | [Alerts](/app/dashboards#/view/05268ee0-86d1-11e8-b59d-21efb914e65c-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Filebeat Suricata]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"908e8c90-d296-11ea-90e3-8767fe7ccf14","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Event Count [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Events\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":30,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Event Count [Filebeat Suricata]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"169c0600-d297-11ea-90e3-8767fe7ccf14","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MjMsMV0="} +{"attributes":{"description":"Overview of the Surcata events dashboard.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1\",\"w\":48,\"x\":0,\"y\":4},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"2\",\"w\":9,\"x\":0,\"y\":24},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"3\",\"w\":11,\"x\":19,\"y\":24},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"4\",\"w\":48,\"x\":0,\"y\":14},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"search\",\"gridData\":{\"h\":19,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":38},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"6\",\"w\":9,\"x\":30,\"y\":24},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"7\",\"w\":9,\"x\":39,\"y\":24},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"8\",\"w\":10,\"x\":9,\"y\":24},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"search\",\"gridData\":{\"h\":16,\"i\":\"9\",\"w\":48,\"x\":0,\"y\":57},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"78f64fb8-a6ed-4960-a73b-a8c42c40f799\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"78f64fb8-a6ed-4960-a73b-a8c42c40f799\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_78f64fb8-a6ed-4960-a73b-a8c42c40f799\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"63e14057-b48b-48fe-b3e2-84f7690d60e8\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"63e14057-b48b-48fe-b3e2-84f7690d60e8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_63e14057-b48b-48fe-b3e2-84f7690d60e8\"}]","timeRestore":false,"title":"[Filebeat Suricata] Events Overview","version":1},"coreMigrationVersion":"8.0.0","id":"78289c40-86da-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"c7d46c60-86da-11e8-b59d-21efb914e65c-ecs","name":"1:panel_1","type":"visualization"},{"id":"0a0aa630-86db-11e8-b59d-21efb914e65c-ecs","name":"2:panel_2","type":"visualization"},{"id":"728f64c0-86db-11e8-b59d-21efb914e65c-ecs","name":"3:panel_3","type":"visualization"},{"id":"9d5b5b50-86db-11e8-b59d-21efb914e65c-ecs","name":"4:panel_4","type":"visualization"},{"id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","name":"5:panel_5","type":"search"},{"id":"5f99eb50-86dc-11e8-b59d-21efb914e65c-ecs","name":"6:panel_6","type":"visualization"},{"id":"8e7f88d0-86dc-11e8-b59d-21efb914e65c-ecs","name":"7:panel_7","type":"visualization"},{"id":"0a363820-86dd-11e8-b59d-21efb914e65c-ecs","name":"8:panel_8","type":"visualization"},{"id":"d57a2db0-86ca-11e8-b59d-21efb914e65c-ecs","name":"9:panel_9","type":"search"},{"id":"908e8c90-d296-11ea-90e3-8767fe7ccf14","name":"78f64fb8-a6ed-4960-a73b-a8c42c40f799:panel_78f64fb8-a6ed-4960-a73b-a8c42c40f799","type":"visualization"},{"id":"169c0600-d297-11ea-90e3-8767fe7ccf14","name":"63e14057-b48b-48fe-b3e2-84f7690d60e8:panel_63e14057-b48b-48fe-b3e2-84f7690d60e8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MTIsMV0="} diff --git a/x-pack/filebeat/module/suricata/module.yml b/x-pack/filebeat/module/suricata/module.yml index d3747be1f4d..2df56d7d514 100644 --- a/x-pack/filebeat/module/suricata/module.yml +++ b/x-pack/filebeat/module/suricata/module.yml @@ -1,5 +1,5 @@ dashboards: - id: 78289c40-86da-11e8-b59d-21efb914e65c-ecs - file: filebeat-suricata-event-overview.json + file: filebeat-suricata-event-overview.ndjson - id: 05268ee0-86d1-11e8-b59d-21efb914e65c-ecs - file: filebeat-suricata-alert-overview.json + file: filebeat-suricata-alert-overview.ndjson diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-abuse-url.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-abuse-url.json deleted file mode 100644 index 2cc53e68cbf..00000000000 --- a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-abuse-url.json +++ /dev/null @@ -1,2136 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Abuse URL indicators ingested by the threat intel Filebeat module.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "166a6654-675d-4802-b1bf-05a9b95e6547", - "w": 12, - "x": 0, - "y": 0 - }, - "panelIndex": "166a6654-675d-4802-b1bf-05a9b95e6547", - "panelRefName": "panel_0", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "92819fb6-a0a3-4831-881f-de6e9203f3ee", - "w": 14, - "x": 12, - "y": 0 - }, - "panelIndex": "92819fb6-a0a3-4831-881f-de6e9203f3ee", - "panelRefName": "panel_1", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "0d49c092-01ba-4213-b3f4-05f939796184", - "w": 10, - "x": 26, - "y": 0 - }, - "panelIndex": "0d49c092-01ba-4213-b3f4-05f939796184", - "panelRefName": "panel_2", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "ac111656-d2ad-4b02-8c4f-b07ae92cf3f5", - "w": 12, - "x": 36, - "y": 0 - }, - "panelIndex": "ac111656-d2ad-4b02-8c4f-b07ae92cf3f5", - "panelRefName": "panel_3", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 690.5 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "0fbd766f-a11e-4287-ab1d-2239068f4aa9", - "w": 16, - "x": 0, - "y": 18 - }, - "panelIndex": "0fbd766f-a11e-4287-ab1d-2239068f4aa9", - "panelRefName": "panel_4", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 494.5 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "9b7733e0-a86a-4721-a456-2f394577025a", - "w": 12, - "x": 16, - "y": 18 - }, - "panelIndex": "9b7733e0-a86a-4721-a456-2f394577025a", - "panelRefName": "panel_5", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "4bce30b1-9606-4fc7-91af-1890ad0578bd", - "w": 12, - "x": 28, - "y": 18 - }, - "panelIndex": "4bce30b1-9606-4fc7-91af-1890ad0578bd", - "panelRefName": "panel_6", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "2e7f876d-4e18-4dc6-a57f-51c651f90b4c", - "w": 8, - "x": 40, - "y": 18 - }, - "panelIndex": "2e7f876d-4e18-4dc6-a57f-51c651f90b4c", - "panelRefName": "panel_7", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 467.5 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "a824f293-41a3-46bf-83c9-1d17fa840fde", - "w": 13, - "x": 0, - "y": 36 - }, - "panelIndex": "a824f293-41a3-46bf-83c9-1d17fa840fde", - "panelRefName": "panel_8", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "91d7b4bf-4a43-4747-91ad-3e2fd201468e", - "w": 11, - "x": 13, - "y": 36 - }, - "panelIndex": "91d7b4bf-4a43-4747-91ad-3e2fd201468e", - "panelRefName": "panel_9", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "f597f182-0cf4-4fab-b0ab-af4e7c74a897", - "w": 24, - "x": 24, - "y": 36 - }, - "panelIndex": "f597f182-0cf4-4fab-b0ab-af4e7c74a897", - "panelRefName": "panel_10", - "version": "7.11.0" - } - ], - "timeRestore": false, - "title": "[Filebeat Threat Intel] Abuse URL", - "version": 1 - }, - "id": "65fa6bc0-72f0-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "dashboard": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "87980f70-72ec-11eb-a3e3-b3cc7c78a70f", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "98d42ee0-76b6-11eb-a3e3-b3cc7c78a70f", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "a7b6e910-72ed-11eb-a3e3-b3cc7c78a70f", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "eba4ec60-72ea-11eb-a3e3-b3cc7c78a70f", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "1adff580-72ee-11eb-a3e3-b3cc7c78a70f", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "62f6daa0-72ee-11eb-a3e3-b3cc7c78a70f", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "ecf74b10-72ec-11eb-a3e3-b3cc7c78a70f", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "44020830-7394-11eb-a3e3-b3cc7c78a70f", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "d5d76c60-72ee-11eb-a3e3-b3cc7c78a70f", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "ea5879c0-72eb-11eb-a3e3-b3cc7c78a70f", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "a1616dd0-72eb-11eb-a3e3-b3cc7c78a70f", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "dashboard", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNzUsMl0=" - }, - { - "attributes": { - "description": "Abuse URL threat of indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.abuseurl" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.abuseurl" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.abuseurl.threat" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.abuseurl.threat", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Abuse URL Threat [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "colors": { - "Count": "#E24D42" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Abuse URL Threat", - "field": "threatintel.abuseurl.threat", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 200 - }, - "position": "left", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false - }, - "labels": { - "show": true - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": true, - "rotate": 75, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "bottom", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Abuse URL Threat [Filebeat Threat Intel]", - "type": "horizontal_bar" - } - }, - "id": "87980f70-72ec-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNjQsMl0=" - }, - { - "attributes": { - "description": "Tags for Abuse URL indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.abuseurl" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.abuseurl" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.abuseurl.tags" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.abuseurl.tags", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Abuse URL Tags [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Abuse URL Tags", - "field": "threatintel.abuseurl.tags", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Abuse URL Tags [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "98d42ee0-76b6-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNjUsMl0=" - }, - { - "attributes": { - "description": "Abuse URL scheme of indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.abuseurl" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.abuseurl" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.url.scheme" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.url.scheme", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Abuse URL Scheme [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "colors": { - "http": "#65C5DB", - "https": "#F9934E" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "URL Scheme", - "field": "threatintel.indicator.url.scheme", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": true, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "threatintel.indicator.url.scheme", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false - }, - "labels": { - "show": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Abuse URL Scheme [Filebeat Threat Intel]", - "type": "histogram" - } - }, - "id": "a7b6e910-72ed-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNjYsMl0=" - }, - { - "attributes": { - "description": "Hosting provider notified for indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.abuseurl" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.abuseurl" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.abuseurl.larted" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.abuseurl.larted", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Abuse URL Hosting Provider Notified [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "colors": { - "false": "#E24D42" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Hosting Provider Notified", - "field": "threatintel.abuseurl.larted", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 2 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": true, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Abuse URL Hosting Provider Notified [Filebeat Threat Intel]", - "type": "pie" - } - }, - "id": "eba4ec60-72ea-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNjcsMl0=" - }, - { - "attributes": { - "description": "Abuse URL domain indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.abuseurl" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.abuseurl" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.domain" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.domain", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Abuse URL Indicator Domain [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Threat Indicator Domain", - "field": "threatintel.indicator.domain", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Abuse URL Indicator Domain [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "1adff580-72ee-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNjgsMl0=" - }, - { - "attributes": { - "description": "Abuse URL full URL indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.abuseurl" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.abuseurl" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.url.full" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.url.full", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Abuse URL Indicator URLs [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Threat Indicator URL", - "field": "threatintel.indicator.url.full", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Abuse URL Indicator URLs [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "62f6daa0-72ee-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNjksMl0=" - }, - { - "attributes": { - "description": "Abuse URL provider of indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.abuseurl" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.abuseurl" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.abuseurl.threat" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.abuseurl.threat", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Abuse URL Indicator Provider [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "colors": { - "Count": "#705DA0" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "threatintel.indicator.provider", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 200 - }, - "position": "left", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false - }, - "labels": { - "show": true - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": true, - "rotate": 75, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "bottom", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Abuse URL Indicator Provider [Filebeat Threat Intel]", - "type": "horizontal_bar" - } - }, - "id": "ecf74b10-72ec-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNzAsMl0=" - }, - { - "attributes": { - "description": "Total number of Abuse URL indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.abuseurl" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.abuseurl" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Abuse URL Indicators [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Abuse URL Indicators" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Abuse URL Indicators [Filebeat Threat Intel]", - "type": "metric" - } - }, - "id": "44020830-7394-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNzEsMl0=" - }, - { - "attributes": { - "description": "Abuse URL event references ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.abuseurl" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.abuseurl" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.url.full" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.url.full", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Abuse URL Event Reference [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Abuse URL Reference URL", - "field": "event.reference", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Abuse URL Event Reference [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "d5d76c60-72ee-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNzIsMl0=" - }, - { - "attributes": { - "description": "Status of URLs ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.abuseurl" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.abuseurl" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.abuseurl.url_status" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.abuseurl.url_status", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Abuse URL URL Status [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "URL Status", - "field": "threatintel.abuseurl.url_status", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Abuse URL URL Status [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "ea5879c0-72eb-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNzMsMl0=" - }, - { - "attributes": { - "description": "Blacklist status of URLs ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.abuseurl" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.abuseurl" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.abuseurl.blacklists.spamhaus_dbl" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.abuseurl.blacklists.spamhaus_dbl", - "negate": false, - "type": "exists", - "value": "exists" - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.abuseurl.blacklists.surbl" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "key": "threatintel.abuseurl.blacklists.surbl", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Abuse URL Blacklist Status [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Spamhaus DBL Blacklist Status", - "field": "threatintel.abuseurl.blacklists.spamhaus_dbl", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "SURBL Blacklist Status", - "field": "threatintel.abuseurl.blacklists.surbl", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Abuse URL Blacklist Status [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "a1616dd0-72eb-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNzQsMl0=" - }, - { - "attributes": { - "color": "#a548ae", - "description": "Tag for indicators ingested by the Threat Intel Filebeat module.", - "name": "threat intel" - }, - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "namespaces": [ - "default" - ], - "references": [], - "type": "tag", - "updated_at": "2021-03-10T19:01:18.125Z", - "version": "WzIyMTcsMl0=" - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.module", - "negate": false, - "params": { - "query": "threatintel" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.module": "threatintel" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "event.category", - "negate": false, - "params": { - "query": "threat" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.category": "threat" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "key": "event.kind", - "negate": false, - "params": { - "query": "enrichment" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.kind": "enrichment" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index", - "key": "event.type", - "negate": false, - "params": { - "query": "indicator" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.type": "indicator" - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [], - "title": "All Logs [Filebeat Threat Intel] ECS", - "version": 1 - }, - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "search": "7.9.3" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyMTksMl0=" - } - ], - "version": "7.11.1" -} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-abuse-url.ndjson b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-abuse-url.ndjson new file mode 100644 index 00000000000..ecdb7e1121d --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-abuse-url.ndjson @@ -0,0 +1,14 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"threatintel\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"threatintel\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.category\", \"negate\": false, \"params\": {\"query\": \"threat\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.category\": \"threat\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"enrichment\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"enrichment\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index\", \"key\": \"event.type\", \"negate\": false, \"params\": {\"query\": \"indicator\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.type\": \"indicator\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[],"title":"All Logs [Filebeat Threat Intel] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NjAsMV0="} +{"attributes":{"color":"#a548ae","description":"Tag for indicators ingested by the Threat Intel Filebeat module.","name":"threat intel"},"coreMigrationVersion":"8.0.0","id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","references":[],"type":"tag","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzksMV0="} +{"attributes":{"description":"Abuse URL threat of indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.abuseurl.threat\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.abuseurl.threat\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Threat [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"Count\": \"#E24D42\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Abuse URL Threat\",\"field\":\"threatintel.abuseurl.threat\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":true},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Abuse URL Threat [Filebeat Threat Intel]\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"87980f70-72ec-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTAsMV0="} +{"attributes":{"description":"Tags for Abuse URL indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.abuseurl.tags\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.abuseurl.tags\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Tags [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Abuse URL Tags\",\"field\":\"threatintel.abuseurl.tags\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse URL Tags [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"98d42ee0-76b6-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTEsMV0="} +{"attributes":{"description":"Abuse URL scheme of indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.url.scheme\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.url.scheme\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Scheme [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"http\": \"#65C5DB\", \"https\": \"#F9934E\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"URL Scheme\",\"field\":\"threatintel.indicator.url.scheme\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"threatintel.indicator.url.scheme\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Abuse URL Scheme [Filebeat Threat Intel]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"a7b6e910-72ed-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTIsMV0="} +{"attributes":{"description":"Hosting provider notified for indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.abuseurl.larted\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.abuseurl.larted\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Hosting Provider Notified [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"false\": \"#E24D42\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Hosting Provider Notified\",\"field\":\"threatintel.abuseurl.larted\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":2},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Abuse URL Hosting Provider Notified [Filebeat Threat Intel]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"eba4ec60-72ea-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTMsMV0="} +{"attributes":{"description":"Abuse URL domain indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.domain\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.domain\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Indicator Domain [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Threat Indicator Domain\",\"field\":\"threatintel.indicator.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse URL Indicator Domain [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"1adff580-72ee-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTQsMV0="} +{"attributes":{"description":"Abuse URL full URL indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.url.full\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.url.full\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Indicator URLs [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Threat Indicator URL\",\"field\":\"threatintel.indicator.url.full\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse URL Indicator URLs [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"62f6daa0-72ee-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTUsMV0="} +{"attributes":{"description":"Abuse URL provider of indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.abuseurl.threat\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.abuseurl.threat\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Indicator Provider [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"Count\": \"#705DA0\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"threatintel.indicator.provider\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":true},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Abuse URL Indicator Provider [Filebeat Threat Intel]\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"ecf74b10-72ec-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTYsMV0="} +{"attributes":{"description":"Total number of Abuse URL indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Abuse URL Indicators\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Abuse URL Indicators [Filebeat Threat Intel]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"44020830-7394-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTcsMV0="} +{"attributes":{"description":"Abuse URL event references ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.url.full\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.url.full\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Event Reference [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Abuse URL Reference URL\",\"field\":\"event.reference\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse URL Event Reference [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"d5d76c60-72ee-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTgsMV0="} +{"attributes":{"description":"Status of URLs ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.abuseurl.url_status\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.abuseurl.url_status\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL URL Status [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"URL Status\",\"field\":\"threatintel.abuseurl.url_status\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse URL URL Status [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"ea5879c0-72eb-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTksMV0="} +{"attributes":{"description":"Blacklist status of URLs ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.abuseurl.blacklists.spamhaus_dbl\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.abuseurl.blacklists.spamhaus_dbl\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.abuseurl.blacklists.surbl\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"threatintel.abuseurl.blacklists.surbl\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Blacklist Status [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Spamhaus DBL Blacklist Status\",\"field\":\"threatintel.abuseurl.blacklists.spamhaus_dbl\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"SURBL Blacklist Status\",\"field\":\"threatintel.abuseurl.blacklists.surbl\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse URL Blacklist Status [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"a1616dd0-72eb-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NjAsMV0="} +{"attributes":{"description":"Abuse URL indicators ingested by the threat intel Filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"166a6654-675d-4802-b1bf-05a9b95e6547\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"166a6654-675d-4802-b1bf-05a9b95e6547\",\"panelRefName\":\"panel_0\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"92819fb6-a0a3-4831-881f-de6e9203f3ee\",\"w\":14,\"x\":12,\"y\":0},\"panelIndex\":\"92819fb6-a0a3-4831-881f-de6e9203f3ee\",\"panelRefName\":\"panel_1\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"0d49c092-01ba-4213-b3f4-05f939796184\",\"w\":10,\"x\":26,\"y\":0},\"panelIndex\":\"0d49c092-01ba-4213-b3f4-05f939796184\",\"panelRefName\":\"panel_2\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"ac111656-d2ad-4b02-8c4f-b07ae92cf3f5\",\"w\":12,\"x\":36,\"y\":0},\"panelIndex\":\"ac111656-d2ad-4b02-8c4f-b07ae92cf3f5\",\"panelRefName\":\"panel_3\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":690.5}]}}},\"gridData\":{\"h\":18,\"i\":\"0fbd766f-a11e-4287-ab1d-2239068f4aa9\",\"w\":16,\"x\":0,\"y\":18},\"panelIndex\":\"0fbd766f-a11e-4287-ab1d-2239068f4aa9\",\"panelRefName\":\"panel_4\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":494.5}]}}},\"gridData\":{\"h\":18,\"i\":\"9b7733e0-a86a-4721-a456-2f394577025a\",\"w\":12,\"x\":16,\"y\":18},\"panelIndex\":\"9b7733e0-a86a-4721-a456-2f394577025a\",\"panelRefName\":\"panel_5\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"4bce30b1-9606-4fc7-91af-1890ad0578bd\",\"w\":12,\"x\":28,\"y\":18},\"panelIndex\":\"4bce30b1-9606-4fc7-91af-1890ad0578bd\",\"panelRefName\":\"panel_6\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"2e7f876d-4e18-4dc6-a57f-51c651f90b4c\",\"w\":8,\"x\":40,\"y\":18},\"panelIndex\":\"2e7f876d-4e18-4dc6-a57f-51c651f90b4c\",\"panelRefName\":\"panel_7\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":467.5}]}}},\"gridData\":{\"h\":18,\"i\":\"a824f293-41a3-46bf-83c9-1d17fa840fde\",\"w\":13,\"x\":0,\"y\":36},\"panelIndex\":\"a824f293-41a3-46bf-83c9-1d17fa840fde\",\"panelRefName\":\"panel_8\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"91d7b4bf-4a43-4747-91ad-3e2fd201468e\",\"w\":11,\"x\":13,\"y\":36},\"panelIndex\":\"91d7b4bf-4a43-4747-91ad-3e2fd201468e\",\"panelRefName\":\"panel_9\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"f597f182-0cf4-4fab-b0ab-af4e7c74a897\",\"w\":24,\"x\":24,\"y\":36},\"panelIndex\":\"f597f182-0cf4-4fab-b0ab-af4e7c74a897\",\"panelRefName\":\"panel_10\",\"version\":\"7.11.0\"}]","timeRestore":false,"title":"[Filebeat Threat Intel] Abuse URL","version":1},"coreMigrationVersion":"8.0.0","id":"65fa6bc0-72f0-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"87980f70-72ec-11eb-a3e3-b3cc7c78a70f","name":"panel_0","type":"visualization"},{"id":"98d42ee0-76b6-11eb-a3e3-b3cc7c78a70f","name":"panel_1","type":"visualization"},{"id":"a7b6e910-72ed-11eb-a3e3-b3cc7c78a70f","name":"panel_2","type":"visualization"},{"id":"eba4ec60-72ea-11eb-a3e3-b3cc7c78a70f","name":"panel_3","type":"visualization"},{"id":"1adff580-72ee-11eb-a3e3-b3cc7c78a70f","name":"panel_4","type":"visualization"},{"id":"62f6daa0-72ee-11eb-a3e3-b3cc7c78a70f","name":"panel_5","type":"visualization"},{"id":"ecf74b10-72ec-11eb-a3e3-b3cc7c78a70f","name":"panel_6","type":"visualization"},{"id":"44020830-7394-11eb-a3e3-b3cc7c78a70f","name":"panel_7","type":"visualization"},{"id":"d5d76c60-72ee-11eb-a3e3-b3cc7c78a70f","name":"panel_8","type":"visualization"},{"id":"ea5879c0-72eb-11eb-a3e3-b3cc7c78a70f","name":"panel_9","type":"visualization"},{"id":"a1616dd0-72eb-11eb-a3e3-b3cc7c78a70f","name":"panel_10","type":"visualization"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"dashboard","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NDksMV0="} diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-alienvault-otx.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-alienvault-otx.json deleted file mode 100644 index 5156709b9d4..00000000000 --- a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-alienvault-otx.json +++ /dev/null @@ -1,1877 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "AlienVault OTX indicators ingested by the threat intel Filebeat module.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "7847e7a5-06a5-43e7-bd6b-ccae637739e5", - "w": 17, - "x": 0, - "y": 0 - }, - "panelIndex": "7847e7a5-06a5-43e7-bd6b-ccae637739e5", - "panelRefName": "panel_0", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "dc17e932-e983-4deb-95dc-07d571bf9e28", - "w": 7, - "x": 17, - "y": 0 - }, - "panelIndex": "dc17e932-e983-4deb-95dc-07d571bf9e28", - "panelRefName": "panel_1", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "6d448f2b-f2b7-4e18-a9ef-77c06ab755ac", - "w": 15, - "x": 24, - "y": 0 - }, - "panelIndex": "6d448f2b-f2b7-4e18-a9ef-77c06ab755ac", - "panelRefName": "panel_2", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "a946ed22-37d4-4c8d-8250-fc00f2ad646b", - "w": 9, - "x": 39, - "y": 0 - }, - "panelIndex": "a946ed22-37d4-4c8d-8250-fc00f2ad646b", - "panelRefName": "panel_3", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 286 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "e4c2fa0c-b238-4502-82b8-b61847d19b18", - "w": 9, - "x": 0, - "y": 18 - }, - "panelIndex": "e4c2fa0c-b238-4502-82b8-b61847d19b18", - "panelRefName": "panel_4", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "ed1ab436-d7cc-4545-bbc6-a3aa4d45108b", - "w": 17, - "x": 9, - "y": 18 - }, - "panelIndex": "ed1ab436-d7cc-4545-bbc6-a3aa4d45108b", - "panelRefName": "panel_5", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "ac6508e3-214a-4af9-8621-f9bd9cd9fe36", - "w": 10, - "x": 26, - "y": 18 - }, - "panelIndex": "ac6508e3-214a-4af9-8621-f9bd9cd9fe36", - "panelRefName": "panel_6", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "d5dbe626-716b-4dc2-9018-21050ee860ad", - "w": 12, - "x": 36, - "y": 18 - }, - "panelIndex": "d5dbe626-716b-4dc2-9018-21050ee860ad", - "panelRefName": "panel_7", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "fb89a073-18ce-41a0-87ec-a66bb35216e5", - "w": 24, - "x": 0, - "y": 36 - }, - "panelIndex": "fb89a073-18ce-41a0-87ec-a66bb35216e5", - "panelRefName": "panel_8", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 303 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "a2a17e0d-2de0-45cc-8440-d00a7044aaab", - "w": 9, - "x": 24, - "y": 36 - }, - "panelIndex": "a2a17e0d-2de0-45cc-8440-d00a7044aaab", - "panelRefName": "panel_9", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 598 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "291a8404-8e31-45f4-9117-4ea5bf996e78", - "w": 15, - "x": 33, - "y": 36 - }, - "panelIndex": "291a8404-8e31-45f4-9117-4ea5bf996e78", - "panelRefName": "panel_10", - "version": "7.11.1" - } - ], - "timeRestore": false, - "title": "[Filebeat Threat Intel] AlienVault OTX", - "version": 1 - }, - "id": "53e4e630-76cf-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "dashboard": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "95f384b0-76d8-11eb-a3e3-b3cc7c78a70f", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "b5bd3a70-76ce-11eb-a3e3-b3cc7c78a70f", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "f33125b0-76d8-11eb-a3e3-b3cc7c78a70f", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "302cd5b0-76cd-11eb-a3e3-b3cc7c78a70f", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "49f0c060-76cd-11eb-a3e3-b3cc7c78a70f", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "346136f0-76d5-11eb-a3e3-b3cc7c78a70f", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "9109e490-76cd-11eb-a3e3-b3cc7c78a70f", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "6077fd00-76d5-11eb-a3e3-b3cc7c78a70f", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "4e5d25c0-76ce-11eb-a3e3-b3cc7c78a70f", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "0ccdda50-76ce-11eb-a3e3-b3cc7c78a70f", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "01c261b0-7aa9-11eb-ac13-d5ca87cb8fa2", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "dashboard", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyODcsMl0=" - }, - { - "attributes": { - "description": "AlienVault OTX URL scheme ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "AlientVault OTX URL Scheme [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "colors": { - "http": "#65C5DB", - "https": "#F9934E" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "", - "field": "threatintel.indicator.url.scheme", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 200 - }, - "position": "left", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": true - }, - "labels": { - "show": true - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": true, - "rotate": 75, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "bottom", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "AlientVault OTX URL Scheme [Filebeat Threat Intel]", - "type": "horizontal_bar" - } - }, - "id": "95f384b0-76d8-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNzYsMl0=" - }, - { - "attributes": { - "description": "Total number of AlienVault OTX indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.otx" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.otx" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "AlienVault OTX Indicators [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "AlienVault OTX Indicators" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "AlienVault OTX Indicators [Filebeat Threat Intel]", - "type": "metric" - } - }, - "id": "b5bd3a70-76ce-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNzcsMl0=" - }, - { - "attributes": { - "description": "AlienVault OTX indicator types ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.otx" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.otx" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.type" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.type", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "AlientVault OTX Indicator Types [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "threatintel.indicator.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": true, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "AlientVault OTX Indicator Types [Filebeat Threat Intel]", - "type": "pie" - } - }, - "id": "f33125b0-76d8-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNzgsMl0=" - }, - { - "attributes": { - "description": "AlienVault OTX IP indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.otx" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.otx" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.ip" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.ip", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "AlientVault OTX IP Indicators [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "AlienVault OTX IP Indicator", - "field": "threatintel.indicator.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "AlientVault OTX IP Indicators [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "302cd5b0-76cd-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNzksMl0=" - }, - { - "attributes": { - "description": "AlienVault OTX domain indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.otx" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.otx" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.domain" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.domain", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "AlientVault OTX Domain Indicators [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "AlienVault OTX IP Indicator", - "field": "threatintel.indicator.domain", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "AlientVault OTX Domain Indicators [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "49f0c060-76cd-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyODAsMl0=" - }, - { - "attributes": { - "description": "AlienVault OTX URL indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.otx" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.otx" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.url.original" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.url.original", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "AlienVault OTX URL Indicators [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "AlienVault OTX URL Indicator", - "field": "threatintel.indicator.url.original", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "AlienVault OTX URL Indicators [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "346136f0-76d5-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyODEsMl0=" - }, - { - "attributes": { - "description": "AlienVault OTX URL domain indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.otx" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.otx" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.url.domain" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.url.domain", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "AlienVault OTX URL Domain Indicators [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "AlienVault OTX URL Domain Indicator", - "field": "threatintel.indicator.url.domain", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "AlienVault OTX URL Domain Indicators [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "9109e490-76cd-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyODIsMl0=" - }, - { - "attributes": { - "description": "AlienVault OTX URI indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.otx" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.otx" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.url.path" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.url.path", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "AlienVault OTX URI Indicators [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "AlienVault OTX URI Indicator", - "field": "threatintel.indicator.url.path", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "AlienVault OTX URI Indicators [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "6077fd00-76d5-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyODMsMl0=" - }, - { - "attributes": { - "description": "AlienVault OTX SHA256 hash indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.otx" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.otx" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.file.hash.sha256" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.file.hash.sha256", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "AlientVault OTX SHA256 Hash Indicators [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "AlienVault OTX SHA256 Hash Indicator", - "field": "threatintel.indicator.file.hash.sha256", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "AlientVault OTX SHA256 Hash Indicators [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "4e5d25c0-76ce-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyODQsMl0=" - }, - { - "attributes": { - "description": "AlienVault OTX MD5 hash indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.otx" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.otx" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.file.hash.md5" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.file.hash.md5", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "AlientVault OTX MD5 Hash Indicators [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "AlienVault OTX MD5 Hash Indicator", - "field": "threatintel.indicator.file.hash.md5", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "AlientVault OTX MD5 Hash Indicators [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "0ccdda50-76ce-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyODUsMl0=" - }, - { - "attributes": { - "description": "AlienVault OTX indicator title ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.otx" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.otx" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.otx.title" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.otx.title", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "AlienVault OTX Indicator Title [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "AlienVault OTX Indicator Title", - "field": "threatintel.otx.title", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "AlienVault OTX Indicator Title [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "01c261b0-7aa9-11eb-ac13-d5ca87cb8fa2", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyODYsMl0=" - }, - { - "attributes": { - "color": "#a548ae", - "description": "Tag for indicators ingested by the Threat Intel Filebeat module.", - "name": "threat intel" - }, - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "namespaces": [ - "default" - ], - "references": [], - "type": "tag", - "updated_at": "2021-03-10T19:01:18.125Z", - "version": "WzIyMTcsMl0=" - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.module", - "negate": false, - "params": { - "query": "threatintel" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.module": "threatintel" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "event.category", - "negate": false, - "params": { - "query": "threat" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.category": "threat" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "key": "event.kind", - "negate": false, - "params": { - "query": "enrichment" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.kind": "enrichment" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index", - "key": "event.type", - "negate": false, - "params": { - "query": "indicator" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.type": "indicator" - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [], - "title": "All Logs [Filebeat Threat Intel] ECS", - "version": 1 - }, - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "search": "7.9.3" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyMTksMl0=" - } - ], - "version": "7.11.1" -} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-alienvault-otx.ndjson b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-alienvault-otx.ndjson new file mode 100644 index 00000000000..eaee8545b03 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-alienvault-otx.ndjson @@ -0,0 +1,14 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"threatintel\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"threatintel\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.category\", \"negate\": false, \"params\": {\"query\": \"threat\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.category\": \"threat\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"enrichment\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"enrichment\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index\", \"key\": \"event.type\", \"negate\": false, \"params\": {\"query\": \"indicator\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.type\": \"indicator\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[],"title":"All Logs [Filebeat Threat Intel] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NjAsMV0="} +{"attributes":{"color":"#a548ae","description":"Tag for indicators ingested by the Threat Intel Filebeat module.","name":"threat intel"},"coreMigrationVersion":"8.0.0","id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","references":[],"type":"tag","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzksMV0="} +{"attributes":{"description":"AlienVault OTX URL scheme ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlientVault OTX URL Scheme [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"http\": \"#65C5DB\", \"https\": \"#F9934E\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"\",\"field\":\"threatintel.indicator.url.scheme\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":true},\"labels\":{\"show\":true},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"AlientVault OTX URL Scheme [Filebeat Threat Intel]\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"95f384b0-76d8-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NjQsMV0="} +{"attributes":{"description":"Total number of AlienVault OTX indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlienVault OTX Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"AlienVault OTX Indicators\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"AlienVault OTX Indicators [Filebeat Threat Intel]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"b5bd3a70-76ce-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NjUsMV0="} +{"attributes":{"description":"AlienVault OTX indicator types ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.type\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.type\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlientVault OTX Indicator Types [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"threatintel.indicator.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"AlientVault OTX Indicator Types [Filebeat Threat Intel]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"f33125b0-76d8-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NjYsMV0="} +{"attributes":{"description":"AlienVault OTX IP indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.ip\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.ip\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlientVault OTX IP Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"AlienVault OTX IP Indicator\",\"field\":\"threatintel.indicator.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"AlientVault OTX IP Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"302cd5b0-76cd-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NjcsMV0="} +{"attributes":{"description":"AlienVault OTX domain indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.domain\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.domain\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlientVault OTX Domain Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"AlienVault OTX IP Indicator\",\"field\":\"threatintel.indicator.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"AlientVault OTX Domain Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"49f0c060-76cd-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NjgsMV0="} +{"attributes":{"description":"AlienVault OTX URL indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.url.original\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.url.original\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlienVault OTX URL Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"AlienVault OTX URL Indicator\",\"field\":\"threatintel.indicator.url.original\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"AlienVault OTX URL Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"346136f0-76d5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NjksMV0="} +{"attributes":{"description":"AlienVault OTX URL domain indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.url.domain\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.url.domain\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlienVault OTX URL Domain Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"AlienVault OTX URL Domain Indicator\",\"field\":\"threatintel.indicator.url.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"AlienVault OTX URL Domain Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"9109e490-76cd-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NzAsMV0="} +{"attributes":{"description":"AlienVault OTX URI indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.url.path\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.url.path\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlienVault OTX URI Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"AlienVault OTX URI Indicator\",\"field\":\"threatintel.indicator.url.path\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"AlienVault OTX URI Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"6077fd00-76d5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NzEsMV0="} +{"attributes":{"description":"AlienVault OTX SHA256 hash indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.sha256\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.sha256\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlientVault OTX SHA256 Hash Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"AlienVault OTX SHA256 Hash Indicator\",\"field\":\"threatintel.indicator.file.hash.sha256\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"AlientVault OTX SHA256 Hash Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"4e5d25c0-76ce-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NzIsMV0="} +{"attributes":{"description":"AlienVault OTX MD5 hash indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.md5\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.md5\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlientVault OTX MD5 Hash Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"AlienVault OTX MD5 Hash Indicator\",\"field\":\"threatintel.indicator.file.hash.md5\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"AlientVault OTX MD5 Hash Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"0ccdda50-76ce-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NzMsMV0="} +{"attributes":{"description":"AlienVault OTX indicator title ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.otx.title\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.otx.title\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlienVault OTX Indicator Title [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"AlienVault OTX Indicator Title\",\"field\":\"threatintel.otx.title\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"AlienVault OTX Indicator Title [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"01c261b0-7aa9-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NzQsMV0="} +{"attributes":{"description":"AlienVault OTX indicators ingested by the threat intel Filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"7847e7a5-06a5-43e7-bd6b-ccae637739e5\",\"w\":17,\"x\":0,\"y\":0},\"panelIndex\":\"7847e7a5-06a5-43e7-bd6b-ccae637739e5\",\"panelRefName\":\"panel_0\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"dc17e932-e983-4deb-95dc-07d571bf9e28\",\"w\":7,\"x\":17,\"y\":0},\"panelIndex\":\"dc17e932-e983-4deb-95dc-07d571bf9e28\",\"panelRefName\":\"panel_1\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"6d448f2b-f2b7-4e18-a9ef-77c06ab755ac\",\"w\":15,\"x\":24,\"y\":0},\"panelIndex\":\"6d448f2b-f2b7-4e18-a9ef-77c06ab755ac\",\"panelRefName\":\"panel_2\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"a946ed22-37d4-4c8d-8250-fc00f2ad646b\",\"w\":9,\"x\":39,\"y\":0},\"panelIndex\":\"a946ed22-37d4-4c8d-8250-fc00f2ad646b\",\"panelRefName\":\"panel_3\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":286}]}}},\"gridData\":{\"h\":18,\"i\":\"e4c2fa0c-b238-4502-82b8-b61847d19b18\",\"w\":9,\"x\":0,\"y\":18},\"panelIndex\":\"e4c2fa0c-b238-4502-82b8-b61847d19b18\",\"panelRefName\":\"panel_4\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"ed1ab436-d7cc-4545-bbc6-a3aa4d45108b\",\"w\":17,\"x\":9,\"y\":18},\"panelIndex\":\"ed1ab436-d7cc-4545-bbc6-a3aa4d45108b\",\"panelRefName\":\"panel_5\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"ac6508e3-214a-4af9-8621-f9bd9cd9fe36\",\"w\":10,\"x\":26,\"y\":18},\"panelIndex\":\"ac6508e3-214a-4af9-8621-f9bd9cd9fe36\",\"panelRefName\":\"panel_6\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"d5dbe626-716b-4dc2-9018-21050ee860ad\",\"w\":12,\"x\":36,\"y\":18},\"panelIndex\":\"d5dbe626-716b-4dc2-9018-21050ee860ad\",\"panelRefName\":\"panel_7\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"fb89a073-18ce-41a0-87ec-a66bb35216e5\",\"w\":24,\"x\":0,\"y\":36},\"panelIndex\":\"fb89a073-18ce-41a0-87ec-a66bb35216e5\",\"panelRefName\":\"panel_8\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":303}]}}},\"gridData\":{\"h\":18,\"i\":\"a2a17e0d-2de0-45cc-8440-d00a7044aaab\",\"w\":9,\"x\":24,\"y\":36},\"panelIndex\":\"a2a17e0d-2de0-45cc-8440-d00a7044aaab\",\"panelRefName\":\"panel_9\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":598}]}}},\"gridData\":{\"h\":18,\"i\":\"291a8404-8e31-45f4-9117-4ea5bf996e78\",\"w\":15,\"x\":33,\"y\":36},\"panelIndex\":\"291a8404-8e31-45f4-9117-4ea5bf996e78\",\"panelRefName\":\"panel_10\",\"version\":\"7.11.1\"}]","timeRestore":false,"title":"[Filebeat Threat Intel] AlienVault OTX","version":1},"coreMigrationVersion":"8.0.0","id":"53e4e630-76cf-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"95f384b0-76d8-11eb-a3e3-b3cc7c78a70f","name":"panel_0","type":"visualization"},{"id":"b5bd3a70-76ce-11eb-a3e3-b3cc7c78a70f","name":"panel_1","type":"visualization"},{"id":"f33125b0-76d8-11eb-a3e3-b3cc7c78a70f","name":"panel_2","type":"visualization"},{"id":"302cd5b0-76cd-11eb-a3e3-b3cc7c78a70f","name":"panel_3","type":"visualization"},{"id":"49f0c060-76cd-11eb-a3e3-b3cc7c78a70f","name":"panel_4","type":"visualization"},{"id":"346136f0-76d5-11eb-a3e3-b3cc7c78a70f","name":"panel_5","type":"visualization"},{"id":"9109e490-76cd-11eb-a3e3-b3cc7c78a70f","name":"panel_6","type":"visualization"},{"id":"6077fd00-76d5-11eb-a3e3-b3cc7c78a70f","name":"panel_7","type":"visualization"},{"id":"4e5d25c0-76ce-11eb-a3e3-b3cc7c78a70f","name":"panel_8","type":"visualization"},{"id":"0ccdda50-76ce-11eb-a3e3-b3cc7c78a70f","name":"panel_9","type":"visualization"},{"id":"01c261b0-7aa9-11eb-ac13-d5ca87cb8fa2","name":"panel_10","type":"visualization"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"dashboard","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NjMsMV0="} diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-anomali.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-anomali.json deleted file mode 100644 index f20faa7e900..00000000000 --- a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-anomali.json +++ /dev/null @@ -1,2810 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Anomali indicators ingested by the threat intel Filebeat module.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 16, - "i": "db6836db-8df5-4f4d-814b-7b1919eeb405", - "w": 8, - "x": 0, - "y": 0 - }, - "panelIndex": "db6836db-8df5-4f4d-814b-7b1919eeb405", - "panelRefName": "panel_db6836db-8df5-4f4d-814b-7b1919eeb405", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 16, - "i": "e6288d8d-2a04-4b53-9507-62e6bf79fa90", - "w": 8, - "x": 8, - "y": 0 - }, - "panelIndex": "e6288d8d-2a04-4b53-9507-62e6bf79fa90", - "panelRefName": "panel_e6288d8d-2a04-4b53-9507-62e6bf79fa90", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 16, - "i": "64186fc9-ecd9-461d-8b9f-2e38b7e10952", - "w": 7, - "x": 16, - "y": 0 - }, - "panelIndex": "64186fc9-ecd9-461d-8b9f-2e38b7e10952", - "panelRefName": "panel_64186fc9-ecd9-461d-8b9f-2e38b7e10952", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 16, - "i": "f54f6633-8185-43da-af7b-64729c6d19c4", - "w": 8, - "x": 23, - "y": 0 - }, - "panelIndex": "f54f6633-8185-43da-af7b-64729c6d19c4", - "panelRefName": "panel_f54f6633-8185-43da-af7b-64729c6d19c4", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 16, - "i": "b28f9576-c381-4b8e-a2c4-2f085477d9fe", - "w": 8, - "x": 31, - "y": 0 - }, - "panelIndex": "b28f9576-c381-4b8e-a2c4-2f085477d9fe", - "panelRefName": "panel_b28f9576-c381-4b8e-a2c4-2f085477d9fe", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 16, - "i": "bf8b3c50-9df8-4a80-b678-fe7f463f365c", - "w": 9, - "x": 39, - "y": 0 - }, - "panelIndex": "bf8b3c50-9df8-4a80-b678-fe7f463f365c", - "panelRefName": "panel_bf8b3c50-9df8-4a80-b678-fe7f463f365c", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 16, - "i": "30f2e620-6c9e-48a2-9111-0e641e5e999a", - "w": 8, - "x": 0, - "y": 16 - }, - "panelIndex": "30f2e620-6c9e-48a2-9111-0e641e5e999a", - "panelRefName": "panel_30f2e620-6c9e-48a2-9111-0e641e5e999a", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 16, - "i": "a220d0d1-d800-4539-955e-c0454b823c80", - "w": 8, - "x": 8, - "y": 16 - }, - "panelIndex": "a220d0d1-d800-4539-955e-c0454b823c80", - "panelRefName": "panel_a220d0d1-d800-4539-955e-c0454b823c80", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "attributes": { - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-823b507c-03a2-413b-9fc6-ba86a0160d50", - "type": "index-pattern" - } - ], - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "823b507c-03a2-413b-9fc6-ba86a0160d50": { - "columnOrder": [ - "a89c7d23-2879-41d9-9f71-7f33c63cca60", - "1266faef-9fa3-4560-9dd0-7116e8b2a6de", - "43cd0668-5ea3-495f-97a5-1d2ddae02ef6" - ], - "columns": { - "1266faef-9fa3-4560-9dd0-7116e8b2a6de": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "43cd0668-5ea3-495f-97a5-1d2ddae02ef6": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - }, - "a89c7d23-2879-41d9-9f71-7f33c63cca60": { - "customLabel": true, - "dataType": "date", - "isBucketed": true, - "label": "Anomali Data Source", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "curveType": "LINEAR", - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "43cd0668-5ea3-495f-97a5-1d2ddae02ef6" - ], - "layerId": "823b507c-03a2-413b-9fc6-ba86a0160d50", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "a89c7d23-2879-41d9-9f71-7f33c63cca60", - "xAccessor": "1266faef-9fa3-4560-9dd0-7116e8b2a6de" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "valueLabels": "hide" - } - }, - "title": "", - "type": "lens", - "visualizationType": "lnsXY" - }, - "enhancements": {} - }, - "gridData": { - "h": 16, - "i": "2a0a608b-3d0d-4de6-8e82-0a34611c465f", - "w": 23, - "x": 16, - "y": 16 - }, - "panelIndex": "2a0a608b-3d0d-4de6-8e82-0a34611c465f", - "panelRefName": "panel_2a0a608b-3d0d-4de6-8e82-0a34611c465f", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 16, - "i": "f96c5e71-869a-4cbd-a9b0-c0a83126d596", - "w": 9, - "x": 39, - "y": 16 - }, - "panelIndex": "f96c5e71-869a-4cbd-a9b0-c0a83126d596", - "panelRefName": "panel_f96c5e71-869a-4cbd-a9b0-c0a83126d596", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {}, - "hiddenLayers": [], - "isLayerTOCOpen": true, - "mapBuffer": { - "maxLat": 103.96437999999999, - "maxLon": 422.73256, - "minLat": -76.05418, - "minLon": -422.73256 - }, - "mapCenter": { - "lat": 19.94277, - "lon": 0, - "zoom": 2.08 - }, - "openTOCDetails": [] - }, - "gridData": { - "h": 24, - "i": "dc602af3-264e-4086-9875-164baac7810f", - "w": 48, - "x": 0, - "y": 32 - }, - "panelIndex": "dc602af3-264e-4086-9875-164baac7810f", - "panelRefName": "panel_dc602af3-264e-4086-9875-164baac7810f", - "type": "map", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 17, - "i": "fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f", - "w": 14, - "x": 0, - "y": 56 - }, - "panelIndex": "fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f", - "panelRefName": "panel_fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 17, - "i": "2c4c65a4-7de7-4985-8516-592b1929770b", - "w": 15, - "x": 14, - "y": 56 - }, - "panelIndex": "2c4c65a4-7de7-4985-8516-592b1929770b", - "panelRefName": "panel_2c4c65a4-7de7-4985-8516-592b1929770b", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 17, - "i": "175715f8-9e3c-4f04-8c13-2658bee47e4f", - "w": 11, - "x": 29, - "y": 56 - }, - "panelIndex": "175715f8-9e3c-4f04-8c13-2658bee47e4f", - "panelRefName": "panel_175715f8-9e3c-4f04-8c13-2658bee47e4f", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 17, - "i": "9cbed687-e299-42a2-b966-1ac38d2ce178", - "w": 8, - "x": 40, - "y": 56 - }, - "panelIndex": "9cbed687-e299-42a2-b966-1ac38d2ce178", - "panelRefName": "panel_9cbed687-e299-42a2-b966-1ac38d2ce178", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 17, - "i": "c4bfc787-6b1e-48da-98a1-ffb40786e772", - "w": 9, - "x": 0, - "y": 73 - }, - "panelIndex": "c4bfc787-6b1e-48da-98a1-ffb40786e772", - "panelRefName": "panel_c4bfc787-6b1e-48da-98a1-ffb40786e772", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 17, - "i": "e6ecb6c4-565b-40b4-979f-42e2d200561a", - "w": 10, - "x": 9, - "y": 73 - }, - "panelIndex": "e6ecb6c4-565b-40b4-979f-42e2d200561a", - "panelRefName": "panel_e6ecb6c4-565b-40b4-979f-42e2d200561a", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 17, - "i": "1aa274fa-0c73-4475-b1b8-a1a2fde2350f", - "w": 14, - "x": 19, - "y": 73 - }, - "panelIndex": "1aa274fa-0c73-4475-b1b8-a1a2fde2350f", - "panelRefName": "panel_1aa274fa-0c73-4475-b1b8-a1a2fde2350f", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 17, - "i": "5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1", - "w": 7, - "x": 33, - "y": 73 - }, - "panelIndex": "5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1", - "panelRefName": "panel_5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 17, - "i": "ef43fef1-a2e4-4572-8f03-02738650b757", - "w": 8, - "x": 40, - "y": 73 - }, - "panelIndex": "ef43fef1-a2e4-4572-8f03-02738650b757", - "panelRefName": "panel_ef43fef1-a2e4-4572-8f03-02738650b757", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 17, - "i": "58a150f9-b99d-4040-8ae8-260ad7041086", - "w": 9, - "x": 0, - "y": 90 - }, - "panelIndex": "58a150f9-b99d-4040-8ae8-260ad7041086", - "panelRefName": "panel_58a150f9-b99d-4040-8ae8-260ad7041086", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 17, - "i": "486ad65a-6356-4b9d-8455-4c207f017eb8", - "w": 16, - "x": 9, - "y": 90 - }, - "panelIndex": "486ad65a-6356-4b9d-8455-4c207f017eb8", - "panelRefName": "panel_486ad65a-6356-4b9d-8455-4c207f017eb8", - "type": "lens", - "version": "7.13.2" - } - ], - "timeRestore": false, - "title": "[Filebeat Threat Intel] Anomali", - "version": 1 - }, - "coreMigrationVersion": "7.13.2", - "id": "68c48a30-739e-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "dashboard": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "bfd2bfe0-de97-11eb-8f2b-753caedf727d", - "name": "db6836db-8df5-4f4d-814b-7b1919eeb405:panel_db6836db-8df5-4f4d-814b-7b1919eeb405", - "type": "lens" - }, - { - "id": "9a61edc0-de93-11eb-8f2b-753caedf727d", - "name": "e6288d8d-2a04-4b53-9507-62e6bf79fa90:panel_e6288d8d-2a04-4b53-9507-62e6bf79fa90", - "type": "lens" - }, - { - "id": "021ba940-de96-11eb-8f2b-753caedf727d", - "name": "64186fc9-ecd9-461d-8b9f-2e38b7e10952:panel_64186fc9-ecd9-461d-8b9f-2e38b7e10952", - "type": "lens" - }, - { - "id": "3c40f4d0-de97-11eb-8f2b-753caedf727d", - "name": "f54f6633-8185-43da-af7b-64729c6d19c4:panel_f54f6633-8185-43da-af7b-64729c6d19c4", - "type": "lens" - }, - { - "id": "bd28cb00-de96-11eb-8f2b-753caedf727d", - "name": "b28f9576-c381-4b8e-a2c4-2f085477d9fe:panel_b28f9576-c381-4b8e-a2c4-2f085477d9fe", - "type": "lens" - }, - { - "id": "f5f18940-de96-11eb-8f2b-753caedf727d", - "name": "bf8b3c50-9df8-4a80-b678-fe7f463f365c:panel_bf8b3c50-9df8-4a80-b678-fe7f463f365c", - "type": "lens" - }, - { - "id": "c91fcd10-de95-11eb-8f2b-753caedf727d", - "name": "30f2e620-6c9e-48a2-9111-0e641e5e999a:panel_30f2e620-6c9e-48a2-9111-0e641e5e999a", - "type": "lens" - }, - { - "id": "36f61650-de96-11eb-8f2b-753caedf727d", - "name": "a220d0d1-d800-4539-955e-c0454b823c80:panel_a220d0d1-d800-4539-955e-c0454b823c80", - "type": "lens" - }, - { - "id": "1d7a18c0-df54-11eb-8f2b-753caedf727d", - "name": "2a0a608b-3d0d-4de6-8e82-0a34611c465f:panel_2a0a608b-3d0d-4de6-8e82-0a34611c465f", - "type": "lens" - }, - { - "id": "filebeat-*", - "name": "2a0a608b-3d0d-4de6-8e82-0a34611c465f:indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "2a0a608b-3d0d-4de6-8e82-0a34611c465f:indexpattern-datasource-layer-823b507c-03a2-413b-9fc6-ba86a0160d50", - "type": "index-pattern" - }, - { - "id": "d991e510-de96-11eb-8f2b-753caedf727d", - "name": "f96c5e71-869a-4cbd-a9b0-c0a83126d596:panel_f96c5e71-869a-4cbd-a9b0-c0a83126d596", - "type": "lens" - }, - { - "id": "ec5aa090-df42-11eb-8f2b-753caedf727d", - "name": "dc602af3-264e-4086-9875-164baac7810f:panel_dc602af3-264e-4086-9875-164baac7810f", - "type": "map" - }, - { - "id": "f52a9720-de93-11eb-8f2b-753caedf727d", - "name": "fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f:panel_fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f", - "type": "lens" - }, - { - "id": "8a6f7b20-de94-11eb-8f2b-753caedf727d", - "name": "2c4c65a4-7de7-4985-8516-592b1929770b:panel_2c4c65a4-7de7-4985-8516-592b1929770b", - "type": "lens" - }, - { - "id": "ae5934e0-de94-11eb-8f2b-753caedf727d", - "name": "175715f8-9e3c-4f04-8c13-2658bee47e4f:panel_175715f8-9e3c-4f04-8c13-2658bee47e4f", - "type": "lens" - }, - { - "id": "5ef7b430-de94-11eb-8f2b-753caedf727d", - "name": "9cbed687-e299-42a2-b966-1ac38d2ce178:panel_9cbed687-e299-42a2-b966-1ac38d2ce178", - "type": "lens" - }, - { - "id": "976620a0-de98-11eb-8f2b-753caedf727d", - "name": "c4bfc787-6b1e-48da-98a1-ffb40786e772:panel_c4bfc787-6b1e-48da-98a1-ffb40786e772", - "type": "lens" - }, - { - "id": "aac00bc0-de98-11eb-8f2b-753caedf727d", - "name": "e6ecb6c4-565b-40b4-979f-42e2d200561a:panel_e6ecb6c4-565b-40b4-979f-42e2d200561a", - "type": "lens" - }, - { - "id": "7ec83f60-de98-11eb-8f2b-753caedf727d", - "name": "1aa274fa-0c73-4475-b1b8-a1a2fde2350f:panel_1aa274fa-0c73-4475-b1b8-a1a2fde2350f", - "type": "lens" - }, - { - "id": "7d9c70f0-de95-11eb-8f2b-753caedf727d", - "name": "5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1:panel_5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1", - "type": "lens" - }, - { - "id": "9c78ade0-de95-11eb-8f2b-753caedf727d", - "name": "ef43fef1-a2e4-4572-8f03-02738650b757:panel_ef43fef1-a2e4-4572-8f03-02738650b757", - "type": "lens" - }, - { - "id": "e5f07800-de94-11eb-8f2b-753caedf727d", - "name": "58a150f9-b99d-4040-8ae8-260ad7041086:panel_58a150f9-b99d-4040-8ae8-260ad7041086", - "type": "lens" - }, - { - "id": "1136ceb0-de95-11eb-8f2b-753caedf727d", - "name": "486ad65a-6356-4b9d-8455-4c207f017eb8:panel_486ad65a-6356-4b9d-8455-4c207f017eb8", - "type": "lens" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "dashboard", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc3OSwxXQ==" - }, - { - "attributes": { - "description": "Anomali indicator confidence ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "208779ac-fe5e-4c9b-bfc5-1429ec918089", - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "columns": { - "208779ac-fe5e-4c9b-bfc5-1429ec918089": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Anomali Indicator Confidence", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 5 - }, - "scale": "ordinal", - "sourceField": "threatintel.indicator.confidence" - }, - "9afb1b09-0f20-488c-9242-a94f7d11800b": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "layers": [ - { - "categoryDisplay": "default", - "groups": [ - "208779ac-fe5e-4c9b-bfc5-1429ec918089" - ], - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc", - "legendDisplay": "default", - "metric": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "nestedLegend": false, - "numberDisplay": "percent" - } - ], - "shape": "donut" - } - }, - "title": "Anomali Indicator Confidence [Filebeat Threat Intel]", - "visualizationType": "lnsPie" - }, - "coreMigrationVersion": "7.13.2", - "id": "bfd2bfe0-de97-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc1NywxXQ==" - }, - { - "attributes": { - "description": "Total number of Anomali indicators ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "15a91057-d730-461d-8510-633a1205b462" - ], - "columns": { - "15a91057-d730-461d-8510-633a1205b462": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Total Anomali Indicators", - "operationType": "count", - "params": { - "format": { - "id": "number", - "params": { - "decimals": 0 - } - } - }, - "scale": "ratio", - "sourceField": "Records" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "accessor": "15a91057-d730-461d-8510-633a1205b462", - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" - } - }, - "title": "Anomali Indicators [Filebeat Threat Intel]", - "visualizationType": "lnsMetric" - }, - "coreMigrationVersion": "7.13.2", - "id": "9a61edc0-de93-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc1OCwxXQ==" - }, - { - "attributes": { - "description": "Anomali indicator type ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "7b2420d3-1149-4f18-a114-e984e3c701f3", - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "columns": { - "7b2420d3-1149-4f18-a114-e984e3c701f3": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Anomali Indicator Type", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 5 - }, - "scale": "ordinal", - "sourceField": "threatintel.indicator.type" - }, - "9afb1b09-0f20-488c-9242-a94f7d11800b": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "layers": [ - { - "categoryDisplay": "default", - "groups": [ - "7b2420d3-1149-4f18-a114-e984e3c701f3", - "7b2420d3-1149-4f18-a114-e984e3c701f3", - "7b2420d3-1149-4f18-a114-e984e3c701f3" - ], - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc", - "legendDisplay": "default", - "metric": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "nestedLegend": false, - "numberDisplay": "percent" - } - ], - "shape": "donut" - } - }, - "title": "Anomali Indicator Type [Filebeat Threat Intel]", - "visualizationType": "lnsPie" - }, - "coreMigrationVersion": "7.13.2", - "id": "021ba940-de96-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc1OSwxXQ==" - }, - { - "attributes": { - "description": "Anomali detailed indicator type ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "6a19d4b1-f2d9-4fb8-9970-b7b255f63988", - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "columns": { - "6a19d4b1-f2d9-4fb8-9970-b7b255f63988": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Anomali Detailed Indicator Type", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 5 - }, - "scale": "ordinal", - "sourceField": "threatintel.anomalithreatstream.itype" - }, - "9afb1b09-0f20-488c-9242-a94f7d11800b": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "layers": [ - { - "categoryDisplay": "default", - "groups": [ - "6a19d4b1-f2d9-4fb8-9970-b7b255f63988" - ], - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc", - "legendDisplay": "default", - "metric": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "nestedLegend": false, - "numberDisplay": "percent" - } - ], - "shape": "donut" - } - }, - "title": "Anomali Detailed Indicator Type [Filebeat Threat Intel]", - "visualizationType": "lnsPie" - }, - "coreMigrationVersion": "7.13.2", - "id": "3c40f4d0-de97-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc2MCwxXQ==" - }, - { - "attributes": { - "description": "Anomali indicator severity ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "dde93810-194c-43e5-bf06-31bfba459425", - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "columns": { - "9afb1b09-0f20-488c-9242-a94f7d11800b": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - }, - "dde93810-194c-43e5-bf06-31bfba459425": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Anomali Indicator Severity", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 3 - }, - "scale": "ordinal", - "sourceField": "threatintel.anomalithreatstream.severity" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "layers": [ - { - "categoryDisplay": "default", - "groups": [ - "dde93810-194c-43e5-bf06-31bfba459425" - ], - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc", - "legendDisplay": "default", - "metric": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "nestedLegend": false, - "numberDisplay": "percent" - } - ], - "palette": { - "name": "default", - "type": "palette" - }, - "shape": "donut" - } - }, - "title": "Anomali Indicator Severity [Filebeat Threat Intel]", - "visualizationType": "lnsPie" - }, - "coreMigrationVersion": "7.13.2", - "id": "bd28cb00-de96-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc2MSwxXQ==" - }, - { - "attributes": { - "description": null, - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "8cd1203c-8d1a-4a49-b97f-bc5a011119b0", - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "columns": { - "8cd1203c-8d1a-4a49-b97f-bc5a011119b0": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Anomali Indicator TLP Marking", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 5 - }, - "scale": "ordinal", - "sourceField": "threatintel.indicator.marking.tlp" - }, - "9afb1b09-0f20-488c-9242-a94f7d11800b": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc", - "seriesType": "bar_horizontal", - "xAccessor": "8cd1203c-8d1a-4a49-b97f-bc5a011119b0" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "bar_horizontal", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "valueLabels": "hide" - } - }, - "title": "Anomali Indicator TLP Marking [Filebeat Threat Intel]", - "visualizationType": "lnsXY" - }, - "coreMigrationVersion": "7.13.2", - "id": "f5f18940-de96-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc2MiwxXQ==" - }, - { - "attributes": { - "description": "Anomali indicator provider ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "a5ec41b6-ad59-4c19-8e50-8fca5230931f", - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "columns": { - "9afb1b09-0f20-488c-9242-a94f7d11800b": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - }, - "a5ec41b6-ad59-4c19-8e50-8fca5230931f": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Anomali Indicator Provider", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "threatintel.indicator.provider" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "columns": [ - { - "columnId": "a5ec41b6-ad59-4c19-8e50-8fca5230931f", - "isTransposed": false - }, - { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "isTransposed": false - } - ], - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" - } - }, - "title": "Anomali Indicator Provider [Filebeat Threat Intel]", - "visualizationType": "lnsDatatable" - }, - "coreMigrationVersion": "7.13.2", - "id": "c91fcd10-de95-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc2MywxXQ==" - }, - { - "attributes": { - "description": "Anomali indicator classification ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "8d7cc68f-5178-40f1-b041-bdb02dea3324", - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "columns": { - "8d7cc68f-5178-40f1-b041-bdb02dea3324": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Anomali Indicator Classification", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 5 - }, - "scale": "ordinal", - "sourceField": "threatintel.anomalithreatstream.classification" - }, - "9afb1b09-0f20-488c-9242-a94f7d11800b": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "layers": [ - { - "categoryDisplay": "default", - "groups": [ - "8d7cc68f-5178-40f1-b041-bdb02dea3324" - ], - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc", - "legendDisplay": "default", - "metric": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "nestedLegend": false, - "numberDisplay": "percent" - } - ], - "shape": "donut" - } - }, - "title": "Anomali Indicator Classification [Filebeat Threat Intel]", - "visualizationType": "lnsPie" - }, - "coreMigrationVersion": "7.13.2", - "id": "36f61650-de96-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc2NCwxXQ==" - }, - { - "attributes": { - "description": null, - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "823b507c-03a2-413b-9fc6-ba86a0160d50": { - "columnOrder": [ - "3da14e5a-0f82-42ce-9bca-cc20ec7f3639", - "1266faef-9fa3-4560-9dd0-7116e8b2a6de", - "43cd0668-5ea3-495f-97a5-1d2ddae02ef6" - ], - "columns": { - "1266faef-9fa3-4560-9dd0-7116e8b2a6de": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "3da14e5a-0f82-42ce-9bca-cc20ec7f3639": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Anomali Feed Source", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "43cd0668-5ea3-495f-97a5-1d2ddae02ef6", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 2 - }, - "scale": "ordinal", - "sourceField": "event.dataset" - }, - "43cd0668-5ea3-495f-97a5-1d2ddae02ef6": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "curveType": "LINEAR", - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "43cd0668-5ea3-495f-97a5-1d2ddae02ef6" - ], - "layerId": "823b507c-03a2-413b-9fc6-ba86a0160d50", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "3da14e5a-0f82-42ce-9bca-cc20ec7f3639", - "xAccessor": "1266faef-9fa3-4560-9dd0-7116e8b2a6de" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "valueLabels": "hide" - } - }, - "title": "Anomali Data Source [Filebeat Threat Intel]", - "visualizationType": "lnsXY" - }, - "coreMigrationVersion": "7.13.2", - "id": "1d7a18c0-df54-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-823b507c-03a2-413b-9fc6-ba86a0160d50", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc2NSwxXQ==" - }, - { - "attributes": { - "description": "Anomali indicator state ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "e5a7fb87-1df1-4b79-b610-1196abdfd499", - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "columns": { - "9afb1b09-0f20-488c-9242-a94f7d11800b": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - }, - "e5a7fb87-1df1-4b79-b610-1196abdfd499": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Anomali Indicator State", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 5 - }, - "scale": "ordinal", - "sourceField": "threatintel.anomalithreatstream.state" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc", - "seriesType": "bar_horizontal", - "xAccessor": "e5a7fb87-1df1-4b79-b610-1196abdfd499" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "bar_horizontal", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "valueLabels": "hide" - } - }, - "title": "Anomali Indicator State [Filebeat Threat Intel]", - "visualizationType": "lnsXY" - }, - "coreMigrationVersion": "7.13.2", - "id": "d991e510-de96-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc2NiwxXQ==" - }, - { - "attributes": { - "description": "Geographic location of Anomali indicators ingested by the threat intel Filebeat module.", - "layerListJSON": "[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"9027343a-f725-4467-9b08-8566ad0b2a52\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{\"type\":\"TILE\"},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"geoField\":\"threatintel.indicator.geo.location\",\"filterByMapBounds\":true,\"scalingType\":\"LIMIT\",\"id\":\"a3ecc6af-0299-4cb9-a29c-0b70f666b011\",\"type\":\"ES_SEARCH\",\"applyGlobalQuery\":true,\"applyGlobalTime\":true,\"tooltipProperties\":[\"threatintel.indicator.as.number\",\"threatintel.indicator.as.organization.name\",\"threatintel.indicator.geo.country_iso_code\"],\"sortField\":\"\",\"sortOrder\":\"desc\",\"topHitsSplitField\":\"\",\"topHitsSize\":1,\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"id\":\"83ede860-fe89-43c9-8e74-fa2703efbb85\",\"label\":\"Indicator Geographic Location\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"danger\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#D36086\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#41937c\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"type\":\"VECTOR\",\"joins\":[]}]", - "mapStateJSON": "{\"zoom\":2.08,\"center\":{\"lon\":0,\"lat\":19.94277},\"timeFilters\":{\"from\":\"now-7d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":true,\"interval\":0},\"query\":{\"query\":\"event.dataset:\\\"threatintel.anomalithreatstream\\\" \",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false,\"backgroundColor\":\"#ffffff\",\"disableInteractive\":false,\"disableTooltipControl\":false,\"hideToolbarOverlay\":false,\"hideLayerControl\":false,\"hideViewControl\":false,\"initialLocation\":\"LAST_SAVED_LOCATION\",\"fixedLocation\":{\"lat\":0,\"lon\":0,\"zoom\":2},\"browserLocation\":{\"zoom\":2},\"maxZoom\":24,\"minZoom\":0,\"showScaleControl\":false,\"showSpatialFilters\":true,\"spatialFiltersAlpa\":0.3,\"spatialFiltersFillColor\":\"#DA8B45\",\"spatialFiltersLineColor\":\"#DA8B45\"}}", - "title": "Anomali Indicator Geographic Location [Filebeat Threat Intel]", - "uiStateJSON": { - "isLayerTOCOpen": true, - "openTOCDetails": [] - } - }, - "coreMigrationVersion": "7.13.2", - "id": "ec5aa090-df42-11eb-8f2b-753caedf727d", - "migrationVersion": { - "map": "7.12.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - }, - { - "id": "filebeat-*", - "name": "layer_1_source_index_pattern", - "type": "index-pattern" - } - ], - "type": "map", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc2NywxXQ==" - }, - { - "attributes": { - "description": "Anomali email indicator ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "81a03111-2286-4898-aef5-9e8b309b2437", - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "columns": { - "81a03111-2286-4898-aef5-9e8b309b2437": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Anomali Email Indicator", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "threatintel.indicator.email.address" - }, - "9afb1b09-0f20-488c-9242-a94f7d11800b": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "columns": [ - { - "columnId": "81a03111-2286-4898-aef5-9e8b309b2437", - "isTransposed": false - }, - { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "isTransposed": false - } - ], - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" - } - }, - "title": "Anomali Email Indicator [Filebeat Threat Intel]", - "visualizationType": "lnsDatatable" - }, - "coreMigrationVersion": "7.13.2", - "id": "f52a9720-de93-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc2OCwxXQ==" - }, - { - "attributes": { - "description": "Anomali URL indicators ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "b42d5573-842d-4494-82d7-c35c9b66b188", - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "columns": { - "9afb1b09-0f20-488c-9242-a94f7d11800b": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - }, - "b42d5573-842d-4494-82d7-c35c9b66b188": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Anomali URL Indicator", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "threatintel.indicator.url.original" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "columns": [ - { - "columnId": "b42d5573-842d-4494-82d7-c35c9b66b188", - "isTransposed": false - }, - { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "isTransposed": false - } - ], - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" - } - }, - "title": "Anomali URL Indicators [Filebeat Threat Intel]", - "visualizationType": "lnsDatatable" - }, - "coreMigrationVersion": "7.13.2", - "id": "8a6f7b20-de94-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc2OSwxXQ==" - }, - { - "attributes": { - "description": "Anomali domain indicators ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "9e23efd8-7ea2-4c0e-af80-99b2f915ae81", - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "columns": { - "9afb1b09-0f20-488c-9242-a94f7d11800b": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - }, - "9e23efd8-7ea2-4c0e-af80-99b2f915ae81": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Anomali Domain Indicators", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "threatintel.indicator.url.domain" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "columns": [ - { - "columnId": "9e23efd8-7ea2-4c0e-af80-99b2f915ae81", - "isTransposed": false - }, - { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "isTransposed": false - } - ], - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" - } - }, - "title": "Anomali Domain Indicators [Filebeat Threat Intel]", - "visualizationType": "lnsDatatable" - }, - "coreMigrationVersion": "7.13.2", - "id": "ae5934e0-de94-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc3MCwxXQ==" - }, - { - "attributes": { - "description": "Anomali IP indicator ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "f89f3b93-e409-4ed2-b938-4cd31f2b7247", - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "columns": { - "9afb1b09-0f20-488c-9242-a94f7d11800b": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - }, - "f89f3b93-e409-4ed2-b938-4cd31f2b7247": { - "customLabel": true, - "dataType": "ip", - "isBucketed": true, - "label": "Anomali IP Indicator", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "threatintel.indicator.ip" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "columns": [ - { - "columnId": "f89f3b93-e409-4ed2-b938-4cd31f2b7247", - "isTransposed": false - }, - { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "isTransposed": false - } - ], - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" - } - }, - "title": "Anomali IP Indicator [Filebeat Threat Intel]", - "visualizationType": "lnsDatatable" - }, - "coreMigrationVersion": "7.13.2", - "id": "5ef7b430-de94-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc3MSwxXQ==" - }, - { - "attributes": { - "description": "Anomali indicator MD5 hash ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "3ae42baf-5685-4f7d-94d3-66ff57b4febd", - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "columns": { - "3ae42baf-5685-4f7d-94d3-66ff57b4febd": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Anomali MD5 File Hash", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "threatintel.indicator.file.hash.md5" - }, - "9afb1b09-0f20-488c-9242-a94f7d11800b": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "columns": [ - { - "columnId": "3ae42baf-5685-4f7d-94d3-66ff57b4febd", - "isTransposed": false - }, - { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "isTransposed": false - } - ], - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" - } - }, - "title": "Anomali MD5 Hash Indicators [Filebeat Threat Intel]", - "visualizationType": "lnsDatatable" - }, - "coreMigrationVersion": "7.13.2", - "id": "976620a0-de98-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc3MiwxXQ==" - }, - { - "attributes": { - "description": "Anomali indicator SHA1 hash ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "3ae42baf-5685-4f7d-94d3-66ff57b4febd", - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "columns": { - "3ae42baf-5685-4f7d-94d3-66ff57b4febd": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Anomali SHA1 File Hash", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "threatintel.indicator.file.hash.sha1" - }, - "9afb1b09-0f20-488c-9242-a94f7d11800b": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "columns": [ - { - "columnId": "3ae42baf-5685-4f7d-94d3-66ff57b4febd", - "isTransposed": false - }, - { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "isTransposed": false - } - ], - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" - } - }, - "title": "Anomali SHA1 Hash Indicators [Filebeat Threat Intel]", - "visualizationType": "lnsDatatable" - }, - "coreMigrationVersion": "7.13.2", - "id": "aac00bc0-de98-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc3MywxXQ==" - }, - { - "attributes": { - "description": "Anomali indicator SHA256 hash ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "3ae42baf-5685-4f7d-94d3-66ff57b4febd", - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "columns": { - "3ae42baf-5685-4f7d-94d3-66ff57b4febd": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Anomali SHA256 File Hash", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "threatintel.indicator.file.hash.sha256" - }, - "9afb1b09-0f20-488c-9242-a94f7d11800b": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "columns": [ - { - "columnId": "3ae42baf-5685-4f7d-94d3-66ff57b4febd", - "isTransposed": false - }, - { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "isTransposed": false - } - ], - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" - } - }, - "title": "Anomali SHA256 Hash Indicators [Filebeat Threat Intel]", - "visualizationType": "lnsDatatable" - }, - "coreMigrationVersion": "7.13.2", - "id": "7ec83f60-de98-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc3NCwxXQ==" - }, - { - "attributes": { - "description": "Anomali indicator name ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "4cca9b50-a9a4-4cce-ae15-9447a451d8a1", - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "columns": { - "4cca9b50-a9a4-4cce-ae15-9447a451d8a1": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Anomali Indicator Name", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "threatintel.anomali.name" - }, - "9afb1b09-0f20-488c-9242-a94f7d11800b": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "columns": [ - { - "columnId": "4cca9b50-a9a4-4cce-ae15-9447a451d8a1", - "isTransposed": false - }, - { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "isTransposed": false - } - ], - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" - } - }, - "title": "Anomali Indicator Name [Filebeat Threat Intel]", - "visualizationType": "lnsDatatable" - }, - "coreMigrationVersion": "7.13.2", - "id": "7d9c70f0-de95-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc3NSwxXQ==" - }, - { - "attributes": { - "description": "Anomali indicator description ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "577fd2f3-2a3f-4932-8348-9653e54a61e0", - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "columns": { - "577fd2f3-2a3f-4932-8348-9653e54a61e0": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Anomali Indicator Description", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "threatintel.anomali.description" - }, - "9afb1b09-0f20-488c-9242-a94f7d11800b": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "columns": [ - { - "columnId": "577fd2f3-2a3f-4932-8348-9653e54a61e0", - "isTransposed": false - }, - { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "isTransposed": false - } - ], - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" - } - }, - "title": "Anomali Indicator Description [Filebeat Threat Intel]", - "visualizationType": "lnsDatatable" - }, - "coreMigrationVersion": "7.13.2", - "id": "9c78ade0-de95-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc3NiwxXQ==" - }, - { - "attributes": { - "description": "Anomali indicator ID ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "9e0166f4-d0f0-448c-befa-c07a3e86d69f", - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "columns": { - "9afb1b09-0f20-488c-9242-a94f7d11800b": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - }, - "9e0166f4-d0f0-448c-befa-c07a3e86d69f": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "ThreatStream ID", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "threatintel.anomalithreatstream.id" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "columns": [ - { - "columnId": "9e0166f4-d0f0-448c-befa-c07a3e86d69f", - "isTransposed": false - }, - { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "isTransposed": false - } - ], - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" - } - }, - "title": "Anomali Indicator ID [Filebeat Threat Intel]", - "visualizationType": "lnsDatatable" - }, - "coreMigrationVersion": "7.13.2", - "id": "e5f07800-de94-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc3NywxXQ==" - }, - { - "attributes": { - "description": "Anomali ThreatStream URI ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "41f41086-8875-4d18-8844-b51b9c9cb8bc": { - "columnOrder": [ - "2e21ae71-6d85-4de2-8585-a60933c18f60", - "9afb1b09-0f20-488c-9242-a94f7d11800b" - ], - "columns": { - "2e21ae71-6d85-4de2-8585-a60933c18f60": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "ThreatStream URI", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "threatintel.anomalithreatstream.resource_uri" - }, - "9afb1b09-0f20-488c-9242-a94f7d11800b": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" - }, - "visualization": { - "columns": [ - { - "columnId": "2e21ae71-6d85-4de2-8585-a60933c18f60", - "isTransposed": false - }, - { - "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", - "isTransposed": false - } - ], - "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" - } - }, - "title": "Anomali URI [Filebeat Threat Intel]", - "visualizationType": "lnsDatatable" - }, - "coreMigrationVersion": "7.13.2", - "id": "1136ceb0-de95-11eb-8f2b-753caedf727d", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:06:40.621Z", - "version": "Wzc3OCwxXQ==" - }, - { - "attributes": { - "color": "#a548ae", - "description": "Tag for indicators ingested by the Threat Intel Filebeat module.", - "name": "threat intel" - }, - "coreMigrationVersion": "7.13.2", - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "namespaces": [ - "default" - ], - "references": [], - "type": "tag", - "updated_at": "2021-07-08T18:07:38.586Z", - "version": "WzgyMywxXQ==" - } - ], - "version": "7.13.2" -} diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-anomali.ndjson b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-anomali.ndjson new file mode 100644 index 00000000000..bd2e2a4df12 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-anomali.ndjson @@ -0,0 +1,24 @@ +{"attributes":{"color":"#a548ae","description":"Tag for indicators ingested by the Threat Intel Filebeat module.","name":"threat intel"},"coreMigrationVersion":"8.0.0","id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","references":[],"type":"tag","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzksMV0="} +{"attributes":{"description":"Anomali indicator confidence ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["208779ac-fe5e-4c9b-bfc5-1429ec918089","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"208779ac-fe5e-4c9b-bfc5-1429ec918089":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Indicator Confidence","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":5},"scale":"ordinal","sourceField":"threatintel.indicator.confidence"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"layers":[{"categoryDisplay":"default","groups":["208779ac-fe5e-4c9b-bfc5-1429ec918089"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","legendDisplay":"default","metric":"9afb1b09-0f20-488c-9242-a94f7d11800b","nestedLegend":false,"numberDisplay":"percent"}],"shape":"donut"}},"title":"Anomali Indicator Confidence [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"bfd2bfe0-de97-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1NzgsMV0="} +{"attributes":{"description":"Total number of Anomali indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["15a91057-d730-461d-8510-633a1205b462"],"columns":{"15a91057-d730-461d-8510-633a1205b462":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total Anomali Indicators","operationType":"count","params":{"format":{"id":"number","params":{"decimals":0}}},"scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"accessor":"15a91057-d730-461d-8510-633a1205b462","layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali Indicators [Filebeat Threat Intel]","visualizationType":"lnsMetric"},"coreMigrationVersion":"8.0.0","id":"9a61edc0-de93-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1NzksMV0="} +{"attributes":{"description":"Anomali indicator type ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["7b2420d3-1149-4f18-a114-e984e3c701f3","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"7b2420d3-1149-4f18-a114-e984e3c701f3":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Indicator Type","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":5},"scale":"ordinal","sourceField":"threatintel.indicator.type"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"layers":[{"categoryDisplay":"default","groups":["7b2420d3-1149-4f18-a114-e984e3c701f3","7b2420d3-1149-4f18-a114-e984e3c701f3","7b2420d3-1149-4f18-a114-e984e3c701f3"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","legendDisplay":"default","metric":"9afb1b09-0f20-488c-9242-a94f7d11800b","nestedLegend":false,"numberDisplay":"percent"}],"shape":"donut"}},"title":"Anomali Indicator Type [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"021ba940-de96-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODAsMV0="} +{"attributes":{"description":"Anomali detailed indicator type ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["6a19d4b1-f2d9-4fb8-9970-b7b255f63988","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"6a19d4b1-f2d9-4fb8-9970-b7b255f63988":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Detailed Indicator Type","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":5},"scale":"ordinal","sourceField":"threatintel.anomalithreatstream.itype"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"layers":[{"categoryDisplay":"default","groups":["6a19d4b1-f2d9-4fb8-9970-b7b255f63988"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","legendDisplay":"default","metric":"9afb1b09-0f20-488c-9242-a94f7d11800b","nestedLegend":false,"numberDisplay":"percent"}],"shape":"donut"}},"title":"Anomali Detailed Indicator Type [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"3c40f4d0-de97-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODEsMV0="} +{"attributes":{"description":"Anomali indicator severity ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["dde93810-194c-43e5-bf06-31bfba459425","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"dde93810-194c-43e5-bf06-31bfba459425":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Indicator Severity","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":3},"scale":"ordinal","sourceField":"threatintel.anomalithreatstream.severity"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"layers":[{"categoryDisplay":"default","groups":["dde93810-194c-43e5-bf06-31bfba459425"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","legendDisplay":"default","metric":"9afb1b09-0f20-488c-9242-a94f7d11800b","nestedLegend":false,"numberDisplay":"percent"}],"palette":{"name":"default","type":"palette"},"shape":"donut"}},"title":"Anomali Indicator Severity [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"bd28cb00-de96-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODIsMV0="} +{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["8cd1203c-8d1a-4a49-b97f-bc5a011119b0","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"8cd1203c-8d1a-4a49-b97f-bc5a011119b0":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Indicator TLP Marking","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":5},"scale":"ordinal","sourceField":"threatintel.indicator.marking.tlp"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["9afb1b09-0f20-488c-9242-a94f7d11800b"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","seriesType":"bar_horizontal","xAccessor":"8cd1203c-8d1a-4a49-b97f-bc5a011119b0"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar_horizontal","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"Anomali Indicator TLP Marking [Filebeat Threat Intel]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"f5f18940-de96-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODMsMV0="} +{"attributes":{"description":"Anomali indicator provider ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["a5ec41b6-ad59-4c19-8e50-8fca5230931f","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"a5ec41b6-ad59-4c19-8e50-8fca5230931f":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Indicator Provider","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.provider"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"a5ec41b6-ad59-4c19-8e50-8fca5230931f","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali Indicator Provider [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"c91fcd10-de95-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODQsMV0="} +{"attributes":{"description":"Anomali indicator classification ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["8d7cc68f-5178-40f1-b041-bdb02dea3324","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"8d7cc68f-5178-40f1-b041-bdb02dea3324":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Indicator Classification","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":5},"scale":"ordinal","sourceField":"threatintel.anomalithreatstream.classification"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"layers":[{"categoryDisplay":"default","groups":["8d7cc68f-5178-40f1-b041-bdb02dea3324"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","legendDisplay":"default","metric":"9afb1b09-0f20-488c-9242-a94f7d11800b","nestedLegend":false,"numberDisplay":"percent"}],"shape":"donut"}},"title":"Anomali Indicator Classification [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"36f61650-de96-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODUsMV0="} +{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"823b507c-03a2-413b-9fc6-ba86a0160d50":{"columnOrder":["3da14e5a-0f82-42ce-9bca-cc20ec7f3639","1266faef-9fa3-4560-9dd0-7116e8b2a6de","43cd0668-5ea3-495f-97a5-1d2ddae02ef6"],"columns":{"1266faef-9fa3-4560-9dd0-7116e8b2a6de":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"3da14e5a-0f82-42ce-9bca-cc20ec7f3639":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Feed Source","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"43cd0668-5ea3-495f-97a5-1d2ddae02ef6","type":"column"},"orderDirection":"desc","otherBucket":true,"size":2},"scale":"ordinal","sourceField":"event.dataset"},"43cd0668-5ea3-495f-97a5-1d2ddae02ef6":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"curveType":"LINEAR","fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["43cd0668-5ea3-495f-97a5-1d2ddae02ef6"],"layerId":"823b507c-03a2-413b-9fc6-ba86a0160d50","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"3da14e5a-0f82-42ce-9bca-cc20ec7f3639","xAccessor":"1266faef-9fa3-4560-9dd0-7116e8b2a6de"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"Anomali Data Source [Filebeat Threat Intel]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"1d7a18c0-df54-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-823b507c-03a2-413b-9fc6-ba86a0160d50","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODYsMV0="} +{"attributes":{"description":"Anomali indicator state ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["e5a7fb87-1df1-4b79-b610-1196abdfd499","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"e5a7fb87-1df1-4b79-b610-1196abdfd499":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Indicator State","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":5},"scale":"ordinal","sourceField":"threatintel.anomalithreatstream.state"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["9afb1b09-0f20-488c-9242-a94f7d11800b"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","seriesType":"bar_horizontal","xAccessor":"e5a7fb87-1df1-4b79-b610-1196abdfd499"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar_horizontal","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"Anomali Indicator State [Filebeat Threat Intel]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"d991e510-de96-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODcsMV0="} +{"attributes":{"description":"Geographic location of Anomali indicators ingested by the threat intel Filebeat module.","layerListJSON":"[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"9027343a-f725-4467-9b08-8566ad0b2a52\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{\"type\":\"TILE\"},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"geoField\":\"threatintel.indicator.geo.location\",\"filterByMapBounds\":true,\"scalingType\":\"LIMIT\",\"id\":\"a3ecc6af-0299-4cb9-a29c-0b70f666b011\",\"type\":\"ES_SEARCH\",\"applyGlobalQuery\":true,\"applyGlobalTime\":true,\"tooltipProperties\":[\"threatintel.indicator.as.number\",\"threatintel.indicator.as.organization.name\",\"threatintel.indicator.geo.country_iso_code\"],\"sortField\":\"\",\"sortOrder\":\"desc\",\"topHitsSplitField\":\"\",\"topHitsSize\":1,\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"id\":\"83ede860-fe89-43c9-8e74-fa2703efbb85\",\"label\":\"Indicator Geographic Location\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"danger\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#D36086\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#41937c\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"type\":\"VECTOR\",\"joins\":[]}]","mapStateJSON":"{\"zoom\":2.08,\"center\":{\"lon\":0,\"lat\":19.94277},\"timeFilters\":{\"from\":\"now-7d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":true,\"interval\":0},\"query\":{\"query\":\"event.dataset:\\\"threatintel.anomalithreatstream\\\" \",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false,\"backgroundColor\":\"#ffffff\",\"disableInteractive\":false,\"disableTooltipControl\":false,\"hideToolbarOverlay\":false,\"hideLayerControl\":false,\"hideViewControl\":false,\"initialLocation\":\"LAST_SAVED_LOCATION\",\"fixedLocation\":{\"lat\":0,\"lon\":0,\"zoom\":2},\"browserLocation\":{\"zoom\":2},\"maxZoom\":24,\"minZoom\":0,\"showScaleControl\":false,\"showSpatialFilters\":true,\"spatialFiltersAlpa\":0.3,\"spatialFiltersFillColor\":\"#DA8B45\",\"spatialFiltersLineColor\":\"#DA8B45\"}}","title":"Anomali Indicator Geographic Location [Filebeat Threat Intel]","uiStateJSON":"{\"isLayerTOCOpen\": true, \"openTOCDetails\": []}"},"coreMigrationVersion":"8.0.0","id":"ec5aa090-df42-11eb-8f2b-753caedf727d","migrationVersion":{"map":"7.14.0"},"references":[{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"},{"id":"filebeat-*","name":"layer_1_source_index_pattern","type":"index-pattern"}],"type":"map","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODgsMV0="} +{"attributes":{"description":"Anomali email indicator ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["81a03111-2286-4898-aef5-9e8b309b2437","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"81a03111-2286-4898-aef5-9e8b309b2437":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Email Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.email.address"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"81a03111-2286-4898-aef5-9e8b309b2437","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali Email Indicator [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"f52a9720-de93-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODksMV0="} +{"attributes":{"description":"Anomali URL indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["b42d5573-842d-4494-82d7-c35c9b66b188","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"b42d5573-842d-4494-82d7-c35c9b66b188":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali URL Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.url.original"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"b42d5573-842d-4494-82d7-c35c9b66b188","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali URL Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"8a6f7b20-de94-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTAsMV0="} +{"attributes":{"description":"Anomali domain indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["9e23efd8-7ea2-4c0e-af80-99b2f915ae81","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"9e23efd8-7ea2-4c0e-af80-99b2f915ae81":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Domain Indicators","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.url.domain"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"9e23efd8-7ea2-4c0e-af80-99b2f915ae81","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali Domain Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"ae5934e0-de94-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTEsMV0="} +{"attributes":{"description":"Anomali IP indicator ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["f89f3b93-e409-4ed2-b938-4cd31f2b7247","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"f89f3b93-e409-4ed2-b938-4cd31f2b7247":{"customLabel":true,"dataType":"ip","isBucketed":true,"label":"Anomali IP Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.ip"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"f89f3b93-e409-4ed2-b938-4cd31f2b7247","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali IP Indicator [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"5ef7b430-de94-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTIsMV0="} +{"attributes":{"description":"Anomali indicator MD5 hash ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["3ae42baf-5685-4f7d-94d3-66ff57b4febd","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"3ae42baf-5685-4f7d-94d3-66ff57b4febd":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali MD5 File Hash","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.file.hash.md5"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"3ae42baf-5685-4f7d-94d3-66ff57b4febd","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali MD5 Hash Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"976620a0-de98-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTMsMV0="} +{"attributes":{"description":"Anomali indicator SHA1 hash ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["3ae42baf-5685-4f7d-94d3-66ff57b4febd","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"3ae42baf-5685-4f7d-94d3-66ff57b4febd":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali SHA1 File Hash","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.file.hash.sha1"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"3ae42baf-5685-4f7d-94d3-66ff57b4febd","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali SHA1 Hash Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"aac00bc0-de98-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTQsMV0="} +{"attributes":{"description":"Anomali indicator SHA256 hash ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["3ae42baf-5685-4f7d-94d3-66ff57b4febd","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"3ae42baf-5685-4f7d-94d3-66ff57b4febd":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali SHA256 File Hash","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.file.hash.sha256"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"3ae42baf-5685-4f7d-94d3-66ff57b4febd","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali SHA256 Hash Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"7ec83f60-de98-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTUsMV0="} +{"attributes":{"description":"Anomali indicator name ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["4cca9b50-a9a4-4cce-ae15-9447a451d8a1","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"4cca9b50-a9a4-4cce-ae15-9447a451d8a1":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Indicator Name","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.anomali.name"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"4cca9b50-a9a4-4cce-ae15-9447a451d8a1","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali Indicator Name [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"7d9c70f0-de95-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTYsMV0="} +{"attributes":{"description":"Anomali indicator description ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["577fd2f3-2a3f-4932-8348-9653e54a61e0","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"577fd2f3-2a3f-4932-8348-9653e54a61e0":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Indicator Description","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.anomali.description"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"577fd2f3-2a3f-4932-8348-9653e54a61e0","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali Indicator Description [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"9c78ade0-de95-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTcsMV0="} +{"attributes":{"description":"Anomali indicator ID ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["9e0166f4-d0f0-448c-befa-c07a3e86d69f","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"9e0166f4-d0f0-448c-befa-c07a3e86d69f":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"ThreatStream ID","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.anomalithreatstream.id"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"9e0166f4-d0f0-448c-befa-c07a3e86d69f","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali Indicator ID [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"e5f07800-de94-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTgsMV0="} +{"attributes":{"description":"Anomali ThreatStream URI ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["2e21ae71-6d85-4de2-8585-a60933c18f60","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"2e21ae71-6d85-4de2-8585-a60933c18f60":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"ThreatStream URI","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.anomalithreatstream.resource_uri"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"2e21ae71-6d85-4de2-8585-a60933c18f60","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali URI [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"1136ceb0-de95-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTksMV0="} +{"attributes":{"description":"Anomali indicators ingested by the threat intel Filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"db6836db-8df5-4f4d-814b-7b1919eeb405\",\"w\":8,\"x\":0,\"y\":0},\"panelIndex\":\"db6836db-8df5-4f4d-814b-7b1919eeb405\",\"panelRefName\":\"panel_db6836db-8df5-4f4d-814b-7b1919eeb405\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"e6288d8d-2a04-4b53-9507-62e6bf79fa90\",\"w\":8,\"x\":8,\"y\":0},\"panelIndex\":\"e6288d8d-2a04-4b53-9507-62e6bf79fa90\",\"panelRefName\":\"panel_e6288d8d-2a04-4b53-9507-62e6bf79fa90\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"64186fc9-ecd9-461d-8b9f-2e38b7e10952\",\"w\":7,\"x\":16,\"y\":0},\"panelIndex\":\"64186fc9-ecd9-461d-8b9f-2e38b7e10952\",\"panelRefName\":\"panel_64186fc9-ecd9-461d-8b9f-2e38b7e10952\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"f54f6633-8185-43da-af7b-64729c6d19c4\",\"w\":8,\"x\":23,\"y\":0},\"panelIndex\":\"f54f6633-8185-43da-af7b-64729c6d19c4\",\"panelRefName\":\"panel_f54f6633-8185-43da-af7b-64729c6d19c4\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"b28f9576-c381-4b8e-a2c4-2f085477d9fe\",\"w\":8,\"x\":31,\"y\":0},\"panelIndex\":\"b28f9576-c381-4b8e-a2c4-2f085477d9fe\",\"panelRefName\":\"panel_b28f9576-c381-4b8e-a2c4-2f085477d9fe\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"bf8b3c50-9df8-4a80-b678-fe7f463f365c\",\"w\":9,\"x\":39,\"y\":0},\"panelIndex\":\"bf8b3c50-9df8-4a80-b678-fe7f463f365c\",\"panelRefName\":\"panel_bf8b3c50-9df8-4a80-b678-fe7f463f365c\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"30f2e620-6c9e-48a2-9111-0e641e5e999a\",\"w\":8,\"x\":0,\"y\":16},\"panelIndex\":\"30f2e620-6c9e-48a2-9111-0e641e5e999a\",\"panelRefName\":\"panel_30f2e620-6c9e-48a2-9111-0e641e5e999a\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"a220d0d1-d800-4539-955e-c0454b823c80\",\"w\":8,\"x\":8,\"y\":16},\"panelIndex\":\"a220d0d1-d800-4539-955e-c0454b823c80\",\"panelRefName\":\"panel_a220d0d1-d800-4539-955e-c0454b823c80\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":16,\"i\":\"2a0a608b-3d0d-4de6-8e82-0a34611c465f\",\"w\":23,\"x\":16,\"y\":16},\"panelIndex\":\"2a0a608b-3d0d-4de6-8e82-0a34611c465f\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-layer-823b507c-03a2-413b-9fc6-ba86a0160d50\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"823b507c-03a2-413b-9fc6-ba86a0160d50\":{\"columnOrder\":[\"a89c7d23-2879-41d9-9f71-7f33c63cca60\",\"1266faef-9fa3-4560-9dd0-7116e8b2a6de\",\"43cd0668-5ea3-495f-97a5-1d2ddae02ef6\"],\"columns\":{\"1266faef-9fa3-4560-9dd0-7116e8b2a6de\":{\"dataType\":\"date\",\"isBucketed\":true,\"label\":\"@timestamp\",\"operationType\":\"date_histogram\",\"params\":{\"interval\":\"auto\"},\"scale\":\"interval\",\"sourceField\":\"@timestamp\"},\"43cd0668-5ea3-495f-97a5-1d2ddae02ef6\":{\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Count of records\",\"operationType\":\"count\",\"scale\":\"ratio\",\"sourceField\":\"Records\"},\"a89c7d23-2879-41d9-9f71-7f33c63cca60\":{\"customLabel\":true,\"dataType\":\"date\",\"isBucketed\":true,\"label\":\"Anomali Data Source\",\"operationType\":\"date_histogram\",\"params\":{\"interval\":\"auto\"},\"scale\":\"interval\",\"sourceField\":\"@timestamp\"}},\"incompleteColumns\":{}}}}},\"filters\":[],\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)\"},\"visualization\":{\"axisTitlesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"curveType\":\"LINEAR\",\"fittingFunction\":\"None\",\"gridlinesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"layers\":[{\"accessors\":[\"43cd0668-5ea3-495f-97a5-1d2ddae02ef6\"],\"layerId\":\"823b507c-03a2-413b-9fc6-ba86a0160d50\",\"position\":\"top\",\"seriesType\":\"line\",\"showGridlines\":false,\"splitAccessor\":\"a89c7d23-2879-41d9-9f71-7f33c63cca60\",\"xAccessor\":\"1266faef-9fa3-4560-9dd0-7116e8b2a6de\"}],\"legend\":{\"isVisible\":true,\"position\":\"right\"},\"preferredSeriesType\":\"line\",\"tickLabelsVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"valueLabels\":\"hide\"}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsXY\"},\"enhancements\":{},\"type\":\"lens\"},\"panelRefName\":\"panel_2a0a608b-3d0d-4de6-8e82-0a34611c465f\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"f96c5e71-869a-4cbd-a9b0-c0a83126d596\",\"w\":9,\"x\":39,\"y\":16},\"panelIndex\":\"f96c5e71-869a-4cbd-a9b0-c0a83126d596\",\"panelRefName\":\"panel_f96c5e71-869a-4cbd-a9b0-c0a83126d596\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{},\"hiddenLayers\":[],\"isLayerTOCOpen\":true,\"mapBuffer\":{\"maxLat\":103.96437999999999,\"maxLon\":422.73256,\"minLat\":-76.05418,\"minLon\":-422.73256},\"mapCenter\":{\"lat\":19.94277,\"lon\":0,\"zoom\":2.08},\"openTOCDetails\":[]},\"gridData\":{\"h\":24,\"i\":\"dc602af3-264e-4086-9875-164baac7810f\",\"w\":48,\"x\":0,\"y\":32},\"panelIndex\":\"dc602af3-264e-4086-9875-164baac7810f\",\"panelRefName\":\"panel_dc602af3-264e-4086-9875-164baac7810f\",\"type\":\"map\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f\",\"w\":14,\"x\":0,\"y\":56},\"panelIndex\":\"fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f\",\"panelRefName\":\"panel_fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"2c4c65a4-7de7-4985-8516-592b1929770b\",\"w\":15,\"x\":14,\"y\":56},\"panelIndex\":\"2c4c65a4-7de7-4985-8516-592b1929770b\",\"panelRefName\":\"panel_2c4c65a4-7de7-4985-8516-592b1929770b\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"175715f8-9e3c-4f04-8c13-2658bee47e4f\",\"w\":11,\"x\":29,\"y\":56},\"panelIndex\":\"175715f8-9e3c-4f04-8c13-2658bee47e4f\",\"panelRefName\":\"panel_175715f8-9e3c-4f04-8c13-2658bee47e4f\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"9cbed687-e299-42a2-b966-1ac38d2ce178\",\"w\":8,\"x\":40,\"y\":56},\"panelIndex\":\"9cbed687-e299-42a2-b966-1ac38d2ce178\",\"panelRefName\":\"panel_9cbed687-e299-42a2-b966-1ac38d2ce178\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"c4bfc787-6b1e-48da-98a1-ffb40786e772\",\"w\":9,\"x\":0,\"y\":73},\"panelIndex\":\"c4bfc787-6b1e-48da-98a1-ffb40786e772\",\"panelRefName\":\"panel_c4bfc787-6b1e-48da-98a1-ffb40786e772\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"e6ecb6c4-565b-40b4-979f-42e2d200561a\",\"w\":10,\"x\":9,\"y\":73},\"panelIndex\":\"e6ecb6c4-565b-40b4-979f-42e2d200561a\",\"panelRefName\":\"panel_e6ecb6c4-565b-40b4-979f-42e2d200561a\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"1aa274fa-0c73-4475-b1b8-a1a2fde2350f\",\"w\":14,\"x\":19,\"y\":73},\"panelIndex\":\"1aa274fa-0c73-4475-b1b8-a1a2fde2350f\",\"panelRefName\":\"panel_1aa274fa-0c73-4475-b1b8-a1a2fde2350f\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1\",\"w\":7,\"x\":33,\"y\":73},\"panelIndex\":\"5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1\",\"panelRefName\":\"panel_5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"ef43fef1-a2e4-4572-8f03-02738650b757\",\"w\":8,\"x\":40,\"y\":73},\"panelIndex\":\"ef43fef1-a2e4-4572-8f03-02738650b757\",\"panelRefName\":\"panel_ef43fef1-a2e4-4572-8f03-02738650b757\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"58a150f9-b99d-4040-8ae8-260ad7041086\",\"w\":9,\"x\":0,\"y\":90},\"panelIndex\":\"58a150f9-b99d-4040-8ae8-260ad7041086\",\"panelRefName\":\"panel_58a150f9-b99d-4040-8ae8-260ad7041086\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"486ad65a-6356-4b9d-8455-4c207f017eb8\",\"w\":16,\"x\":9,\"y\":90},\"panelIndex\":\"486ad65a-6356-4b9d-8455-4c207f017eb8\",\"panelRefName\":\"panel_486ad65a-6356-4b9d-8455-4c207f017eb8\",\"type\":\"lens\",\"version\":\"7.13.2\"}]","timeRestore":false,"title":"[Filebeat Threat Intel] Anomali","version":1},"coreMigrationVersion":"8.0.0","id":"68c48a30-739e-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"bfd2bfe0-de97-11eb-8f2b-753caedf727d","name":"db6836db-8df5-4f4d-814b-7b1919eeb405:panel_db6836db-8df5-4f4d-814b-7b1919eeb405","type":"lens"},{"id":"9a61edc0-de93-11eb-8f2b-753caedf727d","name":"e6288d8d-2a04-4b53-9507-62e6bf79fa90:panel_e6288d8d-2a04-4b53-9507-62e6bf79fa90","type":"lens"},{"id":"021ba940-de96-11eb-8f2b-753caedf727d","name":"64186fc9-ecd9-461d-8b9f-2e38b7e10952:panel_64186fc9-ecd9-461d-8b9f-2e38b7e10952","type":"lens"},{"id":"3c40f4d0-de97-11eb-8f2b-753caedf727d","name":"f54f6633-8185-43da-af7b-64729c6d19c4:panel_f54f6633-8185-43da-af7b-64729c6d19c4","type":"lens"},{"id":"bd28cb00-de96-11eb-8f2b-753caedf727d","name":"b28f9576-c381-4b8e-a2c4-2f085477d9fe:panel_b28f9576-c381-4b8e-a2c4-2f085477d9fe","type":"lens"},{"id":"f5f18940-de96-11eb-8f2b-753caedf727d","name":"bf8b3c50-9df8-4a80-b678-fe7f463f365c:panel_bf8b3c50-9df8-4a80-b678-fe7f463f365c","type":"lens"},{"id":"c91fcd10-de95-11eb-8f2b-753caedf727d","name":"30f2e620-6c9e-48a2-9111-0e641e5e999a:panel_30f2e620-6c9e-48a2-9111-0e641e5e999a","type":"lens"},{"id":"36f61650-de96-11eb-8f2b-753caedf727d","name":"a220d0d1-d800-4539-955e-c0454b823c80:panel_a220d0d1-d800-4539-955e-c0454b823c80","type":"lens"},{"id":"1d7a18c0-df54-11eb-8f2b-753caedf727d","name":"2a0a608b-3d0d-4de6-8e82-0a34611c465f:panel_2a0a608b-3d0d-4de6-8e82-0a34611c465f","type":"lens"},{"id":"filebeat-*","name":"2a0a608b-3d0d-4de6-8e82-0a34611c465f:indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"2a0a608b-3d0d-4de6-8e82-0a34611c465f:indexpattern-datasource-layer-823b507c-03a2-413b-9fc6-ba86a0160d50","type":"index-pattern"},{"id":"d991e510-de96-11eb-8f2b-753caedf727d","name":"f96c5e71-869a-4cbd-a9b0-c0a83126d596:panel_f96c5e71-869a-4cbd-a9b0-c0a83126d596","type":"lens"},{"id":"ec5aa090-df42-11eb-8f2b-753caedf727d","name":"dc602af3-264e-4086-9875-164baac7810f:panel_dc602af3-264e-4086-9875-164baac7810f","type":"map"},{"id":"f52a9720-de93-11eb-8f2b-753caedf727d","name":"fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f:panel_fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f","type":"lens"},{"id":"8a6f7b20-de94-11eb-8f2b-753caedf727d","name":"2c4c65a4-7de7-4985-8516-592b1929770b:panel_2c4c65a4-7de7-4985-8516-592b1929770b","type":"lens"},{"id":"ae5934e0-de94-11eb-8f2b-753caedf727d","name":"175715f8-9e3c-4f04-8c13-2658bee47e4f:panel_175715f8-9e3c-4f04-8c13-2658bee47e4f","type":"lens"},{"id":"5ef7b430-de94-11eb-8f2b-753caedf727d","name":"9cbed687-e299-42a2-b966-1ac38d2ce178:panel_9cbed687-e299-42a2-b966-1ac38d2ce178","type":"lens"},{"id":"976620a0-de98-11eb-8f2b-753caedf727d","name":"c4bfc787-6b1e-48da-98a1-ffb40786e772:panel_c4bfc787-6b1e-48da-98a1-ffb40786e772","type":"lens"},{"id":"aac00bc0-de98-11eb-8f2b-753caedf727d","name":"e6ecb6c4-565b-40b4-979f-42e2d200561a:panel_e6ecb6c4-565b-40b4-979f-42e2d200561a","type":"lens"},{"id":"7ec83f60-de98-11eb-8f2b-753caedf727d","name":"1aa274fa-0c73-4475-b1b8-a1a2fde2350f:panel_1aa274fa-0c73-4475-b1b8-a1a2fde2350f","type":"lens"},{"id":"7d9c70f0-de95-11eb-8f2b-753caedf727d","name":"5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1:panel_5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1","type":"lens"},{"id":"9c78ade0-de95-11eb-8f2b-753caedf727d","name":"ef43fef1-a2e4-4572-8f03-02738650b757:panel_ef43fef1-a2e4-4572-8f03-02738650b757","type":"lens"},{"id":"e5f07800-de94-11eb-8f2b-753caedf727d","name":"58a150f9-b99d-4040-8ae8-260ad7041086:panel_58a150f9-b99d-4040-8ae8-260ad7041086","type":"lens"},{"id":"1136ceb0-de95-11eb-8f2b-753caedf727d","name":"486ad65a-6356-4b9d-8455-4c207f017eb8:panel_486ad65a-6356-4b9d-8455-4c207f017eb8","type":"lens"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"dashboard","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1NzcsMV0="} diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-aubse-malware.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-aubse-malware.json deleted file mode 100644 index 067828449cb..00000000000 --- a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-aubse-malware.json +++ /dev/null @@ -1,1781 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Abuse Malware indicators ingested by the threat intel Filebeat module.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 654.3333333333333 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "80e2f028-a447-4fa4-9161-052717ca9021", - "w": 17, - "x": 0, - "y": 0 - }, - "panelIndex": "80e2f028-a447-4fa4-9161-052717ca9021", - "panelRefName": "panel_0", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "7483e258-c1e3-4fc8-9e8d-7e2abb400cda", - "w": 10, - "x": 17, - "y": 0 - }, - "panelIndex": "7483e258-c1e3-4fc8-9e8d-7e2abb400cda", - "panelRefName": "panel_1", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "5b627f39-1ddb-499f-b9b6-87297576e3dd", - "w": 8, - "x": 27, - "y": 0 - }, - "panelIndex": "5b627f39-1ddb-499f-b9b6-87297576e3dd", - "panelRefName": "panel_2", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 422.33333333333337 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "e7f02b6f-7a4c-417d-904a-582fa4f7f4b0", - "w": 13, - "x": 35, - "y": 0 - }, - "panelIndex": "e7f02b6f-7a4c-417d-904a-582fa4f7f4b0", - "panelRefName": "panel_3", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 584.3333333333333 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "8459964a-6437-490f-a8f3-54f68ca4c9ef", - "w": 16, - "x": 0, - "y": 18 - }, - "panelIndex": "8459964a-6437-490f-a8f3-54f68ca4c9ef", - "panelRefName": "panel_4", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "705312de-dfcc-4f8f-8371-78c3b0fbb968", - "w": 13, - "x": 16, - "y": 18 - }, - "panelIndex": "705312de-dfcc-4f8f-8371-78c3b0fbb968", - "panelRefName": "panel_5", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "table": null, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 755.6666666666667 - }, - { - "colIndex": 1, - "width": 96 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "d3b6eec0-1b14-43f7-be9b-05314ee54c07", - "w": 19, - "x": 29, - "y": 18 - }, - "panelIndex": "d3b6eec0-1b14-43f7-be9b-05314ee54c07", - "panelRefName": "panel_6", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 896.5 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "6d6ea6b0-21a5-4af4-bbea-4f85fc54eaf5", - "w": 23, - "x": 0, - "y": 36 - }, - "panelIndex": "6d6ea6b0-21a5-4af4-bbea-4f85fc54eaf5", - "panelRefName": "panel_7", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "040ae85b-1abc-439e-a1b9-7bc3ddca1059", - "w": 25, - "x": 23, - "y": 36 - }, - "panelIndex": "040ae85b-1abc-439e-a1b9-7bc3ddca1059", - "panelRefName": "panel_8", - "version": "7.11.0" - } - ], - "timeRestore": false, - "title": "[Filebeat Threat Intel] Abuse Malware", - "version": 1 - }, - "id": "5ba16340-72e6-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "dashboard": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "79da77d0-72e5-11eb-a3e3-b3cc7c78a70f", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "0db62ee0-72e6-11eb-a3e3-b3cc7c78a70f", - "name": "panel_1", - "type": "lens" - }, - { - "id": "5f955bb0-7394-11eb-a3e3-b3cc7c78a70f", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "b9533f50-72e5-11eb-a3e3-b3cc7c78a70f", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "1a0d5250-72e5-11eb-a3e3-b3cc7c78a70f", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "40d61ab0-72e6-11eb-a3e3-b3cc7c78a70f", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "41100be0-72e5-11eb-a3e3-b3cc7c78a70f", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "c369c190-72e4-11eb-a3e3-b3cc7c78a70f", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "f9c6ba80-72e5-11eb-a3e3-b3cc7c78a70f", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "dashboard", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyMjksMl0=" - }, - { - "attributes": { - "description": "Abuse malware TLSH hashes ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.abusemalware" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.abusemalware" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.file.hash.tlsh" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.file.hash.tlsh", - "negate": false, - "type": "exists", - "value": "exists" - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.type" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "key": "threatintel.indicator.type", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Abuse Malware TLSH Hashes [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "TLSH Hash", - "field": "threatintel.indicator.file.hash.tlsh", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "File Type", - "field": "threatintel.indicator.file.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Abuse Malware TLSH Hashes [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "79da77d0-72e5-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyMjAsMl0=" - }, - { - "attributes": { - "description": "Abuse malware signatures ingested by the threat intel Filebeat module.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "dff48ab9-4cc8-4744-afe5-ee36a0a2065d": { - "columnOrder": [ - "959db113-1ce6-46fc-97c3-dbf5fd5abb9a", - "de396547-655b-4db2-8a21-e9850acff0b0" - ], - "columns": { - "959db113-1ce6-46fc-97c3-dbf5fd5abb9a": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of threatintel.abusemalware.signature", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "de396547-655b-4db2-8a21-e9850acff0b0", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "threatintel.abusemalware.signature" - }, - "de396547-655b-4db2-8a21-e9850acff0b0": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "filter-index-pattern-0", - "key": "event.module", - "negate": false, - "params": { - "query": "threatintel" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.module": "threatintel" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "filter-index-pattern-1", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.abusemalware" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.abusemalware" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.abusemalware.signature" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "filter-index-pattern-2", - "key": "threatintel.abusemalware.signature", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "layers": [ - { - "categoryDisplay": "default", - "groups": [ - "959db113-1ce6-46fc-97c3-dbf5fd5abb9a" - ], - "layerId": "dff48ab9-4cc8-4744-afe5-ee36a0a2065d", - "legendDisplay": "default", - "metric": "de396547-655b-4db2-8a21-e9850acff0b0", - "nestedLegend": false, - "numberDisplay": "percent" - } - ], - "shape": "treemap" - } - }, - "title": "Abuse Malware Signature [Filebeat Threat Intel]", - "visualizationType": "lnsPie" - }, - "id": "0db62ee0-72e6-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "lens": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-dff48ab9-4cc8-4744-afe5-ee36a0a2065d", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "filter-index-pattern-0", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "filter-index-pattern-1", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "filter-index-pattern-2", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyMjEsMl0=" - }, - { - "attributes": { - "description": "Total number of Abuse Malware indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.abusemalware" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.abusemalware" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Abuse Malware Indicators [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Abuse Malware Indicators" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Abuse Malware Indicators [Filebeat Threat Intel]", - "type": "metric" - } - }, - "id": "5f955bb0-7394-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyMjIsMl0=" - }, - { - "attributes": { - "description": "Abuse malware import table hash by file type ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.abusemalware" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.abusemalware" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.file.pe.imphash" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.file.pe.imphash", - "negate": false, - "type": "exists", - "value": "exists" - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.type" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "key": "threatintel.indicator.type", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Abuse Malware Import Table Hash [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Imphash Hash", - "field": "threatintel.indicator.file.pe.imphash", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "File Type", - "field": "threatintel.indicator.file.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Abuse Malware Import Table Hash [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "b9533f50-72e5-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyMjMsMl0=" - }, - { - "attributes": { - "description": "Abuse malware SHA256 hashes ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.abusemalware" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.abusemalware" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.file.hash.sha256" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.file.hash.sha256", - "negate": false, - "type": "exists", - "value": "exists" - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.type" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "key": "threatintel.indicator.type", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Abuse Malware SHA256 Hashes [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "SHA256 Hash", - "field": "threatintel.indicator.file.hash.sha256", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "File Type", - "field": "threatintel.indicator.file.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Abuse Malware SHA256 Hashes [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "1a0d5250-72e5-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyMjQsMl0=" - }, - { - "attributes": { - "description": "Abuse malware file types ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Abuse Malware File Types [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "threatintel.indicator.file.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": true, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Abuse Malware File Types [Filebeat Threat Intel]", - "type": "pie" - } - }, - "id": "40d61ab0-72e6-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyMjUsMl0=" - }, - { - "attributes": { - "description": "Abuse malware ssdeep hashes ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.abusemalware" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.abusemalware" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.file.hash.ssdeep" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.file.hash.ssdeep", - "negate": false, - "type": "exists", - "value": "exists" - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.type" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "key": "threatintel.indicator.type", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Abuse Malware ssdeep Hashes [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "ssdeep Hash", - "field": "threatintel.indicator.file.hash.ssdeep", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "File Type", - "field": "threatintel.indicator.file.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Abuse Malware ssdeep Hashes [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "41100be0-72e5-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyMjYsMl0=" - }, - { - "attributes": { - "description": "Abuse malware event references ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.abusemalware" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.abusemalware" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "event.reference" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "event.reference", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Abuse Malware Event Reference [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Abuse Malware Reference URL", - "field": "event.reference", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Abuse Malware Event Reference [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "c369c190-72e4-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyMjcsMl0=" - }, - { - "attributes": { - "description": "Abuse malware VirusTotal references ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.abusemalware" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.abusemalware" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.abusemalware.virustotal.link" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.abusemalware.virustotal.link", - "negate": false, - "type": "exists", - "value": "exists" - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.abusemalware.virustotal.result" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "key": "threatintel.abusemalware.virustotal.result", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Abuse Malware VirusTotal References [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 937.6666666666665 - } - ] - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "VirusTotal URL", - "field": "threatintel.abusemalware.virustotal.link", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "VirusTotal Result", - "field": "threatintel.abusemalware.virustotal.result", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Abuse Malware VirusTotal References [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "f9c6ba80-72e5-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyMjgsMl0=" - }, - { - "attributes": { - "color": "#a548ae", - "description": "Tag for indicators ingested by the Threat Intel Filebeat module.", - "name": "threat intel" - }, - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "namespaces": [ - "default" - ], - "references": [], - "type": "tag", - "updated_at": "2021-03-10T19:01:18.125Z", - "version": "WzIyMTcsMl0=" - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.module", - "negate": false, - "params": { - "query": "threatintel" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.module": "threatintel" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "event.category", - "negate": false, - "params": { - "query": "threat" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.category": "threat" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "key": "event.kind", - "negate": false, - "params": { - "query": "enrichment" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.kind": "enrichment" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index", - "key": "event.type", - "negate": false, - "params": { - "query": "indicator" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.type": "indicator" - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [], - "title": "All Logs [Filebeat Threat Intel] ECS", - "version": 1 - }, - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "search": "7.9.3" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyMTksMl0=" - } - ], - "version": "7.11.1" -} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-aubse-malware.ndjson b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-aubse-malware.ndjson new file mode 100644 index 00000000000..0f788b509e6 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-aubse-malware.ndjson @@ -0,0 +1,12 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"threatintel\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"threatintel\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.category\", \"negate\": false, \"params\": {\"query\": \"threat\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.category\": \"threat\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"enrichment\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"enrichment\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index\", \"key\": \"event.type\", \"negate\": false, \"params\": {\"query\": \"indicator\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.type\": \"indicator\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[],"title":"All Logs [Filebeat Threat Intel] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NjAsMV0="} +{"attributes":{"color":"#a548ae","description":"Tag for indicators ingested by the Threat Intel Filebeat module.","name":"threat intel"},"coreMigrationVersion":"8.0.0","id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","references":[],"type":"tag","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzksMV0="} +{"attributes":{"description":"Abuse malware TLSH hashes ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abusemalware\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abusemalware\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.tlsh\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.tlsh\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.type\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"threatintel.indicator.type\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse Malware TLSH Hashes [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"TLSH Hash\",\"field\":\"threatintel.indicator.file.hash.tlsh\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"File Type\",\"field\":\"threatintel.indicator.file.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse Malware TLSH Hashes [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"79da77d0-72e5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MDIsMV0="} +{"attributes":{"description":"Abuse malware signatures ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"dff48ab9-4cc8-4744-afe5-ee36a0a2065d":{"columnOrder":["959db113-1ce6-46fc-97c3-dbf5fd5abb9a","de396547-655b-4db2-8a21-e9850acff0b0"],"columns":{"959db113-1ce6-46fc-97c3-dbf5fd5abb9a":{"dataType":"string","isBucketed":true,"label":"Top values of threatintel.abusemalware.signature","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"de396547-655b-4db2-8a21-e9850acff0b0","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.abusemalware.signature"},"de396547-655b-4db2-8a21-e9850acff0b0":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[{"$state":{"store":"appState"},"meta":{"alias":null,"disabled":false,"indexRefName":"filter-index-pattern-0","key":"event.module","negate":false,"params":{"query":"threatintel"},"type":"phrase"},"query":{"match_phrase":{"event.module":"threatintel"}}},{"$state":{"store":"appState"},"meta":{"alias":null,"disabled":false,"indexRefName":"filter-index-pattern-1","key":"event.dataset","negate":false,"params":{"query":"threatintel.abusemalware"},"type":"phrase"},"query":{"match_phrase":{"event.dataset":"threatintel.abusemalware"}}},{"$state":{"store":"appState"},"exists":{"field":"threatintel.abusemalware.signature"},"meta":{"alias":null,"disabled":false,"indexRefName":"filter-index-pattern-2","key":"threatintel.abusemalware.signature","negate":false,"type":"exists","value":"exists"}}],"query":{"language":"kuery","query":""},"visualization":{"layers":[{"categoryDisplay":"default","groups":["959db113-1ce6-46fc-97c3-dbf5fd5abb9a"],"layerId":"dff48ab9-4cc8-4744-afe5-ee36a0a2065d","legendDisplay":"default","metric":"de396547-655b-4db2-8a21-e9850acff0b0","nestedLegend":false,"numberDisplay":"percent"}],"shape":"treemap"}},"title":"Abuse Malware Signature [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"0db62ee0-72e6-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-dff48ab9-4cc8-4744-afe5-ee36a0a2065d","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-0","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-1","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-2","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MDMsMV0="} +{"attributes":{"description":"Total number of Abuse Malware indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abusemalware\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abusemalware\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse Malware Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Abuse Malware Indicators\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Abuse Malware Indicators [Filebeat Threat Intel]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"5f955bb0-7394-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MDQsMV0="} +{"attributes":{"description":"Abuse malware import table hash by file type ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abusemalware\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abusemalware\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.pe.imphash\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.pe.imphash\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.type\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"threatintel.indicator.type\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse Malware Import Table Hash [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Imphash Hash\",\"field\":\"threatintel.indicator.file.pe.imphash\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"File Type\",\"field\":\"threatintel.indicator.file.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse Malware Import Table Hash [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"b9533f50-72e5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MDUsMV0="} +{"attributes":{"description":"Abuse malware SHA256 hashes ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abusemalware\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abusemalware\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.sha256\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.sha256\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.type\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"threatintel.indicator.type\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse Malware SHA256 Hashes [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"SHA256 Hash\",\"field\":\"threatintel.indicator.file.hash.sha256\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"File Type\",\"field\":\"threatintel.indicator.file.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse Malware SHA256 Hashes [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"1a0d5250-72e5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MDYsMV0="} +{"attributes":{"description":"Abuse malware file types ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse Malware File Types [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"threatintel.indicator.file.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Abuse Malware File Types [Filebeat Threat Intel]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"40d61ab0-72e6-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MDcsMV0="} +{"attributes":{"description":"Abuse malware ssdeep hashes ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abusemalware\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abusemalware\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.ssdeep\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.ssdeep\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.type\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"threatintel.indicator.type\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse Malware ssdeep Hashes [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"ssdeep Hash\",\"field\":\"threatintel.indicator.file.hash.ssdeep\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"File Type\",\"field\":\"threatintel.indicator.file.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse Malware ssdeep Hashes [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"41100be0-72e5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MDgsMV0="} +{"attributes":{"description":"Abuse malware event references ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abusemalware\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abusemalware\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"event.reference\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.reference\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse Malware Event Reference [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Abuse Malware Reference URL\",\"field\":\"event.reference\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse Malware Event Reference [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"c369c190-72e4-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MDksMV0="} +{"attributes":{"description":"Abuse malware VirusTotal references ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abusemalware\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abusemalware\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.abusemalware.virustotal.link\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.abusemalware.virustotal.link\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.abusemalware.virustotal.result\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"threatintel.abusemalware.virustotal.result\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse Malware VirusTotal References [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"colWidth\": [{\"colIndex\": 0, \"width\": 937.6666666666665}]}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"VirusTotal URL\",\"field\":\"threatintel.abusemalware.virustotal.link\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"VirusTotal Result\",\"field\":\"threatintel.abusemalware.virustotal.result\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse Malware VirusTotal References [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"f9c6ba80-72e5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MTAsMV0="} +{"attributes":{"description":"Abuse Malware indicators ingested by the threat intel Filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":654.3333333333333}]}}},\"gridData\":{\"h\":18,\"i\":\"80e2f028-a447-4fa4-9161-052717ca9021\",\"w\":17,\"x\":0,\"y\":0},\"panelIndex\":\"80e2f028-a447-4fa4-9161-052717ca9021\",\"panelRefName\":\"panel_0\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"7483e258-c1e3-4fc8-9e8d-7e2abb400cda\",\"w\":10,\"x\":17,\"y\":0},\"panelIndex\":\"7483e258-c1e3-4fc8-9e8d-7e2abb400cda\",\"panelRefName\":\"panel_1\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"5b627f39-1ddb-499f-b9b6-87297576e3dd\",\"w\":8,\"x\":27,\"y\":0},\"panelIndex\":\"5b627f39-1ddb-499f-b9b6-87297576e3dd\",\"panelRefName\":\"panel_2\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":422.33333333333337}]}}},\"gridData\":{\"h\":18,\"i\":\"e7f02b6f-7a4c-417d-904a-582fa4f7f4b0\",\"w\":13,\"x\":35,\"y\":0},\"panelIndex\":\"e7f02b6f-7a4c-417d-904a-582fa4f7f4b0\",\"panelRefName\":\"panel_3\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":584.3333333333333}]}}},\"gridData\":{\"h\":18,\"i\":\"8459964a-6437-490f-a8f3-54f68ca4c9ef\",\"w\":16,\"x\":0,\"y\":18},\"panelIndex\":\"8459964a-6437-490f-a8f3-54f68ca4c9ef\",\"panelRefName\":\"panel_4\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"705312de-dfcc-4f8f-8371-78c3b0fbb968\",\"w\":13,\"x\":16,\"y\":18},\"panelIndex\":\"705312de-dfcc-4f8f-8371-78c3b0fbb968\",\"panelRefName\":\"panel_5\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"table\":null,\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":755.6666666666667},{\"colIndex\":1,\"width\":96}]}}},\"gridData\":{\"h\":18,\"i\":\"d3b6eec0-1b14-43f7-be9b-05314ee54c07\",\"w\":19,\"x\":29,\"y\":18},\"panelIndex\":\"d3b6eec0-1b14-43f7-be9b-05314ee54c07\",\"panelRefName\":\"panel_6\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":896.5}]}}},\"gridData\":{\"h\":18,\"i\":\"6d6ea6b0-21a5-4af4-bbea-4f85fc54eaf5\",\"w\":23,\"x\":0,\"y\":36},\"panelIndex\":\"6d6ea6b0-21a5-4af4-bbea-4f85fc54eaf5\",\"panelRefName\":\"panel_7\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"040ae85b-1abc-439e-a1b9-7bc3ddca1059\",\"w\":25,\"x\":23,\"y\":36},\"panelIndex\":\"040ae85b-1abc-439e-a1b9-7bc3ddca1059\",\"panelRefName\":\"panel_8\",\"version\":\"7.11.0\"}]","timeRestore":false,"title":"[Filebeat Threat Intel] Abuse Malware","version":1},"coreMigrationVersion":"8.0.0","id":"5ba16340-72e6-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"79da77d0-72e5-11eb-a3e3-b3cc7c78a70f","name":"panel_0","type":"visualization"},{"id":"0db62ee0-72e6-11eb-a3e3-b3cc7c78a70f","name":"panel_1","type":"lens"},{"id":"5f955bb0-7394-11eb-a3e3-b3cc7c78a70f","name":"panel_2","type":"visualization"},{"id":"b9533f50-72e5-11eb-a3e3-b3cc7c78a70f","name":"panel_3","type":"visualization"},{"id":"1a0d5250-72e5-11eb-a3e3-b3cc7c78a70f","name":"panel_4","type":"visualization"},{"id":"40d61ab0-72e6-11eb-a3e3-b3cc7c78a70f","name":"panel_5","type":"visualization"},{"id":"41100be0-72e5-11eb-a3e3-b3cc7c78a70f","name":"panel_6","type":"visualization"},{"id":"c369c190-72e4-11eb-a3e3-b3cc7c78a70f","name":"panel_7","type":"visualization"},{"id":"f9c6ba80-72e5-11eb-a3e3-b3cc7c78a70f","name":"panel_8","type":"visualization"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"dashboard","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MDEsMV0="} diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-malwarebazaar.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-malwarebazaar.json deleted file mode 100644 index 3cbc94aa6c0..00000000000 --- a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-malwarebazaar.json +++ /dev/null @@ -1,2566 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Malware Bazaar indicators ingested by the threat intel Filebeat module.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "1083ca13-ad6f-4814-8fbf-81b6e6e699ce", - "w": 8, - "x": 0, - "y": 0 - }, - "panelIndex": "1083ca13-ad6f-4814-8fbf-81b6e6e699ce", - "panelRefName": "panel_0", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 215.66666666666663 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "e5a1ac0c-48a9-445e-becf-865607f990e5", - "w": 8, - "x": 8, - "y": 0 - }, - "panelIndex": "e5a1ac0c-48a9-445e-becf-865607f990e5", - "panelRefName": "panel_1", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "d3b51c89-ac94-4972-a47e-171a0ae635c2", - "w": 7, - "x": 16, - "y": 0 - }, - "panelIndex": "d3b51c89-ac94-4972-a47e-171a0ae635c2", - "panelRefName": "panel_2", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "04c92d8e-6022-4734-96a2-75c51779da75", - "w": 14, - "x": 23, - "y": 0 - }, - "panelIndex": "04c92d8e-6022-4734-96a2-75c51779da75", - "panelRefName": "panel_3", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "0ba44fdb-d494-45ea-8890-1b9eb4e07e44", - "w": 11, - "x": 37, - "y": 0 - }, - "panelIndex": "0ba44fdb-d494-45ea-8890-1b9eb4e07e44", - "panelRefName": "panel_4", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {}, - "hiddenLayers": [], - "isLayerTOCOpen": true, - "mapCenter": { - "lat": 19.94277, - "lon": 0, - "zoom": 1.08 - }, - "openTOCDetails": [] - }, - "gridData": { - "h": 18, - "i": "f0c69f9f-856b-4a66-ac07-6f4f1836743e", - "w": 27, - "x": 0, - "y": 18 - }, - "panelIndex": "f0c69f9f-856b-4a66-ac07-6f4f1836743e", - "panelRefName": "panel_5", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "30bc1259-fae6-4806-a4f7-de4e15a57599", - "w": 12, - "x": 27, - "y": 18 - }, - "panelIndex": "30bc1259-fae6-4806-a4f7-de4e15a57599", - "panelRefName": "panel_6", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "3e41e9e7-2d9a-44ef-9092-3e14fc07f9ec", - "w": 9, - "x": 39, - "y": 18 - }, - "panelIndex": "3e41e9e7-2d9a-44ef-9092-3e14fc07f9ec", - "panelRefName": "panel_7", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "ac98b880-f1a9-4682-8438-38058275209e", - "w": 11, - "x": 0, - "y": 36 - }, - "panelIndex": "ac98b880-f1a9-4682-8438-38058275209e", - "panelRefName": "panel_8", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 661.6666666666666 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "0086d444-b5bf-4330-bdc2-01aa8f7c06db", - "w": 16, - "x": 11, - "y": 36 - }, - "panelIndex": "0086d444-b5bf-4330-bdc2-01aa8f7c06db", - "panelRefName": "panel_9", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {}, - "table": null, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 944.6666666666666 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "0d852939-66e7-4702-aeb3-886d3ae98e90", - "w": 21, - "x": 27, - "y": 36 - }, - "panelIndex": "0d852939-66e7-4702-aeb3-886d3ae98e90", - "panelRefName": "panel_10", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 395.66666666666663 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "79426cc6-6f0b-4403-be33-77fe1c40656f", - "w": 11, - "x": 0, - "y": 54 - }, - "panelIndex": "79426cc6-6f0b-4403-be33-77fe1c40656f", - "panelRefName": "panel_11", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "4394a033-cccf-46a6-83a6-ae5598fe1198", - "w": 15, - "x": 11, - "y": 54 - }, - "panelIndex": "4394a033-cccf-46a6-83a6-ae5598fe1198", - "panelRefName": "panel_12", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 562.6666666666666 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "f09ad2ef-d681-44bf-834e-b5c85c39efe0", - "w": 14, - "x": 26, - "y": 54 - }, - "panelIndex": "f09ad2ef-d681-44bf-834e-b5c85c39efe0", - "panelRefName": "panel_13", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 309.66666666666663 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "7907e86f-a77d-47a5-8d35-d0805449b925", - "w": 8, - "x": 40, - "y": 54 - }, - "panelIndex": "7907e86f-a77d-47a5-8d35-d0805449b925", - "panelRefName": "panel_14", - "version": "7.11.1" - } - ], - "timeRestore": false, - "title": "[Filebeat Threat Intel] Malware Bazaar", - "version": 1 - }, - "id": "dee7be00-82ab-11eb-ac13-d5ca87cb8fa2", - "migrationVersion": { - "dashboard": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "f91e9620-82a8-11eb-ac13-d5ca87cb8fa2", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "d22c1090-82a5-11eb-ac13-d5ca87cb8fa2", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "737d4f30-82ac-11eb-ac13-d5ca87cb8fa2", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "8b2a64a0-82a8-11eb-ac13-d5ca87cb8fa2", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "c7d5db50-82a8-11eb-ac13-d5ca87cb8fa2", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "63365b50-82aa-11eb-ac13-d5ca87cb8fa2", - "name": "panel_5", - "type": "map" - }, - { - "id": "bc4790b0-82aa-11eb-ac13-d5ca87cb8fa2", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "dbd199d0-82aa-11eb-ac13-d5ca87cb8fa2", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "7cbe5900-82ab-11eb-ac13-d5ca87cb8fa2", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "786546d0-82a5-11eb-ac13-d5ca87cb8fa2", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "7546ac40-82a6-11eb-ac13-d5ca87cb8fa2", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "21ff17c0-82a6-11eb-ac13-d5ca87cb8fa2", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "142fb6c0-82a8-11eb-ac13-d5ca87cb8fa2", - "name": "panel_12", - "type": "visualization" - }, - { - "id": "5b4877b0-82a6-11eb-ac13-d5ca87cb8fa2", - "name": "panel_13", - "type": "visualization" - }, - { - "id": "1d8002d0-82a7-11eb-ac13-d5ca87cb8fa2", - "name": "panel_14", - "type": "visualization" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "dashboard", - "updated_at": "2021-03-11T21:11:00.273Z", - "version": "WzEyNDAsMV0=" - }, - { - "attributes": { - "description": "Tags for Malware Bazaar indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.malwarebazaar" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.malwarebazaar" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.malwarebazaar.tags" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.malwarebazaar.tags", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Malware Bazaar Tags [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Malware Bazaar Tags", - "field": "threatintel.malwarebazaar.tags", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Malware Bazaar Tags [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "f91e9620-82a8-11eb-ac13-d5ca87cb8fa2", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-11T21:11:00.273Z", - "version": "WzEyMjUsMV0=" - }, - { - "attributes": { - "description": "Malware Bazaar malware file MIME type ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.malwarebazaar" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.malwarebazaar" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.file.mime_type" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.file.mime_type", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Malware Bazaar File MIME Type [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 920.6666666666666 - } - ] - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "File MIME Type", - "field": "threatintel.indicator.file.mime_type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Malware Bazaar File MIME Type [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "d22c1090-82a5-11eb-ac13-d5ca87cb8fa2", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-11T21:11:00.273Z", - "version": "WzEyMjYsMV0=" - }, - { - "attributes": { - "description": "Total number of Malware Bazaar indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.malwarebazaar" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.malwarebazaar" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Malware Bazaar Indicators [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Malware Bazaar Indicators" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Malware Bazaar Indicators [Filebeat Threat Intel]", - "type": "metric" - } - }, - "id": "737d4f30-82ac-11eb-ac13-d5ca87cb8fa2", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-11T21:11:00.273Z", - "version": "WzEyMjcsMV0=" - }, - { - "attributes": { - "description": "Malware Bazaar file extensions ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.malwarebazaar" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.malwarebazaar" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.file.extension" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.file.extension", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Malware Bazaar File Extensions [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "threatintel.indicator.file.extension", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": true, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Malware Bazaar File Extensions [Filebeat Threat Intel]", - "type": "pie" - } - }, - "id": "8b2a64a0-82a8-11eb-ac13-d5ca87cb8fa2", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-11T21:11:00.273Z", - "version": "WzEyMjgsMV0=" - }, - { - "attributes": { - "description": "Malware Bazaar provider of indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.malwarebazaar" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.malwarebazaar" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.provider" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.provider", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Malware Bazaar Indicator Provider [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "colors": { - "Count": "#705DA0" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Indicator Provider", - "field": "threatintel.indicator.provider", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 200 - }, - "position": "left", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false - }, - "labels": { - "show": true - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": true, - "rotate": 75, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "bottom", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Malware Bazaar Indicator Provider [Filebeat Threat Intel]", - "type": "horizontal_bar" - } - }, - "id": "c7d5db50-82a8-11eb-ac13-d5ca87cb8fa2", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-11T21:11:00.273Z", - "version": "WzEyMjksMV0=" - }, - { - "attributes": { - "description": "Origin country of the indicator ingested by the threat intel Filebeat module.", - "layerListJSON": "[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"ea2479ec-b43e-4377-a068-91d93265081d\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{\"type\":\"TILE\"},\"type\":\"VECTOR_TILE\"},{\"joins\":[{\"leftField\":\"iso2\",\"right\":{\"type\":\"ES_TERM_SOURCE\",\"id\":\"81d209f7-b068-4b0d-90f4-baf9a3eefb55\",\"indexPatternTitle\":\"filebeat-*\",\"term\":\"threatintel.indicator.geo.country_iso_code\",\"metrics\":[{\"type\":\"count\"}],\"applyGlobalQuery\":true,\"applyGlobalTime\":true,\"indexPatternRefName\":\"layer_1_join_0_index_pattern\"}}],\"sourceDescriptor\":{\"type\":\"EMS_FILE\",\"id\":\"world_countries\",\"tooltipProperties\":[\"name\"]},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"marker\"}},\"fillColor\":{\"type\":\"DYNAMIC\",\"options\":{\"color\":\"Yellow to Red\",\"colorCategory\":\"palette_0\",\"field\":{\"name\":\"__kbnjoin__count__81d209f7-b068-4b0d-90f4-baf9a3eefb55\",\"origin\":\"join\"},\"fieldMetaOptions\":{\"isEnabled\":true,\"sigma\":3},\"type\":\"ORDINAL\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#3d3d3d\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"66df8b3a-7f7c-4969-929e-2c1ac5b64584\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\"}]", - "mapStateJSON": "{\"zoom\":2.08,\"center\":{\"lon\":0,\"lat\":19.94277},\"timeFilters\":{\"from\":\"now-30d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":true,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false,\"backgroundColor\":\"#ffffff\",\"initialLocation\":\"LAST_SAVED_LOCATION\",\"fixedLocation\":{\"lat\":0,\"lon\":0,\"zoom\":2},\"browserLocation\":{\"zoom\":2},\"maxZoom\":24,\"minZoom\":0,\"showSpatialFilters\":true,\"spatialFiltersAlpa\":0.3,\"spatialFiltersFillColor\":\"#DA8B45\",\"spatialFiltersLineColor\":\"#DA8B45\"}}", - "title": "Indicator Origin Country [Filebeat Threat Intel]", - "uiStateJSON": { - "isLayerTOCOpen": true, - "openTOCDetails": [] - } - }, - "id": "63365b50-82aa-11eb-ac13-d5ca87cb8fa2", - "migrationVersion": { - "map": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - }, - { - "id": "filebeat-*", - "name": "layer_1_join_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "map", - "updated_at": "2021-03-11T21:11:00.273Z", - "version": "WzEyMzAsMV0=" - }, - { - "attributes": { - "description": "Number of times Malware Bazaar indicators ingested by the threat intel Filebeat module have been downloaded.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.malwarebazaar" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.malwarebazaar" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.malwarebazaar.intelligence.downloads" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.malwarebazaar.intelligence.downloads", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Malware Bazaar Downloads [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": 0, - "direction": "desc" - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Malware Bazaar Downloads", - "field": "threatintel.malwarebazaar.intelligence.downloads", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Malware Bazaar Downloads [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "bc4790b0-82aa-11eb-ac13-d5ca87cb8fa2", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-11T21:11:00.273Z", - "version": "WzEyMzEsMV0=" - }, - { - "attributes": { - "description": "Number of times Malware Bazaar indicators ingested by the threat intel Filebeat module have been uploaded.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.malwarebazaar" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.malwarebazaar" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.malwarebazaar.intelligence.uploads" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.malwarebazaar.intelligence.uploads", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Malware Bazaar Uploads [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": 0, - "direction": "desc" - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Malware Bazaar Uploads", - "field": "threatintel.malwarebazaar.intelligence.uploads", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Malware Bazaar Uploads [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "dbd199d0-82aa-11eb-ac13-d5ca87cb8fa2", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-11T21:11:00.273Z", - "version": "WzEyMzIsMV0=" - }, - { - "attributes": { - "description": "First time indicators ingested by the threat intel Filebeat module have been seen by Malware Bazaar", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.malwarebazaar" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.malwarebazaar" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.first_seen" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.first_seen", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Malware Bazaar Indicator First Seen [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": 0, - "direction": "desc" - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Indicator First Seen", - "field": "threatintel.indicator.first_seen", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Malware Bazaar Indicator First Seen [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "7cbe5900-82ab-11eb-ac13-d5ca87cb8fa2", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-11T21:11:00.273Z", - "version": "WzEyMzMsMV0=" - }, - { - "attributes": { - "description": "Malware Bazaar malware TLSH hashes ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.malwarebazaar" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.malwarebazaar" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.file.hash.tlsh" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.file.hash.tlsh", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Malware Bazaar TLSH Hashes [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 920.6666666666666 - } - ] - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "TLSH Hash", - "field": "threatintel.indicator.file.hash.tlsh", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Malware Bazaar TLSH Hashes [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "786546d0-82a5-11eb-ac13-d5ca87cb8fa2", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-11T21:11:00.273Z", - "version": "WzEyMzQsMV0=" - }, - { - "attributes": { - "description": "Malware Bazaar malware ssdeep hashes ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.malwarebazaar" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.malwarebazaar" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.file.hash.ssdeep" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.file.hash.ssdeep", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Malware Bazaar ssdeep Hashes [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 920.6666666666666 - } - ] - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "ssdeep Hash", - "field": "threatintel.indicator.file.hash.ssdeep", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Malware Bazaar ssdeep Hashes [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "7546ac40-82a6-11eb-ac13-d5ca87cb8fa2", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-11T21:11:00.273Z", - "version": "WzEyMzUsMV0=" - }, - { - "attributes": { - "description": "Malware Bazaar malware MD5 hashes ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.malwarebazaar" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.malwarebazaar" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.file.hash.md5" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.file.hash.md5", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Malware Bazaar MD5 Hashes [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 920.6666666666666 - } - ] - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "MD5 Hash", - "field": "threatintel.indicator.file.hash.md5", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Malware Bazaar MD5 Hashes [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "21ff17c0-82a6-11eb-ac13-d5ca87cb8fa2", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-11T21:11:00.273Z", - "version": "WzEyMzYsMV0=" - }, - { - "attributes": { - "description": "Malware Bazaar malware SHA1 hashes ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.malwarebazaar" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.malwarebazaar" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.file.hash.sha1" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.file.hash.sha1", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Malware Bazaar SHA1 Hashes [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 920.6666666666666 - } - ] - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "SHA1 Hash", - "field": "threatintel.indicator.file.hash.sha1", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Malware Bazaar SHA1 Hashes [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "142fb6c0-82a8-11eb-ac13-d5ca87cb8fa2", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-11T21:11:00.273Z", - "version": "WzEyMzcsMV0=" - }, - { - "attributes": { - "description": "Malware Bazaar malware SHA256 hashes ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.malwarebazaar" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.malwarebazaar" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.file.hash.sha256" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.file.hash.sha256", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Malware Bazaar SHA256 Hashes [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 920.6666666666666 - } - ] - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "SHA256 Hash", - "field": "threatintel.indicator.file.hash.sha256", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Malware Bazaar SHA256 Hashes [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "5b4877b0-82a6-11eb-ac13-d5ca87cb8fa2", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-11T21:11:00.273Z", - "version": "WzEyMzgsMV0=" - }, - { - "attributes": { - "description": "Malware Bazaar malware Import Table hashes ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.malwarebazaar" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.malwarebazaar" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.file.pe.imphash" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.file.pe.imphash", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Malware Bazaar Import Table Hashes [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 920.6666666666666 - } - ] - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Imphash Hash", - "field": "threatintel.indicator.file.pe.imphash", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "Malware Bazaar Import Table Hashes [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "1d8002d0-82a7-11eb-ac13-d5ca87cb8fa2", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-11T21:11:00.273Z", - "version": "WzEyMzksMV0=" - }, - { - "attributes": { - "color": "#a548ae", - "description": "Tag for indicators ingested by the Threat Intel Filebeat module.", - "name": "threat intel" - }, - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "namespaces": [ - "default" - ], - "references": [], - "type": "tag", - "updated_at": "2021-03-11T19:22:47.095Z", - "version": "WzQwMiwxXQ==" - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.module", - "negate": false, - "params": { - "query": "threatintel" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.module": "threatintel" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "event.category", - "negate": false, - "params": { - "query": "threat" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.category": "threat" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "key": "event.kind", - "negate": false, - "params": { - "query": "enrichment" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.kind": "enrichment" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index", - "key": "event.type", - "negate": false, - "params": { - "query": "indicator" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.type": "indicator" - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [], - "title": "All Logs [Filebeat Threat Intel] ECS", - "version": 1 - }, - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "search": "7.9.3" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2021-03-11T19:22:47.095Z", - "version": "WzQwMywxXQ==" - } - ], - "version": "7.11.2" -} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-malwarebazaar.ndjson b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-malwarebazaar.ndjson new file mode 100644 index 00000000000..9b904cabe5c --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-malwarebazaar.ndjson @@ -0,0 +1,18 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"threatintel\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"threatintel\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.category\", \"negate\": false, \"params\": {\"query\": \"threat\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.category\": \"threat\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"enrichment\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"enrichment\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index\", \"key\": \"event.type\", \"negate\": false, \"params\": {\"query\": \"indicator\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.type\": \"indicator\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[],"title":"All Logs [Filebeat Threat Intel] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NjAsMV0="} +{"attributes":{"color":"#a548ae","description":"Tag for indicators ingested by the Threat Intel Filebeat module.","name":"threat intel"},"coreMigrationVersion":"8.0.0","id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","references":[],"type":"tag","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzksMV0="} +{"attributes":{"description":"Tags for Malware Bazaar indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.malwarebazaar.tags\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.malwarebazaar.tags\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar Tags [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Malware Bazaar Tags\",\"field\":\"threatintel.malwarebazaar.tags\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar Tags [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"f91e9620-82a8-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MTQsMV0="} +{"attributes":{"description":"Malware Bazaar malware file MIME type ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.mime_type\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.mime_type\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar File MIME Type [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"colWidth\": [{\"colIndex\": 0, \"width\": 920.6666666666666}]}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"File MIME Type\",\"field\":\"threatintel.indicator.file.mime_type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar File MIME Type [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"d22c1090-82a5-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MTUsMV0="} +{"attributes":{"description":"Total number of Malware Bazaar indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Malware Bazaar Indicators\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Malware Bazaar Indicators [Filebeat Threat Intel]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"737d4f30-82ac-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MTYsMV0="} +{"attributes":{"description":"Malware Bazaar file extensions ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.extension\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.extension\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar File Extensions [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"threatintel.indicator.file.extension\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Malware Bazaar File Extensions [Filebeat Threat Intel]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"8b2a64a0-82a8-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MTcsMV0="} +{"attributes":{"description":"Malware Bazaar provider of indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.provider\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.provider\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar Indicator Provider [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"Count\": \"#705DA0\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Indicator Provider\",\"field\":\"threatintel.indicator.provider\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":true},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Malware Bazaar Indicator Provider [Filebeat Threat Intel]\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"c7d5db50-82a8-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MTgsMV0="} +{"attributes":{"description":"Origin country of the indicator ingested by the threat intel Filebeat module.","layerListJSON":"[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"ea2479ec-b43e-4377-a068-91d93265081d\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{\"type\":\"TILE\"},\"type\":\"VECTOR_TILE\"},{\"joins\":[{\"leftField\":\"iso2\",\"right\":{\"type\":\"ES_TERM_SOURCE\",\"id\":\"81d209f7-b068-4b0d-90f4-baf9a3eefb55\",\"indexPatternTitle\":\"filebeat-*\",\"term\":\"threatintel.indicator.geo.country_iso_code\",\"metrics\":[{\"type\":\"count\"}],\"applyGlobalQuery\":true,\"applyGlobalTime\":true,\"indexPatternRefName\":\"layer_1_join_0_index_pattern\"}}],\"sourceDescriptor\":{\"type\":\"EMS_FILE\",\"id\":\"world_countries\",\"tooltipProperties\":[\"name\"]},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"marker\"}},\"fillColor\":{\"type\":\"DYNAMIC\",\"options\":{\"color\":\"Yellow to Red\",\"colorCategory\":\"palette_0\",\"field\":{\"name\":\"__kbnjoin__count__81d209f7-b068-4b0d-90f4-baf9a3eefb55\",\"origin\":\"join\"},\"fieldMetaOptions\":{\"isEnabled\":true,\"sigma\":3},\"type\":\"ORDINAL\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#3d3d3d\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"66df8b3a-7f7c-4969-929e-2c1ac5b64584\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\"}]","mapStateJSON":"{\"zoom\":2.08,\"center\":{\"lon\":0,\"lat\":19.94277},\"timeFilters\":{\"from\":\"now-30d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":true,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false,\"backgroundColor\":\"#ffffff\",\"initialLocation\":\"LAST_SAVED_LOCATION\",\"fixedLocation\":{\"lat\":0,\"lon\":0,\"zoom\":2},\"browserLocation\":{\"zoom\":2},\"maxZoom\":24,\"minZoom\":0,\"showSpatialFilters\":true,\"spatialFiltersAlpa\":0.3,\"spatialFiltersFillColor\":\"#DA8B45\",\"spatialFiltersLineColor\":\"#DA8B45\"}}","title":"Indicator Origin Country [Filebeat Threat Intel]","uiStateJSON":"{\"isLayerTOCOpen\": true, \"openTOCDetails\": []}"},"coreMigrationVersion":"8.0.0","id":"63365b50-82aa-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"map":"7.14.0"},"references":[{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"},{"id":"filebeat-*","name":"layer_1_join_0_index_pattern","type":"index-pattern"}],"type":"map","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MTksMV0="} +{"attributes":{"description":"Number of times Malware Bazaar indicators ingested by the threat intel Filebeat module have been downloaded.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.malwarebazaar.intelligence.downloads\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.malwarebazaar.intelligence.downloads\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar Downloads [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 0, \"direction\": \"desc\"}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Malware Bazaar Downloads\",\"field\":\"threatintel.malwarebazaar.intelligence.downloads\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar Downloads [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"bc4790b0-82aa-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MjAsMV0="} +{"attributes":{"description":"Number of times Malware Bazaar indicators ingested by the threat intel Filebeat module have been uploaded.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.malwarebazaar.intelligence.uploads\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.malwarebazaar.intelligence.uploads\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar Uploads [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 0, \"direction\": \"desc\"}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Malware Bazaar Uploads\",\"field\":\"threatintel.malwarebazaar.intelligence.uploads\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar Uploads [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"dbd199d0-82aa-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MjEsMV0="} +{"attributes":{"description":"First time indicators ingested by the threat intel Filebeat module have been seen by Malware Bazaar","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.first_seen\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.first_seen\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar Indicator First Seen [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 0, \"direction\": \"desc\"}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Indicator First Seen\",\"field\":\"threatintel.indicator.first_seen\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar Indicator First Seen [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"7cbe5900-82ab-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MjIsMV0="} +{"attributes":{"description":"Malware Bazaar malware TLSH hashes ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.tlsh\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.tlsh\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar TLSH Hashes [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"colWidth\": [{\"colIndex\": 0, \"width\": 920.6666666666666}]}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"TLSH Hash\",\"field\":\"threatintel.indicator.file.hash.tlsh\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar TLSH Hashes [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"786546d0-82a5-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MjMsMV0="} +{"attributes":{"description":"Malware Bazaar malware ssdeep hashes ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.ssdeep\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.ssdeep\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar ssdeep Hashes [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"colWidth\": [{\"colIndex\": 0, \"width\": 920.6666666666666}]}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"ssdeep Hash\",\"field\":\"threatintel.indicator.file.hash.ssdeep\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar ssdeep Hashes [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"7546ac40-82a6-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MjQsMV0="} +{"attributes":{"description":"Malware Bazaar malware MD5 hashes ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.md5\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.md5\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar MD5 Hashes [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"colWidth\": [{\"colIndex\": 0, \"width\": 920.6666666666666}]}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"MD5 Hash\",\"field\":\"threatintel.indicator.file.hash.md5\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar MD5 Hashes [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"21ff17c0-82a6-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MjUsMV0="} +{"attributes":{"description":"Malware Bazaar malware SHA1 hashes ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.sha1\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.sha1\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar SHA1 Hashes [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"colWidth\": [{\"colIndex\": 0, \"width\": 920.6666666666666}]}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"SHA1 Hash\",\"field\":\"threatintel.indicator.file.hash.sha1\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar SHA1 Hashes [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"142fb6c0-82a8-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MjYsMV0="} +{"attributes":{"description":"Malware Bazaar malware SHA256 hashes ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.sha256\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.sha256\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar SHA256 Hashes [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"colWidth\": [{\"colIndex\": 0, \"width\": 920.6666666666666}]}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"SHA256 Hash\",\"field\":\"threatintel.indicator.file.hash.sha256\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar SHA256 Hashes [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"5b4877b0-82a6-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MjcsMV0="} +{"attributes":{"description":"Malware Bazaar malware Import Table hashes ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.pe.imphash\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.pe.imphash\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar Import Table Hashes [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"colWidth\": [{\"colIndex\": 0, \"width\": 920.6666666666666}]}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Imphash Hash\",\"field\":\"threatintel.indicator.file.pe.imphash\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar Import Table Hashes [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"1d8002d0-82a7-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MjgsMV0="} +{"attributes":{"description":"Malware Bazaar indicators ingested by the threat intel Filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"1083ca13-ad6f-4814-8fbf-81b6e6e699ce\",\"w\":8,\"x\":0,\"y\":0},\"panelIndex\":\"1083ca13-ad6f-4814-8fbf-81b6e6e699ce\",\"panelRefName\":\"panel_0\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":215.66666666666663}]}}},\"gridData\":{\"h\":18,\"i\":\"e5a1ac0c-48a9-445e-becf-865607f990e5\",\"w\":8,\"x\":8,\"y\":0},\"panelIndex\":\"e5a1ac0c-48a9-445e-becf-865607f990e5\",\"panelRefName\":\"panel_1\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"d3b51c89-ac94-4972-a47e-171a0ae635c2\",\"w\":7,\"x\":16,\"y\":0},\"panelIndex\":\"d3b51c89-ac94-4972-a47e-171a0ae635c2\",\"panelRefName\":\"panel_2\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"04c92d8e-6022-4734-96a2-75c51779da75\",\"w\":14,\"x\":23,\"y\":0},\"panelIndex\":\"04c92d8e-6022-4734-96a2-75c51779da75\",\"panelRefName\":\"panel_3\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"0ba44fdb-d494-45ea-8890-1b9eb4e07e44\",\"w\":11,\"x\":37,\"y\":0},\"panelIndex\":\"0ba44fdb-d494-45ea-8890-1b9eb4e07e44\",\"panelRefName\":\"panel_4\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"hiddenLayers\":[],\"isLayerTOCOpen\":true,\"mapCenter\":{\"lat\":19.94277,\"lon\":0,\"zoom\":1.08},\"openTOCDetails\":[]},\"gridData\":{\"h\":18,\"i\":\"f0c69f9f-856b-4a66-ac07-6f4f1836743e\",\"w\":27,\"x\":0,\"y\":18},\"panelIndex\":\"f0c69f9f-856b-4a66-ac07-6f4f1836743e\",\"panelRefName\":\"panel_5\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"30bc1259-fae6-4806-a4f7-de4e15a57599\",\"w\":12,\"x\":27,\"y\":18},\"panelIndex\":\"30bc1259-fae6-4806-a4f7-de4e15a57599\",\"panelRefName\":\"panel_6\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"3e41e9e7-2d9a-44ef-9092-3e14fc07f9ec\",\"w\":9,\"x\":39,\"y\":18},\"panelIndex\":\"3e41e9e7-2d9a-44ef-9092-3e14fc07f9ec\",\"panelRefName\":\"panel_7\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"ac98b880-f1a9-4682-8438-38058275209e\",\"w\":11,\"x\":0,\"y\":36},\"panelIndex\":\"ac98b880-f1a9-4682-8438-38058275209e\",\"panelRefName\":\"panel_8\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":661.6666666666666}]}}},\"gridData\":{\"h\":18,\"i\":\"0086d444-b5bf-4330-bdc2-01aa8f7c06db\",\"w\":16,\"x\":11,\"y\":36},\"panelIndex\":\"0086d444-b5bf-4330-bdc2-01aa8f7c06db\",\"panelRefName\":\"panel_9\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"table\":null,\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":944.6666666666666}]}}},\"gridData\":{\"h\":18,\"i\":\"0d852939-66e7-4702-aeb3-886d3ae98e90\",\"w\":21,\"x\":27,\"y\":36},\"panelIndex\":\"0d852939-66e7-4702-aeb3-886d3ae98e90\",\"panelRefName\":\"panel_10\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":395.66666666666663}]}}},\"gridData\":{\"h\":18,\"i\":\"79426cc6-6f0b-4403-be33-77fe1c40656f\",\"w\":11,\"x\":0,\"y\":54},\"panelIndex\":\"79426cc6-6f0b-4403-be33-77fe1c40656f\",\"panelRefName\":\"panel_11\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"4394a033-cccf-46a6-83a6-ae5598fe1198\",\"w\":15,\"x\":11,\"y\":54},\"panelIndex\":\"4394a033-cccf-46a6-83a6-ae5598fe1198\",\"panelRefName\":\"panel_12\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":562.6666666666666}]}}},\"gridData\":{\"h\":18,\"i\":\"f09ad2ef-d681-44bf-834e-b5c85c39efe0\",\"w\":14,\"x\":26,\"y\":54},\"panelIndex\":\"f09ad2ef-d681-44bf-834e-b5c85c39efe0\",\"panelRefName\":\"panel_13\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":309.66666666666663}]}}},\"gridData\":{\"h\":18,\"i\":\"7907e86f-a77d-47a5-8d35-d0805449b925\",\"w\":8,\"x\":40,\"y\":54},\"panelIndex\":\"7907e86f-a77d-47a5-8d35-d0805449b925\",\"panelRefName\":\"panel_14\",\"version\":\"7.11.1\"}]","timeRestore":false,"title":"[Filebeat Threat Intel] Malware Bazaar","version":1},"coreMigrationVersion":"8.0.0","id":"dee7be00-82ab-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"f91e9620-82a8-11eb-ac13-d5ca87cb8fa2","name":"panel_0","type":"visualization"},{"id":"d22c1090-82a5-11eb-ac13-d5ca87cb8fa2","name":"panel_1","type":"visualization"},{"id":"737d4f30-82ac-11eb-ac13-d5ca87cb8fa2","name":"panel_2","type":"visualization"},{"id":"8b2a64a0-82a8-11eb-ac13-d5ca87cb8fa2","name":"panel_3","type":"visualization"},{"id":"c7d5db50-82a8-11eb-ac13-d5ca87cb8fa2","name":"panel_4","type":"visualization"},{"id":"63365b50-82aa-11eb-ac13-d5ca87cb8fa2","name":"panel_5","type":"map"},{"id":"bc4790b0-82aa-11eb-ac13-d5ca87cb8fa2","name":"panel_6","type":"visualization"},{"id":"dbd199d0-82aa-11eb-ac13-d5ca87cb8fa2","name":"panel_7","type":"visualization"},{"id":"7cbe5900-82ab-11eb-ac13-d5ca87cb8fa2","name":"panel_8","type":"visualization"},{"id":"786546d0-82a5-11eb-ac13-d5ca87cb8fa2","name":"panel_9","type":"visualization"},{"id":"7546ac40-82a6-11eb-ac13-d5ca87cb8fa2","name":"panel_10","type":"visualization"},{"id":"21ff17c0-82a6-11eb-ac13-d5ca87cb8fa2","name":"panel_11","type":"visualization"},{"id":"142fb6c0-82a8-11eb-ac13-d5ca87cb8fa2","name":"panel_12","type":"visualization"},{"id":"5b4877b0-82a6-11eb-ac13-d5ca87cb8fa2","name":"panel_13","type":"visualization"},{"id":"1d8002d0-82a7-11eb-ac13-d5ca87cb8fa2","name":"panel_14","type":"visualization"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"dashboard","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MTMsMV0="} diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-misp.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-misp.json deleted file mode 100644 index ca77b093cfd..00000000000 --- a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-misp.json +++ /dev/null @@ -1,2099 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "MISP indicators ingested by the threat intel Filebeat module.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 589 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "dddbb2ed-b025-4bc3-b3a1-16f834da532b", - "w": 15, - "x": 0, - "y": 0 - }, - "panelIndex": "dddbb2ed-b025-4bc3-b3a1-16f834da532b", - "panelRefName": "panel_0", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 370 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "bb692014-ed24-441d-a717-d40025f46602", - "w": 10, - "x": 15, - "y": 0 - }, - "panelIndex": "bb692014-ed24-441d-a717-d40025f46602", - "panelRefName": "panel_1", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "fcc0d72f-70ee-4fac-b859-77326444f472", - "w": 14, - "x": 25, - "y": 0 - }, - "panelIndex": "fcc0d72f-70ee-4fac-b859-77326444f472", - "panelRefName": "panel_2", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "a3b70237-fbd4-43c6-96b6-ffb3c9266b55", - "w": 9, - "x": 39, - "y": 0 - }, - "panelIndex": "a3b70237-fbd4-43c6-96b6-ffb3c9266b55", - "panelRefName": "panel_3", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "table": null, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 814 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "c34da3b4-e3d8-4ade-85f2-1f2195aa9cdc", - "w": 19, - "x": 0, - "y": 18 - }, - "panelIndex": "c34da3b4-e3d8-4ade-85f2-1f2195aa9cdc", - "panelRefName": "panel_4", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 451 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "c23a8d34-62e3-42f2-912b-120251392d03", - "w": 12, - "x": 19, - "y": 18 - }, - "panelIndex": "c23a8d34-62e3-42f2-912b-120251392d03", - "panelRefName": "panel_5", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "a9e87eb5-f981-472c-9fb1-00f956c7ca1e", - "w": 9, - "x": 31, - "y": 18 - }, - "panelIndex": "a9e87eb5-f981-472c-9fb1-00f956c7ca1e", - "panelRefName": "panel_6", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "a47d65d3-01ef-4488-9c0d-2fbd23b923ad", - "w": 8, - "x": 40, - "y": 18 - }, - "panelIndex": "a47d65d3-01ef-4488-9c0d-2fbd23b923ad", - "panelRefName": "panel_7", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 324 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "c4010d5b-9082-453d-90a1-a4bc629f62a7", - "w": 10, - "x": 0, - "y": 36 - }, - "panelIndex": "c4010d5b-9082-453d-90a1-a4bc629f62a7", - "panelRefName": "panel_8", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 371 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "e59a30c1-97bb-4f16-81ba-9a9dc705fed6", - "w": 12, - "x": 10, - "y": 36 - }, - "panelIndex": "e59a30c1-97bb-4f16-81ba-9a9dc705fed6", - "panelRefName": "panel_9", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "vis": { - "params": { - "colWidth": [ - { - "colIndex": 0, - "width": 600.5 - } - ] - } - } - }, - "gridData": { - "h": 18, - "i": "1309e7f5-8554-4265-a8c4-9f8f00db8299", - "w": 14, - "x": 22, - "y": 36 - }, - "panelIndex": "1309e7f5-8554-4265-a8c4-9f8f00db8299", - "panelRefName": "panel_10", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "42cec04d-ab8e-4aa2-a78b-7c6a6d8b8798", - "w": 12, - "x": 36, - "y": 36 - }, - "panelIndex": "42cec04d-ab8e-4aa2-a78b-7c6a6d8b8798", - "panelRefName": "panel_11", - "version": "7.11.0" - } - ], - "timeRestore": false, - "title": "[Filebeat Threat Intel] MISP", - "version": 1 - }, - "id": "47e6fdc0-76b9-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "dashboard": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "7582b030-73c6-11eb-a3e3-b3cc7c78a70f", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "a09329d0-73c6-11eb-a3e3-b3cc7c78a70f", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "7c7d3750-73c3-11eb-a3e3-b3cc7c78a70f", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "418e5a30-73c2-11eb-a3e3-b3cc7c78a70f", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "c102b0f0-73c6-11eb-a3e3-b3cc7c78a70f", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "55b5c280-76b7-11eb-a3e3-b3cc7c78a70f", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "ad55b1e0-73c8-11eb-a3e3-b3cc7c78a70f", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "bf3dfde0-73c3-11eb-a3e3-b3cc7c78a70f", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "ec68c4a0-73c6-11eb-a3e3-b3cc7c78a70f", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "02294f80-73c7-11eb-a3e3-b3cc7c78a70f", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "1c969990-73c7-11eb-a3e3-b3cc7c78a70f", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "57faae10-73c5-11eb-a3e3-b3cc7c78a70f", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "dashboard", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNjMsMl0=" - }, - { - "attributes": { - "description": "MISP domain indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.misp" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.misp" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.domain" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.domain", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "MISP Domain Indicators [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "MISP Domain Indicator", - "field": "threatintel.indicator.domain", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "MISP Domain Indicators [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "7582b030-73c6-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNTIsMl0=" - }, - { - "attributes": { - "description": "MISP IP indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.misp" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.misp" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.ip" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.ip", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "MISP IP Indicators [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "MISP IP Indicator", - "field": "threatintel.indicator.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "MISP IP Indicators [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "a09329d0-73c6-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNTMsMl0=" - }, - { - "attributes": { - "description": "Types of MISP indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.misp" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.misp" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.type" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.type", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "MISP Indicator Type [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "threatintel.indicator.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": true, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "MISP Indicator Type [Filebeat Threat Intel]", - "type": "pie" - } - }, - "id": "7c7d3750-73c3-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNTQsMl0=" - }, - { - "attributes": { - "description": "Total number of Abuse URL indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.misp" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.misp" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "MISP Indicators [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "MISP Indicators" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "MISP Indicators [Filebeat Threat Intel]", - "type": "metric" - } - }, - "id": "418e5a30-73c2-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNTUsMl0=" - }, - { - "attributes": { - "description": "MISP URL indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.misp" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.misp" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.url.full" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.url.full", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "MISP URL Indicators [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "MISP URL Indicator", - "field": "threatintel.indicator.url.full", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "MISP URL Indicators [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "c102b0f0-73c6-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNTYsMl0=" - }, - { - "attributes": { - "description": "MISP tags for indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.misp" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.misp" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "tags" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "tags", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "MISP Tags [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "MISP Tags", - "field": "tags", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "MISP Tags [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "55b5c280-76b7-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNDIsMl0=" - }, - { - "attributes": { - "description": "TLP of MISP indicators ingested by the threat intel Filebeat module. Top 10 datasets.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "MISP Indicator TLP [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "colors": { - "green": "#7EB26D", - "white": "#E0F9D7" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Indicator Marking TLP", - "field": "threatintel.indicator.marking.tlp", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "threatintel.indicator.marking.tlp", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false - }, - "labels": { - "show": true - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "MISP Indicator TLP [Filebeat Threat Intel]", - "type": "histogram" - } - }, - "id": "ad55b1e0-73c8-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNTcsMl0=" - }, - { - "attributes": { - "description": "MISP indicator ingested by the threat intel Filebeat module has been published.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.misp" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.misp" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.misp.published" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.misp.published", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "MISP Indicator Published [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "colors": { - "true": "#7EB26D" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "threatintel.misp.published", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 3 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "labels": { - "last_level": true, - "show": true, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "MISP Indicator Published [Filebeat Threat Intel]", - "type": "pie" - } - }, - "id": "bf3dfde0-73c3-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNTgsMl0=" - }, - { - "attributes": { - "description": "MISP MD5 hash indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.misp" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.misp" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.file.hash.md5" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.file.hash.md5", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "MISP MD5 Hash Indicators [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "MISP MD5 Hash Indicator", - "field": "threatintel.indicator.file.hash.md5", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "MISP MD5 Hash Indicators [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "ec68c4a0-73c6-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNTksMl0=" - }, - { - "attributes": { - "description": "MISP SHA1 hash indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.misp" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.misp" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.file.hash.sha1" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.file.hash.sha1", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "MISP SHA1 Hash Indicators [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "MISP SHA1 Hash Indicator", - "field": "threatintel.indicator.file.hash.sha1", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "MISP SHA1 Hash Indicators [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "02294f80-73c7-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNjAsMl0=" - }, - { - "attributes": { - "description": "MISP SHA256 hash indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.misp" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.misp" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.file.hash.sha256" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.file.hash.sha256", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "MISP SHA256 Hash Indicators [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "MISP SHA256 Hash Indicator", - "field": "threatintel.indicator.file.hash.sha256", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showToolbar": false, - "showTotal": false, - "totalFunc": "sum" - }, - "title": "MISP SHA256 Hash Indicators [Filebeat Threat Intel]", - "type": "table" - } - }, - "id": "1c969990-73c7-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNjEsMl0=" - }, - { - "attributes": { - "description": "MISP provider for indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "threatintel.misp" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.dataset": "threatintel.misp" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.provider" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.provider", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "MISP Indicator Provider [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "colors": { - "misp": "#5195CE" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "threatintel.indicator.provider", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "MISP Indicator Provider [Filebeat Threat Intel]", - "type": "pie" - } - }, - "id": "57faae10-73c5-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyNjIsMl0=" - }, - { - "attributes": { - "color": "#a548ae", - "description": "Tag for indicators ingested by the Threat Intel Filebeat module.", - "name": "threat intel" - }, - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "namespaces": [ - "default" - ], - "references": [], - "type": "tag", - "updated_at": "2021-03-10T19:01:18.125Z", - "version": "WzIyMTcsMl0=" - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.module", - "negate": false, - "params": { - "query": "threatintel" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.module": "threatintel" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "event.category", - "negate": false, - "params": { - "query": "threat" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.category": "threat" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "key": "event.kind", - "negate": false, - "params": { - "query": "enrichment" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.kind": "enrichment" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index", - "key": "event.type", - "negate": false, - "params": { - "query": "indicator" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.type": "indicator" - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [], - "title": "All Logs [Filebeat Threat Intel] ECS", - "version": 1 - }, - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "search": "7.9.3" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2021-03-10T19:01:19.048Z", - "version": "WzIyMTksMl0=" - } - ], - "version": "7.11.1" -} diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-misp.ndjson b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-misp.ndjson new file mode 100644 index 00000000000..389bb64af3c --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-misp.ndjson @@ -0,0 +1,15 @@ +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"threatintel\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"threatintel\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.category\", \"negate\": false, \"params\": {\"query\": \"threat\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.category\": \"threat\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"enrichment\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"enrichment\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index\", \"key\": \"event.type\", \"negate\": false, \"params\": {\"query\": \"indicator\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.type\": \"indicator\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[],"title":"All Logs [Filebeat Threat Intel] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NjAsMV0="} +{"attributes":{"color":"#a548ae","description":"Tag for indicators ingested by the Threat Intel Filebeat module.","name":"threat intel"},"coreMigrationVersion":"8.0.0","id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","references":[],"type":"tag","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzksMV0="} +{"attributes":{"description":"MISP domain indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.domain\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.domain\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP Domain Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"MISP Domain Indicator\",\"field\":\"threatintel.indicator.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"MISP Domain Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"7582b030-73c6-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2MzIsMV0="} +{"attributes":{"description":"MISP IP indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.ip\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.ip\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP IP Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"MISP IP Indicator\",\"field\":\"threatintel.indicator.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"MISP IP Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"a09329d0-73c6-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2MzMsMV0="} +{"attributes":{"description":"Types of MISP indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.type\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.type\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP Indicator Type [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"threatintel.indicator.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"MISP Indicator Type [Filebeat Threat Intel]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"7c7d3750-73c3-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2MzQsMV0="} +{"attributes":{"description":"Total number of Abuse URL indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"MISP Indicators\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"MISP Indicators [Filebeat Threat Intel]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"418e5a30-73c2-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2MzUsMV0="} +{"attributes":{"description":"MISP URL indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.url.full\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.url.full\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP URL Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"MISP URL Indicator\",\"field\":\"threatintel.indicator.url.full\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"MISP URL Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"c102b0f0-73c6-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2MzYsMV0="} +{"attributes":{"description":"MISP tags for indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"tags\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"tags\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP Tags [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"MISP Tags\",\"field\":\"tags\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"MISP Tags [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"55b5c280-76b7-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2MzcsMV0="} +{"attributes":{"description":"TLP of MISP indicators ingested by the threat intel Filebeat module. Top 10 datasets.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP Indicator TLP [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"green\": \"#7EB26D\", \"white\": \"#E0F9D7\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Indicator Marking TLP\",\"field\":\"threatintel.indicator.marking.tlp\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"threatintel.indicator.marking.tlp\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":true},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"MISP Indicator TLP [Filebeat Threat Intel]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"ad55b1e0-73c8-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2MzgsMV0="} +{"attributes":{"description":"MISP indicator ingested by the threat intel Filebeat module has been published.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.misp.published\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.misp.published\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP Indicator Published [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"true\": \"#7EB26D\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"threatintel.misp.published\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":3},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"MISP Indicator Published [Filebeat Threat Intel]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"bf3dfde0-73c3-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2MzksMV0="} +{"attributes":{"description":"MISP MD5 hash indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.md5\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.md5\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP MD5 Hash Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"MISP MD5 Hash Indicator\",\"field\":\"threatintel.indicator.file.hash.md5\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"MISP MD5 Hash Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"ec68c4a0-73c6-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2NDAsMV0="} +{"attributes":{"description":"MISP SHA1 hash indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.sha1\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.sha1\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP SHA1 Hash Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"MISP SHA1 Hash Indicator\",\"field\":\"threatintel.indicator.file.hash.sha1\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"MISP SHA1 Hash Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"02294f80-73c7-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2NDEsMV0="} +{"attributes":{"description":"MISP SHA256 hash indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.sha256\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.sha256\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP SHA256 Hash Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"MISP SHA256 Hash Indicator\",\"field\":\"threatintel.indicator.file.hash.sha256\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"MISP SHA256 Hash Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"1c969990-73c7-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2NDIsMV0="} +{"attributes":{"description":"MISP provider for indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.provider\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.provider\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP Indicator Provider [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"misp\": \"#5195CE\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"threatintel.indicator.provider\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"MISP Indicator Provider [Filebeat Threat Intel]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"57faae10-73c5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2NDMsMV0="} +{"attributes":{"description":"MISP indicators ingested by the threat intel Filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":589}]}}},\"gridData\":{\"h\":18,\"i\":\"dddbb2ed-b025-4bc3-b3a1-16f834da532b\",\"w\":15,\"x\":0,\"y\":0},\"panelIndex\":\"dddbb2ed-b025-4bc3-b3a1-16f834da532b\",\"panelRefName\":\"panel_0\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":370}]}}},\"gridData\":{\"h\":18,\"i\":\"bb692014-ed24-441d-a717-d40025f46602\",\"w\":10,\"x\":15,\"y\":0},\"panelIndex\":\"bb692014-ed24-441d-a717-d40025f46602\",\"panelRefName\":\"panel_1\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"fcc0d72f-70ee-4fac-b859-77326444f472\",\"w\":14,\"x\":25,\"y\":0},\"panelIndex\":\"fcc0d72f-70ee-4fac-b859-77326444f472\",\"panelRefName\":\"panel_2\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"a3b70237-fbd4-43c6-96b6-ffb3c9266b55\",\"w\":9,\"x\":39,\"y\":0},\"panelIndex\":\"a3b70237-fbd4-43c6-96b6-ffb3c9266b55\",\"panelRefName\":\"panel_3\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"table\":null,\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":814}]}}},\"gridData\":{\"h\":18,\"i\":\"c34da3b4-e3d8-4ade-85f2-1f2195aa9cdc\",\"w\":19,\"x\":0,\"y\":18},\"panelIndex\":\"c34da3b4-e3d8-4ade-85f2-1f2195aa9cdc\",\"panelRefName\":\"panel_4\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":451}]}}},\"gridData\":{\"h\":18,\"i\":\"c23a8d34-62e3-42f2-912b-120251392d03\",\"w\":12,\"x\":19,\"y\":18},\"panelIndex\":\"c23a8d34-62e3-42f2-912b-120251392d03\",\"panelRefName\":\"panel_5\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"a9e87eb5-f981-472c-9fb1-00f956c7ca1e\",\"w\":9,\"x\":31,\"y\":18},\"panelIndex\":\"a9e87eb5-f981-472c-9fb1-00f956c7ca1e\",\"panelRefName\":\"panel_6\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"a47d65d3-01ef-4488-9c0d-2fbd23b923ad\",\"w\":8,\"x\":40,\"y\":18},\"panelIndex\":\"a47d65d3-01ef-4488-9c0d-2fbd23b923ad\",\"panelRefName\":\"panel_7\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":324}]}}},\"gridData\":{\"h\":18,\"i\":\"c4010d5b-9082-453d-90a1-a4bc629f62a7\",\"w\":10,\"x\":0,\"y\":36},\"panelIndex\":\"c4010d5b-9082-453d-90a1-a4bc629f62a7\",\"panelRefName\":\"panel_8\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":371}]}}},\"gridData\":{\"h\":18,\"i\":\"e59a30c1-97bb-4f16-81ba-9a9dc705fed6\",\"w\":12,\"x\":10,\"y\":36},\"panelIndex\":\"e59a30c1-97bb-4f16-81ba-9a9dc705fed6\",\"panelRefName\":\"panel_9\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":600.5}]}}},\"gridData\":{\"h\":18,\"i\":\"1309e7f5-8554-4265-a8c4-9f8f00db8299\",\"w\":14,\"x\":22,\"y\":36},\"panelIndex\":\"1309e7f5-8554-4265-a8c4-9f8f00db8299\",\"panelRefName\":\"panel_10\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"42cec04d-ab8e-4aa2-a78b-7c6a6d8b8798\",\"w\":12,\"x\":36,\"y\":36},\"panelIndex\":\"42cec04d-ab8e-4aa2-a78b-7c6a6d8b8798\",\"panelRefName\":\"panel_11\",\"version\":\"7.11.0\"}]","timeRestore":false,"title":"[Filebeat Threat Intel] MISP","version":1},"coreMigrationVersion":"8.0.0","id":"47e6fdc0-76b9-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"7582b030-73c6-11eb-a3e3-b3cc7c78a70f","name":"panel_0","type":"visualization"},{"id":"a09329d0-73c6-11eb-a3e3-b3cc7c78a70f","name":"panel_1","type":"visualization"},{"id":"7c7d3750-73c3-11eb-a3e3-b3cc7c78a70f","name":"panel_2","type":"visualization"},{"id":"418e5a30-73c2-11eb-a3e3-b3cc7c78a70f","name":"panel_3","type":"visualization"},{"id":"c102b0f0-73c6-11eb-a3e3-b3cc7c78a70f","name":"panel_4","type":"visualization"},{"id":"55b5c280-76b7-11eb-a3e3-b3cc7c78a70f","name":"panel_5","type":"visualization"},{"id":"ad55b1e0-73c8-11eb-a3e3-b3cc7c78a70f","name":"panel_6","type":"visualization"},{"id":"bf3dfde0-73c3-11eb-a3e3-b3cc7c78a70f","name":"panel_7","type":"visualization"},{"id":"ec68c4a0-73c6-11eb-a3e3-b3cc7c78a70f","name":"panel_8","type":"visualization"},{"id":"02294f80-73c7-11eb-a3e3-b3cc7c78a70f","name":"panel_9","type":"visualization"},{"id":"1c969990-73c7-11eb-a3e3-b3cc7c78a70f","name":"panel_10","type":"visualization"},{"id":"57faae10-73c5-11eb-a3e3-b3cc7c78a70f","name":"panel_11","type":"visualization"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"dashboard","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2MzEsMV0="} diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-overview.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-overview.json deleted file mode 100644 index eb8296194ed..00000000000 --- a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-overview.json +++ /dev/null @@ -1,2070 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Top-level metrics of indicators and datasets ingested by the threat intel Filebeat module.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 7, - "i": "0a8c6e54-3d3a-4e88-a230-75d7a3856154", - "w": 48, - "x": 0, - "y": 0 - }, - "panelIndex": "0a8c6e54-3d3a-4e88-a230-75d7a3856154", - "panelRefName": "panel_0a8c6e54-3d3a-4e88-a230-75d7a3856154", - "type": "visualization", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 15, - "i": "eed57854-9d6a-4373-ab79-aba5025ab5ed", - "w": 10, - "x": 0, - "y": 7 - }, - "panelIndex": "eed57854-9d6a-4373-ab79-aba5025ab5ed", - "panelRefName": "panel_eed57854-9d6a-4373-ab79-aba5025ab5ed", - "type": "visualization", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 15, - "i": "cecb5fce-b1c6-4121-a943-73c163554fff", - "w": 13, - "x": 30, - "y": 7 - }, - "panelIndex": "cecb5fce-b1c6-4121-a943-73c163554fff", - "panelRefName": "panel_cecb5fce-b1c6-4121-a943-73c163554fff", - "type": "visualization", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 15, - "i": "8c2caa0d-fedc-406b-a4cc-87c09ba9e929", - "w": 5, - "x": 43, - "y": 7 - }, - "panelIndex": "8c2caa0d-fedc-406b-a4cc-87c09ba9e929", - "panelRefName": "panel_8c2caa0d-fedc-406b-a4cc-87c09ba9e929", - "type": "visualization", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 15, - "i": "81f493cc-5459-4baf-b57a-295f290debf3", - "w": 8, - "x": 10, - "y": 7 - }, - "panelIndex": "81f493cc-5459-4baf-b57a-295f290debf3", - "panelRefName": "panel_81f493cc-5459-4baf-b57a-295f290debf3", - "type": "visualization", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 15, - "i": "c5d9284a-f44c-4cee-b9fd-9585dcaadc89", - "w": 12, - "x": 18, - "y": 7 - }, - "panelIndex": "c5d9284a-f44c-4cee-b9fd-9585dcaadc89", - "panelRefName": "panel_c5d9284a-f44c-4cee-b9fd-9585dcaadc89", - "type": "visualization", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 15, - "i": "8788d810-774f-4190-bc01-16fb04c0b38c", - "w": 19, - "x": 0, - "y": 22 - }, - "panelIndex": "8788d810-774f-4190-bc01-16fb04c0b38c", - "panelRefName": "panel_8788d810-774f-4190-bc01-16fb04c0b38c", - "type": "lens", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 15, - "i": "51db6286-e72d-4a6c-99f5-363f17bb333a", - "w": 10, - "x": 19, - "y": 22 - }, - "panelIndex": "51db6286-e72d-4a6c-99f5-363f17bb333a", - "panelRefName": "panel_51db6286-e72d-4a6c-99f5-363f17bb333a", - "type": "visualization", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 15, - "i": "4dbff662-ebdd-4b6d-910b-1b80bd4e9045", - "w": 19, - "x": 29, - "y": 22 - }, - "panelIndex": "4dbff662-ebdd-4b6d-910b-1b80bd4e9045", - "panelRefName": "panel_4dbff662-ebdd-4b6d-910b-1b80bd4e9045", - "type": "visualization", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 15, - "i": "f7fb86cb-c07f-4489-afaa-942bcacfedda", - "w": 19, - "x": 0, - "y": 37 - }, - "panelIndex": "f7fb86cb-c07f-4489-afaa-942bcacfedda", - "panelRefName": "panel_f7fb86cb-c07f-4489-afaa-942bcacfedda", - "type": "visualization", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 15, - "i": "e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264", - "w": 10, - "x": 19, - "y": 37 - }, - "panelIndex": "e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264", - "panelRefName": "panel_e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264", - "type": "visualization", - "version": "7.13.2" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 15, - "i": "ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce", - "w": 19, - "x": 29, - "y": 37 - }, - "panelIndex": "ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce", - "panelRefName": "panel_ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce", - "type": "visualization", - "version": "7.13.2" - } - ], - "timeRestore": false, - "title": "[Filebeat Threat Intel] Overview", - "version": 1 - }, - "coreMigrationVersion": "7.13.2", - "id": "ad9c7430-72de-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "dashboard": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "92961600-7621-11eb-a3e3-b3cc7c78a70f", - "name": "0a8c6e54-3d3a-4e88-a230-75d7a3856154:panel_0a8c6e54-3d3a-4e88-a230-75d7a3856154", - "type": "visualization" - }, - { - "id": "f13f5650-df5b-11eb-8f2b-753caedf727d", - "name": "eed57854-9d6a-4373-ab79-aba5025ab5ed:panel_eed57854-9d6a-4373-ab79-aba5025ab5ed", - "type": "visualization" - }, - { - "id": "1a1c60c0-72d5-11eb-a3e3-b3cc7c78a70f", - "name": "cecb5fce-b1c6-4121-a943-73c163554fff:panel_cecb5fce-b1c6-4121-a943-73c163554fff", - "type": "visualization" - }, - { - "id": "c049e1c0-72d5-11eb-a3e3-b3cc7c78a70f", - "name": "8c2caa0d-fedc-406b-a4cc-87c09ba9e929:panel_8c2caa0d-fedc-406b-a4cc-87c09ba9e929", - "type": "visualization" - }, - { - "id": "6ce04320-72d1-11eb-a3e3-b3cc7c78a70f", - "name": "81f493cc-5459-4baf-b57a-295f290debf3:panel_81f493cc-5459-4baf-b57a-295f290debf3", - "type": "visualization" - }, - { - "id": "81f16940-72d3-11eb-a3e3-b3cc7c78a70f", - "name": "c5d9284a-f44c-4cee-b9fd-9585dcaadc89:panel_c5d9284a-f44c-4cee-b9fd-9585dcaadc89", - "type": "visualization" - }, - { - "id": "9282afc0-72d9-11eb-a3e3-b3cc7c78a70f", - "name": "8788d810-774f-4190-bc01-16fb04c0b38c:panel_8788d810-774f-4190-bc01-16fb04c0b38c", - "type": "lens" - }, - { - "id": "f9f89660-72d9-11eb-a3e3-b3cc7c78a70f", - "name": "51db6286-e72d-4a6c-99f5-363f17bb333a:panel_51db6286-e72d-4a6c-99f5-363f17bb333a", - "type": "visualization" - }, - { - "id": "9047e8b0-72de-11eb-a3e3-b3cc7c78a70f", - "name": "4dbff662-ebdd-4b6d-910b-1b80bd4e9045:panel_4dbff662-ebdd-4b6d-910b-1b80bd4e9045", - "type": "visualization" - }, - { - "id": "b9aa1d70-72db-11eb-a3e3-b3cc7c78a70f", - "name": "f7fb86cb-c07f-4489-afaa-942bcacfedda:panel_f7fb86cb-c07f-4489-afaa-942bcacfedda", - "type": "visualization" - }, - { - "id": "aebde030-72d2-11eb-a3e3-b3cc7c78a70f", - "name": "e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264:panel_e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264", - "type": "visualization" - }, - { - "id": "c813c5d0-72dd-11eb-a3e3-b3cc7c78a70f", - "name": "ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce:panel_ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce", - "type": "visualization" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "dashboard", - "updated_at": "2021-07-08T18:07:38.586Z", - "version": "WzgzNywxXQ==" - }, - { - "attributes": { - "description": "Feed and provider selector for indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Feed and Indicator Selector [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "event.dataset", - "id": "1614117070660", - "indexPatternRefName": "control_0_index_pattern", - "label": "Feed Name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "threatintel.indicator.provider", - "id": "1614117093181", - "indexPatternRefName": "control_1_index_pattern", - "label": "Indicator Provider", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "threatintel.indicator.type", - "id": "1614117117360", - "indexPatternRefName": "control_2_index_pattern", - "label": "Indicator Type", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": false, - "useTimeFilter": false - }, - "title": "Feed and Indicator Selector [Filebeat Threat Intel]", - "type": "input_control_vis" - } - }, - "coreMigrationVersion": "7.13.2", - "id": "92961600-7621-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-07-08T18:07:38.586Z", - "version": "WzgyNCwxXQ==" - }, - { - "attributes": { - "description": "Navigation pane for the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Threat Intel Module Navigation [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "**Filebeat Threat Intel Module Navigation**\n\n[Abuse Malware Overview](#/dashboard/5ba16340-72e6-11eb-a3e3-b3cc7c78a70f) \n[Abuse URL Overview](#/dashboard/65fa6bc0-72f0-11eb-a3e3-b3cc7c78a70f) \n[AlienVault Overview](#/dashboard/53e4e630-76cf-11eb-a3e3-b3cc7c78a70f) \n[Anomali Overview](#/dashboard/68c48a30-739e-11eb-a3e3-b3cc7c78a70f) \n[Malware Bazaar Overview](#/dashboard/dee7be00-82ab-11eb-ac13-d5ca87cb8fa2) \n[MISP Overview](#/dashboard/47e6fdc0-76b9-11eb-a3e3-b3cc7c78a70f) \n[Recorded Future Overview](#/dashboard/894dd3e0-df57-11eb-8f2b-753caedf727d) ", - "openLinksInNewTab": false - }, - "title": "Threat Intel Module Navigation [Filebeat Threat Intel]", - "type": "markdown" - } - }, - "coreMigrationVersion": "7.13.2", - "id": "f13f5650-df5b-11eb-8f2b-753caedf727d", - "migrationVersion": { - "visualization": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-07-08T18:07:38.586Z", - "version": "WzgyNSwxXQ==" - }, - { - "attributes": { - "description": "Types of indicators by dataset ingested by the threat intel Filebeat module. Top 10 datasets and top 10 indicator types.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "event.dataset" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "type": "exists", - "value": "exists" - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.type" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "threatintel.indicator.type", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Indicator Type per Dataset [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.dataset", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "threatintel.indicator.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": true, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Indicator Type per Dataset [Filebeat Threat Intel]", - "type": "pie" - } - }, - "coreMigrationVersion": "7.13.2", - "id": "1a1c60c0-72d5-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-07-08T18:07:38.586Z", - "version": "WzgyNywxXQ==" - }, - { - "attributes": { - "description": "Total number of datasets reflected by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "event.dataset" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Total Datasets [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Total Datasets", - "field": "event.dataset" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Total Datasets [Filebeat Threat Intel]", - "type": "metric" - } - }, - "coreMigrationVersion": "7.13.2", - "id": "c049e1c0-72d5-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-07-08T18:07:38.586Z", - "version": "WzgyOCwxXQ==" - }, - { - "attributes": { - "description": "Total number of indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "event.dataset" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Total Indicators [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Total Indicators" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Total Indicators [Filebeat Threat Intel]", - "type": "metric" - } - }, - "coreMigrationVersion": "7.13.2", - "id": "6ce04320-72d1-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-07-08T18:07:38.586Z", - "version": "WzgyOSwxXQ==" - }, - { - "attributes": { - "description": "Total number of indicators by dataset ingested by the threat intel Filebeat module. Top 10 datasets.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "event.dataset" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Total Indicators per Dataset [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.dataset", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": true, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Total Indicators per Dataset [Filebeat Threat Intel]", - "type": "pie" - } - }, - "coreMigrationVersion": "7.13.2", - "id": "81f16940-72d3-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-07-08T18:07:38.586Z", - "version": "WzgzMCwxXQ==" - }, - { - "attributes": { - "description": "Total number of indicators by type ingested by the threat intel Filebeat module. Top 10 types.", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "9e3d1f18-6e1e-4e13-8b0b-9b17d12a15f2": { - "columnOrder": [ - "a6319ec8-2ec8-4d3a-bc54-efe0a306786f", - "1e5c28a2-6405-44ee-bdf1-8bdd03bdf919" - ], - "columns": { - "1e5c28a2-6405-44ee-bdf1-8bdd03bdf919": { - "dataType": "number", - "isBucketed": false, - "label": "Count of records", - "operationType": "count", - "scale": "ratio", - "sourceField": "Records" - }, - "a6319ec8-2ec8-4d3a-bc54-efe0a306786f": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of threatintel.indicator.type", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "1e5c28a2-6405-44ee-bdf1-8bdd03bdf919", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "threatintel.indicator.type" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "filter-index-pattern-0", - "key": "event.module", - "negate": false, - "params": { - "query": "threatintel" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.module": "threatintel" - } - } - }, - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.type" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "filter-index-pattern-1", - "key": "threatintel.indicator.type", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "layers": [ - { - "categoryDisplay": "default", - "groups": [ - "a6319ec8-2ec8-4d3a-bc54-efe0a306786f" - ], - "layerId": "9e3d1f18-6e1e-4e13-8b0b-9b17d12a15f2", - "legendDisplay": "show", - "metric": "1e5c28a2-6405-44ee-bdf1-8bdd03bdf919", - "nestedLegend": false, - "numberDisplay": "value", - "percentDecimals": 2 - } - ], - "palette": { - "name": "default", - "type": "palette" - }, - "shape": "treemap" - } - }, - "title": "Total Indicators per Type [Filebeat Threat Intel]", - "visualizationType": "lnsPie" - }, - "coreMigrationVersion": "7.13.2", - "id": "9282afc0-72d9-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "lens": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "indexpattern-datasource-layer-9e3d1f18-6e1e-4e13-8b0b-9b17d12a15f2", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "filter-index-pattern-0", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "filter-index-pattern-1", - "type": "index-pattern" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "lens", - "updated_at": "2021-07-08T18:07:38.586Z", - "version": "WzgzMSwxXQ==" - }, - { - "attributes": { - "description": "Tags for indicators ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Indicator Tag Cloud [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "exclude": "forwarded|threatintel-anomali|threatintel-otx|threatintel-abuseurls|threatintel-abusemalware", - "field": "tags", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "maxFontSize": 30, - "minFontSize": 5, - "orientation": "single", - "scale": "linear", - "showLabel": false - }, - "title": "Indicator Tag Cloud [Filebeat Threat Intel]", - "type": "tagcloud" - } - }, - "coreMigrationVersion": "7.13.2", - "id": "f9f89660-72d9-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-07-08T18:07:38.586Z", - "version": "WzgzMiwxXQ==" - }, - { - "attributes": { - "description": "Total number of indicators by provider ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Total Indicators per Provider [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "colors": { - "Count": "#806EB7" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Threat Indicator Provider", - "field": "threatintel.indicator.provider", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 200 - }, - "position": "left", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "detailedTooltip": true, - "grid": { - "categoryLines": false, - "valueAxis": "ValueAxis-1" - }, - "isVislibVis": true, - "labels": { - "show": true - }, - "legendPosition": "right", - "palette": { - "name": "kibana_palette", - "type": "palette" - }, - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": true, - "rotate": 75, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "bottom", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Total Indicators per Provider [Filebeat Threat Intel]", - "type": "horizontal_bar" - } - }, - "coreMigrationVersion": "7.13.2", - "id": "9047e8b0-72de-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-07-08T18:07:38.586Z", - "version": "WzgzMywxXQ==" - }, - { - "attributes": { - "description": "Timeline of indicators by dataset ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "event.dataset" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Indicator Ingest Timeline per Dataset [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Indicators per Dataset" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Ingest Timestamp", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "now-90d", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "event.dataset", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "detailedTooltip": true, - "fittingFunction": "zero", - "grid": { - "categoryLines": false - }, - "isVislibVis": true, - "labels": {}, - "legendPosition": "right", - "palette": { - "name": "kibana_palette", - "type": "palette" - }, - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Indicators per Dataset" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "lineWidth": 2, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Indicators per Dataset" - }, - "type": "value" - } - ] - }, - "title": "Indicator Ingest Timeline per Dataset [Filebeat Threat Intel]", - "type": "area" - } - }, - "coreMigrationVersion": "7.13.2", - "id": "b9aa1d70-72db-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-07-08T18:07:38.586Z", - "version": "WzgzNCwxXQ==" - }, - { - "attributes": { - "description": "TLP of indicators ingested by the threat intel Filebeat module. Top 10 datasets.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.marking.tlp" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "threatintel.indicator.marking.tlp", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Indicator TLP [Filebeat Threat Intel]", - "uiStateJSON": { - "vis": { - "colors": { - "green": "#7EB26D", - "white": "#E0F9D7" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Indicator Marking TLP", - "field": "threatintel.indicator.marking.tlp", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "threatintel.indicator.marking.tlp", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "detailedTooltip": true, - "grid": { - "categoryLines": false - }, - "isVislibVis": true, - "labels": { - "show": true - }, - "legendPosition": "right", - "palette": { - "name": "kibana_palette", - "type": "palette" - }, - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Indicator TLP [Filebeat Threat Intel]", - "type": "histogram" - } - }, - "coreMigrationVersion": "7.13.2", - "id": "aebde030-72d2-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-07-08T18:07:38.586Z", - "version": "WzgzNSwxXQ==" - }, - { - "attributes": { - "description": "Timeline of indicators by type ingested by the threat intel Filebeat module.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "threatintel.indicator.type" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "threatintel.indicator.type", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Indicator Ingest Timeline per Type [Filebeat Threat Intel]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Count of Indicator by Type" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Ingest Timestamp", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "now-90d", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "threatintel.indicator.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "detailedTooltip": true, - "fittingFunction": "zero", - "grid": { - "categoryLines": false - }, - "isVislibVis": true, - "labels": {}, - "legendPosition": "right", - "palette": { - "name": "kibana_palette", - "type": "palette" - }, - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count of Indicator by Type" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "lineWidth": 2, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "area", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "area", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count of Indicator by Type" - }, - "type": "value" - } - ] - }, - "title": "Indicator Ingest Timeline per Type [Filebeat Threat Intel]", - "type": "area" - } - }, - "coreMigrationVersion": "7.13.2", - "id": "c813c5d0-72dd-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "visualization": "7.13.1" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "name": "search_0", - "type": "search" - }, - { - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "type": "tag" - } - ], - "type": "visualization", - "updated_at": "2021-07-08T18:07:38.586Z", - "version": "WzgzNiwxXQ==" - }, - { - "attributes": { - "color": "#a548ae", - "description": "Tag for indicators ingested by the Threat Intel Filebeat module.", - "name": "threat intel" - }, - "coreMigrationVersion": "7.13.2", - "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", - "namespaces": [ - "default" - ], - "references": [], - "type": "tag", - "updated_at": "2021-07-08T18:07:38.586Z", - "version": "WzgyMywxXQ==" - }, - { - "attributes": { - "columns": [ - "_source" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.module", - "negate": false, - "params": { - "query": "threatintel" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.module": "threatintel" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "event.category", - "negate": false, - "params": { - "query": "threat" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.category": "threat" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "key": "event.kind", - "negate": false, - "params": { - "query": "enrichment" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.kind": "enrichment" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index", - "key": "event.type", - "negate": false, - "params": { - "query": "indicator" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.type": "indicator" - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [], - "title": "All Logs [Filebeat Threat Intel] ECS", - "version": 1 - }, - "coreMigrationVersion": "7.13.2", - "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", - "migrationVersion": { - "search": "7.9.3" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", - "type": "index-pattern" - }, - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2021-07-08T18:07:38.586Z", - "version": "WzgyNiwxXQ==" - } - ], - "version": "7.13.2" -} diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-overview.ndjson b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-overview.ndjson new file mode 100644 index 00000000000..d3fd51cc53d --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-overview.ndjson @@ -0,0 +1,15 @@ +{"attributes":{"color":"#a548ae","description":"Tag for indicators ingested by the Threat Intel Filebeat module.","name":"threat intel"},"coreMigrationVersion":"8.0.0","id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","references":[],"type":"tag","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzksMV0="} +{"attributes":{"description":"Feed and provider selector for indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Feed and Indicator Selector [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"event.dataset\",\"id\":\"1614117070660\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Feed Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"threatintel.indicator.provider\",\"id\":\"1614117093181\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Indicator Provider\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"threatintel.indicator.type\",\"id\":\"1614117117360\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Indicator Type\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Feed and Indicator Selector [Filebeat Threat Intel]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"92961600-7621-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"control_2_index_pattern","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NDcsMV0="} +{"attributes":{"description":"Navigation pane for the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Threat Intel Module Navigation [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Filebeat Threat Intel Module Navigation**\\n\\n[Abuse Malware Overview](#/dashboard/5ba16340-72e6-11eb-a3e3-b3cc7c78a70f) \\n[Abuse URL Overview](#/dashboard/65fa6bc0-72f0-11eb-a3e3-b3cc7c78a70f) \\n[AlienVault Overview](#/dashboard/53e4e630-76cf-11eb-a3e3-b3cc7c78a70f) \\n[Anomali Overview](#/dashboard/68c48a30-739e-11eb-a3e3-b3cc7c78a70f) \\n[Malware Bazaar Overview](#/dashboard/dee7be00-82ab-11eb-ac13-d5ca87cb8fa2) \\n[MISP Overview](#/dashboard/47e6fdc0-76b9-11eb-a3e3-b3cc7c78a70f) \\n[Recorded Future Overview](#/dashboard/894dd3e0-df57-11eb-8f2b-753caedf727d) \",\"openLinksInNewTab\":false},\"title\":\"Threat Intel Module Navigation [Filebeat Threat Intel]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"f13f5650-df5b-11eb-8f2b-753caedf727d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NDgsMV0="} +{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"threatintel\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"threatintel\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.category\", \"negate\": false, \"params\": {\"query\": \"threat\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.category\": \"threat\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"enrichment\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"enrichment\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index\", \"key\": \"event.type\", \"negate\": false, \"params\": {\"query\": \"indicator\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.type\": \"indicator\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[],"title":"All Logs [Filebeat Threat Intel] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NjAsMV0="} +{"attributes":{"description":"Types of indicators by dataset ingested by the threat intel Filebeat module. Top 10 datasets and top 10 indicator types.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"event.dataset\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.type\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.type\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Indicator Type per Dataset [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.dataset\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"threatintel.indicator.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Indicator Type per Dataset [Filebeat Threat Intel]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"1a1c60c0-72d5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NDksMV0="} +{"attributes":{"description":"Total number of datasets reflected by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"event.dataset\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Total Datasets [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total Datasets\",\"field\":\"event.dataset\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total Datasets [Filebeat Threat Intel]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"c049e1c0-72d5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NTAsMV0="} +{"attributes":{"description":"Total number of indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"event.dataset\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Total Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total Indicators\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total Indicators [Filebeat Threat Intel]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"6ce04320-72d1-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NTEsMV0="} +{"attributes":{"description":"Total number of indicators by dataset ingested by the threat intel Filebeat module. Top 10 datasets.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"event.dataset\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Total Indicators per Dataset [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.dataset\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Total Indicators per Dataset [Filebeat Threat Intel]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"81f16940-72d3-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NTIsMV0="} +{"attributes":{"description":"Total number of indicators by type ingested by the threat intel Filebeat module. Top 10 types.","state":{"datasourceStates":{"indexpattern":{"layers":{"9e3d1f18-6e1e-4e13-8b0b-9b17d12a15f2":{"columnOrder":["a6319ec8-2ec8-4d3a-bc54-efe0a306786f","1e5c28a2-6405-44ee-bdf1-8bdd03bdf919"],"columns":{"1e5c28a2-6405-44ee-bdf1-8bdd03bdf919":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"a6319ec8-2ec8-4d3a-bc54-efe0a306786f":{"dataType":"string","isBucketed":true,"label":"Top values of threatintel.indicator.type","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"1e5c28a2-6405-44ee-bdf1-8bdd03bdf919","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.type"}},"incompleteColumns":{}}}}},"filters":[{"$state":{"store":"appState"},"meta":{"alias":null,"disabled":false,"indexRefName":"filter-index-pattern-0","key":"event.module","negate":false,"params":{"query":"threatintel"},"type":"phrase"},"query":{"match_phrase":{"event.module":"threatintel"}}},{"$state":{"store":"appState"},"exists":{"field":"threatintel.indicator.type"},"meta":{"alias":null,"disabled":false,"indexRefName":"filter-index-pattern-1","key":"threatintel.indicator.type","negate":false,"type":"exists","value":"exists"}}],"query":{"language":"kuery","query":""},"visualization":{"layers":[{"categoryDisplay":"default","groups":["a6319ec8-2ec8-4d3a-bc54-efe0a306786f"],"layerId":"9e3d1f18-6e1e-4e13-8b0b-9b17d12a15f2","legendDisplay":"show","metric":"1e5c28a2-6405-44ee-bdf1-8bdd03bdf919","nestedLegend":false,"numberDisplay":"value","percentDecimals":2}],"palette":{"name":"default","type":"palette"},"shape":"treemap"}},"title":"Total Indicators per Type [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"9282afc0-72d9-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-9e3d1f18-6e1e-4e13-8b0b-9b17d12a15f2","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-0","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-1","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NTMsMV0="} +{"attributes":{"description":"Tags for indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Indicator Tag Cloud [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"exclude\":\"forwarded|threatintel-anomali|threatintel-otx|threatintel-abuseurls|threatintel-abusemalware\",\"field\":\"tags\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":30,\"minFontSize\":5,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Indicator Tag Cloud [Filebeat Threat Intel]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"f9f89660-72d9-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NTQsMV0="} +{"attributes":{"description":"Total number of indicators by provider ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Total Indicators per Provider [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"Count\": \"#806EB7\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Threat Indicator Provider\",\"field\":\"threatintel.indicator.provider\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"detailedTooltip\":true,\"grid\":{\"categoryLines\":false,\"valueAxis\":\"ValueAxis-1\"},\"isVislibVis\":true,\"labels\":{\"show\":true},\"legendPosition\":\"right\",\"palette\":{\"name\":\"kibana_palette\",\"type\":\"palette\"},\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}]},\"title\":\"Total Indicators per Provider [Filebeat Threat Intel]\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"9047e8b0-72de-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NTUsMV0="} +{"attributes":{"description":"Timeline of indicators by dataset ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"event.dataset\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Indicator Ingest Timeline per Dataset [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Indicators per Dataset\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Ingest Timestamp\",\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-90d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.dataset\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"detailedTooltip\":true,\"fittingFunction\":\"zero\",\"grid\":{\"categoryLines\":false},\"isVislibVis\":true,\"labels\":{},\"legendPosition\":\"right\",\"palette\":{\"name\":\"kibana_palette\",\"type\":\"palette\"},\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Indicators per Dataset\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Indicators per Dataset\"},\"type\":\"value\"}]},\"title\":\"Indicator Ingest Timeline per Dataset [Filebeat Threat Intel]\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"b9aa1d70-72db-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NTYsMV0="} +{"attributes":{"description":"TLP of indicators ingested by the threat intel Filebeat module. Top 10 datasets.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.marking.tlp\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"threatintel.indicator.marking.tlp\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Indicator TLP [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"green\": \"#7EB26D\", \"white\": \"#E0F9D7\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Indicator Marking TLP\",\"field\":\"threatintel.indicator.marking.tlp\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"threatintel.indicator.marking.tlp\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"detailedTooltip\":true,\"grid\":{\"categoryLines\":false},\"isVislibVis\":true,\"labels\":{\"show\":true},\"legendPosition\":\"right\",\"palette\":{\"name\":\"kibana_palette\",\"type\":\"palette\"},\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}]},\"title\":\"Indicator TLP [Filebeat Threat Intel]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"aebde030-72d2-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NTcsMV0="} +{"attributes":{"description":"Timeline of indicators by type ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.type\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"threatintel.indicator.type\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Indicator Ingest Timeline per Type [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Count of Indicator by Type\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Ingest Timestamp\",\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-90d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"threatintel.indicator.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"detailedTooltip\":true,\"fittingFunction\":\"zero\",\"grid\":{\"categoryLines\":false},\"isVislibVis\":true,\"labels\":{},\"legendPosition\":\"right\",\"palette\":{\"name\":\"kibana_palette\",\"type\":\"palette\"},\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count of Indicator by Type\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count of Indicator by Type\"},\"type\":\"value\"}]},\"title\":\"Indicator Ingest Timeline per Type [Filebeat Threat Intel]\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"c813c5d0-72dd-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NTgsMV0="} +{"attributes":{"description":"Top-level metrics of indicators and datasets ingested by the threat intel Filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":7,\"i\":\"0a8c6e54-3d3a-4e88-a230-75d7a3856154\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"0a8c6e54-3d3a-4e88-a230-75d7a3856154\",\"panelRefName\":\"panel_0a8c6e54-3d3a-4e88-a230-75d7a3856154\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"eed57854-9d6a-4373-ab79-aba5025ab5ed\",\"w\":10,\"x\":0,\"y\":7},\"panelIndex\":\"eed57854-9d6a-4373-ab79-aba5025ab5ed\",\"panelRefName\":\"panel_eed57854-9d6a-4373-ab79-aba5025ab5ed\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"cecb5fce-b1c6-4121-a943-73c163554fff\",\"w\":13,\"x\":30,\"y\":7},\"panelIndex\":\"cecb5fce-b1c6-4121-a943-73c163554fff\",\"panelRefName\":\"panel_cecb5fce-b1c6-4121-a943-73c163554fff\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"8c2caa0d-fedc-406b-a4cc-87c09ba9e929\",\"w\":5,\"x\":43,\"y\":7},\"panelIndex\":\"8c2caa0d-fedc-406b-a4cc-87c09ba9e929\",\"panelRefName\":\"panel_8c2caa0d-fedc-406b-a4cc-87c09ba9e929\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"81f493cc-5459-4baf-b57a-295f290debf3\",\"w\":8,\"x\":10,\"y\":7},\"panelIndex\":\"81f493cc-5459-4baf-b57a-295f290debf3\",\"panelRefName\":\"panel_81f493cc-5459-4baf-b57a-295f290debf3\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"c5d9284a-f44c-4cee-b9fd-9585dcaadc89\",\"w\":12,\"x\":18,\"y\":7},\"panelIndex\":\"c5d9284a-f44c-4cee-b9fd-9585dcaadc89\",\"panelRefName\":\"panel_c5d9284a-f44c-4cee-b9fd-9585dcaadc89\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"8788d810-774f-4190-bc01-16fb04c0b38c\",\"w\":19,\"x\":0,\"y\":22},\"panelIndex\":\"8788d810-774f-4190-bc01-16fb04c0b38c\",\"panelRefName\":\"panel_8788d810-774f-4190-bc01-16fb04c0b38c\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"51db6286-e72d-4a6c-99f5-363f17bb333a\",\"w\":10,\"x\":19,\"y\":22},\"panelIndex\":\"51db6286-e72d-4a6c-99f5-363f17bb333a\",\"panelRefName\":\"panel_51db6286-e72d-4a6c-99f5-363f17bb333a\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"4dbff662-ebdd-4b6d-910b-1b80bd4e9045\",\"w\":19,\"x\":29,\"y\":22},\"panelIndex\":\"4dbff662-ebdd-4b6d-910b-1b80bd4e9045\",\"panelRefName\":\"panel_4dbff662-ebdd-4b6d-910b-1b80bd4e9045\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"f7fb86cb-c07f-4489-afaa-942bcacfedda\",\"w\":19,\"x\":0,\"y\":37},\"panelIndex\":\"f7fb86cb-c07f-4489-afaa-942bcacfedda\",\"panelRefName\":\"panel_f7fb86cb-c07f-4489-afaa-942bcacfedda\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264\",\"w\":10,\"x\":19,\"y\":37},\"panelIndex\":\"e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264\",\"panelRefName\":\"panel_e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce\",\"w\":19,\"x\":29,\"y\":37},\"panelIndex\":\"ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce\",\"panelRefName\":\"panel_ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce\",\"type\":\"visualization\",\"version\":\"7.13.2\"}]","timeRestore":false,"title":"[Filebeat Threat Intel] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"ad9c7430-72de-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"92961600-7621-11eb-a3e3-b3cc7c78a70f","name":"0a8c6e54-3d3a-4e88-a230-75d7a3856154:panel_0a8c6e54-3d3a-4e88-a230-75d7a3856154","type":"visualization"},{"id":"f13f5650-df5b-11eb-8f2b-753caedf727d","name":"eed57854-9d6a-4373-ab79-aba5025ab5ed:panel_eed57854-9d6a-4373-ab79-aba5025ab5ed","type":"visualization"},{"id":"1a1c60c0-72d5-11eb-a3e3-b3cc7c78a70f","name":"cecb5fce-b1c6-4121-a943-73c163554fff:panel_cecb5fce-b1c6-4121-a943-73c163554fff","type":"visualization"},{"id":"c049e1c0-72d5-11eb-a3e3-b3cc7c78a70f","name":"8c2caa0d-fedc-406b-a4cc-87c09ba9e929:panel_8c2caa0d-fedc-406b-a4cc-87c09ba9e929","type":"visualization"},{"id":"6ce04320-72d1-11eb-a3e3-b3cc7c78a70f","name":"81f493cc-5459-4baf-b57a-295f290debf3:panel_81f493cc-5459-4baf-b57a-295f290debf3","type":"visualization"},{"id":"81f16940-72d3-11eb-a3e3-b3cc7c78a70f","name":"c5d9284a-f44c-4cee-b9fd-9585dcaadc89:panel_c5d9284a-f44c-4cee-b9fd-9585dcaadc89","type":"visualization"},{"id":"9282afc0-72d9-11eb-a3e3-b3cc7c78a70f","name":"8788d810-774f-4190-bc01-16fb04c0b38c:panel_8788d810-774f-4190-bc01-16fb04c0b38c","type":"lens"},{"id":"f9f89660-72d9-11eb-a3e3-b3cc7c78a70f","name":"51db6286-e72d-4a6c-99f5-363f17bb333a:panel_51db6286-e72d-4a6c-99f5-363f17bb333a","type":"visualization"},{"id":"9047e8b0-72de-11eb-a3e3-b3cc7c78a70f","name":"4dbff662-ebdd-4b6d-910b-1b80bd4e9045:panel_4dbff662-ebdd-4b6d-910b-1b80bd4e9045","type":"visualization"},{"id":"b9aa1d70-72db-11eb-a3e3-b3cc7c78a70f","name":"f7fb86cb-c07f-4489-afaa-942bcacfedda:panel_f7fb86cb-c07f-4489-afaa-942bcacfedda","type":"visualization"},{"id":"aebde030-72d2-11eb-a3e3-b3cc7c78a70f","name":"e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264:panel_e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264","type":"visualization"},{"id":"c813c5d0-72dd-11eb-a3e3-b3cc7c78a70f","name":"ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce:panel_ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce","type":"visualization"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"dashboard","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NDYsMV0="} diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-recordedfuture.ndjson b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-recordedfuture.ndjson new file mode 100644 index 00000000000..3dfcfe31b11 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-recordedfuture.ndjson @@ -0,0 +1,19 @@ +{"attributes":{"color":"#a548ae","description":"Tag for indicators ingested by the Threat Intel Filebeat module.","name":"threat intel"},"coreMigrationVersion":"8.0.0","id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","references":[],"type":"tag","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzksMV0="} +{"attributes":{"description":"Recorded Future indicator type ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["7b2420d3-1149-4f18-a114-e984e3c701f3","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"7b2420d3-1149-4f18-a114-e984e3c701f3":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future Indicator Type","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":5},"scale":"ordinal","sourceField":"threatintel.indicator.type"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"layers":[{"categoryDisplay":"default","groups":["7b2420d3-1149-4f18-a114-e984e3c701f3","7b2420d3-1149-4f18-a114-e984e3c701f3","7b2420d3-1149-4f18-a114-e984e3c701f3"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","legendDisplay":"default","metric":"9afb1b09-0f20-488c-9242-a94f7d11800b","nestedLegend":false,"numberDisplay":"percent"}],"shape":"donut"}},"title":"Recorded Future Indicator Type [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"037e2af0-df50-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NjIsMV0="} +{"attributes":{"description":"Recorded Future risk criticality for indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["642d5400-4a72-4116-b752-58df5138392a","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"642d5400-4a72-4116-b752-58df5138392a":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future Risk Criticality","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.recordedfuture.risk.criticalityLabel"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\""},"visualization":{"layers":[{"categoryDisplay":"default","groups":["642d5400-4a72-4116-b752-58df5138392a"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","legendDisplay":"default","metric":"9afb1b09-0f20-488c-9242-a94f7d11800b","nestedLegend":false,"numberDisplay":"percent"}],"shape":"donut"}},"title":"Recorded Future Risk Criticality [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"b0837690-df52-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NjMsMV0="} +{"attributes":{"description":"Recorded Future indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"27155b23-ab24-4f18-b7dd-159f339e5e9b":{"columnOrder":["7a45df79-3fa9-480a-95f4-7f287a386b7d"],"columns":{"7a45df79-3fa9-480a-95f4-7f287a386b7d":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Recorded Future Indicators","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"accessor":"7a45df79-3fa9-480a-95f4-7f287a386b7d","layerId":"27155b23-ab24-4f18-b7dd-159f339e5e9b"}},"title":"Recorded Future Indicators [Filebeat Threat Intel]","visualizationType":"lnsMetric"},"coreMigrationVersion":"8.0.0","id":"176bf800-df58-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-27155b23-ab24-4f18-b7dd-159f339e5e9b","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NjQsMV0="} +{"attributes":{"description":"Recorded Future indicator risk score ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["7b2420d3-1149-4f18-a114-e984e3c701f3","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"7b2420d3-1149-4f18-a114-e984e3c701f3":{"customLabel":true,"dataType":"number","isBucketed":true,"label":"Recorded Future Risk Score","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":5},"scale":"ordinal","sourceField":"event.risk_score"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"layers":[{"categoryDisplay":"default","groups":["7b2420d3-1149-4f18-a114-e984e3c701f3","7b2420d3-1149-4f18-a114-e984e3c701f3","7b2420d3-1149-4f18-a114-e984e3c701f3","7b2420d3-1149-4f18-a114-e984e3c701f3"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","legendDisplay":"default","metric":"9afb1b09-0f20-488c-9242-a94f7d11800b","nestedLegend":false,"numberDisplay":"percent"}],"shape":"donut"}},"title":"Recorded Future Risk Score [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"4bcc4cb0-df50-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NjUsMV0="} +{"attributes":{"description":"Recorded Future risk summary for indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["642d5400-4a72-4116-b752-58df5138392a","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"642d5400-4a72-4116-b752-58df5138392a":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future Risk Summary","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.recordedfuture.risk.riskSummary"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\""},"visualization":{"columns":[{"columnId":"642d5400-4a72-4116-b752-58df5138392a","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future Risk Summary [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"949bc180-df52-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NjYsMV0="} +{"attributes":{"description":"Recorded Future intel cards for indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["642d5400-4a72-4116-b752-58df5138392a","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"642d5400-4a72-4116-b752-58df5138392a":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future Intel Card","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"event.reference"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\""},"visualization":{"columns":[{"columnId":"642d5400-4a72-4116-b752-58df5138392a","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future Intel Cards [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"7ed4ce00-df52-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NjcsMV0="} +{"attributes":{"description":"Recorded Future indicators over time ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"98644301-1cd1-4e54-9f5b-71a1cbcdd8c8":{"columnOrder":["8f48381c-5786-43f4-8602-5c23ba146a60","86e20fd3-86a5-4796-b4b8-f2461a9fa922"],"columns":{"86e20fd3-86a5-4796-b4b8-f2461a9fa922":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"8f48381c-5786-43f4-8602-5c23ba146a60":{"customLabel":true,"dataType":"date","isBucketed":true,"label":"Recorded Future Indicators Over Time","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"layers":[{"accessors":["86e20fd3-86a5-4796-b4b8-f2461a9fa922"],"layerId":"98644301-1cd1-4e54-9f5b-71a1cbcdd8c8","position":"top","seriesType":"line","showGridlines":false,"xAccessor":"8f48381c-5786-43f4-8602-5c23ba146a60"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","title":"Empty XY chart","valueLabels":"hide"}},"title":"Recorded Future Indicators Over Time [Filebeat Threat Intel]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"82fa7420-df58-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-98644301-1cd1-4e54-9f5b-71a1cbcdd8c8","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NjgsMV0="} +{"attributes":{"description":"Recorded Future IPv4 indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["642d5400-4a72-4116-b752-58df5138392a","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"642d5400-4a72-4116-b752-58df5138392a":{"customLabel":true,"dataType":"ip","isBucketed":true,"label":"Recorded Future IPv4 Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.ip"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" and threatintel.indicator.type:ipv4-addr"},"visualization":{"columns":[{"columnId":"642d5400-4a72-4116-b752-58df5138392a","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future IPv4 Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"c2a5c180-df51-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NjksMV0="} +{"attributes":{"description":"Recorded Future IPv6 indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["642d5400-4a72-4116-b752-58df5138392a","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"642d5400-4a72-4116-b752-58df5138392a":{"customLabel":true,"dataType":"ip","isBucketed":true,"label":"Recorded Future IPv6 Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.ip"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" and threatintel.indicator.type:ipv6-addr"},"visualization":{"columns":[{"columnId":"642d5400-4a72-4116-b752-58df5138392a","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future IPv6 Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"06744e90-df52-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzAsMV0="} +{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["ebb0878f-715a-4987-85f1-87420428c88f","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"ebb0878f-715a-4987-85f1-87420428c88f":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future MD5 File Hash","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.file.hash.md5"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"columns":[{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b"},{"columnId":"ebb0878f-715a-4987-85f1-87420428c88f","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future MD5 Hash Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"dd4a3da0-df50-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzEsMV0="} +{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["ebb0878f-715a-4987-85f1-87420428c88f","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"ebb0878f-715a-4987-85f1-87420428c88f":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future SHA1 File Hash","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.file.hash.sha1"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"columns":[{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b"},{"columnId":"ebb0878f-715a-4987-85f1-87420428c88f","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future SHA1 Hash Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"f37f8350-df50-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzIsMV0="} +{"attributes":{"description":"Recorded Future indicator SHA256 hash ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["ebb0878f-715a-4987-85f1-87420428c88f","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"ebb0878f-715a-4987-85f1-87420428c88f":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future SHA256 File Hash","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.file.hash.sha256"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"columns":[{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b"},{"columnId":"ebb0878f-715a-4987-85f1-87420428c88f","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future SHA256 Hash Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"139c7da0-df51-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzMsMV0="} +{"attributes":{"description":"Recorded Future URL scheme indicator ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["642d5400-4a72-4116-b752-58df5138392a","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"642d5400-4a72-4116-b752-58df5138392a":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future URL Scheme Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.url.scheme"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"columns":[{"columnId":"642d5400-4a72-4116-b752-58df5138392a","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future URL Scheme Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"a0a31740-df51-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzQsMV0="} +{"attributes":{"description":"Recorded Future URL domain indicator ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["ebb0878f-715a-4987-85f1-87420428c88f","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"ebb0878f-715a-4987-85f1-87420428c88f":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future URL Domain Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.url.domain"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"columns":[{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b"},{"columnId":"ebb0878f-715a-4987-85f1-87420428c88f","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future URL Domain Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"5e76ef90-df51-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzUsMV0="} +{"attributes":{"description":"Recorded Future URL path indicator ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["642d5400-4a72-4116-b752-58df5138392a","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"642d5400-4a72-4116-b752-58df5138392a":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future URL Path Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.url.path"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"columns":[{"columnId":"642d5400-4a72-4116-b752-58df5138392a","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future URL Path Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"8fb01a00-df51-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzYsMV0="} +{"attributes":{"description":"Recorded Future domain indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["642d5400-4a72-4116-b752-58df5138392a","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"642d5400-4a72-4116-b752-58df5138392a":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future Domain Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.domain"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\""},"visualization":{"columns":[{"columnId":"642d5400-4a72-4116-b752-58df5138392a","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future Domain Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"3c996410-df52-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzcsMV0="} +{"attributes":{"description":"Recorded Future URL original indicator ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["642d5400-4a72-4116-b752-58df5138392a","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"642d5400-4a72-4116-b752-58df5138392a":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future URL Original Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.url.original"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"columns":[{"columnId":"642d5400-4a72-4116-b752-58df5138392a","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future URL Original Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"790cd040-df51-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzgsMV0="} +{"attributes":{"description":"Recorded Future indicators ingested by the threat intel Filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"c5528bd5-fc50-4902-94d9-6f6579e93364\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"c5528bd5-fc50-4902-94d9-6f6579e93364\",\"panelRefName\":\"panel_c5528bd5-fc50-4902-94d9-6f6579e93364\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"5844ac07-8c60-4e94-9fdb-f5489bbaafb0\",\"w\":10,\"x\":10,\"y\":0},\"panelIndex\":\"5844ac07-8c60-4e94-9fdb-f5489bbaafb0\",\"panelRefName\":\"panel_5844ac07-8c60-4e94-9fdb-f5489bbaafb0\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"705de4dd-b10b-4871-b42e-c32802f07cdc\",\"w\":9,\"x\":20,\"y\":0},\"panelIndex\":\"705de4dd-b10b-4871-b42e-c32802f07cdc\",\"panelRefName\":\"panel_705de4dd-b10b-4871-b42e-c32802f07cdc\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"579da37e-73d7-48b8-a2ae-09f9252be1d0\",\"w\":9,\"x\":29,\"y\":0},\"panelIndex\":\"579da37e-73d7-48b8-a2ae-09f9252be1d0\",\"panelRefName\":\"panel_579da37e-73d7-48b8-a2ae-09f9252be1d0\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"5df65cab-f10e-4192-8490-9586519be39a\",\"w\":10,\"x\":38,\"y\":0},\"panelIndex\":\"5df65cab-f10e-4192-8490-9586519be39a\",\"panelRefName\":\"panel_5df65cab-f10e-4192-8490-9586519be39a\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"64b0403d-03e5-48c3-9dae-0b005ebb5f1a\",\"w\":25,\"x\":0,\"y\":16},\"panelIndex\":\"64b0403d-03e5-48c3-9dae-0b005ebb5f1a\",\"panelRefName\":\"panel_64b0403d-03e5-48c3-9dae-0b005ebb5f1a\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"e95ad49d-d270-4592-af6b-0bb20ab8686a\",\"w\":23,\"x\":25,\"y\":16},\"panelIndex\":\"e95ad49d-d270-4592-af6b-0bb20ab8686a\",\"panelRefName\":\"panel_e95ad49d-d270-4592-af6b-0bb20ab8686a\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"1be4a1f3-6421-4bd4-99af-f2c9f99c944d\",\"w\":7,\"x\":0,\"y\":33},\"panelIndex\":\"1be4a1f3-6421-4bd4-99af-f2c9f99c944d\",\"panelRefName\":\"panel_1be4a1f3-6421-4bd4-99af-f2c9f99c944d\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"f2318e6a-9258-4628-897f-c39d16452ec5\",\"w\":9,\"x\":7,\"y\":33},\"panelIndex\":\"f2318e6a-9258-4628-897f-c39d16452ec5\",\"panelRefName\":\"panel_f2318e6a-9258-4628-897f-c39d16452ec5\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"2aec92d5-3db8-42ee-b5a6-27886672811e\",\"w\":9,\"x\":16,\"y\":33},\"panelIndex\":\"2aec92d5-3db8-42ee-b5a6-27886672811e\",\"panelRefName\":\"panel_2aec92d5-3db8-42ee-b5a6-27886672811e\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"4ba8c6c1-b5d2-4624-af2a-5c3a0b999eb9\",\"w\":10,\"x\":25,\"y\":33},\"panelIndex\":\"4ba8c6c1-b5d2-4624-af2a-5c3a0b999eb9\",\"panelRefName\":\"panel_4ba8c6c1-b5d2-4624-af2a-5c3a0b999eb9\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"a60753a1-e859-4388-aff7-e7c30fea8ea0\",\"w\":13,\"x\":35,\"y\":33},\"panelIndex\":\"a60753a1-e859-4388-aff7-e7c30fea8ea0\",\"panelRefName\":\"panel_a60753a1-e859-4388-aff7-e7c30fea8ea0\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"1ccdc84b-976e-4579-8227-e1fec014d744\",\"w\":9,\"x\":0,\"y\":50},\"panelIndex\":\"1ccdc84b-976e-4579-8227-e1fec014d744\",\"panelRefName\":\"panel_1ccdc84b-976e-4579-8227-e1fec014d744\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"48cc5d73-41e5-4c50-bd4b-a2c44848bfa1\",\"w\":9,\"x\":9,\"y\":50},\"panelIndex\":\"48cc5d73-41e5-4c50-bd4b-a2c44848bfa1\",\"panelRefName\":\"panel_48cc5d73-41e5-4c50-bd4b-a2c44848bfa1\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"a454a943-3968-4796-ac2a-89c78ad10c50\",\"w\":9,\"x\":18,\"y\":50},\"panelIndex\":\"a454a943-3968-4796-ac2a-89c78ad10c50\",\"panelRefName\":\"panel_a454a943-3968-4796-ac2a-89c78ad10c50\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"f2bbe7e9-0c11-4ab8-a1cb-5c7b36b950f6\",\"w\":9,\"x\":27,\"y\":50},\"panelIndex\":\"f2bbe7e9-0c11-4ab8-a1cb-5c7b36b950f6\",\"panelRefName\":\"panel_f2bbe7e9-0c11-4ab8-a1cb-5c7b36b950f6\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"f3a61f45-ac06-44db-b21c-1ffbb9e99014\",\"w\":12,\"x\":36,\"y\":50},\"panelIndex\":\"f3a61f45-ac06-44db-b21c-1ffbb9e99014\",\"panelRefName\":\"panel_f3a61f45-ac06-44db-b21c-1ffbb9e99014\",\"type\":\"lens\",\"version\":\"7.13.2\"}]","timeRestore":false,"title":"[Filebeat Threat Intel] Recorded Future","version":1},"coreMigrationVersion":"8.0.0","id":"894dd3e0-df57-11eb-8f2b-753caedf727d","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"037e2af0-df50-11eb-8f2b-753caedf727d","name":"c5528bd5-fc50-4902-94d9-6f6579e93364:panel_c5528bd5-fc50-4902-94d9-6f6579e93364","type":"lens"},{"id":"b0837690-df52-11eb-8f2b-753caedf727d","name":"5844ac07-8c60-4e94-9fdb-f5489bbaafb0:panel_5844ac07-8c60-4e94-9fdb-f5489bbaafb0","type":"lens"},{"id":"176bf800-df58-11eb-8f2b-753caedf727d","name":"705de4dd-b10b-4871-b42e-c32802f07cdc:panel_705de4dd-b10b-4871-b42e-c32802f07cdc","type":"lens"},{"id":"4bcc4cb0-df50-11eb-8f2b-753caedf727d","name":"579da37e-73d7-48b8-a2ae-09f9252be1d0:panel_579da37e-73d7-48b8-a2ae-09f9252be1d0","type":"lens"},{"id":"949bc180-df52-11eb-8f2b-753caedf727d","name":"5df65cab-f10e-4192-8490-9586519be39a:panel_5df65cab-f10e-4192-8490-9586519be39a","type":"lens"},{"id":"7ed4ce00-df52-11eb-8f2b-753caedf727d","name":"64b0403d-03e5-48c3-9dae-0b005ebb5f1a:panel_64b0403d-03e5-48c3-9dae-0b005ebb5f1a","type":"lens"},{"id":"82fa7420-df58-11eb-8f2b-753caedf727d","name":"e95ad49d-d270-4592-af6b-0bb20ab8686a:panel_e95ad49d-d270-4592-af6b-0bb20ab8686a","type":"lens"},{"id":"c2a5c180-df51-11eb-8f2b-753caedf727d","name":"1be4a1f3-6421-4bd4-99af-f2c9f99c944d:panel_1be4a1f3-6421-4bd4-99af-f2c9f99c944d","type":"lens"},{"id":"06744e90-df52-11eb-8f2b-753caedf727d","name":"f2318e6a-9258-4628-897f-c39d16452ec5:panel_f2318e6a-9258-4628-897f-c39d16452ec5","type":"lens"},{"id":"dd4a3da0-df50-11eb-8f2b-753caedf727d","name":"2aec92d5-3db8-42ee-b5a6-27886672811e:panel_2aec92d5-3db8-42ee-b5a6-27886672811e","type":"lens"},{"id":"f37f8350-df50-11eb-8f2b-753caedf727d","name":"4ba8c6c1-b5d2-4624-af2a-5c3a0b999eb9:panel_4ba8c6c1-b5d2-4624-af2a-5c3a0b999eb9","type":"lens"},{"id":"139c7da0-df51-11eb-8f2b-753caedf727d","name":"a60753a1-e859-4388-aff7-e7c30fea8ea0:panel_a60753a1-e859-4388-aff7-e7c30fea8ea0","type":"lens"},{"id":"a0a31740-df51-11eb-8f2b-753caedf727d","name":"1ccdc84b-976e-4579-8227-e1fec014d744:panel_1ccdc84b-976e-4579-8227-e1fec014d744","type":"lens"},{"id":"5e76ef90-df51-11eb-8f2b-753caedf727d","name":"48cc5d73-41e5-4c50-bd4b-a2c44848bfa1:panel_48cc5d73-41e5-4c50-bd4b-a2c44848bfa1","type":"lens"},{"id":"8fb01a00-df51-11eb-8f2b-753caedf727d","name":"a454a943-3968-4796-ac2a-89c78ad10c50:panel_a454a943-3968-4796-ac2a-89c78ad10c50","type":"lens"},{"id":"3c996410-df52-11eb-8f2b-753caedf727d","name":"f2bbe7e9-0c11-4ab8-a1cb-5c7b36b950f6:panel_f2bbe7e9-0c11-4ab8-a1cb-5c7b36b950f6","type":"lens"},{"id":"790cd040-df51-11eb-8f2b-753caedf727d","name":"f3a61f45-ac06-44db-b21c-1ffbb9e99014:panel_f3a61f45-ac06-44db-b21c-1ffbb9e99014","type":"lens"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"dashboard","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NjEsMV0="} diff --git a/x-pack/filebeat/module/zeek/_meta/kibana/7/dashboard/Filebeat-Zeek-Overview.json b/x-pack/filebeat/module/zeek/_meta/kibana/7/dashboard/Filebeat-Zeek-Overview.json deleted file mode 100644 index 1c8e79b5fc9..00000000000 --- a/x-pack/filebeat/module/zeek/_meta/kibana/7/dashboard/Filebeat-Zeek-Overview.json +++ /dev/null @@ -1,859 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of Zeek", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 20, - "i": "1", - "w": 48, - "x": 0, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.0.0-beta1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "2", - "w": 16, - "x": 0, - "y": 20 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "version": "7.0.0-beta1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "3", - "w": 16, - "x": 16, - "y": 20 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "version": "7.0.0-beta1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "4", - "w": 16, - "x": 32, - "y": 20 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "version": "7.0.0-beta1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "5", - "w": 16, - "x": 0, - "y": 32 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "version": "7.0.0-beta1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "6", - "w": 16, - "x": 16, - "y": 32 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "version": "7.0.0-beta1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "7", - "w": 16, - "x": 32, - "y": 32 - }, - "panelIndex": "7", - "panelRefName": "panel_6", - "version": "7.0.0-beta1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "8", - "w": 48, - "x": 0, - "y": 44 - }, - "panelIndex": "8", - "panelRefName": "panel_7", - "version": "7.0.0-beta1" - } - ], - "timeRestore": false, - "title": "[Filebeat Zeek] Overview", - "version": 1 - }, - "id": "7cbb5410-3700-11e9-aa6d-ff445a78330c", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "f469f230-370c-11e9-aa6d-ff445a78330c", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "1df7ea80-370d-11e9-aa6d-ff445a78330c", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "466e5850-370d-11e9-aa6d-ff445a78330c", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "649acd40-370d-11e9-aa6d-ff445a78330c", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "9436c270-370d-11e9-aa6d-ff445a78330c", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "bec2f0e0-370d-11e9-aa6d-ff445a78330c", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "e042fda0-370d-11e9-aa6d-ff445a78330c", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "f8c40810-370d-11e9-aa6d-ff445a78330c", - "name": "panel_7", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-02-23T05:05:18.205Z", - "version": "WzMxMTYsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Destination Geo [Filebeat Zeek]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "autoPrecision": true, - "field": "destination.geo.location", - "isFilteredByCollar": true, - "mapCenter": [ - 0, - 0 - ], - "mapZoom": 2, - "precision": 2, - "useGeocentroid": true - }, - "schema": "segment", - "type": "geohash_grid" - } - ], - "params": { - "addTooltip": true, - "colorSchema": "Yellow to Red", - "dimensions": { - "geocentroid": null, - "geohash": null, - "metric": { - "accessor": 0, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "heatClusterSize": 1.5, - "isDesaturated": true, - "legendPosition": "bottomright", - "mapCenter": [ - 0, - 0 - ], - "mapType": "Scaled Circle Markers", - "mapZoom": 2, - "wms": { - "enabled": false, - "options": { - "format": "image/png", - "transparent": true - } - } - }, - "title": "Destination Geo [Filebeat Zeek]", - "type": "tile_map" - } - }, - "id": "f469f230-370c-11e9-aa6d-ff445a78330c", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-02-26T00:06:27.634Z", - "version": "WzMyNzUsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Network Transport [Filebeat Zeek]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "network.transport", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "metric": { - "accessor": 0, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Network Transport [Filebeat Zeek]", - "type": "pie" - } - }, - "id": "1df7ea80-370d-11e9-aa6d-ff445a78330c", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-02-26T00:07:08.521Z", - "version": "WzMyNzgsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Network Application [Filebeat Zeek]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "network.application", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "metric": { - "accessor": 0, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Network Application [Filebeat Zeek]", - "type": "pie" - } - }, - "id": "466e5850-370d-11e9-aa6d-ff445a78330c", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-02-26T00:06:41.868Z", - "version": "WzMyNzYsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Network Traffic Direction [Filebeat Zeek]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "network.direction", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "metric": { - "accessor": 0, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Network Traffic Direction [Filebeat Zeek]", - "type": "pie" - } - }, - "id": "649acd40-370d-11e9-aa6d-ff445a78330c", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-02-26T00:06:55.885Z", - "version": "WzMyNzcsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top DNS Domains [Filebeat Zeek]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "zeek.dns.query", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "metric": { - "accessor": 0, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Top DNS Domains [Filebeat Zeek]", - "type": "pie" - } - }, - "id": "9436c270-370d-11e9-aa6d-ff445a78330c", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-02-26T00:07:23.763Z", - "version": "WzMyNzksNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top URL Domains [Filebeat Zeek]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "url.domain", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Top URL Domains [Filebeat Zeek]", - "type": "pie" - } - }, - "id": "bec2f0e0-370d-11e9-aa6d-ff445a78330c", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-02-26T00:07:49.910Z", - "version": "WzMyODEsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top SSL Servers [Filebeat Zeek]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "zeek.ssl.server.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "metric": { - "accessor": 0, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Top SSL Servers [Filebeat Zeek]", - "type": "pie" - } - }, - "id": "e042fda0-370d-11e9-aa6d-ff445a78330c", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "filebeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-02-26T00:07:36.653Z", - "version": "WzMyODAsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Number of Sessions Overtime [Filebeat Zeek]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "filebeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Number of Sessions Overtime [Filebeat Zeek]", - "type": "metrics" - } - }, - "id": "f8c40810-370d-11e9-aa6d-ff445a78330c", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-02-26T00:05:56.379Z", - "version": "WzMyNzQsNV0=" - } - ], - "version": "7.0.0-beta1" -} diff --git a/x-pack/filebeat/module/zeek/_meta/kibana/7/dashboard/Filebeat-Zeek-Overview.ndjson b/x-pack/filebeat/module/zeek/_meta/kibana/7/dashboard/Filebeat-Zeek-Overview.ndjson new file mode 100644 index 00000000000..9e1871537d6 --- /dev/null +++ b/x-pack/filebeat/module/zeek/_meta/kibana/7/dashboard/Filebeat-Zeek-Overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Destination Geo [Filebeat Zeek]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"destination.geo.location\",\"isFilteredByCollar\":true,\"mapCenter\":[0,0],\"mapZoom\":2,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"dimensions\":{\"geocentroid\":null,\"geohash\":null,\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true}}},\"title\":\"Destination Geo [Filebeat Zeek]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"f469f230-370c-11e9-aa6d-ff445a78330c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:52.321Z","version":"WzQzMjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Network Transport [Filebeat Zeek]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.transport\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Network Transport [Filebeat Zeek]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"1df7ea80-370d-11e9-aa6d-ff445a78330c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:52.321Z","version":"WzQzMjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Network Application [Filebeat Zeek]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.application\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Network Application [Filebeat Zeek]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"466e5850-370d-11e9-aa6d-ff445a78330c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:52.321Z","version":"WzQzMjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Network Traffic Direction [Filebeat Zeek]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.direction\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Network Traffic Direction [Filebeat Zeek]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"649acd40-370d-11e9-aa6d-ff445a78330c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:52.321Z","version":"WzQzMjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top DNS Domains [Filebeat Zeek]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"zeek.dns.query\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top DNS Domains [Filebeat Zeek]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"9436c270-370d-11e9-aa6d-ff445a78330c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:52.321Z","version":"WzQzMjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top URL Domains [Filebeat Zeek]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"url.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top URL Domains [Filebeat Zeek]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"bec2f0e0-370d-11e9-aa6d-ff445a78330c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:52.321Z","version":"WzQzMjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top SSL Servers [Filebeat Zeek]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"zeek.ssl.server.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top SSL Servers [Filebeat Zeek]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"e042fda0-370d-11e9-aa6d-ff445a78330c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:52.321Z","version":"WzQzMjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of Sessions Overtime [Filebeat Zeek]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Number of Sessions Overtime [Filebeat Zeek]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f8c40810-370d-11e9-aa6d-ff445a78330c","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:52.321Z","version":"WzQzMjgsMV0="} +{"attributes":{"description":"Overview of Zeek","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.0.0-beta1\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-beta1\",\"gridData\":{\"h\":12,\"i\":\"2\",\"w\":16,\"x\":0,\"y\":20},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-beta1\",\"gridData\":{\"h\":12,\"i\":\"3\",\"w\":16,\"x\":16,\"y\":20},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-beta1\",\"gridData\":{\"h\":12,\"i\":\"4\",\"w\":16,\"x\":32,\"y\":20},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-beta1\",\"gridData\":{\"h\":12,\"i\":\"5\",\"w\":16,\"x\":0,\"y\":32},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-beta1\",\"gridData\":{\"h\":12,\"i\":\"6\",\"w\":16,\"x\":16,\"y\":32},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-beta1\",\"gridData\":{\"h\":12,\"i\":\"7\",\"w\":16,\"x\":32,\"y\":32},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-beta1\",\"gridData\":{\"h\":12,\"i\":\"8\",\"w\":48,\"x\":0,\"y\":44},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Filebeat Zeek] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"7cbb5410-3700-11e9-aa6d-ff445a78330c","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"f469f230-370c-11e9-aa6d-ff445a78330c","name":"panel_0","type":"visualization"},{"id":"1df7ea80-370d-11e9-aa6d-ff445a78330c","name":"panel_1","type":"visualization"},{"id":"466e5850-370d-11e9-aa6d-ff445a78330c","name":"panel_2","type":"visualization"},{"id":"649acd40-370d-11e9-aa6d-ff445a78330c","name":"panel_3","type":"visualization"},{"id":"9436c270-370d-11e9-aa6d-ff445a78330c","name":"panel_4","type":"visualization"},{"id":"bec2f0e0-370d-11e9-aa6d-ff445a78330c","name":"panel_5","type":"visualization"},{"id":"e042fda0-370d-11e9-aa6d-ff445a78330c","name":"panel_6","type":"visualization"},{"id":"f8c40810-370d-11e9-aa6d-ff445a78330c","name":"panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:52.321Z","version":"WzQzMjAsMV0="} diff --git a/x-pack/filebeat/module/zeek/module.yml b/x-pack/filebeat/module/zeek/module.yml index 4d55536c0c6..b654e72843f 100644 --- a/x-pack/filebeat/module/zeek/module.yml +++ b/x-pack/filebeat/module/zeek/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 7cbb5410-3700-11e9-aa6d-ff445a78330c - file: Filebeat-Zeek-Overview.json + file: Filebeat-Zeek-Overview.ndjson diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-broker-overview.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-broker-overview.json deleted file mode 100644 index b455589d896..00000000000 --- a/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-broker-overview.json +++ /dev/null @@ -1,908 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "The dashboard presents metric data describing ActiveMQ broker. Metrics show statistics of enqueued and dequeued messages, consumers, producers and memory usage (broker, store, temp).", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "cd2b33a6-3c4c-4d97-9cfb-7c6e47f248dc", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "cd2b33a6-3c4c-4d97-9cfb-7c6e47f248dc", - "panelRefName": "panel_0", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "dc086d82-511a-45e3-b20e-6eef48e22ee1", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "dc086d82-511a-45e3-b20e-6eef48e22ee1", - "panelRefName": "panel_1", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "84a09081-449a-44f8-bc43-7119730dc74b", - "w": 24, - "x": 0, - "y": 15 - }, - "panelIndex": "84a09081-449a-44f8-bc43-7119730dc74b", - "panelRefName": "panel_2", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 5, - "i": "e5e43ead-2ed5-4290-86f3-5dd623500f87", - "w": 24, - "x": 24, - "y": 15 - }, - "panelIndex": "e5e43ead-2ed5-4290-86f3-5dd623500f87", - "panelRefName": "panel_3", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 5, - "i": "f891ea87-7718-4820-a0dc-21b160c1e684", - "w": 24, - "x": 24, - "y": 20 - }, - "panelIndex": "f891ea87-7718-4820-a0dc-21b160c1e684", - "panelRefName": "panel_4", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 5, - "i": "54a788b6-5ede-4217-a975-ba6bc57f5274", - "w": 24, - "x": 24, - "y": 25 - }, - "panelIndex": "54a788b6-5ede-4217-a975-ba6bc57f5274", - "panelRefName": "panel_5", - "version": "7.4.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat ActiveMQ] Broker Overview", - "version": 1 - }, - "id": "fc27a270-0b95-11ea-81bb-cf244189d349", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "55cacee0-0ba7-11ea-81bb-cf244189d349", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "ce456e60-0b99-11ea-81bb-cf244189d349", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "33cbfa60-0b95-11ea-81bb-cf244189d349", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "594db510-0b9c-11ea-81bb-cf244189d349", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "bfad8290-0d22-11ea-ba76-7fb26815d86c", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "cb475400-0d22-11ea-ba76-7fb26815d86c", - "name": "panel_5", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-11-22T12:26:00.404Z", - "version": "WzUxOSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Broker Messages [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "aa435ec0-0ba6-11ea-b0d5-191f327f6941" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Dequeue", - "line_width": 1, - "metrics": [ - { - "field": "activemq.broker.messages.dequeue.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "03adf430-0ba6-11ea-b0d5-191f327f6941", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": 0.5, - "formatter": "number", - "id": "149ece90-0ba6-11ea-b0d5-191f327f6941", - "label": "Enqueue", - "line_width": 1, - "metrics": [ - { - "field": "activemq.broker.messages.enqueue.count", - "id": "149ef5a0-0ba6-11ea-b0d5-191f327f6941", - "type": "max" - }, - { - "field": "149ef5a0-0ba6-11ea-b0d5-191f327f6941", - "id": "149ef5a1-0ba6-11ea-b0d5-191f327f6941", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "39964ed0-0ba6-11ea-b0d5-191f327f6941", - "label": "Count", - "line_width": 1, - "metrics": [ - { - "field": "activemq.broker.messages.enqueue.count", - "id": "39964ed1-0ba6-11ea-b0d5-191f327f6941", - "type": "max" - }, - { - "field": "39964ed1-0ba6-11ea-b0d5-191f327f6941", - "id": "8920b440-0ba6-11ea-b0d5-191f327f6941", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Broker Messages [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "55cacee0-0ba7-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-21T13:34:08.894Z", - "version": "WzQzOCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Broker Consumers/Producers [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [], - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "60dba290-0b99-11ea-8e0f-4970006b3ce7" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Consumers", - "line_width": 1, - "metrics": [ - { - "field": "activemq.broker.consumers.count", - "id": "50a86850-0b98-11ea-8e0f-4970006b3ce7", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "terms_field": "activemq.broker.name", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(65,157,247,1)", - "fill": 0.5, - "formatter": "number", - "id": "9a1e6840-0b98-11ea-8e0f-4970006b3ce7", - "label": "Producers", - "line_width": 1, - "metrics": [ - { - "field": "activemq.broker.producers.count", - "id": "9a1e6841-0b98-11ea-8e0f-4970006b3ce7", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "terms_field": "activemq.broker.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Broker Consumers/Producers [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "ce456e60-0b99-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-21T13:34:08.894Z", - "version": "WzQzOSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Broker Connections [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "178caf70-0b95-11ea-81df-8dc66a02be3a" - } - ], - "bar_color_rules": [ - { - "id": "1996d750-0b95-11ea-81df-8dc66a02be3a" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "1a5bd500-0b95-11ea-81df-8dc66a02be3a" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Connections", - "line_width": 1, - "metrics": [ - { - "field": "activemq.broker.connections.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "90525b80-0ba4-11ea-8c5c-257c67a7a008", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "b1b376f0-0b96-11ea-81df-8dc66a02be3a", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "terms_field": "activemq.broker.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Broker Connections [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "33cbfa60-0b95-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-21T13:34:08.894Z", - "version": "WzQ0MCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Broker Memory Usage [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "a19e8b60-0b9b-11ea-8e0f-4970006b3ce7" - } - ], - "bar_color_rules": [ - { - "id": "f6955680-0b9b-11ea-8e0f-4970006b3ce7" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "9acca240-0b9b-11ea-8e0f-4970006b3ce7" - } - ], - "gauge_inner_width": 10, - "gauge_max": "1", - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "percent", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Broker Memory", - "line_width": 1, - "metrics": [ - { - "field": "activemq.broker.memory.broker.pct", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": 0.5, - "formatter": "number", - "id": "7716c9c0-0b9b-11ea-8e0f-4970006b3ce7", - "label": "Store Memory", - "line_width": 1, - "metrics": [ - { - "field": "activemq.broker.memory.store.pct", - "id": "7716c9c1-0b9b-11ea-8e0f-4970006b3ce7", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(174,161,255,1)", - "fill": 0.5, - "formatter": "number", - "id": "13799400-0b9c-11ea-8e0f-4970006b3ce7", - "label": "Temp Memory", - "line_width": 1, - "metrics": [ - { - "field": "activemq.broker.memory.temp.pct", - "id": "13799401-0b9c-11ea-8e0f-4970006b3ce7", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "gauge" - }, - "title": "Broker Memory Usage [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "594db510-0b9c-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-22T15:29:57.883Z", - "version": "WzUzOSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Broker Temp Memory Usage [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "a19e8b60-0b9b-11ea-8e0f-4970006b3ce7" - } - ], - "bar_color_rules": [ - { - "id": "f6955680-0b9b-11ea-8e0f-4970006b3ce7" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "9acca240-0b9b-11ea-8e0f-4970006b3ce7" - } - ], - "gauge_inner_width": 10, - "gauge_max": "1", - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "percent", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Temp Memory", - "line_width": 1, - "metrics": [ - { - "field": "activemq.broker.memory.temp.pct", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": 0.5, - "formatter": "number", - "id": "7716c9c0-0b9b-11ea-8e0f-4970006b3ce7", - "label": "Store Memory", - "line_width": 1, - "metrics": [ - { - "field": "activemq.broker.memory.store.pct", - "id": "7716c9c1-0b9b-11ea-8e0f-4970006b3ce7", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(174,161,255,1)", - "fill": 0.5, - "formatter": "number", - "id": "13799400-0b9c-11ea-8e0f-4970006b3ce7", - "label": "Temp Memory", - "line_width": 1, - "metrics": [ - { - "field": "activemq.broker.memory.temp.pct", - "id": "13799401-0b9c-11ea-8e0f-4970006b3ce7", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "gauge" - }, - "title": "Broker Temp Memory Usage [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "bfad8290-0d22-11ea-ba76-7fb26815d86c", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-22T15:30:29.667Z", - "version": "WzU0MSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Broker Store Memory Usage [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "a19e8b60-0b9b-11ea-8e0f-4970006b3ce7" - } - ], - "bar_color_rules": [ - { - "id": "f6955680-0b9b-11ea-8e0f-4970006b3ce7" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "9acca240-0b9b-11ea-8e0f-4970006b3ce7" - } - ], - "gauge_inner_width": 10, - "gauge_max": "1", - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "percent", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Store Memory", - "line_width": 1, - "metrics": [ - { - "field": "activemq.broker.memory.store.pct", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": 0.5, - "formatter": "number", - "id": "7716c9c0-0b9b-11ea-8e0f-4970006b3ce7", - "label": "Store Memory", - "line_width": 1, - "metrics": [ - { - "field": "activemq.broker.memory.store.pct", - "id": "7716c9c1-0b9b-11ea-8e0f-4970006b3ce7", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(174,161,255,1)", - "fill": 0.5, - "formatter": "number", - "id": "13799400-0b9c-11ea-8e0f-4970006b3ce7", - "label": "Temp Memory", - "line_width": 1, - "metrics": [ - { - "field": "activemq.broker.memory.temp.pct", - "id": "13799401-0b9c-11ea-8e0f-4970006b3ce7", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "gauge" - }, - "title": "Broker Store Memory Usage [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "cb475400-0d22-11ea-ba76-7fb26815d86c", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-22T15:30:59.820Z", - "version": "WzU0MywyXQ==" - } - ], - "version": "7.4.0" -} diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-broker-overview.ndjson b/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-broker-overview.ndjson new file mode 100644 index 00000000000..ab3168964f8 --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-broker-overview.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Broker Messages [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"aa435ec0-0ba6-11ea-b0d5-191f327f6941\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Dequeue\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.messages.dequeue.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"03adf430-0ba6-11ea-b0d5-191f327f6941\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"149ece90-0ba6-11ea-b0d5-191f327f6941\",\"label\":\"Enqueue\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.messages.enqueue.count\",\"id\":\"149ef5a0-0ba6-11ea-b0d5-191f327f6941\",\"type\":\"max\"},{\"field\":\"149ef5a0-0ba6-11ea-b0d5-191f327f6941\",\"id\":\"149ef5a1-0ba6-11ea-b0d5-191f327f6941\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"39964ed0-0ba6-11ea-b0d5-191f327f6941\",\"label\":\"Count\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.messages.enqueue.count\",\"id\":\"39964ed1-0ba6-11ea-b0d5-191f327f6941\",\"type\":\"max\"},{\"field\":\"39964ed1-0ba6-11ea-b0d5-191f327f6941\",\"id\":\"8920b440-0ba6-11ea-b0d5-191f327f6941\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Broker Messages [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"55cacee0-0ba7-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:54.803Z","version":"WzQxNzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Broker Consumers/Producers [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"60dba290-0b99-11ea-8e0f-4970006b3ce7\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Consumers\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.consumers.count\",\"id\":\"50a86850-0b98-11ea-8e0f-4970006b3ce7\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"activemq.broker.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(65,157,247,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"9a1e6840-0b98-11ea-8e0f-4970006b3ce7\",\"label\":\"Producers\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.producers.count\",\"id\":\"9a1e6841-0b98-11ea-8e0f-4970006b3ce7\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"activemq.broker.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Broker Consumers/Producers [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ce456e60-0b99-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:54.803Z","version":"WzQxODAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Broker Connections [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"178caf70-0b95-11ea-81df-8dc66a02be3a\"}],\"bar_color_rules\":[{\"id\":\"1996d750-0b95-11ea-81df-8dc66a02be3a\"}],\"gauge_color_rules\":[{\"id\":\"1a5bd500-0b95-11ea-81df-8dc66a02be3a\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Connections\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.connections.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"90525b80-0ba4-11ea-8c5c-257c67a7a008\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"b1b376f0-0b96-11ea-81df-8dc66a02be3a\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"activemq.broker.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Broker Connections [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"33cbfa60-0b95-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:54.803Z","version":"WzQxODEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Broker Memory Usage [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"a19e8b60-0b9b-11ea-8e0f-4970006b3ce7\"}],\"bar_color_rules\":[{\"id\":\"f6955680-0b9b-11ea-8e0f-4970006b3ce7\"}],\"gauge_color_rules\":[{\"id\":\"9acca240-0b9b-11ea-8e0f-4970006b3ce7\"}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Broker Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.memory.broker.pct\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"7716c9c0-0b9b-11ea-8e0f-4970006b3ce7\",\"label\":\"Store Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.memory.store.pct\",\"id\":\"7716c9c1-0b9b-11ea-8e0f-4970006b3ce7\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(174,161,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"13799400-0b9c-11ea-8e0f-4970006b3ce7\",\"label\":\"Temp Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.memory.temp.pct\",\"id\":\"13799401-0b9c-11ea-8e0f-4970006b3ce7\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Broker Memory Usage [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"594db510-0b9c-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:54.803Z","version":"WzQxODIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Broker Temp Memory Usage [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"a19e8b60-0b9b-11ea-8e0f-4970006b3ce7\"}],\"bar_color_rules\":[{\"id\":\"f6955680-0b9b-11ea-8e0f-4970006b3ce7\"}],\"gauge_color_rules\":[{\"id\":\"9acca240-0b9b-11ea-8e0f-4970006b3ce7\"}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Temp Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.memory.temp.pct\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"7716c9c0-0b9b-11ea-8e0f-4970006b3ce7\",\"label\":\"Store Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.memory.store.pct\",\"id\":\"7716c9c1-0b9b-11ea-8e0f-4970006b3ce7\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(174,161,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"13799400-0b9c-11ea-8e0f-4970006b3ce7\",\"label\":\"Temp Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.memory.temp.pct\",\"id\":\"13799401-0b9c-11ea-8e0f-4970006b3ce7\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Broker Temp Memory Usage [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bfad8290-0d22-11ea-ba76-7fb26815d86c","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:54.803Z","version":"WzQxODMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Broker Store Memory Usage [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"a19e8b60-0b9b-11ea-8e0f-4970006b3ce7\"}],\"bar_color_rules\":[{\"id\":\"f6955680-0b9b-11ea-8e0f-4970006b3ce7\"}],\"gauge_color_rules\":[{\"id\":\"9acca240-0b9b-11ea-8e0f-4970006b3ce7\"}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Store Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.memory.store.pct\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"7716c9c0-0b9b-11ea-8e0f-4970006b3ce7\",\"label\":\"Store Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.memory.store.pct\",\"id\":\"7716c9c1-0b9b-11ea-8e0f-4970006b3ce7\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(174,161,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"13799400-0b9c-11ea-8e0f-4970006b3ce7\",\"label\":\"Temp Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.memory.temp.pct\",\"id\":\"13799401-0b9c-11ea-8e0f-4970006b3ce7\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Broker Store Memory Usage [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"cb475400-0d22-11ea-ba76-7fb26815d86c","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:54.803Z","version":"WzQxODQsMV0="} +{"attributes":{"description":"The dashboard presents metric data describing ActiveMQ broker. Metrics show statistics of enqueued and dequeued messages, consumers, producers and memory usage (broker, store, temp).","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"cd2b33a6-3c4c-4d97-9cfb-7c6e47f248dc\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"cd2b33a6-3c4c-4d97-9cfb-7c6e47f248dc\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_cd2b33a6-3c4c-4d97-9cfb-7c6e47f248dc\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"dc086d82-511a-45e3-b20e-6eef48e22ee1\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"dc086d82-511a-45e3-b20e-6eef48e22ee1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_dc086d82-511a-45e3-b20e-6eef48e22ee1\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"84a09081-449a-44f8-bc43-7119730dc74b\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"84a09081-449a-44f8-bc43-7119730dc74b\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_84a09081-449a-44f8-bc43-7119730dc74b\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"e5e43ead-2ed5-4290-86f3-5dd623500f87\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"e5e43ead-2ed5-4290-86f3-5dd623500f87\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_e5e43ead-2ed5-4290-86f3-5dd623500f87\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"f891ea87-7718-4820-a0dc-21b160c1e684\",\"w\":24,\"x\":24,\"y\":20},\"panelIndex\":\"f891ea87-7718-4820-a0dc-21b160c1e684\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_f891ea87-7718-4820-a0dc-21b160c1e684\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"54a788b6-5ede-4217-a975-ba6bc57f5274\",\"w\":24,\"x\":24,\"y\":25},\"panelIndex\":\"54a788b6-5ede-4217-a975-ba6bc57f5274\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_54a788b6-5ede-4217-a975-ba6bc57f5274\"}]","timeRestore":false,"title":"[Metricbeat ActiveMQ] Broker Overview","version":1},"coreMigrationVersion":"8.0.0","id":"fc27a270-0b95-11ea-81bb-cf244189d349","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"55cacee0-0ba7-11ea-81bb-cf244189d349","name":"cd2b33a6-3c4c-4d97-9cfb-7c6e47f248dc:panel_cd2b33a6-3c4c-4d97-9cfb-7c6e47f248dc","type":"visualization"},{"id":"ce456e60-0b99-11ea-81bb-cf244189d349","name":"dc086d82-511a-45e3-b20e-6eef48e22ee1:panel_dc086d82-511a-45e3-b20e-6eef48e22ee1","type":"visualization"},{"id":"33cbfa60-0b95-11ea-81bb-cf244189d349","name":"84a09081-449a-44f8-bc43-7119730dc74b:panel_84a09081-449a-44f8-bc43-7119730dc74b","type":"visualization"},{"id":"594db510-0b9c-11ea-81bb-cf244189d349","name":"e5e43ead-2ed5-4290-86f3-5dd623500f87:panel_e5e43ead-2ed5-4290-86f3-5dd623500f87","type":"visualization"},{"id":"bfad8290-0d22-11ea-ba76-7fb26815d86c","name":"f891ea87-7718-4820-a0dc-21b160c1e684:panel_f891ea87-7718-4820-a0dc-21b160c1e684","type":"visualization"},{"id":"cb475400-0d22-11ea-ba76-7fb26815d86c","name":"54a788b6-5ede-4217-a975-ba6bc57f5274:panel_54a788b6-5ede-4217-a975-ba6bc57f5274","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:54.803Z","version":"WzQxNzgsMV0="} diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-queues-overview.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-queues-overview.json deleted file mode 100644 index e4da2a9fc54..00000000000 --- a/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-queues-overview.json +++ /dev/null @@ -1,788 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "The dashboard presents metric data describing ActiveMQ queues. Metrics show statistics of exchanged messages, consumers, producers and memory usage.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "446c6be8-61e2-4c9c-9bfa-8da8879db215", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "446c6be8-61e2-4c9c-9bfa-8da8879db215", - "panelRefName": "panel_0", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "85158251-14d2-4100-9ce2-1eea4885adf6", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "85158251-14d2-4100-9ce2-1eea4885adf6", - "panelRefName": "panel_1", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "e0104818-b373-4a20-990a-aa7558522e9e", - "w": 24, - "x": 0, - "y": 15 - }, - "panelIndex": "e0104818-b373-4a20-990a-aa7558522e9e", - "panelRefName": "panel_2", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "7b83ee6f-cd69-4748-80c5-305fdf49b9d0", - "w": 24, - "x": 24, - "y": 15 - }, - "panelIndex": "7b83ee6f-cd69-4748-80c5-305fdf49b9d0", - "panelRefName": "panel_3", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "b2cfe5e4-f220-480e-91fa-4088484eda17", - "w": 24, - "x": 0, - "y": 30 - }, - "panelIndex": "b2cfe5e4-f220-480e-91fa-4088484eda17", - "panelRefName": "panel_4", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "5f4b107c-94d0-4bdb-be30-b3cd26257658", - "w": 24, - "x": 24, - "y": 30 - }, - "panelIndex": "5f4b107c-94d0-4bdb-be30-b3cd26257658", - "panelRefName": "panel_5", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "b5a5ea30-c313-4c80-8e28-2894f292d779", - "w": 24, - "x": 0, - "y": 45 - }, - "panelIndex": "b5a5ea30-c313-4c80-8e28-2894f292d779", - "panelRefName": "panel_6", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "4a004976-426b-445e-9ecf-1f9964074523", - "w": 24, - "x": 24, - "y": 45 - }, - "panelIndex": "4a004976-426b-445e-9ecf-1f9964074523", - "panelRefName": "panel_7", - "version": "7.4.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat ActiveMQ] Queues Overview", - "version": 1 - }, - "id": "a8160560-0bd0-11ea-81bb-cf244189d349", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "ad2d4960-0bd4-11ea-81bb-cf244189d349", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "00e33010-0bd5-11ea-81bb-cf244189d349", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "4a93ef10-0bd5-11ea-81bb-cf244189d349", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "fab93e30-0bbd-11ea-81bb-cf244189d349", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "99f41030-0bd5-11ea-81bb-cf244189d349", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "55cc9840-0bd6-11ea-81bb-cf244189d349", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "8599cea0-0c2e-11ea-81bb-cf244189d349", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "a8ac8950-0c2e-11ea-81bb-cf244189d349", - "name": "panel_7", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-11-21T13:34:09.899Z", - "version": "WzQ0MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Queues Messages Dequeue [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Dequeue", - "line_width": 1, - "metrics": [ - { - "field": "activemq.queue.messages.dequeue.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "activemq.queue.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Queues Messages Dequeue [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "ad2d4960-0bd4-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-21T13:34:09.899Z", - "version": "WzQ0MywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Queues Messages Enqueue [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Enqueue", - "line_width": 1, - "metrics": [ - { - "field": "activemq.queue.messages.enqueue.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "activemq.queue.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Queues Messages Enqueue [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "00e33010-0bd5-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-21T13:34:09.899Z", - "version": "WzQ0NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Queues Messages Dispatch [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Dispatch", - "line_width": 1, - "metrics": [ - { - "field": "activemq.queue.messages.dispatch.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "activemq.queue.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Queues Messages Dispatch [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "4a93ef10-0bd5-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-21T13:34:09.899Z", - "version": "WzQ0NSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Queues Messages Expired [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(174,161,255,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Expired", - "line_width": 1, - "metrics": [ - { - "field": "activemq.queue.messages.expired.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "activemq.queue.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Queues Messages Expired [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "fab93e30-0bbd-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-21T13:34:09.899Z", - "version": "WzQ0NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Queues Messages In-flight [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "In-flight", - "line_width": 1, - "metrics": [ - { - "field": "activemq.queue.messages.inflight.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "activemq.queue.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Queues Messages In-flight [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "99f41030-0bd5-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-21T13:34:09.899Z", - "version": "WzQ0NywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Queues Messages Enqueue Time [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(226,115,0,1)", - "fill": 0.5, - "formatter": "ms,ms,", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Equeue", - "line_width": 1, - "metrics": [ - { - "field": "activemq.queue.messages.enqueue.time.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "activemq.queue.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Queues Messages Enqueue Time [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "55cc9840-0bd6-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-22T12:43:58.984Z", - "version": "WzUzMCwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Queues Consumers [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Consumers", - "line_width": 1, - "metrics": [ - { - "field": "activemq.queue.consumers.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "activemq.queue.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Queues Consumers [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "8599cea0-0c2e-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-21T13:34:09.899Z", - "version": "WzQ0OSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Queues Producers [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Producers", - "line_width": 1, - "metrics": [ - { - "field": "activemq.queue.producers.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "activemq.queue.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Queues Producers [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "a8ac8950-0c2e-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-21T13:34:09.899Z", - "version": "WzQ1MCwxXQ==" - } - ], - "version": "7.4.0" -} diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-queues-overview.ndjson b/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-queues-overview.ndjson new file mode 100644 index 00000000000..6f6b7862f39 --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-queues-overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Queues Messages Dequeue [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Dequeue\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.queue.messages.dequeue.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Queues Messages Dequeue [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ad2d4960-0bd4-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:55.793Z","version":"WzQxODYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Queues Messages Enqueue [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Enqueue\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.queue.messages.enqueue.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Queues Messages Enqueue [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"00e33010-0bd5-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:55.793Z","version":"WzQxODcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Queues Messages Dispatch [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Dispatch\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.queue.messages.dispatch.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Queues Messages Dispatch [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4a93ef10-0bd5-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:55.793Z","version":"WzQxODgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Queues Messages Expired [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(174,161,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Expired\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.queue.messages.expired.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Queues Messages Expired [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fab93e30-0bbd-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:55.793Z","version":"WzQxODksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Queues Messages In-flight [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"In-flight\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.queue.messages.inflight.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Queues Messages In-flight [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"99f41030-0bd5-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:55.793Z","version":"WzQxOTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Queues Messages Enqueue Time [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":0.5,\"formatter\":\"ms,ms,\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Equeue\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.queue.messages.enqueue.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Queues Messages Enqueue Time [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"55cc9840-0bd6-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:55.793Z","version":"WzQxOTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Queues Consumers [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Consumers\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.queue.consumers.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Queues Consumers [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8599cea0-0c2e-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:55.793Z","version":"WzQxOTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Queues Producers [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Producers\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.queue.producers.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Queues Producers [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a8ac8950-0c2e-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:55.793Z","version":"WzQxOTMsMV0="} +{"attributes":{"description":"The dashboard presents metric data describing ActiveMQ queues. Metrics show statistics of exchanged messages, consumers, producers and memory usage.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"446c6be8-61e2-4c9c-9bfa-8da8879db215\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"446c6be8-61e2-4c9c-9bfa-8da8879db215\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_446c6be8-61e2-4c9c-9bfa-8da8879db215\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"85158251-14d2-4100-9ce2-1eea4885adf6\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"85158251-14d2-4100-9ce2-1eea4885adf6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_85158251-14d2-4100-9ce2-1eea4885adf6\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"e0104818-b373-4a20-990a-aa7558522e9e\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"e0104818-b373-4a20-990a-aa7558522e9e\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_e0104818-b373-4a20-990a-aa7558522e9e\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7b83ee6f-cd69-4748-80c5-305fdf49b9d0\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"7b83ee6f-cd69-4748-80c5-305fdf49b9d0\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7b83ee6f-cd69-4748-80c5-305fdf49b9d0\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"b2cfe5e4-f220-480e-91fa-4088484eda17\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"b2cfe5e4-f220-480e-91fa-4088484eda17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_b2cfe5e4-f220-480e-91fa-4088484eda17\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5f4b107c-94d0-4bdb-be30-b3cd26257658\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"5f4b107c-94d0-4bdb-be30-b3cd26257658\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5f4b107c-94d0-4bdb-be30-b3cd26257658\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"b5a5ea30-c313-4c80-8e28-2894f292d779\",\"w\":24,\"x\":0,\"y\":45},\"panelIndex\":\"b5a5ea30-c313-4c80-8e28-2894f292d779\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_b5a5ea30-c313-4c80-8e28-2894f292d779\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4a004976-426b-445e-9ecf-1f9964074523\",\"w\":24,\"x\":24,\"y\":45},\"panelIndex\":\"4a004976-426b-445e-9ecf-1f9964074523\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4a004976-426b-445e-9ecf-1f9964074523\"}]","timeRestore":false,"title":"[Metricbeat ActiveMQ] Queues Overview","version":1},"coreMigrationVersion":"8.0.0","id":"a8160560-0bd0-11ea-81bb-cf244189d349","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"ad2d4960-0bd4-11ea-81bb-cf244189d349","name":"446c6be8-61e2-4c9c-9bfa-8da8879db215:panel_446c6be8-61e2-4c9c-9bfa-8da8879db215","type":"visualization"},{"id":"00e33010-0bd5-11ea-81bb-cf244189d349","name":"85158251-14d2-4100-9ce2-1eea4885adf6:panel_85158251-14d2-4100-9ce2-1eea4885adf6","type":"visualization"},{"id":"4a93ef10-0bd5-11ea-81bb-cf244189d349","name":"e0104818-b373-4a20-990a-aa7558522e9e:panel_e0104818-b373-4a20-990a-aa7558522e9e","type":"visualization"},{"id":"fab93e30-0bbd-11ea-81bb-cf244189d349","name":"7b83ee6f-cd69-4748-80c5-305fdf49b9d0:panel_7b83ee6f-cd69-4748-80c5-305fdf49b9d0","type":"visualization"},{"id":"99f41030-0bd5-11ea-81bb-cf244189d349","name":"b2cfe5e4-f220-480e-91fa-4088484eda17:panel_b2cfe5e4-f220-480e-91fa-4088484eda17","type":"visualization"},{"id":"55cc9840-0bd6-11ea-81bb-cf244189d349","name":"5f4b107c-94d0-4bdb-be30-b3cd26257658:panel_5f4b107c-94d0-4bdb-be30-b3cd26257658","type":"visualization"},{"id":"8599cea0-0c2e-11ea-81bb-cf244189d349","name":"b5a5ea30-c313-4c80-8e28-2894f292d779:panel_b5a5ea30-c313-4c80-8e28-2894f292d779","type":"visualization"},{"id":"a8ac8950-0c2e-11ea-81bb-cf244189d349","name":"4a004976-426b-445e-9ecf-1f9964074523:panel_4a004976-426b-445e-9ecf-1f9964074523","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:55.793Z","version":"WzQxODUsMV0="} diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-topics-overview.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-topics-overview.json deleted file mode 100644 index 652e31317b4..00000000000 --- a/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-topics-overview.json +++ /dev/null @@ -1,788 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "The dashboard presents metric data describing ActiveMQ topics. Metrics show statistics of exchanged messages, consumers, producers and memory usage.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "099a7d74-8287-4717-b1d1-77f7ed2b67d0", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "099a7d74-8287-4717-b1d1-77f7ed2b67d0", - "panelRefName": "panel_0", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "c22e6794-6c79-4f2d-b942-f4a4bb73948e", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "c22e6794-6c79-4f2d-b942-f4a4bb73948e", - "panelRefName": "panel_1", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "adb64a5b-bfe9-4225-a712-f51ad30cab9d", - "w": 24, - "x": 0, - "y": 15 - }, - "panelIndex": "adb64a5b-bfe9-4225-a712-f51ad30cab9d", - "panelRefName": "panel_2", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "09ea3c98-d808-4c5f-9d04-7a94fd3cc2c8", - "w": 24, - "x": 24, - "y": 30 - }, - "panelIndex": "09ea3c98-d808-4c5f-9d04-7a94fd3cc2c8", - "panelRefName": "panel_3", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "43902672-df24-4be2-beb5-34961f190b5c", - "w": 24, - "x": 0, - "y": 30 - }, - "panelIndex": "43902672-df24-4be2-beb5-34961f190b5c", - "panelRefName": "panel_4", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "ddce0ec5-f393-4479-a8a9-e1c7ffc339cb", - "w": 24, - "x": 24, - "y": 45 - }, - "panelIndex": "ddce0ec5-f393-4479-a8a9-e1c7ffc339cb", - "panelRefName": "panel_5", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "c591ef68-9215-49de-a548-30196faa31bd", - "w": 24, - "x": 0, - "y": 45 - }, - "panelIndex": "c591ef68-9215-49de-a548-30196faa31bd", - "panelRefName": "panel_6", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "88a65079-a0b4-49c7-abbe-6e181c5dbbc3", - "w": 24, - "x": 24, - "y": 15 - }, - "panelIndex": "88a65079-a0b4-49c7-abbe-6e181c5dbbc3", - "panelRefName": "panel_7", - "version": "7.4.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat ActiveMQ] Topics Overview", - "version": 1 - }, - "id": "d97b7520-0bbe-11ea-81bb-cf244189d349", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "a85c09b0-0bbd-11ea-81bb-cf244189d349", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "e91f2b80-0bbd-11ea-81bb-cf244189d349", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "d22e5e00-0bbd-11ea-81bb-cf244189d349", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "8ae8aa90-0bc8-11ea-81bb-cf244189d349", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "21fb23a0-0bbe-11ea-81bb-cf244189d349", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "89de30b0-0bce-11ea-81bb-cf244189d349", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "e73c2af0-0bce-11ea-81bb-cf244189d349", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "3db29790-0bd7-11ea-81bb-cf244189d349", - "name": "panel_7", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-11-21T13:34:10.940Z", - "version": "WzQ1MSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Topics Messages Dequeue [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Dequeue", - "line_width": 1, - "metrics": [ - { - "field": "activemq.topic.messages.dequeue.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "activemq.topic.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Topics Messages Dequeue [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "a85c09b0-0bbd-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-21T13:34:10.940Z", - "version": "WzQ1MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Topics Messages Enqueue [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Enqueue", - "line_width": 1, - "metrics": [ - { - "field": "activemq.topic.messages.enqueue.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "activemq.topic.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Topics Messages Enqueue [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "e91f2b80-0bbd-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-21T13:34:10.940Z", - "version": "WzQ1MywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Topics Messages Dispatch [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Dispatch", - "line_width": 1, - "metrics": [ - { - "field": "activemq.topic.messages.dispatch.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "activemq.topic.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Topics Messages Dispatch [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "d22e5e00-0bbd-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-21T13:34:10.940Z", - "version": "WzQ1NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Topics Messages Enqueue Time [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(226,115,0,1)", - "fill": 0.5, - "formatter": "ms,ms,", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "activemq.topic.messages.enqueue.time.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "activemq.topic.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Topics Messages Enqueue Time [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "8ae8aa90-0bc8-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-22T12:42:45.591Z", - "version": "WzUyNiwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Topics Messages In-flight [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "In-flight", - "line_width": 1, - "metrics": [ - { - "field": "activemq.topic.messages.inflight.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "activemq.topic.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Topics Messages In-flight [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "21fb23a0-0bbe-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-21T13:34:10.940Z", - "version": "WzQ1NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Topics Producers [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Producers", - "line_width": 1, - "metrics": [ - { - "field": "activemq.topic.producers.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "activemq.topic.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Topics Producers [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "89de30b0-0bce-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-21T13:34:10.940Z", - "version": "WzQ1NywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Topics Consumers [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Consumers", - "line_width": 1, - "metrics": [ - { - "field": "activemq.topic.consumers.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "activemq.topic.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Topics Consumers [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "e73c2af0-0bce-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-21T13:34:10.940Z", - "version": "WzQ1OCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Topics Messages Expired [Metricbeat ActiveMQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(174,161,255,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Expired", - "line_width": 1, - "metrics": [ - { - "field": "activemq.topic.messages.expired.count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "activemq.topic.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Topics Messages Expired [Metricbeat ActiveMQ]", - "type": "metrics" - } - }, - "id": "3db29790-0bd7-11ea-81bb-cf244189d349", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-11-21T13:34:10.940Z", - "version": "WzQ1OSwxXQ==" - } - ], - "version": "7.4.0" -} diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-topics-overview.ndjson b/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-topics-overview.ndjson new file mode 100644 index 00000000000..2523b4128dd --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-topics-overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Topics Messages Dequeue [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Dequeue\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.topic.messages.dequeue.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.topic.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Topics Messages Dequeue [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a85c09b0-0bbd-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:56.871Z","version":"WzQxOTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Topics Messages Enqueue [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Enqueue\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.topic.messages.enqueue.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.topic.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Topics Messages Enqueue [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e91f2b80-0bbd-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:56.871Z","version":"WzQxOTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Topics Messages Dispatch [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Dispatch\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.topic.messages.dispatch.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.topic.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Topics Messages Dispatch [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d22e5e00-0bbd-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:56.871Z","version":"WzQxOTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Topics Messages Enqueue Time [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":0.5,\"formatter\":\"ms,ms,\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.topic.messages.enqueue.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.topic.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Topics Messages Enqueue Time [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8ae8aa90-0bc8-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:56.871Z","version":"WzQxOTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Topics Messages In-flight [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"In-flight\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.topic.messages.inflight.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.topic.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Topics Messages In-flight [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"21fb23a0-0bbe-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:56.871Z","version":"WzQxOTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Topics Producers [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Producers\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.topic.producers.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.topic.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Topics Producers [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"89de30b0-0bce-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:56.871Z","version":"WzQyMDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Topics Consumers [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Consumers\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.topic.consumers.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.topic.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Topics Consumers [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e73c2af0-0bce-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:56.871Z","version":"WzQyMDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Topics Messages Expired [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(174,161,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Expired\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.topic.messages.expired.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.topic.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Topics Messages Expired [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3db29790-0bd7-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:56.871Z","version":"WzQyMDIsMV0="} +{"attributes":{"description":"The dashboard presents metric data describing ActiveMQ topics. Metrics show statistics of exchanged messages, consumers, producers and memory usage.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"099a7d74-8287-4717-b1d1-77f7ed2b67d0\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"099a7d74-8287-4717-b1d1-77f7ed2b67d0\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_099a7d74-8287-4717-b1d1-77f7ed2b67d0\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"c22e6794-6c79-4f2d-b942-f4a4bb73948e\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"c22e6794-6c79-4f2d-b942-f4a4bb73948e\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_c22e6794-6c79-4f2d-b942-f4a4bb73948e\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"adb64a5b-bfe9-4225-a712-f51ad30cab9d\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"adb64a5b-bfe9-4225-a712-f51ad30cab9d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_adb64a5b-bfe9-4225-a712-f51ad30cab9d\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"09ea3c98-d808-4c5f-9d04-7a94fd3cc2c8\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"09ea3c98-d808-4c5f-9d04-7a94fd3cc2c8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_09ea3c98-d808-4c5f-9d04-7a94fd3cc2c8\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"43902672-df24-4be2-beb5-34961f190b5c\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"43902672-df24-4be2-beb5-34961f190b5c\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_43902672-df24-4be2-beb5-34961f190b5c\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"ddce0ec5-f393-4479-a8a9-e1c7ffc339cb\",\"w\":24,\"x\":24,\"y\":45},\"panelIndex\":\"ddce0ec5-f393-4479-a8a9-e1c7ffc339cb\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_ddce0ec5-f393-4479-a8a9-e1c7ffc339cb\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"c591ef68-9215-49de-a548-30196faa31bd\",\"w\":24,\"x\":0,\"y\":45},\"panelIndex\":\"c591ef68-9215-49de-a548-30196faa31bd\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_c591ef68-9215-49de-a548-30196faa31bd\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"88a65079-a0b4-49c7-abbe-6e181c5dbbc3\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"88a65079-a0b4-49c7-abbe-6e181c5dbbc3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_88a65079-a0b4-49c7-abbe-6e181c5dbbc3\"}]","timeRestore":false,"title":"[Metricbeat ActiveMQ] Topics Overview","version":1},"coreMigrationVersion":"8.0.0","id":"d97b7520-0bbe-11ea-81bb-cf244189d349","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a85c09b0-0bbd-11ea-81bb-cf244189d349","name":"099a7d74-8287-4717-b1d1-77f7ed2b67d0:panel_099a7d74-8287-4717-b1d1-77f7ed2b67d0","type":"visualization"},{"id":"e91f2b80-0bbd-11ea-81bb-cf244189d349","name":"c22e6794-6c79-4f2d-b942-f4a4bb73948e:panel_c22e6794-6c79-4f2d-b942-f4a4bb73948e","type":"visualization"},{"id":"d22e5e00-0bbd-11ea-81bb-cf244189d349","name":"adb64a5b-bfe9-4225-a712-f51ad30cab9d:panel_adb64a5b-bfe9-4225-a712-f51ad30cab9d","type":"visualization"},{"id":"8ae8aa90-0bc8-11ea-81bb-cf244189d349","name":"09ea3c98-d808-4c5f-9d04-7a94fd3cc2c8:panel_09ea3c98-d808-4c5f-9d04-7a94fd3cc2c8","type":"visualization"},{"id":"21fb23a0-0bbe-11ea-81bb-cf244189d349","name":"43902672-df24-4be2-beb5-34961f190b5c:panel_43902672-df24-4be2-beb5-34961f190b5c","type":"visualization"},{"id":"89de30b0-0bce-11ea-81bb-cf244189d349","name":"ddce0ec5-f393-4479-a8a9-e1c7ffc339cb:panel_ddce0ec5-f393-4479-a8a9-e1c7ffc339cb","type":"visualization"},{"id":"e73c2af0-0bce-11ea-81bb-cf244189d349","name":"c591ef68-9215-49de-a548-30196faa31bd:panel_c591ef68-9215-49de-a548-30196faa31bd","type":"visualization"},{"id":"3db29790-0bd7-11ea-81bb-cf244189d349","name":"88a65079-a0b4-49c7-abbe-6e181c5dbbc3:panel_88a65079-a0b4-49c7-abbe-6e181c5dbbc3","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:56.871Z","version":"WzQxOTQsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-billing-overview.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-billing-overview.json deleted file mode 100644 index ab790cd6694..00000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-billing-overview.json +++ /dev/null @@ -1,964 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of AWS Billing Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 5, - "i": "89dccfe8-a25e-44ea-afdb-ff01ab1f05d6", - "w": 9, - "x": 0, - "y": 0 - }, - "panelIndex": "89dccfe8-a25e-44ea-afdb-ff01ab1f05d6", - "panelRefName": "panel_89dccfe8-a25e-44ea-afdb-ff01ab1f05d6", - "title": "AWS Account Filter", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "f1db16b5-ce0a-4f21-885f-434c16346c26", - "w": 8, - "x": 9, - "y": 0 - }, - "panelIndex": "f1db16b5-ce0a-4f21-885f-434c16346c26", - "panelRefName": "panel_f1db16b5-ce0a-4f21-885f-434c16346c26", - "title": "Current Total Unblended Cost", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "57912f48-42ec-4d3e-ba54-bf94757d1eec", - "w": 31, - "x": 17, - "y": 0 - }, - "panelIndex": "57912f48-42ec-4d3e-ba54-bf94757d1eec", - "panelRefName": "panel_57912f48-42ec-4d3e-ba54-bf94757d1eec", - "title": "Availability Zone Utilization", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 13, - "i": "221aab02-2747-4d84-9dde-028ccd51bdce", - "w": 9, - "x": 0, - "y": 5 - }, - "panelIndex": "221aab02-2747-4d84-9dde-028ccd51bdce", - "panelRefName": "panel_221aab02-2747-4d84-9dde-028ccd51bdce", - "title": "Total Estimated Charges For This Month", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 20, - "i": "376f236b-1365-4e80-8076-eec88c1a67bd", - "w": 24, - "x": 0, - "y": 18 - }, - "panelIndex": "376f236b-1365-4e80-8076-eec88c1a67bd", - "panelRefName": "panel_376f236b-1365-4e80-8076-eec88c1a67bd", - "title": "Cost Per Service Per User", - "type": "lens", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 20, - "i": "dd5220c2-dc8a-4d3e-964b-6137d1e447ad", - "w": 24, - "x": 24, - "y": 18 - }, - "panelIndex": "dd5220c2-dc8a-4d3e-964b-6137d1e447ad", - "panelRefName": "panel_dd5220c2-dc8a-4d3e-964b-6137d1e447ad", - "title": "High Spenders", - "type": "lens", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4", - "w": 24, - "x": 0, - "y": 38 - }, - "panelIndex": "1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4", - "panelRefName": "panel_1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4", - "title": "Top 10 Estimated Charges per Service Name", - "type": "lens", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 18, - "i": "60181fec-fea9-4f99-b5f9-a53ffbc2ac65", - "w": 24, - "x": 24, - "y": 38 - }, - "panelIndex": "60181fec-fea9-4f99-b5f9-a53ffbc2ac65", - "panelRefName": "panel_60181fec-fea9-4f99-b5f9-a53ffbc2ac65", - "title": "Daily Unblended Cost", - "type": "visualization", - "version": "7.11.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat AWS] Billing Overview", - "version": 1 - }, - "coreMigrationVersion": "7.11.0", - "id": "e6776b10-1534-11ea-841c-01bf20a6c8ba", - "migrationVersion": { - "dashboard": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "deab0260-2981-11e9-86eb-a3a07a77f530", - "name": "89dccfe8-a25e-44ea-afdb-ff01ab1f05d6:panel_89dccfe8-a25e-44ea-afdb-ff01ab1f05d6", - "type": "visualization" - }, - { - "id": "1731c440-e649-11ea-a838-3f4a45f85600", - "name": "f1db16b5-ce0a-4f21-885f-434c16346c26:panel_f1db16b5-ce0a-4f21-885f-434c16346c26", - "type": "visualization" - }, - { - "id": "a5670a20-e65a-11ea-a838-3f4a45f85600", - "name": "57912f48-42ec-4d3e-ba54-bf94757d1eec:panel_57912f48-42ec-4d3e-ba54-bf94757d1eec", - "type": "visualization" - }, - { - "id": "83f08eb0-1532-11ea-841c-01bf20a6c8ba", - "name": "221aab02-2747-4d84-9dde-028ccd51bdce:panel_221aab02-2747-4d84-9dde-028ccd51bdce", - "type": "visualization" - }, - { - "id": "b3da5ac0-e6f1-11ea-a5b5-d5a0accaec95", - "name": "376f236b-1365-4e80-8076-eec88c1a67bd:panel_376f236b-1365-4e80-8076-eec88c1a67bd", - "type": "lens" - }, - { - "id": "d7b399c0-e6f1-11ea-a5b5-d5a0accaec95", - "name": "dd5220c2-dc8a-4d3e-964b-6137d1e447ad:panel_dd5220c2-dc8a-4d3e-964b-6137d1e447ad", - "type": "lens" - }, - { - "id": "cde34840-e6f2-11ea-a5b5-d5a0accaec95", - "name": "1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4:panel_1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4", - "type": "lens" - }, - { - "id": "3e091620-e64b-11ea-a838-3f4a45f85600", - "name": "60181fec-fea9-4f99-b5f9-a53ffbc2ac65:panel_60181fec-fea9-4f99-b5f9-a53ffbc2ac65", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2021-06-16T19:03:42.260Z", - "version": "WzEwMzEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "AWS Account Filter [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.account.name", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "account name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "cloud.linked_account.name", - "id": "1623870032405", - "indexPatternRefName": "control_1_index_pattern", - "label": "linked account name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "1549397251041", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "AWS Account Filter [Metricbeat AWS]", - "type": "input_control_vis" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "deab0260-2981-11e9-86eb-a3a07a77f530", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2021-06-16T19:03:22.893Z", - "version": "WzEwMjcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Total Unblended Cost [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "cf04e620-e648-11ea-bdad-df8839db1393" - } - ], - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "aws.billing.group_definition.key : \"AZ\"" - }, - "hide_last_value_indicator": true, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=2d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "aws.billing.group_definition.key : \"AZ\"" - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Total Unblended Cost", - "line_width": 1, - "metrics": [ - { - "field": "aws.billing.UnblendedCost.amount", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "override_index_pattern": 1, - "point_size": 1, - "separate_axis": 0, - "series_drop_last_bucket": 0, - "series_index_pattern": "metricbeat-*", - "series_interval": "\u003e=2d", - "series_time_field": "@timestamp", - "split_color_mode": "kibana", - "split_mode": "filter", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "last_value", - "tooltip_mode": "show_all", - "type": "metric", - "use_kibana_indexes": false - }, - "title": "Total Unblended Cost [Metricbeat AWS]", - "type": "metrics" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "1731c440-e649-11ea-a838-3f4a45f85600", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-06-16T18:25:55.172Z", - "version": "Wzc2LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Availability Zone Utilization [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "exclude": "NoAZ", - "field": "aws.billing.group_by.AZ", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": true, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Availability Zone Utilization [Metricbeat AWS]", - "type": "pie" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "a5670a20-e65a-11ea-a838-3f4a45f85600", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2021-06-16T18:25:55.172Z", - "version": "Wzc3LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Total Estimated Charges [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "88a80e30-1530-11ea-961e-c1db9cc6166e" - } - ], - "bar_color_rules": [ - { - "id": "ebb52700-1531-11ea-961e-c1db9cc6166e" - } - ], - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "aws.billing.EstimatedCharges : * and not (aws.billing.ServiceName : * )" - }, - "gauge_color_rules": [ - { - "id": "e8a045e0-1531-11ea-961e-c1db9cc6166e" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "hide_last_value_indicator": true, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=1d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "aws.billing.EstimatedCharges : * and not (aws.billing.ServiceName : * )" - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Total Estimated Charges", - "line_width": 1, - "metrics": [ - { - "field": "aws.billing.EstimatedCharges", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "override_index_pattern": 1, - "point_size": 1, - "separate_axis": 0, - "series_drop_last_bucket": 0, - "series_index_pattern": "metricbeat-*", - "series_interval": "\u003e=1d", - "series_time_field": "@timestamp", - "split_color_mode": "gradient", - "split_mode": "filter", - "stacked": "none", - "time_range_mode": "last_value", - "value_template": "${{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "last_value", - "tooltip_mode": "show_all", - "type": "metric", - "use_kibana_indexes": false - }, - "title": "Total Estimated Charges [Metricbeat AWS]", - "type": "metrics" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "83f08eb0-1532-11ea-841c-01bf20a6c8ba", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-06-16T18:25:55.172Z", - "version": "Wzc4LDFd" - }, - { - "attributes": { - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3": { - "columnOrder": [ - "5d850e8e-f3e0-4ad2-9697-b8c00c03f753", - "a1f5b3b8-41da-452b-8683-7a9ca6b6267f", - "75188758-7734-4fc3-af1d-297c455715f0" - ], - "columns": { - "5d850e8e-f3e0-4ad2-9697-b8c00c03f753": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Service Name", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "75188758-7734-4fc3-af1d-297c455715f0", - "type": "column" - }, - "orderDirection": "desc", - "size": 5 - }, - "scale": "ordinal", - "sourceField": "aws.billing.group_by.SERVICE" - }, - "75188758-7734-4fc3-af1d-297c455715f0": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Total Unblended Cost", - "operationType": "sum", - "scale": "ratio", - "sourceField": "aws.billing.UnblendedCost.amount" - }, - "a1f5b3b8-41da-452b-8683-7a9ca6b6267f": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of aws.billing.group_by.aws:createdBy", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "75188758-7734-4fc3-af1d-297c455715f0", - "type": "column" - }, - "orderDirection": "desc", - "size": 10 - }, - "scale": "ordinal", - "sourceField": "aws.billing.group_by.aws:createdBy" - } - } - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "75188758-7734-4fc3-af1d-297c455715f0" - ], - "layerId": "cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3", - "seriesType": "bar_stacked", - "splitAccessor": "a1f5b3b8-41da-452b-8683-7a9ca6b6267f", - "xAccessor": "5d850e8e-f3e0-4ad2-9697-b8c00c03f753" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "bar_stacked" - } - }, - "title": "Cost Per Service Per User [Metricbeat AWS]", - "visualizationType": "lnsXY" - }, - "coreMigrationVersion": "7.11.0", - "id": "b3da5ac0-e6f1-11ea-a5b5-d5a0accaec95", - "migrationVersion": { - "lens": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3", - "type": "index-pattern" - } - ], - "type": "lens", - "updated_at": "2021-06-16T18:25:55.172Z", - "version": "Wzc5LDFd" - }, - { - "attributes": { - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3": { - "columnOrder": [ - "a1f5b3b8-41da-452b-8683-7a9ca6b6267f", - "75188758-7734-4fc3-af1d-297c455715f0" - ], - "columns": { - "75188758-7734-4fc3-af1d-297c455715f0": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Total Unblended Cost", - "operationType": "sum", - "scale": "ratio", - "sourceField": "aws.billing.UnblendedCost.amount" - }, - "a1f5b3b8-41da-452b-8683-7a9ca6b6267f": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Top Users", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "75188758-7734-4fc3-af1d-297c455715f0", - "type": "column" - }, - "orderDirection": "desc", - "size": 10 - }, - "scale": "ordinal", - "sourceField": "aws.billing.group_by.aws:createdBy" - } - } - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "75188758-7734-4fc3-af1d-297c455715f0" - ], - "layerId": "cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3", - "seriesType": "bar_horizontal", - "xAccessor": "a1f5b3b8-41da-452b-8683-7a9ca6b6267f" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "bar_horizontal" - } - }, - "title": "High Spenders [Metricbeat AWS]", - "visualizationType": "lnsXY" - }, - "coreMigrationVersion": "7.11.0", - "id": "d7b399c0-e6f1-11ea-a5b5-d5a0accaec95", - "migrationVersion": { - "lens": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3", - "type": "index-pattern" - } - ], - "type": "lens", - "updated_at": "2021-06-16T18:25:55.172Z", - "version": "WzgwLDFd" - }, - { - "attributes": { - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "dc597043-d867-4f94-ae90-f31ffc0c2674": { - "columnOrder": [ - "ea87bf3d-0a35-424b-b00b-3614c431b135", - "faa5dba4-1fab-4f88-b67f-28bafa26a32d", - "d54f4e58-d8dd-4404-8da9-12b667dd7910" - ], - "columns": { - "d54f4e58-d8dd-4404-8da9-12b667dd7910": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Estimated Charges", - "operationType": "average", - "scale": "ratio", - "sourceField": "aws.billing.EstimatedCharges" - }, - "ea87bf3d-0a35-424b-b00b-3614c431b135": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Service Names", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "d54f4e58-d8dd-4404-8da9-12b667dd7910", - "type": "column" - }, - "orderDirection": "desc", - "size": 10 - }, - "scale": "ordinal", - "sourceField": "aws.billing.ServiceName" - }, - "faa5dba4-1fab-4f88-b67f-28bafa26a32d": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "1d" - }, - "scale": "interval", - "sourceField": "@timestamp" - } - } - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "d54f4e58-d8dd-4404-8da9-12b667dd7910" - ], - "layerId": "dc597043-d867-4f94-ae90-f31ffc0c2674", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "ea87bf3d-0a35-424b-b00b-3614c431b135", - "xAccessor": "faa5dba4-1fab-4f88-b67f-28bafa26a32d" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line" - } - }, - "title": "Top 10 Estimated Charges per Service Name [Metricbeat AWS]", - "visualizationType": "lnsXY" - }, - "coreMigrationVersion": "7.11.0", - "id": "cde34840-e6f2-11ea-a5b5-d5a0accaec95", - "migrationVersion": { - "lens": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-dc597043-d867-4f94-ae90-f31ffc0c2674", - "type": "index-pattern" - } - ], - "type": "lens", - "updated_at": "2021-06-16T18:25:55.172Z", - "version": "WzgxLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Daily Unblended Cost [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "aws.billing.group_definition.key : \"AZ\"" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=1d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "rgba(118,208,7,1)", - "fill": "1", - "filter": { - "language": "kuery", - "query": "aws.billing.group_definition.key : \"AZ\"" - }, - "formatter": "number", - "hide_in_legend": 1, - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Total Unblended Cost", - "line_width": 1, - "metrics": [ - { - "field": "aws.billing.UnblendedCost.amount", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "filter", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 0, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries", - "use_kibana_indexes": false - }, - "title": "Daily Unblended Cost [Metricbeat AWS]", - "type": "metrics" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "3e091620-e64b-11ea-a838-3f4a45f85600", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-06-16T18:25:55.172Z", - "version": "WzgyLDFd" - } - ], - "version": "7.11.0" -} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-billing-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-billing-overview.ndjson new file mode 100644 index 00000000000..26cef205fb7 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-billing-overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Account Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.account.name\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"account name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Account Filter [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"deab0260-2981-11e9-86eb-a3a07a77f530","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total Unblended Cost [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cf04e620-e648-11ea-bdad-df8839db1393\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"aws.billing.group_definition.key : \\\"AZ\\\"\"},\"hide_last_value_indicator\":true,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=2d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"aws.billing.group_definition.key : \\\"AZ\\\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total Unblended Cost\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.billing.UnblendedCost.amount\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"override_index_pattern\":1,\"point_size\":1,\"separate_axis\":0,\"series_drop_last_bucket\":0,\"series_index_pattern\":\"metricbeat-*\",\"series_interval\":\">=2d\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"kibana\",\"split_mode\":\"filter\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"last_value\",\"tooltip_mode\":\"show_all\",\"type\":\"metric\",\"use_kibana_indexes\":false},\"title\":\"Total Unblended Cost [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1731c440-e649-11ea-a838-3f4a45f85600","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:25.535Z","version":"WzMzMTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Availability Zone Utilization [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"exclude\":\"NoAZ\",\"field\":\"aws.billing.group_by.AZ\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Availability Zone Utilization [Metricbeat AWS]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"a5670a20-e65a-11ea-a838-3f4a45f85600","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:25.535Z","version":"WzMzMTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total Estimated Charges [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"88a80e30-1530-11ea-961e-c1db9cc6166e\"}],\"bar_color_rules\":[{\"id\":\"ebb52700-1531-11ea-961e-c1db9cc6166e\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"aws.billing.EstimatedCharges : * and not (aws.billing.ServiceName : * )\"},\"gauge_color_rules\":[{\"id\":\"e8a045e0-1531-11ea-961e-c1db9cc6166e\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"hide_last_value_indicator\":true,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"aws.billing.EstimatedCharges : * and not (aws.billing.ServiceName : * )\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total Estimated Charges\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.billing.EstimatedCharges\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"override_index_pattern\":1,\"point_size\":1,\"separate_axis\":0,\"series_drop_last_bucket\":0,\"series_index_pattern\":\"metricbeat-*\",\"series_interval\":\">=1d\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"gradient\",\"split_mode\":\"filter\",\"stacked\":\"none\",\"time_range_mode\":\"last_value\",\"value_template\":\"${{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"last_value\",\"tooltip_mode\":\"show_all\",\"type\":\"metric\",\"use_kibana_indexes\":false},\"title\":\"Total Estimated Charges [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"83f08eb0-1532-11ea-841c-01bf20a6c8ba","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:25.535Z","version":"WzMzMTcsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3":{"columnOrder":["5d850e8e-f3e0-4ad2-9697-b8c00c03f753","a1f5b3b8-41da-452b-8683-7a9ca6b6267f","75188758-7734-4fc3-af1d-297c455715f0"],"columns":{"5d850e8e-f3e0-4ad2-9697-b8c00c03f753":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Service Name","operationType":"terms","params":{"orderBy":{"columnId":"75188758-7734-4fc3-af1d-297c455715f0","type":"column"},"orderDirection":"desc","size":5},"scale":"ordinal","sourceField":"aws.billing.group_by.SERVICE"},"75188758-7734-4fc3-af1d-297c455715f0":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total Unblended Cost","operationType":"sum","scale":"ratio","sourceField":"aws.billing.UnblendedCost.amount"},"a1f5b3b8-41da-452b-8683-7a9ca6b6267f":{"dataType":"string","isBucketed":true,"label":"Top values of aws.billing.group_by.aws:createdBy","operationType":"terms","params":{"orderBy":{"columnId":"75188758-7734-4fc3-af1d-297c455715f0","type":"column"},"orderDirection":"desc","size":10},"scale":"ordinal","sourceField":"aws.billing.group_by.aws:createdBy"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["75188758-7734-4fc3-af1d-297c455715f0"],"layerId":"cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3","seriesType":"bar_stacked","splitAccessor":"a1f5b3b8-41da-452b-8683-7a9ca6b6267f","xAccessor":"5d850e8e-f3e0-4ad2-9697-b8c00c03f753"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar_stacked"}},"title":"Cost Per Service Per User [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"b3da5ac0-e6f1-11ea-a5b5-d5a0accaec95","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:25.535Z","version":"WzMzMTgsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3":{"columnOrder":["a1f5b3b8-41da-452b-8683-7a9ca6b6267f","75188758-7734-4fc3-af1d-297c455715f0"],"columns":{"75188758-7734-4fc3-af1d-297c455715f0":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total Unblended Cost","operationType":"sum","scale":"ratio","sourceField":"aws.billing.UnblendedCost.amount"},"a1f5b3b8-41da-452b-8683-7a9ca6b6267f":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Top Users","operationType":"terms","params":{"orderBy":{"columnId":"75188758-7734-4fc3-af1d-297c455715f0","type":"column"},"orderDirection":"desc","size":10},"scale":"ordinal","sourceField":"aws.billing.group_by.aws:createdBy"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["75188758-7734-4fc3-af1d-297c455715f0"],"layerId":"cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3","seriesType":"bar_horizontal","xAccessor":"a1f5b3b8-41da-452b-8683-7a9ca6b6267f"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar_horizontal"}},"title":"High Spenders [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"d7b399c0-e6f1-11ea-a5b5-d5a0accaec95","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:25.535Z","version":"WzMzMTksMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"dc597043-d867-4f94-ae90-f31ffc0c2674":{"columnOrder":["ea87bf3d-0a35-424b-b00b-3614c431b135","faa5dba4-1fab-4f88-b67f-28bafa26a32d","d54f4e58-d8dd-4404-8da9-12b667dd7910"],"columns":{"d54f4e58-d8dd-4404-8da9-12b667dd7910":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Estimated Charges","operationType":"average","scale":"ratio","sourceField":"aws.billing.EstimatedCharges"},"ea87bf3d-0a35-424b-b00b-3614c431b135":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Service Names","operationType":"terms","params":{"orderBy":{"columnId":"d54f4e58-d8dd-4404-8da9-12b667dd7910","type":"column"},"orderDirection":"desc","size":10},"scale":"ordinal","sourceField":"aws.billing.ServiceName"},"faa5dba4-1fab-4f88-b67f-28bafa26a32d":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"1d"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["d54f4e58-d8dd-4404-8da9-12b667dd7910"],"layerId":"dc597043-d867-4f94-ae90-f31ffc0c2674","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"ea87bf3d-0a35-424b-b00b-3614c431b135","xAccessor":"faa5dba4-1fab-4f88-b67f-28bafa26a32d"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Top 10 Estimated Charges per Service Name [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"cde34840-e6f2-11ea-a5b5-d5a0accaec95","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-dc597043-d867-4f94-ae90-f31ffc0c2674","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:25.535Z","version":"WzMzMjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Daily Unblended Cost [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"aws.billing.group_definition.key : \\\"AZ\\\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"rgba(118,208,7,1)\",\"fill\":\"1\",\"filter\":{\"language\":\"kuery\",\"query\":\"aws.billing.group_definition.key : \\\"AZ\\\"\"},\"formatter\":\"number\",\"hide_in_legend\":1,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total Unblended Cost\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.billing.UnblendedCost.amount\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"filter\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":0,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Daily Unblended Cost [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3e091620-e64b-11ea-a838-3f4a45f85600","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:25.535Z","version":"WzMzMjEsMV0="} +{"attributes":{"description":"Overview of AWS Billing Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":5,\"i\":\"89dccfe8-a25e-44ea-afdb-ff01ab1f05d6\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"89dccfe8-a25e-44ea-afdb-ff01ab1f05d6\",\"panelRefName\":\"panel_89dccfe8-a25e-44ea-afdb-ff01ab1f05d6\",\"title\":\"AWS Account Filter\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"f1db16b5-ce0a-4f21-885f-434c16346c26\",\"w\":8,\"x\":9,\"y\":0},\"panelIndex\":\"f1db16b5-ce0a-4f21-885f-434c16346c26\",\"panelRefName\":\"panel_f1db16b5-ce0a-4f21-885f-434c16346c26\",\"title\":\"Current Total Unblended Cost\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"57912f48-42ec-4d3e-ba54-bf94757d1eec\",\"w\":31,\"x\":17,\"y\":0},\"panelIndex\":\"57912f48-42ec-4d3e-ba54-bf94757d1eec\",\"panelRefName\":\"panel_57912f48-42ec-4d3e-ba54-bf94757d1eec\",\"title\":\"Availability Zone Utilization\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":13,\"i\":\"221aab02-2747-4d84-9dde-028ccd51bdce\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"221aab02-2747-4d84-9dde-028ccd51bdce\",\"panelRefName\":\"panel_221aab02-2747-4d84-9dde-028ccd51bdce\",\"title\":\"Total Estimated Charges For This Month\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":20,\"i\":\"376f236b-1365-4e80-8076-eec88c1a67bd\",\"w\":24,\"x\":0,\"y\":18},\"panelIndex\":\"376f236b-1365-4e80-8076-eec88c1a67bd\",\"panelRefName\":\"panel_376f236b-1365-4e80-8076-eec88c1a67bd\",\"title\":\"Cost Per Service Per User\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":20,\"i\":\"dd5220c2-dc8a-4d3e-964b-6137d1e447ad\",\"w\":24,\"x\":24,\"y\":18},\"panelIndex\":\"dd5220c2-dc8a-4d3e-964b-6137d1e447ad\",\"panelRefName\":\"panel_dd5220c2-dc8a-4d3e-964b-6137d1e447ad\",\"title\":\"High Spenders\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4\",\"w\":24,\"x\":0,\"y\":38},\"panelIndex\":\"1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4\",\"panelRefName\":\"panel_1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4\",\"title\":\"Top 10 Estimated Charges per Service Name\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"60181fec-fea9-4f99-b5f9-a53ffbc2ac65\",\"w\":24,\"x\":24,\"y\":38},\"panelIndex\":\"60181fec-fea9-4f99-b5f9-a53ffbc2ac65\",\"panelRefName\":\"panel_60181fec-fea9-4f99-b5f9-a53ffbc2ac65\",\"title\":\"Daily Unblended Cost\",\"type\":\"visualization\",\"version\":\"7.11.0\"}]","timeRestore":false,"title":"[Metricbeat AWS] Billing Overview","version":1},"coreMigrationVersion":"8.0.0","id":"e6776b10-1534-11ea-841c-01bf20a6c8ba","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"deab0260-2981-11e9-86eb-a3a07a77f530","name":"89dccfe8-a25e-44ea-afdb-ff01ab1f05d6:panel_89dccfe8-a25e-44ea-afdb-ff01ab1f05d6","type":"visualization"},{"id":"1731c440-e649-11ea-a838-3f4a45f85600","name":"f1db16b5-ce0a-4f21-885f-434c16346c26:panel_f1db16b5-ce0a-4f21-885f-434c16346c26","type":"visualization"},{"id":"a5670a20-e65a-11ea-a838-3f4a45f85600","name":"57912f48-42ec-4d3e-ba54-bf94757d1eec:panel_57912f48-42ec-4d3e-ba54-bf94757d1eec","type":"visualization"},{"id":"83f08eb0-1532-11ea-841c-01bf20a6c8ba","name":"221aab02-2747-4d84-9dde-028ccd51bdce:panel_221aab02-2747-4d84-9dde-028ccd51bdce","type":"visualization"},{"id":"b3da5ac0-e6f1-11ea-a5b5-d5a0accaec95","name":"376f236b-1365-4e80-8076-eec88c1a67bd:panel_376f236b-1365-4e80-8076-eec88c1a67bd","type":"lens"},{"id":"d7b399c0-e6f1-11ea-a5b5-d5a0accaec95","name":"dd5220c2-dc8a-4d3e-964b-6137d1e447ad:panel_dd5220c2-dc8a-4d3e-964b-6137d1e447ad","type":"lens"},{"id":"cde34840-e6f2-11ea-a5b5-d5a0accaec95","name":"1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4:panel_1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4","type":"lens"},{"id":"3e091620-e64b-11ea-a838-3f4a45f85600","name":"60181fec-fea9-4f99-b5f9-a53ffbc2ac65:panel_60181fec-fea9-4f99-b5f9-a53ffbc2ac65","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:25.535Z","version":"WzMzMTMsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-dynamodb-overview.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-dynamodb-overview.json deleted file mode 100644 index e53ffd4a4de..00000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-dynamodb-overview.json +++ /dev/null @@ -1,1315 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of DynamoDB AWS Cloudwatch metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Region/Account Filters" - }, - "gridData": { - "h": 9, - "i": "9642fcd0-464b-46ea-815c-cd2d9efc056d", - "w": 10, - "x": 0, - "y": 0 - }, - "panelIndex": "9642fcd0-464b-46ea-815c-cd2d9efc056d", - "panelRefName": "panel_0", - "title": "Region/Account Filters", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Consumed Read Capacity Units" - }, - "gridData": { - "h": 9, - "i": "bb4b0cfa-7d6f-48e3-913e-2713c5aa3fe0", - "w": 14, - "x": 10, - "y": 0 - }, - "panelIndex": "bb4b0cfa-7d6f-48e3-913e-2713c5aa3fe0", - "panelRefName": "panel_1", - "title": "Consumed Read Capacity Units", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Consumed Write Capacity Units" - }, - "gridData": { - "h": 9, - "i": "09bdf20b-43b4-47a3-a113-d34ef3b2596c", - "w": 14, - "x": 24, - "y": 0 - }, - "panelIndex": "09bdf20b-43b4-47a3-a113-d34ef3b2596c", - "panelRefName": "panel_2", - "title": "Consumed Write Capacity Units", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Max Read/Write Account Limits" - }, - "gridData": { - "h": 9, - "i": "1bd7141d-b410-4ca0-8550-f8f645d97983", - "w": 10, - "x": 38, - "y": 0 - }, - "panelIndex": "1bd7141d-b410-4ca0-8550-f8f645d97983", - "panelRefName": "panel_3", - "title": "Max Read/Write Account Limits", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Successful Request Latency" - }, - "gridData": { - "h": 10, - "i": "073302ad-0e44-4cd1-b16d-58f017a71816", - "w": 17, - "x": 0, - "y": 9 - }, - "panelIndex": "073302ad-0e44-4cd1-b16d-58f017a71816", - "panelRefName": "panel_4", - "title": "Successful Request Latency", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Read Throttle Events" - }, - "gridData": { - "h": 10, - "i": "ddcbc858-d2a0-42c3-8074-74f7d08ecb60", - "w": 16, - "x": 17, - "y": 9 - }, - "panelIndex": "ddcbc858-d2a0-42c3-8074-74f7d08ecb60", - "panelRefName": "panel_5", - "title": "Read Throttle Events", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Throttle Requests" - }, - "gridData": { - "h": 10, - "i": "95ffd42d-b28d-4f40-b3cb-6a6ac52943e1", - "w": 15, - "x": 33, - "y": 9 - }, - "panelIndex": "95ffd42d-b28d-4f40-b3cb-6a6ac52943e1", - "panelRefName": "panel_6", - "title": "Throttle Requests", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Max Request Latency Per Operation" - }, - "gridData": { - "h": 11, - "i": "0a588a08-997a-422f-a5db-e56728bc6702", - "w": 17, - "x": 0, - "y": 19 - }, - "panelIndex": "0a588a08-997a-422f-a5db-e56728bc6702", - "panelRefName": "panel_7", - "title": "Max Request Latency Per Operation", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Write Throttle Events" - }, - "gridData": { - "h": 11, - "i": "897ae224-d367-4fe0-aa23-5bb13165cc67", - "w": 16, - "x": 17, - "y": 19 - }, - "panelIndex": "897ae224-d367-4fe0-aa23-5bb13165cc67", - "panelRefName": "panel_8", - "title": "Write Throttle Events", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Account Provisioned Write Capacity Utilization" - }, - "gridData": { - "h": 11, - "i": "e81e9817-c971-454b-881a-09cec10da0e9", - "w": 15, - "x": 33, - "y": 19 - }, - "panelIndex": "e81e9817-c971-454b-881a-09cec10da0e9", - "panelRefName": "panel_9", - "title": "Account Provisioned Write Capacity Utilization", - "version": "7.6.2" - } - ], - "timeRestore": false, - "title": "[Metricbeat AWS] DynamoDB Overview", - "version": 1 - }, - "id": "68ba7bd0-20b6-11ea-8f72-2f8d21e50b0c", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "bc8bd8f0-31fd-11ea-bcbf-59cb7eefc1f0", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "9d284bc0-7b08-11ea-9bb4-e958b64b5685", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "49379b70-7b07-11ea-9bb4-e958b64b5685", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "7d1e0870-7a3f-11ea-bfa4-dfea8c457654", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "8cf5fbe0-7b07-11ea-9bb4-e958b64b5685", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "7b93bab0-7b0a-11ea-9bb4-e958b64b5685", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "9f0425c0-7b0a-11ea-9bb4-e958b64b5685", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "3dee68c0-7b0c-11ea-9bb4-e958b64b5685", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "b403f7b0-7b15-11ea-9bb4-e958b64b5685", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "31ad4090-2003-11ea-8f72-2f8d21e50b0c", - "name": "panel_9", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-04-10T10:32:31.580Z", - "version": "WzUwNTYsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Region/Account Filters [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.region", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "region", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "cloud.account.name", - "id": "1549512126406", - "indexPatternRefName": "control_1_index_pattern", - "label": "account name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "Region/Account Filters [Metricbeat AWS]", - "type": "input_control_vis" - } - }, - "id": "bc8bd8f0-31fd-11ea-bcbf-59cb7eefc1f0", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-04-10T10:11:30.282Z", - "version": "WzQ3ODcsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "DynamoDB Consumed Read Capacity Units [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "43e58670-7b05-11ea-8ef8-01625a2f68ac" - } - ], - "bar_color_rules": [ - { - "id": "3c733ea0-7b05-11ea-8ef8-01625a2f68ac" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "gauge_color_rules": [ - { - "id": "499c62a0-7b05-11ea-8ef8-01625a2f68ac" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0.1", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Consumed Read Capacity Units", - "line_width": 1, - "metrics": [ - { - "field": "aws.dynamodb.metrics.ConsumedReadCapacityUnits.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "offset_time": "", - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_field": "aws.dimensions.TableName", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "DynamoDB Consumed Read Capacity Units [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "9d284bc0-7b08-11ea-9bb4-e958b64b5685", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-10T10:11:30.282Z", - "version": "WzQ3ODgsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "DynamoDB Consumed Write Capacity Units [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "43e58670-7b05-11ea-8ef8-01625a2f68ac" - } - ], - "bar_color_rules": [ - { - "id": "3c733ea0-7b05-11ea-8ef8-01625a2f68ac" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "gauge_color_rules": [ - { - "id": "499c62a0-7b05-11ea-8ef8-01625a2f68ac" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0.1", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Consumed Write Capacity Units", - "line_width": 1, - "metrics": [ - { - "field": "aws.dynamodb.metrics.ConsumedWriteCapacityUnits.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "offset_time": "", - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_field": "aws.dimensions.TableName", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "DynamoDB Consumed Write Capacity Units [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "49379b70-7b07-11ea-9bb4-e958b64b5685", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-10T10:11:30.282Z", - "version": "WzQ3ODksNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index" - } - }, - "title": "DynamoDB Max Read/Write Account Limits [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Reads", - "field": "aws.dynamodb.metrics.AccountMaxReads.max" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Table Reads", - "field": "aws.dynamodb.metrics.AccountMaxTableLevelReads.max" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Writes", - "field": "aws.dynamodb.metrics.AccountMaxWrites.max" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Table Writes", - "field": "aws.dynamodb.metrics.AccountMaxTableLevelWrites.max" - }, - "schema": "metric", - "type": "max" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "dimensions": { - "x": null, - "y": [ - { - "accessor": 0, - "aggType": "max", - "format": { - "id": "number", - "params": { - "parsedUrl": { - "basePath": "", - "origin": "http://localhost:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "Reads", - "params": {} - }, - { - "accessor": 1, - "aggType": "max", - "format": { - "id": "number", - "params": { - "parsedUrl": { - "basePath": "", - "origin": "http://localhost:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "Table Reads", - "params": {} - }, - { - "accessor": 2, - "aggType": "max", - "format": { - "id": "number", - "params": { - "parsedUrl": { - "basePath": "", - "origin": "http://localhost:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "Writes", - "params": {} - } - ] - }, - "grid": { - "categoryLines": false - }, - "labels": { - "show": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Reads" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "2", - "label": "Table Reads" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "3", - "label": "Writes" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "4", - "label": "Table Writes" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Account Max Reads" - }, - "type": "value" - } - ] - }, - "title": "DynamoDB Max Read/Write Account Limits [Metricbeat AWS]", - "type": "histogram" - } - }, - "id": "7d1e0870-7a3f-11ea-bfa4-dfea8c457654", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-04-10T10:11:30.282Z", - "version": "WzQ3OTAsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "DynamoDB Successful Request Latency [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "43e58670-7b05-11ea-8ef8-01625a2f68ac" - } - ], - "bar_color_rules": [ - { - "id": "3c733ea0-7b05-11ea-8ef8-01625a2f68ac" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "gauge_color_rules": [ - { - "id": "499c62a0-7b05-11ea-8ef8-01625a2f68ac" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0.1", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Successful Request Latency", - "line_width": 1, - "metrics": [ - { - "field": "aws.dynamodb.metrics.SuccessfulRequestLatency.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "offset_time": "", - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_field": "aws.dimensions.TableName", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "DynamoDB Successful Request Latency [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "8cf5fbe0-7b07-11ea-9bb4-e958b64b5685", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-10T10:11:30.282Z", - "version": "WzQ3OTEsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "DynamoDB Read Throttle Events [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0.1", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Read Throttle Events", - "line_width": 1, - "metrics": [ - { - "field": "aws.dynamodb.metrics.ReadThrottleEvents.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.TableName", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "DynamoDB Read Throttle Events [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "7b93bab0-7b0a-11ea-9bb4-e958b64b5685", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-10T10:11:30.282Z", - "version": "WzQ3OTMsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "DynamoDB Throttle Requests [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0.1", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Throttled Requests", - "line_width": 1, - "metrics": [ - { - "field": "aws.dynamodb.metrics.ThrottledRequests.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.TableName", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "DynamoDB Throttle Requests [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "9f0425c0-7b0a-11ea-9bb4-e958b64b5685", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-10T10:11:30.282Z", - "version": "WzQ3OTQsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "DynamoDB Max Request Latency Per Operation [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0.1", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Max Request Latency Per Operation", - "line_width": 1, - "metrics": [ - { - "field": "aws.dynamodb.metrics.SuccessfulRequestLatency.max", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.Operation", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "DynamoDB Max Request Latency Per Operation [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "3dee68c0-7b0c-11ea-9bb4-e958b64b5685", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-10T10:11:30.282Z", - "version": "WzQ3OTUsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "DynamoDB Write Throttle Events [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0.1", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Write Throttle Events", - "line_width": 1, - "metrics": [ - { - "field": "aws.dynamodb.metrics.WriteThrottleEvents.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.TableName", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "DynamoDB Write Throttle Events [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "b403f7b0-7b15-11ea-9bb4-e958b64b5685", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-10T10:26:13.291Z", - "version": "WzUwNTAsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "DynamoDB Account Provisioned Capacity Utilization [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Write Utilization", - "field": "aws.dynamodb.metrics.AccountProvisionedWriteCapacityUtilization.avg" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "2", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "now-15m", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Read Utilization", - "field": "aws.dynamodb.metrics.AccountProvisionedReadCapacityUtilization.avg" - }, - "schema": "metric", - "type": "max" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "dimensions": { - "x": { - "accessor": 0, - "aggType": "date_histogram", - "format": { - "id": "date", - "params": { - "pattern": "HH:mm:ss" - } - }, - "label": "@timestamp per 30 seconds", - "params": { - "bounds": { - "max": "2020-04-10T10:29:58.462Z", - "min": "2020-04-10T10:14:58.462Z" - }, - "date": true, - "format": "HH:mm:ss", - "interval": "PT30S", - "intervalESUnit": "s", - "intervalESValue": 30 - } - }, - "y": [ - { - "accessor": 1, - "aggType": "max", - "format": { - "id": "number", - "params": { - "parsedUrl": { - "basePath": "", - "origin": "http://localhost:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "Write Utilization", - "params": {} - }, - { - "accessor": 2, - "aggType": "max", - "format": { - "id": "number", - "params": { - "parsedUrl": { - "basePath": "", - "origin": "http://localhost:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "Read Utilization", - "params": {} - } - ] - }, - "grid": { - "categoryLines": false - }, - "labels": {}, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Write Utilization" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "3", - "label": "Read Utilization" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#34130C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Write Utilization" - }, - "type": "value" - } - ] - }, - "title": "DynamoDB Account Provisioned Capacity Utilization [Metricbeat AWS]", - "type": "line" - } - }, - "id": "31ad4090-2003-11ea-8f72-2f8d21e50b0c", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-04-10T10:30:33.840Z", - "version": "WzUwNTQsNV0=" - } - ], - "version": "7.6.2" -} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-dynamodb-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-dynamodb-overview.ndjson new file mode 100644 index 00000000000..7f9f7acafbe --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-dynamodb-overview.ndjson @@ -0,0 +1,11 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Region/Account Filters [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"cloud.account.name\",\"id\":\"1549512126406\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"account name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Region/Account Filters [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"bc8bd8f0-31fd-11ea-bcbf-59cb7eefc1f0","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DynamoDB Consumed Read Capacity Units [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"43e58670-7b05-11ea-8ef8-01625a2f68ac\"}],\"bar_color_rules\":[{\"id\":\"3c733ea0-7b05-11ea-8ef8-01625a2f68ac\"}],\"drop_last_bucket\":1,\"gauge_color_rules\":[{\"id\":\"499c62a0-7b05-11ea-8ef8-01625a2f68ac\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Consumed Read Capacity Units\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.dynamodb.metrics.ConsumedReadCapacityUnits.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"aws.dimensions.TableName\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"DynamoDB Consumed Read Capacity Units [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9d284bc0-7b08-11ea-9bb4-e958b64b5685","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DynamoDB Consumed Write Capacity Units [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"43e58670-7b05-11ea-8ef8-01625a2f68ac\"}],\"bar_color_rules\":[{\"id\":\"3c733ea0-7b05-11ea-8ef8-01625a2f68ac\"}],\"drop_last_bucket\":1,\"gauge_color_rules\":[{\"id\":\"499c62a0-7b05-11ea-8ef8-01625a2f68ac\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Consumed Write Capacity Units\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.dynamodb.metrics.ConsumedWriteCapacityUnits.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"aws.dimensions.TableName\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"DynamoDB Consumed Write Capacity Units [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"49379b70-7b07-11ea-9bb4-e958b64b5685","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"DynamoDB Max Read/Write Account Limits [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Reads\",\"field\":\"aws.dynamodb.metrics.AccountMaxReads.max\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Table Reads\",\"field\":\"aws.dynamodb.metrics.AccountMaxTableLevelReads.max\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Writes\",\"field\":\"aws.dynamodb.metrics.AccountMaxWrites.max\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Table Writes\",\"field\":\"aws.dynamodb.metrics.AccountMaxTableLevelWrites.max\"},\"schema\":\"metric\",\"type\":\"max\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"x\":null,\"y\":[{\"accessor\":0,\"aggType\":\"max\",\"format\":{\"id\":\"number\",\"params\":{\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Reads\",\"params\":{}},{\"accessor\":1,\"aggType\":\"max\",\"format\":{\"id\":\"number\",\"params\":{\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Table Reads\",\"params\":{}},{\"accessor\":2,\"aggType\":\"max\",\"format\":{\"id\":\"number\",\"params\":{\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Writes\",\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Reads\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"2\",\"label\":\"Table Reads\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Writes\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"4\",\"label\":\"Table Writes\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Account Max Reads\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"DynamoDB Max Read/Write Account Limits [Metricbeat AWS]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"7d1e0870-7a3f-11ea-bfa4-dfea8c457654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DynamoDB Successful Request Latency [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"43e58670-7b05-11ea-8ef8-01625a2f68ac\"}],\"bar_color_rules\":[{\"id\":\"3c733ea0-7b05-11ea-8ef8-01625a2f68ac\"}],\"drop_last_bucket\":1,\"gauge_color_rules\":[{\"id\":\"499c62a0-7b05-11ea-8ef8-01625a2f68ac\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Successful Request Latency\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.dynamodb.metrics.SuccessfulRequestLatency.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"aws.dimensions.TableName\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"DynamoDB Successful Request Latency [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8cf5fbe0-7b07-11ea-9bb4-e958b64b5685","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DynamoDB Read Throttle Events [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Read Throttle Events\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.dynamodb.metrics.ReadThrottleEvents.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TableName\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"DynamoDB Read Throttle Events [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7b93bab0-7b0a-11ea-9bb4-e958b64b5685","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DynamoDB Throttle Requests [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Throttled Requests\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.dynamodb.metrics.ThrottledRequests.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TableName\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"DynamoDB Throttle Requests [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9f0425c0-7b0a-11ea-9bb4-e958b64b5685","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMjksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DynamoDB Max Request Latency Per Operation [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Max Request Latency Per Operation\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.dynamodb.metrics.SuccessfulRequestLatency.max\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.Operation\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"DynamoDB Max Request Latency Per Operation [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3dee68c0-7b0c-11ea-9bb4-e958b64b5685","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DynamoDB Write Throttle Events [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Write Throttle Events\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.dynamodb.metrics.WriteThrottleEvents.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TableName\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"DynamoDB Write Throttle Events [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b403f7b0-7b15-11ea-9bb4-e958b64b5685","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMzEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"DynamoDB Account Provisioned Capacity Utilization [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Write Utilization\",\"field\":\"aws.dynamodb.metrics.AccountProvisionedWriteCapacityUtilization.avg\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-15m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Read Utilization\",\"field\":\"aws.dynamodb.metrics.AccountProvisionedReadCapacityUtilization.avg\"},\"schema\":\"metric\",\"type\":\"max\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"HH:mm:ss\"}},\"label\":\"@timestamp per 30 seconds\",\"params\":{\"bounds\":{\"max\":\"2020-04-10T10:29:58.462Z\",\"min\":\"2020-04-10T10:14:58.462Z\"},\"date\":true,\"format\":\"HH:mm:ss\",\"interval\":\"PT30S\",\"intervalESUnit\":\"s\",\"intervalESValue\":30}},\"y\":[{\"accessor\":1,\"aggType\":\"max\",\"format\":{\"id\":\"number\",\"params\":{\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Write Utilization\",\"params\":{}},{\"accessor\":2,\"aggType\":\"max\",\"format\":{\"id\":\"number\",\"params\":{\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Read Utilization\",\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Write Utilization\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Read Utilization\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#34130C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Write Utilization\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"DynamoDB Account Provisioned Capacity Utilization [Metricbeat AWS]\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"31ad4090-2003-11ea-8f72-2f8d21e50b0c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMzIsMV0="} +{"attributes":{"description":"Overview of DynamoDB AWS Cloudwatch metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"9642fcd0-464b-46ea-815c-cd2d9efc056d\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"9642fcd0-464b-46ea-815c-cd2d9efc056d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Region/Account Filters\",\"panelRefName\":\"panel_9642fcd0-464b-46ea-815c-cd2d9efc056d\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"bb4b0cfa-7d6f-48e3-913e-2713c5aa3fe0\",\"w\":14,\"x\":10,\"y\":0},\"panelIndex\":\"bb4b0cfa-7d6f-48e3-913e-2713c5aa3fe0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Consumed Read Capacity Units\",\"panelRefName\":\"panel_bb4b0cfa-7d6f-48e3-913e-2713c5aa3fe0\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"09bdf20b-43b4-47a3-a113-d34ef3b2596c\",\"w\":14,\"x\":24,\"y\":0},\"panelIndex\":\"09bdf20b-43b4-47a3-a113-d34ef3b2596c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Consumed Write Capacity Units\",\"panelRefName\":\"panel_09bdf20b-43b4-47a3-a113-d34ef3b2596c\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1bd7141d-b410-4ca0-8550-f8f645d97983\",\"w\":10,\"x\":38,\"y\":0},\"panelIndex\":\"1bd7141d-b410-4ca0-8550-f8f645d97983\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Max Read/Write Account Limits\",\"panelRefName\":\"panel_1bd7141d-b410-4ca0-8550-f8f645d97983\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"073302ad-0e44-4cd1-b16d-58f017a71816\",\"w\":17,\"x\":0,\"y\":9},\"panelIndex\":\"073302ad-0e44-4cd1-b16d-58f017a71816\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Successful Request Latency\",\"panelRefName\":\"panel_073302ad-0e44-4cd1-b16d-58f017a71816\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"ddcbc858-d2a0-42c3-8074-74f7d08ecb60\",\"w\":16,\"x\":17,\"y\":9},\"panelIndex\":\"ddcbc858-d2a0-42c3-8074-74f7d08ecb60\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Read Throttle Events\",\"panelRefName\":\"panel_ddcbc858-d2a0-42c3-8074-74f7d08ecb60\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"95ffd42d-b28d-4f40-b3cb-6a6ac52943e1\",\"w\":15,\"x\":33,\"y\":9},\"panelIndex\":\"95ffd42d-b28d-4f40-b3cb-6a6ac52943e1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Throttle Requests\",\"panelRefName\":\"panel_95ffd42d-b28d-4f40-b3cb-6a6ac52943e1\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"0a588a08-997a-422f-a5db-e56728bc6702\",\"w\":17,\"x\":0,\"y\":19},\"panelIndex\":\"0a588a08-997a-422f-a5db-e56728bc6702\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Max Request Latency Per Operation\",\"panelRefName\":\"panel_0a588a08-997a-422f-a5db-e56728bc6702\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"897ae224-d367-4fe0-aa23-5bb13165cc67\",\"w\":16,\"x\":17,\"y\":19},\"panelIndex\":\"897ae224-d367-4fe0-aa23-5bb13165cc67\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Write Throttle Events\",\"panelRefName\":\"panel_897ae224-d367-4fe0-aa23-5bb13165cc67\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"e81e9817-c971-454b-881a-09cec10da0e9\",\"w\":15,\"x\":33,\"y\":19},\"panelIndex\":\"e81e9817-c971-454b-881a-09cec10da0e9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Account Provisioned Write Capacity Utilization\",\"panelRefName\":\"panel_e81e9817-c971-454b-881a-09cec10da0e9\"}]","timeRestore":false,"title":"[Metricbeat AWS] DynamoDB Overview","version":1},"coreMigrationVersion":"8.0.0","id":"68ba7bd0-20b6-11ea-8f72-2f8d21e50b0c","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"bc8bd8f0-31fd-11ea-bcbf-59cb7eefc1f0","name":"9642fcd0-464b-46ea-815c-cd2d9efc056d:panel_9642fcd0-464b-46ea-815c-cd2d9efc056d","type":"visualization"},{"id":"9d284bc0-7b08-11ea-9bb4-e958b64b5685","name":"bb4b0cfa-7d6f-48e3-913e-2713c5aa3fe0:panel_bb4b0cfa-7d6f-48e3-913e-2713c5aa3fe0","type":"visualization"},{"id":"49379b70-7b07-11ea-9bb4-e958b64b5685","name":"09bdf20b-43b4-47a3-a113-d34ef3b2596c:panel_09bdf20b-43b4-47a3-a113-d34ef3b2596c","type":"visualization"},{"id":"7d1e0870-7a3f-11ea-bfa4-dfea8c457654","name":"1bd7141d-b410-4ca0-8550-f8f645d97983:panel_1bd7141d-b410-4ca0-8550-f8f645d97983","type":"visualization"},{"id":"8cf5fbe0-7b07-11ea-9bb4-e958b64b5685","name":"073302ad-0e44-4cd1-b16d-58f017a71816:panel_073302ad-0e44-4cd1-b16d-58f017a71816","type":"visualization"},{"id":"7b93bab0-7b0a-11ea-9bb4-e958b64b5685","name":"ddcbc858-d2a0-42c3-8074-74f7d08ecb60:panel_ddcbc858-d2a0-42c3-8074-74f7d08ecb60","type":"visualization"},{"id":"9f0425c0-7b0a-11ea-9bb4-e958b64b5685","name":"95ffd42d-b28d-4f40-b3cb-6a6ac52943e1:panel_95ffd42d-b28d-4f40-b3cb-6a6ac52943e1","type":"visualization"},{"id":"3dee68c0-7b0c-11ea-9bb4-e958b64b5685","name":"0a588a08-997a-422f-a5db-e56728bc6702:panel_0a588a08-997a-422f-a5db-e56728bc6702","type":"visualization"},{"id":"b403f7b0-7b15-11ea-9bb4-e958b64b5685","name":"897ae224-d367-4fe0-aa23-5bb13165cc67:panel_897ae224-d367-4fe0-aa23-5bb13165cc67","type":"visualization"},{"id":"31ad4090-2003-11ea-8f72-2f8d21e50b0c","name":"e81e9817-c971-454b-881a-09cec10da0e9:panel_e81e9817-c971-454b-881a-09cec10da0e9","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMjIsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ebs-overview.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ebs-overview.json deleted file mode 100644 index 7f8000ad8fc..00000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ebs-overview.json +++ /dev/null @@ -1,920 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "[Metricbeat AWS] Overview of EBS Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "1", - "w": 24, - "x": 24, - "y": 10 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "Volume Write Ops", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "2", - "w": 24, - "x": 0, - "y": 10 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "Volume Read Ops", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "3", - "w": 24, - "x": 24, - "y": 20 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "Volume Write Bytes", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "4", - "w": 24, - "x": 0, - "y": 20 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "title": "Volume Read Bytes", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "5", - "w": 19, - "x": 8, - "y": 0 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "title": "Volume Queue Length", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "6", - "w": 24, - "x": 24, - "y": 30 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "title": "Volume Total Write Time", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "7", - "w": 24, - "x": 0, - "y": 30 - }, - "panelIndex": "7", - "panelRefName": "panel_6", - "title": "Volume Total Read Time", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "8", - "w": 21, - "x": 27, - "y": 0 - }, - "panelIndex": "8", - "panelRefName": "panel_7", - "title": "Volume Idle Time", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 5, - "i": "9", - "w": 8, - "x": 0, - "y": 5 - }, - "panelIndex": "9", - "panelRefName": "panel_8", - "title": "EBS Volume ID Filter", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 5, - "i": "10", - "w": 8, - "x": 0, - "y": 0 - }, - "panelIndex": "10", - "panelRefName": "panel_9", - "version": "7.3.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat AWS] EBS Overview", - "version": 1 - }, - "id": "44ce4680-b7ba-11e9-8349-f15f850c5cd0", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "f6831f30-b7b6-11e9-8349-f15f850c5cd0", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "bb3a6cd0-b7b6-11e9-8349-f15f850c5cd0", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "c0e32d50-b7b8-11e9-8349-f15f850c5cd0", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "b00c4390-b7b8-11e9-8349-f15f850c5cd0", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "fe0581b0-b7b8-11e9-8349-f15f850c5cd0", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "25384bf0-b7b9-11e9-8349-f15f850c5cd0", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "12eff7e0-b7b9-11e9-8349-f15f850c5cd0", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "67f43080-b7b9-11e9-8349-f15f850c5cd0", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "d045d120-b7b9-11e9-8349-f15f850c5cd0", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "b5308940-7347-11e9-816b-07687310a99a", - "name": "panel_9", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-09-12T16:35:04.005Z", - "version": "WzYwMDMsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "EBS Volume Write Ops [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Number of Write Operation", - "line_width": 1, - "metrics": [ - { - "field": "aws.ebs.metrics.VolumeWriteOps.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.VolumeId", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "EBS Volume Write Ops [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "f6831f30-b7b6-11e9-8349-f15f850c5cd0", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-09-12T16:31:45.681Z", - "version": "WzU5ODMsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "EBS Volume Read Ops [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Number of Read Operation", - "line_width": 1, - "metrics": [ - { - "field": "aws.ebs.metrics.VolumeReadOps.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.VolumeId", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "EBS Volume Read Ops [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "bb3a6cd0-b7b6-11e9-8349-f15f850c5cd0", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-09-12T16:31:31.261Z", - "version": "WzU5ODEsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "EBS Volume Write Bytes [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Volume Write Bytes", - "line_width": 1, - "metrics": [ - { - "field": "aws.ebs.metrics.VolumeWriteBytes.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.VolumeId", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "EBS Volume Write Bytes [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "c0e32d50-b7b8-11e9-8349-f15f850c5cd0", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-09-12T16:32:46.176Z", - "version": "WzU5OTAsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "EBS Volume Read Bytes [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Volume Read Bytes", - "line_width": 1, - "metrics": [ - { - "field": "aws.ebs.metrics.VolumeReadBytes.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.VolumeId", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "EBS Volume Read Bytes [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "b00c4390-b7b8-11e9-8349-f15f850c5cd0", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-09-12T16:32:02.907Z", - "version": "WzU5ODUsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "EBS Volume Queue Length [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Volume Queue Length", - "line_width": 1, - "metrics": [ - { - "field": "aws.ebs.metrics.VolumeQueueLength.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.VolumeId", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "EBS Volume Queue Length [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "fe0581b0-b7b8-11e9-8349-f15f850c5cd0", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-09-12T16:30:59.507Z", - "version": "WzU5NzgsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "EBS Volume Total Write Time [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "s,s,3", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Volume Total Write Time", - "line_width": 1, - "metrics": [ - { - "field": "aws.ebs.metrics.VolumeTotalWriteTime.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.VolumeId", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "EBS Volume Total Write Time [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "25384bf0-b7b9-11e9-8349-f15f850c5cd0", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-09-12T16:32:19.881Z", - "version": "WzU5ODcsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "EBS Volume Total Read Time [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "s,s,3", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Volume Total Read Time", - "line_width": 1, - "metrics": [ - { - "field": "aws.ebs.metrics.VolumeTotalReadTime.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.VolumeId", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "EBS Volume Total Read Time [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "12eff7e0-b7b9-11e9-8349-f15f850c5cd0", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-09-12T16:33:13.538Z", - "version": "WzU5OTMsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "EBS Volume Idle Time [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "series": [ - { - "axis_min": "0", - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "s,s,1", - "hide_in_legend": 0, - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Volume Idle Time", - "line_width": 1, - "metrics": [ - { - "field": "aws.ebs.metrics.VolumeIdleTime.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.VolumeId", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "EBS Volume Idle Time [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "67f43080-b7b9-11e9-8349-f15f850c5cd0", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-09-12T16:31:19.709Z", - "version": "WzU5ODAsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "EBS Volume ID Filter [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "aws.dimensions.VolumeId", - "id": "1565034367477", - "indexPatternRefName": "control_0_index_pattern", - "label": "volume id", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": true - }, - "title": "EBS Volume ID Filter [Metricbeat AWS]", - "type": "input_control_vis" - } - }, - "id": "d045d120-b7b9-11e9-8349-f15f850c5cd0", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-09-12T16:29:31.115Z", - "version": "WzU2MTIsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Region Filter [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.region", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "region", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "AWS Region Filter", - "type": "input_control_vis" - } - }, - "id": "b5308940-7347-11e9-816b-07687310a99a", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-09-12T16:29:35.238Z", - "version": "WzU2NTQsN10=" - } - ], - "version": "7.3.0" -} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ebs-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ebs-overview.ndjson new file mode 100644 index 00000000000..ad19caa05dc --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ebs-overview.ndjson @@ -0,0 +1,11 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EBS Volume Write Ops [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Number of Write Operation\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ebs.metrics.VolumeWriteOps.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VolumeId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EBS Volume Write Ops [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f6831f30-b7b6-11e9-8349-f15f850c5cd0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzMzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EBS Volume Read Ops [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Number of Read Operation\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ebs.metrics.VolumeReadOps.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VolumeId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EBS Volume Read Ops [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bb3a6cd0-b7b6-11e9-8349-f15f850c5cd0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzMzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EBS Volume Write Bytes [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Volume Write Bytes\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ebs.metrics.VolumeWriteBytes.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VolumeId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EBS Volume Write Bytes [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c0e32d50-b7b8-11e9-8349-f15f850c5cd0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzMzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EBS Volume Read Bytes [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Volume Read Bytes\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ebs.metrics.VolumeReadBytes.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VolumeId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EBS Volume Read Bytes [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b00c4390-b7b8-11e9-8349-f15f850c5cd0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzMzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EBS Volume Queue Length [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Volume Queue Length\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ebs.metrics.VolumeQueueLength.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VolumeId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EBS Volume Queue Length [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fe0581b0-b7b8-11e9-8349-f15f850c5cd0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzMzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EBS Volume Total Write Time [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Volume Total Write Time\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ebs.metrics.VolumeTotalWriteTime.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VolumeId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EBS Volume Total Write Time [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"25384bf0-b7b9-11e9-8349-f15f850c5cd0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzMzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EBS Volume Total Read Time [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Volume Total Read Time\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ebs.metrics.VolumeTotalReadTime.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VolumeId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EBS Volume Total Read Time [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"12eff7e0-b7b9-11e9-8349-f15f850c5cd0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzNDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EBS Volume Idle Time [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_min\":\"0\",\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,1\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Volume Idle Time\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ebs.metrics.VolumeIdleTime.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VolumeId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EBS Volume Idle Time [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"67f43080-b7b9-11e9-8349-f15f850c5cd0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzNDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"EBS Volume ID Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"aws.dimensions.VolumeId\",\"id\":\"1565034367477\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"volume id\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"EBS Volume ID Filter [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"d045d120-b7b9-11e9-8349-f15f850c5cd0","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzNDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Region Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Region Filter\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b5308940-7347-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjMsMV0="} +{"attributes":{"description":"[Metricbeat AWS] Overview of EBS Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1\",\"w\":24,\"x\":24,\"y\":10},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Volume Write Ops\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"2\",\"w\":24,\"x\":0,\"y\":10},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Volume Read Ops\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3\",\"w\":24,\"x\":24,\"y\":20},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Volume Write Bytes\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"4\",\"w\":24,\"x\":0,\"y\":20},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Volume Read Bytes\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"5\",\"w\":19,\"x\":8,\"y\":0},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Volume Queue Length\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"6\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Volume Total Write Time\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"7\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Volume Total Read Time\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"8\",\"w\":21,\"x\":27,\"y\":0},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Volume Idle Time\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"9\",\"w\":8,\"x\":0,\"y\":5},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"EBS Volume ID Filter\",\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"10\",\"w\":8,\"x\":0,\"y\":0},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"}]","timeRestore":false,"title":"[Metricbeat AWS] EBS Overview","version":1},"coreMigrationVersion":"8.0.0","id":"44ce4680-b7ba-11e9-8349-f15f850c5cd0","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"f6831f30-b7b6-11e9-8349-f15f850c5cd0","name":"1:panel_1","type":"visualization"},{"id":"bb3a6cd0-b7b6-11e9-8349-f15f850c5cd0","name":"2:panel_2","type":"visualization"},{"id":"c0e32d50-b7b8-11e9-8349-f15f850c5cd0","name":"3:panel_3","type":"visualization"},{"id":"b00c4390-b7b8-11e9-8349-f15f850c5cd0","name":"4:panel_4","type":"visualization"},{"id":"fe0581b0-b7b8-11e9-8349-f15f850c5cd0","name":"5:panel_5","type":"visualization"},{"id":"25384bf0-b7b9-11e9-8349-f15f850c5cd0","name":"6:panel_6","type":"visualization"},{"id":"12eff7e0-b7b9-11e9-8349-f15f850c5cd0","name":"7:panel_7","type":"visualization"},{"id":"67f43080-b7b9-11e9-8349-f15f850c5cd0","name":"8:panel_8","type":"visualization"},{"id":"d045d120-b7b9-11e9-8349-f15f850c5cd0","name":"9:panel_9","type":"visualization"},{"id":"b5308940-7347-11e9-816b-07687310a99a","name":"10:panel_10","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzMzMsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ec2-overview.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ec2-overview.json deleted file mode 100644 index faf25066393..00000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ec2-overview.json +++ /dev/null @@ -1,944 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of AWS EC2 Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "DiskIO Write Bytes" - }, - "gridData": { - "h": 15, - "i": "3", - "w": 24, - "x": 24, - "y": 16 - }, - "panelIndex": "3", - "panelRefName": "panel_0", - "title": "DiskIO Write Bytes", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "Status Check" - }, - "gridData": { - "h": 5, - "i": "5", - "w": 18, - "x": 6, - "y": 11 - }, - "panelIndex": "5", - "panelRefName": "panel_1", - "title": "Status Check", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "Network In Bytes" - }, - "gridData": { - "h": 15, - "i": "11", - "w": 24, - "x": 0, - "y": 31 - }, - "panelIndex": "11", - "panelRefName": "panel_2", - "title": "Network In Bytes", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "Network Out Bytes" - }, - "gridData": { - "h": 15, - "i": "12", - "w": 24, - "x": 24, - "y": 31 - }, - "panelIndex": "12", - "panelRefName": "panel_3", - "title": "Network Out Bytes", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "DiskIO Read Bytes" - }, - "gridData": { - "h": 15, - "i": "15", - "w": 24, - "x": 0, - "y": 16 - }, - "panelIndex": "15", - "panelRefName": "panel_4", - "title": "DiskIO Read Bytes", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "CPU Utilization" - }, - "gridData": { - "h": 16, - "i": "17", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "17", - "panelRefName": "panel_5", - "title": "CPU Utilization", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "Filters" - }, - "gridData": { - "h": 16, - "i": "18", - "w": 6, - "x": 0, - "y": 0 - }, - "panelIndex": "18", - "panelRefName": "panel_6", - "title": "Filters", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "Instance State" - }, - "gridData": { - "h": 11, - "i": "19", - "w": 18, - "x": 6, - "y": 0 - }, - "panelIndex": "19", - "panelRefName": "panel_7", - "title": "Instance State", - "version": "7.9.1" - } - ], - "timeRestore": false, - "title": "[Metricbeat AWS] EC2 Overview", - "version": 1 - }, - "id": "c5846400-f7fb-11e8-af03-c999c9dea608-ecs", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "fed59380-f7f8-11e8-af03-c999c9dea608-ecs", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "9e8c6030-f7f8-11e8-af03-c999c9dea608-ecs", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "15818fd0-f7f9-11e8-af03-c999c9dea608-ecs", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "233b3400-f7f9-11e8-af03-c999c9dea608-ecs", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "f1db6ec0-f7f8-11e8-af03-c999c9dea608-ecs", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "be8828d0-f7f6-11e8-af03-c999c9dea608-ecs", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "deab0260-2981-11e9-86eb-a3a07a77f530", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "09db13f0-2bdd-11e9-9fe1-cde861544141", - "name": "panel_7", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-09-15T16:57:30.054Z", - "version": "WzEyNjksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "EC2 DiskIO Write Bytes [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [], - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "23428b30-f7f2-11e8-bff8-21537b07dd44" - } - ], - "bar_color_rules": [ - { - "id": "2592bcc0-f7f2-11e8-bff8-21537b07dd44" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": "", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "AWS EC2 DiskIO Write Bytes", - "line_width": "2", - "metrics": [ - { - "field": "aws.ec2.diskio.write.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "series_drop_last_bucket": 1, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_field": "cloud.instance.id", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "10" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "EC2 DiskIO Write Bytes [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "fed59380-f7f8-11e8-af03-c999c9dea608-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:55:57.556Z", - "version": "WzEyNTQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "EC2 Status Check Failed [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "d13f6b50-f7f6-11e8-bff8-21537b07dd44" - } - ], - "bar_color_rules": [ - { - "id": "ad6d62d0-f7f7-11e8-bff8-21537b07dd44" - } - ], - "gauge_color_rules": [ - { - "id": "b0c5b590-f7f7-11e8-bff8-21537b07dd44" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "EC2 Status Check Failed", - "line_width": 1, - "metrics": [ - { - "field": "aws.ec2.status.check_failed", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.id", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric" - }, - "title": "AWS EC2 Status Check Failed", - "type": "metrics" - } - }, - "id": "9e8c6030-f7f8-11e8-af03-c999c9dea608-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:01:03.887Z", - "version": "WzEwMiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "EC2 Network In Bytes [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [], - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "23428b30-f7f2-11e8-bff8-21537b07dd44" - } - ], - "bar_color_rules": [ - { - "id": "2592bcc0-f7f2-11e8-bff8-21537b07dd44" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": "", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "AWS EC2 Network In Bytes", - "line_width": "2", - "metrics": [ - { - "field": "aws.ec2.network.in.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "series_drop_last_bucket": 1, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_field": "cloud.instance.id", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "10" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "EC2 Network In Bytes [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "15818fd0-f7f9-11e8-af03-c999c9dea608-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:50:36.078Z", - "version": "WzExOTEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "EC2 Network Out Bytes [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [], - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "23428b30-f7f2-11e8-bff8-21537b07dd44" - } - ], - "bar_color_rules": [ - { - "id": "2592bcc0-f7f2-11e8-bff8-21537b07dd44" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": "", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "AWS EC2 Network Out Bytes", - "line_width": "2", - "metrics": [ - { - "field": "aws.ec2.network.out.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "series_drop_last_bucket": 1, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_field": "cloud.instance.id", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "10" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "EC2 Network Out Bytes [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "233b3400-f7f9-11e8-af03-c999c9dea608-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:50:59.719Z", - "version": "WzExOTMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "EC2 DiskIO Read Bytes [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [], - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "23428b30-f7f2-11e8-bff8-21537b07dd44" - } - ], - "bar_color_rules": [ - { - "id": "2592bcc0-f7f2-11e8-bff8-21537b07dd44" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "AWS EC2 DiskIO Read Bytes", - "line_width": "2", - "metrics": [ - { - "field": "aws.ec2.diskio.read.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "series_drop_last_bucket": 1, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_field": "cloud.instance.id", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "10" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "EC2 DiskIO Read Bytes [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "f1db6ec0-f7f8-11e8-af03-c999c9dea608-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:55:49.460Z", - "version": "WzEyNTMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "EC2 CPU Utilization [Metricbeat AWS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [], - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "23428b30-f7f2-11e8-bff8-21537b07dd44" - } - ], - "bar_color_rules": [ - { - "id": "2592bcc0-f7f2-11e8-bff8-21537b07dd44" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": "", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "AWS EC2 CPU Utilization ECS", - "line_width": "2", - "metrics": [ - { - "field": "aws.ec2.cpu.total.pct", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "series_drop_last_bucket": 1, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_field": "cloud.instance.id", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "10" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "EC2 CPU Utilization [Metricbeat AWS] ECS", - "type": "metrics" - } - }, - "id": "be8828d0-f7f6-11e8-af03-c999c9dea608-ecs", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:57:23.961Z", - "version": "WzEyNjgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "AWS Account Filter [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.account.name", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "account name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "cloud.region", - "id": "1600187617334", - "indexPatternRefName": "control_1_index_pattern", - "label": "region", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "cloud.instance.name", - "id": "1600187931107", - "indexPatternRefName": "control_2_index_pattern", - "label": "instance name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "AWS Account Filter [Metricbeat AWS]", - "type": "input_control_vis" - } - }, - "id": "deab0260-2981-11e9-86eb-a3a07a77f530", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-09-15T16:39:11.261Z", - "version": "WzEwNjYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "EC2 Instance State [Metricbeat AWS] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "16": "#629E51", - "272": "#DEDAF7", - "80": "#E24D42", - "running": "#7EB26D", - "stopped": "#E24D42" - }, - "legendOpen": true - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "EC2 Instance State" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "", - "field": "aws.ec2.instance.state.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "labels": { - "last_level": true, - "show": true, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "EC2 Instance State [Metricbeat AWS] ECS", - "type": "pie" - } - }, - "id": "09db13f0-2bdd-11e9-9fe1-cde861544141", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-09-15T16:01:08.017Z", - "version": "WzE0MywxXQ==" - } - ], - "version": "7.9.1" -} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ec2-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ec2-overview.ndjson new file mode 100644 index 00000000000..838761b0280 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ec2-overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EC2 DiskIO Write Bytes [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"23428b30-f7f2-11e8-bff8-21537b07dd44\"}],\"bar_color_rules\":[{\"id\":\"2592bcc0-f7f2-11e8-bff8-21537b07dd44\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS EC2 DiskIO Write Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.ec2.diskio.write.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloud.instance.id\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"10\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EC2 DiskIO Write Bytes [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fed59380-f7f8-11e8-af03-c999c9dea608-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:28.616Z","version":"WzMzNDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EC2 Status Check Failed [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"d13f6b50-f7f6-11e8-bff8-21537b07dd44\"}],\"bar_color_rules\":[{\"id\":\"ad6d62d0-f7f7-11e8-bff8-21537b07dd44\"}],\"gauge_color_rules\":[{\"id\":\"b0c5b590-f7f7-11e8-bff8-21537b07dd44\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"EC2 Status Check Failed\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ec2.status.check_failed\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.id\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS EC2 Status Check Failed\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9e8c6030-f7f8-11e8-af03-c999c9dea608-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:28.616Z","version":"WzMzNDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EC2 Network In Bytes [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"23428b30-f7f2-11e8-bff8-21537b07dd44\"}],\"bar_color_rules\":[{\"id\":\"2592bcc0-f7f2-11e8-bff8-21537b07dd44\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS EC2 Network In Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.ec2.network.in.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloud.instance.id\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"10\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EC2 Network In Bytes [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"15818fd0-f7f9-11e8-af03-c999c9dea608-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:28.616Z","version":"WzMzNDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EC2 Network Out Bytes [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"23428b30-f7f2-11e8-bff8-21537b07dd44\"}],\"bar_color_rules\":[{\"id\":\"2592bcc0-f7f2-11e8-bff8-21537b07dd44\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS EC2 Network Out Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.ec2.network.out.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloud.instance.id\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"10\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EC2 Network Out Bytes [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"233b3400-f7f9-11e8-af03-c999c9dea608-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:28.616Z","version":"WzMzNDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EC2 DiskIO Read Bytes [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"23428b30-f7f2-11e8-bff8-21537b07dd44\"}],\"bar_color_rules\":[{\"id\":\"2592bcc0-f7f2-11e8-bff8-21537b07dd44\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS EC2 DiskIO Read Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.ec2.diskio.read.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloud.instance.id\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"10\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EC2 DiskIO Read Bytes [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f1db6ec0-f7f8-11e8-af03-c999c9dea608-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:28.616Z","version":"WzMzNDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EC2 CPU Utilization [Metricbeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"23428b30-f7f2-11e8-bff8-21537b07dd44\"}],\"bar_color_rules\":[{\"id\":\"2592bcc0-f7f2-11e8-bff8-21537b07dd44\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS EC2 CPU Utilization ECS\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ec2.cpu.total.pct\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloud.instance.id\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"AWS EC2 CPU Utilization ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"be8828d0-f7f6-11e8-af03-c999c9dea608-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzMzOTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Account Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.account.name\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"account name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Account Filter [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"deab0260-2981-11e9-86eb-a3a07a77f530","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"EC2 Instance State [Metricbeat AWS] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"16\": \"#629E51\", \"272\": \"#DEDAF7\", \"80\": \"#E24D42\", \"running\": \"#7EB26D\", \"stopped\": \"#E24D42\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"EC2 Instance State\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"\",\"field\":\"aws.ec2.instance.state.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"EC2 Instance State [Metricbeat AWS] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"09db13f0-2bdd-11e9-9fe1-cde861544141","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzMzOTYsMV0="} +{"attributes":{"description":"Overview of AWS EC2 Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":24,\"y\":16},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"DiskIO Write Bytes\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"5\",\"w\":18,\"x\":6,\"y\":11},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Status Check\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"11\",\"w\":24,\"x\":0,\"y\":31},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Network In Bytes\",\"panelRefName\":\"panel_11\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"12\",\"w\":24,\"x\":24,\"y\":31},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Network Out Bytes\",\"panelRefName\":\"panel_12\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"15\",\"w\":24,\"x\":0,\"y\":16},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"DiskIO Read Bytes\",\"panelRefName\":\"panel_15\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"17\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"CPU Utilization\",\"panelRefName\":\"panel_17\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"18\",\"w\":6,\"x\":0,\"y\":0},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_18\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"19\",\"w\":18,\"x\":6,\"y\":0},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Instance State\",\"panelRefName\":\"panel_19\"}]","timeRestore":false,"title":"[Metricbeat AWS] EC2 Overview","version":1},"coreMigrationVersion":"8.0.0","id":"c5846400-f7fb-11e8-af03-c999c9dea608-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"fed59380-f7f8-11e8-af03-c999c9dea608-ecs","name":"3:panel_3","type":"visualization"},{"id":"9e8c6030-f7f8-11e8-af03-c999c9dea608-ecs","name":"5:panel_5","type":"visualization"},{"id":"15818fd0-f7f9-11e8-af03-c999c9dea608-ecs","name":"11:panel_11","type":"visualization"},{"id":"233b3400-f7f9-11e8-af03-c999c9dea608-ecs","name":"12:panel_12","type":"visualization"},{"id":"f1db6ec0-f7f8-11e8-af03-c999c9dea608-ecs","name":"15:panel_15","type":"visualization"},{"id":"be8828d0-f7f6-11e8-af03-c999c9dea608-ecs","name":"17:panel_17","type":"visualization"},{"id":"deab0260-2981-11e9-86eb-a3a07a77f530","name":"18:panel_18","type":"visualization"},{"id":"09db13f0-2bdd-11e9-9fe1-cde861544141","name":"19:panel_19","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:28.616Z","version":"WzMzNDQsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-elb-overview.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-elb-overview.json deleted file mode 100644 index 6164c11bed4..00000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-elb-overview.json +++ /dev/null @@ -1,1010 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of AWS ELB Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "2", - "w": 25, - "x": 23, - "y": 32 - }, - "panelIndex": "2", - "panelRefName": "panel_0", - "title": "HTTP 5XX Errors", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "3", - "w": 37, - "x": 11, - "y": 0 - }, - "panelIndex": "3", - "panelRefName": "panel_1", - "title": "Request Count", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "4", - "w": 11, - "x": 0, - "y": 15 - }, - "panelIndex": "4", - "panelRefName": "panel_2", - "title": "Unhealthy Host Count", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "5", - "w": 11, - "x": 0, - "y": 7 - }, - "panelIndex": "5", - "panelRefName": "panel_3", - "title": "Healthy Host Count", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "6", - "w": 37, - "x": 11, - "y": 11 - }, - "panelIndex": "6", - "panelRefName": "panel_4", - "title": "Latency in Seconds", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "7", - "w": 23, - "x": 0, - "y": 32 - }, - "panelIndex": "7", - "panelRefName": "panel_5", - "title": "HTTP Backend 4XX Errors", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "8", - "w": 23, - "x": 0, - "y": 23 - }, - "panelIndex": "8", - "panelRefName": "panel_6", - "title": "Backend Connection Errors", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "9", - "w": 11, - "x": 0, - "y": 0 - }, - "panelIndex": "9", - "panelRefName": "panel_7", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "10", - "w": 25, - "x": 23, - "y": 23 - }, - "panelIndex": "10", - "panelRefName": "panel_8", - "title": "HTTP Backend 2XX", - "version": "7.3.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat AWS] ELB Overview", - "version": 1 - }, - "id": "e74bf320-b3ce-11e9-87a4-078dbbae220d", - "migrationVersion": { - "dashboard": "7.2.0" - }, - "references": [ - { - "id": "b9703dd0-b3c9-11e9-87a4-078dbbae220d", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "d560de70-b3c7-11e9-87a4-078dbbae220d", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "6fc1efd0-b3c9-11e9-87a4-078dbbae220d", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "6392bc30-b3c9-11e9-87a4-078dbbae220d", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "b2ea15a0-b3c7-11e9-87a4-078dbbae220d", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "21f30090-b3ca-11e9-87a4-078dbbae220d", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "572d40e0-b3ca-11e9-87a4-078dbbae220d", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "b5308940-7347-11e9-816b-07687310a99a", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "1f528f50-b3ce-11e9-87a4-078dbbae220d", - "name": "panel_8", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-09-12T02:24:38.326Z", - "version": "WzI0MTYsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ELB HTTP 5XX Errors [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "7e66beb0-b3c6-11e9-af6e-ef22c5680226" - } - ], - "bar_color_rules": [ - { - "id": "7db91990-b3c6-11e9-af6e-ef22c5680226" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": "", - "gauge_color_rules": [ - { - "id": "7d0b9b80-b3c6-11e9-af6e-ef22c5680226" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "formatter": "number", - "id": "35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971", - "label": "HTTP 5XX Errors", - "line_width": 2, - "metrics": [ - { - "field": "aws.elb.metrics.HTTPCode_ELB_5XX.sum", - "id": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.LoadBalancerName", - "terms_order_by": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "ELB HTTP 5XX Errors [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "b9703dd0-b3c9-11e9-87a4-078dbbae220d", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-09-12T02:24:22.066Z", - "version": "WzI0MTUsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ELB Request Count [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "7e66beb0-b3c6-11e9-af6e-ef22c5680226" - } - ], - "bar_color_rules": [ - { - "id": "7db91990-b3c6-11e9-af6e-ef22c5680226" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": "", - "gauge_color_rules": [ - { - "id": "7d0b9b80-b3c6-11e9-af6e-ef22c5680226" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "formatter": "number", - "id": "35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971", - "label": "Request Count", - "line_width": 2, - "metrics": [ - { - "field": "aws.elb.metrics.RequestCount.sum", - "id": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.LoadBalancerName", - "terms_order_by": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "ELB Request Count [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "d560de70-b3c7-11e9-87a4-078dbbae220d", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-09-12T02:22:46.781Z", - "version": "WzI0MDgsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ELB Unhealthy Host Count [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(244,78,59,1)", - "color": "rgba(255,255,255,1)", - "id": "7e66beb0-b3c6-11e9-af6e-ef22c5680226", - "operator": "gt", - "value": 0 - } - ], - "bar_color_rules": [ - { - "id": "7db91990-b3c6-11e9-af6e-ef22c5680226" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": "", - "gauge_color_rules": [ - { - "id": "7d0b9b80-b3c6-11e9-af6e-ef22c5680226" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "formatter": "number", - "id": "35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971", - "label": "Unhealthy Host Count", - "line_width": 2, - "metrics": [ - { - "field": "aws.elb.metrics.UnHealthyHostCount.max", - "id": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "everything", - "stacked": "none", - "terms_field": "aws.dimensions.AvailabilityZone", - "terms_order_by": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric" - }, - "title": "ELB Unhealthy Host Count [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "6fc1efd0-b3c9-11e9-87a4-078dbbae220d", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-09-12T01:00:47.505Z", - "version": "WzIzOTYsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ELB Healthy Host Count [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(104,188,0,1)", - "color": "rgba(255,255,255,1)", - "id": "7e66beb0-b3c6-11e9-af6e-ef22c5680226", - "operator": "gt", - "value": 0 - } - ], - "bar_color_rules": [ - { - "id": "7db91990-b3c6-11e9-af6e-ef22c5680226" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": "", - "gauge_color_rules": [ - { - "id": "7d0b9b80-b3c6-11e9-af6e-ef22c5680226" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "formatter": "number", - "id": "35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971", - "label": "Healthy Host Count", - "line_width": 2, - "metrics": [ - { - "field": "aws.elb.metrics.HealthyHostCount.max", - "id": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "everything", - "stacked": "none", - "terms_field": "aws.dimensions.AvailabilityZone", - "terms_order_by": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric" - }, - "title": "ELB Healthy Host Count [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "6392bc30-b3c9-11e9-87a4-078dbbae220d", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-09-12T01:00:18.978Z", - "version": "WzIzOTMsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ELB Latency in Seconds [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "7e66beb0-b3c6-11e9-af6e-ef22c5680226" - } - ], - "bar_color_rules": [ - { - "id": "7db91990-b3c6-11e9-af6e-ef22c5680226" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": "", - "gauge_color_rules": [ - { - "id": "7d0b9b80-b3c6-11e9-af6e-ef22c5680226" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "formatter": "s,s,3", - "id": "35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971", - "label": "Latency in seconds", - "line_width": 2, - "metrics": [ - { - "field": "aws.elb.metrics.Latency.avg", - "id": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.LoadBalancerName", - "terms_order_by": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "ELB Latency in Seconds [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "b2ea15a0-b3c7-11e9-87a4-078dbbae220d", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-09-12T02:23:16.083Z", - "version": "WzI0MTAsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ELB HTTP Backend 4XX Errors [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "7e66beb0-b3c6-11e9-af6e-ef22c5680226" - } - ], - "bar_color_rules": [ - { - "id": "7db91990-b3c6-11e9-af6e-ef22c5680226" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": "", - "gauge_color_rules": [ - { - "id": "7d0b9b80-b3c6-11e9-af6e-ef22c5680226" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": "0", - "formatter": "number", - "id": "35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971", - "label": "HTTP Backend 4XX Errors", - "line_width": 2, - "metrics": [ - { - "field": "aws.elb.metrics.HTTPCode_Backend_4XX.sum", - "id": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.LoadBalancerName", - "terms_order_by": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "ELB HTTP Backend 4XX Errors [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "21f30090-b3ca-11e9-87a4-078dbbae220d", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-09-12T02:24:09.023Z", - "version": "WzI0MTQsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ELB Backend Connection Errors [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "7e66beb0-b3c6-11e9-af6e-ef22c5680226" - } - ], - "bar_color_rules": [ - { - "id": "7db91990-b3c6-11e9-af6e-ef22c5680226" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": "", - "gauge_color_rules": [ - { - "id": "7d0b9b80-b3c6-11e9-af6e-ef22c5680226" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": "00", - "formatter": "number", - "id": "35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971", - "label": "Backend Connection Errors", - "line_width": 2, - "metrics": [ - { - "field": "aws.elb.metrics.BackendConnectionErrors.sum", - "id": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_field": "aws.dimensions.LoadBalancerName", - "terms_order_by": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "ELB Backend Connection Errors [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "572d40e0-b3ca-11e9-87a4-078dbbae220d", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-09-12T02:22:28.366Z", - "version": "WzI0MDcsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Region Filter [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.region", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "region", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "AWS Region Filter", - "type": "input_control_vis" - } - }, - "id": "b5308940-7347-11e9-816b-07687310a99a", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-09-12T00:55:22.007Z", - "version": "WzIwNjgsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ELB HTTP Backend 2XX [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "7e66beb0-b3c6-11e9-af6e-ef22c5680226" - } - ], - "bar_color_rules": [ - { - "id": "7db91990-b3c6-11e9-af6e-ef22c5680226" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": "", - "gauge_color_rules": [ - { - "id": "7d0b9b80-b3c6-11e9-af6e-ef22c5680226" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "formatter": "number", - "id": "35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971", - "label": "HTTP Backend 2XX", - "line_width": 2, - "metrics": [ - { - "field": "aws.elb.metrics.HTTPCode_Backend_2XX.sum", - "id": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.LoadBalancerName", - "terms_order_by": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "ELB HTTP Backend 2XX [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "1f528f50-b3ce-11e9-87a4-078dbbae220d", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-09-12T02:23:38.069Z", - "version": "WzI0MTIsN10=" - } - ], - "version": "7.3.0" -} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-elb-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-elb-overview.ndjson new file mode 100644 index 00000000000..c8d5751f2f5 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-elb-overview.ndjson @@ -0,0 +1,10 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB HTTP 5XX Errors [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"7e66beb0-b3c6-11e9-af6e-ef22c5680226\"}],\"bar_color_rules\":[{\"id\":\"7db91990-b3c6-11e9-af6e-ef22c5680226\"}],\"filter\":\"\",\"gauge_color_rules\":[{\"id\":\"7d0b9b80-b3c6-11e9-af6e-ef22c5680226\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971\",\"label\":\"HTTP 5XX Errors\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.elb.metrics.HTTPCode_ELB_5XX.sum\",\"id\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.LoadBalancerName\",\"terms_order_by\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB HTTP 5XX Errors [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b9703dd0-b3c9-11e9-87a4-078dbbae220d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:29.650Z","version":"WzMzNTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Request Count [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"7e66beb0-b3c6-11e9-af6e-ef22c5680226\"}],\"bar_color_rules\":[{\"id\":\"7db91990-b3c6-11e9-af6e-ef22c5680226\"}],\"filter\":\"\",\"gauge_color_rules\":[{\"id\":\"7d0b9b80-b3c6-11e9-af6e-ef22c5680226\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971\",\"label\":\"Request Count\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.elb.metrics.RequestCount.sum\",\"id\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.LoadBalancerName\",\"terms_order_by\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB Request Count [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d560de70-b3c7-11e9-87a4-078dbbae220d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:29.650Z","version":"WzMzNTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Unhealthy Host Count [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"7e66beb0-b3c6-11e9-af6e-ef22c5680226\",\"operator\":\"gt\",\"value\":0}],\"bar_color_rules\":[{\"id\":\"7db91990-b3c6-11e9-af6e-ef22c5680226\"}],\"filter\":\"\",\"gauge_color_rules\":[{\"id\":\"7d0b9b80-b3c6-11e9-af6e-ef22c5680226\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971\",\"label\":\"Unhealthy Host Count\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.elb.metrics.UnHealthyHostCount.max\",\"id\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.AvailabilityZone\",\"terms_order_by\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"ELB Unhealthy Host Count [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6fc1efd0-b3c9-11e9-87a4-078dbbae220d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:29.650Z","version":"WzMzNTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Healthy Host Count [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"7e66beb0-b3c6-11e9-af6e-ef22c5680226\",\"operator\":\"gt\",\"value\":0}],\"bar_color_rules\":[{\"id\":\"7db91990-b3c6-11e9-af6e-ef22c5680226\"}],\"filter\":\"\",\"gauge_color_rules\":[{\"id\":\"7d0b9b80-b3c6-11e9-af6e-ef22c5680226\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971\",\"label\":\"Healthy Host Count\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.elb.metrics.HealthyHostCount.max\",\"id\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.AvailabilityZone\",\"terms_order_by\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"ELB Healthy Host Count [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6392bc30-b3c9-11e9-87a4-078dbbae220d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:29.650Z","version":"WzMzNTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Latency in Seconds [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"7e66beb0-b3c6-11e9-af6e-ef22c5680226\"}],\"bar_color_rules\":[{\"id\":\"7db91990-b3c6-11e9-af6e-ef22c5680226\"}],\"filter\":\"\",\"gauge_color_rules\":[{\"id\":\"7d0b9b80-b3c6-11e9-af6e-ef22c5680226\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"s,s,3\",\"id\":\"35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971\",\"label\":\"Latency in seconds\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.elb.metrics.Latency.avg\",\"id\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.LoadBalancerName\",\"terms_order_by\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB Latency in Seconds [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b2ea15a0-b3c7-11e9-87a4-078dbbae220d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:29.650Z","version":"WzMzNTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB HTTP Backend 4XX Errors [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"7e66beb0-b3c6-11e9-af6e-ef22c5680226\"}],\"bar_color_rules\":[{\"id\":\"7db91990-b3c6-11e9-af6e-ef22c5680226\"}],\"filter\":\"\",\"gauge_color_rules\":[{\"id\":\"7d0b9b80-b3c6-11e9-af6e-ef22c5680226\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971\",\"label\":\"HTTP Backend 4XX Errors\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.elb.metrics.HTTPCode_Backend_4XX.sum\",\"id\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.LoadBalancerName\",\"terms_order_by\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB HTTP Backend 4XX Errors [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"21f30090-b3ca-11e9-87a4-078dbbae220d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:29.650Z","version":"WzMzNTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Backend Connection Errors [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"7e66beb0-b3c6-11e9-af6e-ef22c5680226\"}],\"bar_color_rules\":[{\"id\":\"7db91990-b3c6-11e9-af6e-ef22c5680226\"}],\"filter\":\"\",\"gauge_color_rules\":[{\"id\":\"7d0b9b80-b3c6-11e9-af6e-ef22c5680226\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"00\",\"formatter\":\"number\",\"id\":\"35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971\",\"label\":\"Backend Connection Errors\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.elb.metrics.BackendConnectionErrors.sum\",\"id\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"aws.dimensions.LoadBalancerName\",\"terms_order_by\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB Backend Connection Errors [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"572d40e0-b3ca-11e9-87a4-078dbbae220d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:29.650Z","version":"WzMzNjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Region Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Region Filter\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b5308940-7347-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB HTTP Backend 2XX [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"7e66beb0-b3c6-11e9-af6e-ef22c5680226\"}],\"bar_color_rules\":[{\"id\":\"7db91990-b3c6-11e9-af6e-ef22c5680226\"}],\"filter\":\"\",\"gauge_color_rules\":[{\"id\":\"7d0b9b80-b3c6-11e9-af6e-ef22c5680226\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971\",\"label\":\"HTTP Backend 2XX\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.elb.metrics.HTTPCode_Backend_2XX.sum\",\"id\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.LoadBalancerName\",\"terms_order_by\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB HTTP Backend 2XX [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1f528f50-b3ce-11e9-87a4-078dbbae220d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:29.650Z","version":"WzMzNjIsMV0="} +{"attributes":{"description":"Overview of AWS ELB Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"2\",\"w\":25,\"x\":23,\"y\":32},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"HTTP 5XX Errors\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"3\",\"w\":37,\"x\":11,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Request Count\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"4\",\"w\":11,\"x\":0,\"y\":15},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Unhealthy Host Count\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"5\",\"w\":11,\"x\":0,\"y\":7},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Healthy Host Count\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6\",\"w\":37,\"x\":11,\"y\":11},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Latency in Seconds\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"7\",\"w\":23,\"x\":0,\"y\":32},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"HTTP Backend 4XX Errors\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"8\",\"w\":23,\"x\":0,\"y\":23},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Backend Connection Errors\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"9\",\"w\":11,\"x\":0,\"y\":0},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"10\",\"w\":25,\"x\":23,\"y\":23},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"HTTP Backend 2XX\",\"panelRefName\":\"panel_10\"}]","timeRestore":false,"title":"[Metricbeat AWS] ELB Overview","version":1},"coreMigrationVersion":"8.0.0","id":"e74bf320-b3ce-11e9-87a4-078dbbae220d","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"b9703dd0-b3c9-11e9-87a4-078dbbae220d","name":"2:panel_2","type":"visualization"},{"id":"d560de70-b3c7-11e9-87a4-078dbbae220d","name":"3:panel_3","type":"visualization"},{"id":"6fc1efd0-b3c9-11e9-87a4-078dbbae220d","name":"4:panel_4","type":"visualization"},{"id":"6392bc30-b3c9-11e9-87a4-078dbbae220d","name":"5:panel_5","type":"visualization"},{"id":"b2ea15a0-b3c7-11e9-87a4-078dbbae220d","name":"6:panel_6","type":"visualization"},{"id":"21f30090-b3ca-11e9-87a4-078dbbae220d","name":"7:panel_7","type":"visualization"},{"id":"572d40e0-b3ca-11e9-87a4-078dbbae220d","name":"8:panel_8","type":"visualization"},{"id":"b5308940-7347-11e9-816b-07687310a99a","name":"9:panel_9","type":"visualization"},{"id":"1f528f50-b3ce-11e9-87a4-078dbbae220d","name":"10:panel_10","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:29.650Z","version":"WzMzNTMsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-kinesis-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-kinesis-overview.ndjson new file mode 100644 index 00000000000..fb1c915ea9e --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-kinesis-overview.ndjson @@ -0,0 +1,10 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Kinesis Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"aws.dimensions.StreamName\",\"id\":\"1624989316975\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"stream name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Kinesis Filter [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"3c5d7860-d903-11eb-8220-c9141cc1b15c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNjQsMV0="} +{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"fa1d3f51-58b9-4971-a28d-40616cfceb01":{"columnOrder":["19e03939-49d0-48f7-b76c-d70142001365","8c750b7f-30c5-4d35-93f7-dbea0067dca4","092aa8e6-3739-49c1-ac6c-ec67956dec97"],"columns":{"092aa8e6-3739-49c1-ac6c-ec67956dec97":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"GetRecords Latency","operationType":"median","scale":"ratio","sourceField":"aws.kinesis.metrics.GetRecords_Latency.avg"},"19e03939-49d0-48f7-b76c-d70142001365":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"8c750b7f-30c5-4d35-93f7-dbea0067dca4":{"dataType":"string","isBucketed":true,"label":"Top values of aws.dimensions.StreamName","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"092aa8e6-3739-49c1-ac6c-ec67956dec97","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.dimensions.StreamName"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["092aa8e6-3739-49c1-ac6c-ec67956dec97"],"layerId":"fa1d3f51-58b9-4971-a28d-40616cfceb01","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"8c750b7f-30c5-4d35-93f7-dbea0067dca4","xAccessor":"19e03939-49d0-48f7-b76c-d70142001365"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"AWS GetRecords Latency [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"63aa5990-d86f-11eb-8220-c9141cc1b15c","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNjUsMV0="} +{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"fa1d3f51-58b9-4971-a28d-40616cfceb01":{"columnOrder":["19e03939-49d0-48f7-b76c-d70142001365","8c750b7f-30c5-4d35-93f7-dbea0067dca4","092aa8e6-3739-49c1-ac6c-ec67956dec97"],"columns":{"092aa8e6-3739-49c1-ac6c-ec67956dec97":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"PutRecords Latency","operationType":"average","scale":"ratio","sourceField":"aws.kinesis.metrics.PutRecords_Bytes.avg"},"19e03939-49d0-48f7-b76c-d70142001365":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"8c750b7f-30c5-4d35-93f7-dbea0067dca4":{"dataType":"string","isBucketed":true,"label":"Top values of aws.dimensions.StreamName","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"092aa8e6-3739-49c1-ac6c-ec67956dec97","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.dimensions.StreamName"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["092aa8e6-3739-49c1-ac6c-ec67956dec97"],"layerId":"fa1d3f51-58b9-4971-a28d-40616cfceb01","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"8c750b7f-30c5-4d35-93f7-dbea0067dca4","xAccessor":"19e03939-49d0-48f7-b76c-d70142001365"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"AWS PutRecords Latency [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"9deb6a80-d870-11eb-8220-c9141cc1b15c","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNjYsMV0="} +{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"fa1d3f51-58b9-4971-a28d-40616cfceb01":{"columnOrder":["19e03939-49d0-48f7-b76c-d70142001365","8c750b7f-30c5-4d35-93f7-dbea0067dca4","092aa8e6-3739-49c1-ac6c-ec67956dec97"],"columns":{"092aa8e6-3739-49c1-ac6c-ec67956dec97":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"PutRecord Latency","operationType":"average","scale":"ratio","sourceField":"aws.kinesis.metrics.PutRecord_Latency.avg"},"19e03939-49d0-48f7-b76c-d70142001365":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"8c750b7f-30c5-4d35-93f7-dbea0067dca4":{"dataType":"string","isBucketed":true,"label":"Top values of aws.dimensions.StreamName","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"092aa8e6-3739-49c1-ac6c-ec67956dec97","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.dimensions.StreamName"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["092aa8e6-3739-49c1-ac6c-ec67956dec97"],"layerId":"fa1d3f51-58b9-4971-a28d-40616cfceb01","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"8c750b7f-30c5-4d35-93f7-dbea0067dca4","xAccessor":"19e03939-49d0-48f7-b76c-d70142001365"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"AWS PutRecord Latency [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"2a711450-d871-11eb-8220-c9141cc1b15c","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNjcsMV0="} +{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"fa1d3f51-58b9-4971-a28d-40616cfceb01":{"columnOrder":["19e03939-49d0-48f7-b76c-d70142001365","7cd103e8-3dd3-4fa2-8c13-bc9f80617367","36345734-4c23-4815-8a5e-b63c20cac94d"],"columns":{"19e03939-49d0-48f7-b76c-d70142001365":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"36345734-4c23-4815-8a5e-b63c20cac94d":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"GetRecords Bytes","operationType":"median","scale":"ratio","sourceField":"aws.kinesis.metrics.GetRecords_Bytes.avg"},"7cd103e8-3dd3-4fa2-8c13-bc9f80617367":{"dataType":"string","isBucketed":true,"label":"Top values of aws.dimensions.StreamName","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"36345734-4c23-4815-8a5e-b63c20cac94d","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.dimensions.StreamName"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["36345734-4c23-4815-8a5e-b63c20cac94d"],"layerId":"fa1d3f51-58b9-4971-a28d-40616cfceb01","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"7cd103e8-3dd3-4fa2-8c13-bc9f80617367","xAccessor":"19e03939-49d0-48f7-b76c-d70142001365"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"AWS GetRecords Bytes [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"d1468000-d86f-11eb-8220-c9141cc1b15c","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNjgsMV0="} +{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"fa1d3f51-58b9-4971-a28d-40616cfceb01":{"columnOrder":["19e03939-49d0-48f7-b76c-d70142001365","7cd103e8-3dd3-4fa2-8c13-bc9f80617367","36345734-4c23-4815-8a5e-b63c20cac94d"],"columns":{"19e03939-49d0-48f7-b76c-d70142001365":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"36345734-4c23-4815-8a5e-b63c20cac94d":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"PutRecord Bytes","operationType":"average","scale":"ratio","sourceField":"aws.kinesis.metrics.PutRecords_Bytes.avg"},"7cd103e8-3dd3-4fa2-8c13-bc9f80617367":{"dataType":"string","isBucketed":true,"label":"Top values of aws.dimensions.StreamName","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"36345734-4c23-4815-8a5e-b63c20cac94d","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.dimensions.StreamName"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["36345734-4c23-4815-8a5e-b63c20cac94d"],"layerId":"fa1d3f51-58b9-4971-a28d-40616cfceb01","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"7cd103e8-3dd3-4fa2-8c13-bc9f80617367","xAccessor":"19e03939-49d0-48f7-b76c-d70142001365"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"AWS PutRecords Bytes [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"6d631980-d870-11eb-8220-c9141cc1b15c","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNjksMV0="} +{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"fa1d3f51-58b9-4971-a28d-40616cfceb01":{"columnOrder":["19e03939-49d0-48f7-b76c-d70142001365","a077ea8a-21dd-4bfe-b146-6d6425f7a14f","6117c588-4178-4597-b6da-e0277ec0d410"],"columns":{"19e03939-49d0-48f7-b76c-d70142001365":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"6117c588-4178-4597-b6da-e0277ec0d410":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"GetRecords Success","operationType":"average","scale":"ratio","sourceField":"aws.kinesis.metrics.GetRecords_Success.sum"},"a077ea8a-21dd-4bfe-b146-6d6425f7a14f":{"dataType":"string","isBucketed":true,"label":"Top values of aws.dimensions.StreamName","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"6117c588-4178-4597-b6da-e0277ec0d410","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.dimensions.StreamName"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["6117c588-4178-4597-b6da-e0277ec0d410"],"layerId":"fa1d3f51-58b9-4971-a28d-40616cfceb01","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"a077ea8a-21dd-4bfe-b146-6d6425f7a14f","xAccessor":"19e03939-49d0-48f7-b76c-d70142001365"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"AWS GetRecords Success [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"79d713c0-d86f-11eb-8220-c9141cc1b15c","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNzAsMV0="} +{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"fa1d3f51-58b9-4971-a28d-40616cfceb01":{"columnOrder":["19e03939-49d0-48f7-b76c-d70142001365","a077ea8a-21dd-4bfe-b146-6d6425f7a14f","6117c588-4178-4597-b6da-e0277ec0d410"],"columns":{"19e03939-49d0-48f7-b76c-d70142001365":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"6117c588-4178-4597-b6da-e0277ec0d410":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"PutRecords Success","operationType":"average","scale":"ratio","sourceField":"aws.kinesis.metrics.PutRecords_Success.avg"},"a077ea8a-21dd-4bfe-b146-6d6425f7a14f":{"dataType":"string","isBucketed":true,"label":"Top values of aws.dimensions.StreamName","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"6117c588-4178-4597-b6da-e0277ec0d410","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.dimensions.StreamName"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["6117c588-4178-4597-b6da-e0277ec0d410"],"layerId":"fa1d3f51-58b9-4971-a28d-40616cfceb01","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"a077ea8a-21dd-4bfe-b146-6d6425f7a14f","xAccessor":"19e03939-49d0-48f7-b76c-d70142001365"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"AWS PutRecords Success [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"c68d7c30-d870-11eb-8220-c9141cc1b15c","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNzEsMV0="} +{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"fa1d3f51-58b9-4971-a28d-40616cfceb01":{"columnOrder":["19e03939-49d0-48f7-b76c-d70142001365","a077ea8a-21dd-4bfe-b146-6d6425f7a14f","6117c588-4178-4597-b6da-e0277ec0d410"],"columns":{"19e03939-49d0-48f7-b76c-d70142001365":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"6117c588-4178-4597-b6da-e0277ec0d410":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"PutRecord Success","operationType":"average","scale":"ratio","sourceField":"aws.kinesis.metrics.PutRecord_Success.avg"},"a077ea8a-21dd-4bfe-b146-6d6425f7a14f":{"dataType":"string","isBucketed":true,"label":"Top values of aws.dimensions.StreamName","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"6117c588-4178-4597-b6da-e0277ec0d410","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.dimensions.StreamName"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["6117c588-4178-4597-b6da-e0277ec0d410"],"layerId":"fa1d3f51-58b9-4971-a28d-40616cfceb01","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"a077ea8a-21dd-4bfe-b146-6d6425f7a14f","xAccessor":"19e03939-49d0-48f7-b76c-d70142001365"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"AWS PutRecord Success [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"56ac2b40-d871-11eb-8220-c9141cc1b15c","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNzIsMV0="} +{"attributes":{"description":"Overview of Amazon Kinesis Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":5,\"i\":\"0359194f-01a1-4a5b-8040-c897bdc86638\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"0359194f-01a1-4a5b-8040-c897bdc86638\",\"panelRefName\":\"panel_0359194f-01a1-4a5b-8040-c897bdc86638\",\"title\":\"Filters\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"df2dc50f-c09b-4dcd-96a8-24037c576db3\",\"w\":16,\"x\":32,\"y\":5},\"panelIndex\":\"df2dc50f-c09b-4dcd-96a8-24037c576db3\",\"panelRefName\":\"panel_df2dc50f-c09b-4dcd-96a8-24037c576db3\",\"title\":\"GetRecords Latency\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"5f153d11-e84a-4ac5-aec9-4fca79863744\",\"w\":16,\"x\":0,\"y\":5},\"panelIndex\":\"5f153d11-e84a-4ac5-aec9-4fca79863744\",\"panelRefName\":\"panel_5f153d11-e84a-4ac5-aec9-4fca79863744\",\"title\":\"PutRecords Latency\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"a7378b79-483c-4e99-97e2-9b49fd9e81da\",\"w\":16,\"x\":16,\"y\":5},\"panelIndex\":\"a7378b79-483c-4e99-97e2-9b49fd9e81da\",\"panelRefName\":\"panel_a7378b79-483c-4e99-97e2-9b49fd9e81da\",\"title\":\"PutRecord Latency\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"01a12917-ef1c-47b6-964a-26ef424dd0d3\",\"w\":16,\"x\":32,\"y\":20},\"panelIndex\":\"01a12917-ef1c-47b6-964a-26ef424dd0d3\",\"panelRefName\":\"panel_01a12917-ef1c-47b6-964a-26ef424dd0d3\",\"title\":\"GetRecords Bytes\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"7e5774cb-e2e5-4f11-95bc-732ed6600757\",\"w\":16,\"x\":0,\"y\":20},\"panelIndex\":\"7e5774cb-e2e5-4f11-95bc-732ed6600757\",\"panelRefName\":\"panel_7e5774cb-e2e5-4f11-95bc-732ed6600757\",\"title\":\"PutRecords Bytes\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"e18e62e5-672a-4939-afe1-68354e76aefc\",\"w\":16,\"x\":16,\"y\":20},\"panelIndex\":\"e18e62e5-672a-4939-afe1-68354e76aefc\",\"panelRefName\":\"panel_e18e62e5-672a-4939-afe1-68354e76aefc\",\"title\":\"PutRecord Bytes\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"a1f01da7-4496-4f4e-acc8-9e6efd826f52\",\"w\":16,\"x\":32,\"y\":35},\"panelIndex\":\"a1f01da7-4496-4f4e-acc8-9e6efd826f52\",\"panelRefName\":\"panel_a1f01da7-4496-4f4e-acc8-9e6efd826f52\",\"title\":\"GetRecords Success\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"6ddd4401-6625-42b6-9270-9bc17c8408e6\",\"w\":16,\"x\":0,\"y\":35},\"panelIndex\":\"6ddd4401-6625-42b6-9270-9bc17c8408e6\",\"panelRefName\":\"panel_6ddd4401-6625-42b6-9270-9bc17c8408e6\",\"title\":\"PutRecords Success\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"fb4e4fb3-91de-46c8-b3f8-ef17ba3c4773\",\"w\":16,\"x\":16,\"y\":35},\"panelIndex\":\"fb4e4fb3-91de-46c8-b3f8-ef17ba3c4773\",\"panelRefName\":\"panel_fb4e4fb3-91de-46c8-b3f8-ef17ba3c4773\",\"title\":\"PutRecord Success\",\"type\":\"lens\",\"version\":\"7.11.0\"}]","timeRestore":false,"title":"[Metricbeat AWS] Kinesis Overview","version":1},"coreMigrationVersion":"8.0.0","id":"07d67a60-d872-11eb-8220-c9141cc1b15c","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"3c5d7860-d903-11eb-8220-c9141cc1b15c","name":"0359194f-01a1-4a5b-8040-c897bdc86638:panel_0359194f-01a1-4a5b-8040-c897bdc86638","type":"visualization"},{"id":"63aa5990-d86f-11eb-8220-c9141cc1b15c","name":"df2dc50f-c09b-4dcd-96a8-24037c576db3:panel_df2dc50f-c09b-4dcd-96a8-24037c576db3","type":"lens"},{"id":"9deb6a80-d870-11eb-8220-c9141cc1b15c","name":"5f153d11-e84a-4ac5-aec9-4fca79863744:panel_5f153d11-e84a-4ac5-aec9-4fca79863744","type":"lens"},{"id":"2a711450-d871-11eb-8220-c9141cc1b15c","name":"a7378b79-483c-4e99-97e2-9b49fd9e81da:panel_a7378b79-483c-4e99-97e2-9b49fd9e81da","type":"lens"},{"id":"d1468000-d86f-11eb-8220-c9141cc1b15c","name":"01a12917-ef1c-47b6-964a-26ef424dd0d3:panel_01a12917-ef1c-47b6-964a-26ef424dd0d3","type":"lens"},{"id":"6d631980-d870-11eb-8220-c9141cc1b15c","name":"7e5774cb-e2e5-4f11-95bc-732ed6600757:panel_7e5774cb-e2e5-4f11-95bc-732ed6600757","type":"lens"},{"id":"6d631980-d870-11eb-8220-c9141cc1b15c","name":"e18e62e5-672a-4939-afe1-68354e76aefc:panel_e18e62e5-672a-4939-afe1-68354e76aefc","type":"lens"},{"id":"79d713c0-d86f-11eb-8220-c9141cc1b15c","name":"a1f01da7-4496-4f4e-acc8-9e6efd826f52:panel_a1f01da7-4496-4f4e-acc8-9e6efd826f52","type":"lens"},{"id":"c68d7c30-d870-11eb-8220-c9141cc1b15c","name":"6ddd4401-6625-42b6-9270-9bc17c8408e6:panel_6ddd4401-6625-42b6-9270-9bc17c8408e6","type":"lens"},{"id":"56ac2b40-d871-11eb-8220-c9141cc1b15c","name":"fb4e4fb3-91de-46c8-b3f8-ef17ba3c4773:panel_fb4e4fb3-91de-46c8-b3f8-ef17ba3c4773","type":"lens"}],"type":"dashboard","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNjMsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-lambda-overview.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-lambda-overview.json deleted file mode 100644 index ecee23ca080..00000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-lambda-overview.json +++ /dev/null @@ -1,654 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of AWS Lambda Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "AWS Account Filter" - }, - "gridData": { - "h": 5, - "i": "8f2d1b8f-fef3-4a9a-9cc8-7f0e2c65e35a", - "w": 14, - "x": 0, - "y": 0 - }, - "panelIndex": "8f2d1b8f-fef3-4a9a-9cc8-7f0e2c65e35a", - "panelRefName": "panel_0", - "title": "AWS Account Filter", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "Top Errors" - }, - "gridData": { - "h": 10, - "i": "443a9699-3451-44f7-8415-99a16c3f45b3", - "w": 34, - "x": 14, - "y": 0 - }, - "panelIndex": "443a9699-3451-44f7-8415-99a16c3f45b3", - "panelRefName": "panel_1", - "title": "Top Errors", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "AWS Region Filter" - }, - "gridData": { - "h": 5, - "i": "60a16bf0-2979-467a-b30e-05ea29547b41", - "w": 14, - "x": 0, - "y": 5 - }, - "panelIndex": "60a16bf0-2979-467a-b30e-05ea29547b41", - "panelRefName": "panel_2", - "title": "AWS Region Filter", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "Lambda Function Duration in Milliseconds" - }, - "gridData": { - "h": 14, - "i": "349ef0d1-fea1-4b91-b95d-7a668914e10b", - "w": 48, - "x": 0, - "y": 10 - }, - "panelIndex": "349ef0d1-fea1-4b91-b95d-7a668914e10b", - "panelRefName": "panel_3", - "title": "Lambda Function Duration in Milliseconds", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "Top Invoked Lambda Functions" - }, - "gridData": { - "h": 9, - "i": "048b1577-5aed-48e5-8f90-147aa3d56c1a", - "w": 24, - "x": 0, - "y": 24 - }, - "panelIndex": "048b1577-5aed-48e5-8f90-147aa3d56c1a", - "panelRefName": "panel_4", - "title": "Top Invoked Lambda Functions", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "Top Throttled Lambda Functions" - }, - "gridData": { - "h": 9, - "i": "4c8e471c-45da-47be-a866-c5bfc6d28a05", - "w": 24, - "x": 24, - "y": 24 - }, - "panelIndex": "4c8e471c-45da-47be-a866-c5bfc6d28a05", - "panelRefName": "panel_5", - "title": "Top Throttled Lambda Functions", - "version": "7.3.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat AWS] Lambda Overview", - "version": 1 - }, - "id": "7ac8e1d0-28d2-11ea-ba6c-49a884eb104f", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "deab0260-2981-11e9-86eb-a3a07a77f530", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "4bf0a740-28d1-11ea-ba6c-49a884eb104f", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "b5308940-7347-11e9-816b-07687310a99a", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "39dfc8d0-28cf-11ea-ba6c-49a884eb104f", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "1f3f00c0-28d1-11ea-ba6c-49a884eb104f", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "915bcd50-28d1-11ea-ba6c-49a884eb104f", - "name": "panel_5", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-01-09T23:14:56.640Z", - "version": "WzI3MDAsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "AWS Account Filter [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.account.name", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "account name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "AWS Account Filter [Metricbeat AWS]", - "type": "input_control_vis" - } - }, - "id": "deab0260-2981-11e9-86eb-a3a07a77f530", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-01-09T22:47:51.746Z", - "version": "WzIzMTUsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Lambda Top Errors [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "fbf0eac0-28d0-11ea-8789-f72e3366fb25" - } - ], - "bar_color_rules": [ - { - "id": "f679afa0-28d0-11ea-8789-f72e3366fb25" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "3eabbde0-28d1-11ea-8789-f72e3366fb25" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "ca2e4c60-28cd-11ea-822d-3ba2c0089081", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "ca2e4c61-28cd-11ea-822d-3ba2c0089081", - "label": "avg(aws.metrics.Duration.avg)", - "line_width": 2, - "metrics": [ - { - "field": "aws.lambda.metrics.Errors.avg", - "id": "ca2e4c62-28cd-11ea-822d-3ba2c0089081", - "type": "max" - } - ], - "point_size": "4", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.FunctionName", - "terms_order_by": "ca2e4c62-28cd-11ea-822d-3ba2c0089081", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Lambda Top Errors [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "4bf0a740-28d1-11ea-ba6c-49a884eb104f", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-09T22:58:19.013Z", - "version": "WzI2OTAsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "AWS Region Filter [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.region", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "region name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "AWS Region Filter", - "type": "input_control_vis" - } - }, - "id": "b5308940-7347-11e9-816b-07687310a99a", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-01-09T22:47:51.746Z", - "version": "WzIzMTIsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Lambda Duration in Milliseconds [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "ca2e4c60-28cd-11ea-822d-3ba2c0089081", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "ca2e4c61-28cd-11ea-822d-3ba2c0089081", - "label": "avg(aws.metrics.Duration.avg)", - "line_width": 2, - "metrics": [ - { - "field": "aws.lambda.metrics.Duration.avg", - "id": "ca2e4c62-28cd-11ea-822d-3ba2c0089081", - "type": "avg" - } - ], - "point_size": "4", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.FunctionName", - "terms_order_by": "ca2e4c62-28cd-11ea-822d-3ba2c0089081", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Lambda Duration in Milliseconds [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "39dfc8d0-28cf-11ea-ba6c-49a884eb104f", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-09T23:09:15.122Z", - "version": "WzI2OTgsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Lambda Top Invoked Functions [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "fbf0eac0-28d0-11ea-8789-f72e3366fb25" - } - ], - "bar_color_rules": [ - { - "id": "f679afa0-28d0-11ea-8789-f72e3366fb25" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "ca2e4c60-28cd-11ea-822d-3ba2c0089081", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "ca2e4c61-28cd-11ea-822d-3ba2c0089081", - "label": "avg(aws.metrics.Duration.avg)", - "line_width": 2, - "metrics": [ - { - "field": "aws.lambda.metrics.Invocations.avg", - "id": "ca2e4c62-28cd-11ea-822d-3ba2c0089081", - "type": "max" - } - ], - "point_size": "4", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.FunctionName", - "terms_order_by": "ca2e4c62-28cd-11ea-822d-3ba2c0089081", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "Lambda Top Invoked Functions [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "1f3f00c0-28d1-11ea-ba6c-49a884eb104f", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-09T22:59:29.714Z", - "version": "WzI2OTEsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Lambda Top Throttles [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "fbf0eac0-28d0-11ea-8789-f72e3366fb25" - } - ], - "bar_color_rules": [ - { - "id": "f679afa0-28d0-11ea-8789-f72e3366fb25" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "3eabbde0-28d1-11ea-8789-f72e3366fb25" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "ca2e4c60-28cd-11ea-822d-3ba2c0089081", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "ca2e4c61-28cd-11ea-822d-3ba2c0089081", - "label": "avg(aws.metrics.Duration.avg)", - "line_width": 2, - "metrics": [ - { - "field": "aws.lambda.metrics.Duration.avg", - "id": "ca2e4c62-28cd-11ea-822d-3ba2c0089081", - "type": "max" - } - ], - "point_size": "4", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.FunctionName", - "terms_order_by": "ca2e4c62-28cd-11ea-822d-3ba2c0089081", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "Lambda Top Throttles [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "915bcd50-28d1-11ea-ba6c-49a884eb104f", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-09T22:59:58.449Z", - "version": "WzI2OTIsM10=" - } - ], - "version": "7.3.0" -} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-lambda-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-lambda-overview.ndjson new file mode 100644 index 00000000000..3f897938a16 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-lambda-overview.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Account Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.account.name\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"account name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Account Filter [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"deab0260-2981-11e9-86eb-a3a07a77f530","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Lambda Top Errors [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"fbf0eac0-28d0-11ea-8789-f72e3366fb25\"}],\"bar_color_rules\":[{\"id\":\"f679afa0-28d0-11ea-8789-f72e3366fb25\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"3eabbde0-28d1-11ea-8789-f72e3366fb25\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"ca2e4c60-28cd-11ea-822d-3ba2c0089081\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"ca2e4c61-28cd-11ea-822d-3ba2c0089081\",\"label\":\"avg(aws.metrics.Duration.avg)\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.lambda.metrics.Errors.avg\",\"id\":\"ca2e4c62-28cd-11ea-822d-3ba2c0089081\",\"type\":\"max\"}],\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.FunctionName\",\"terms_order_by\":\"ca2e4c62-28cd-11ea-822d-3ba2c0089081\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Lambda Top Errors [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4bf0a740-28d1-11ea-ba6c-49a884eb104f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:31.702Z","version":"WzMzNzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Region Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Region Filter\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b5308940-7347-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Lambda Duration in Milliseconds [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"ca2e4c60-28cd-11ea-822d-3ba2c0089081\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"ca2e4c61-28cd-11ea-822d-3ba2c0089081\",\"label\":\"avg(aws.metrics.Duration.avg)\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.lambda.metrics.Duration.avg\",\"id\":\"ca2e4c62-28cd-11ea-822d-3ba2c0089081\",\"type\":\"avg\"}],\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.FunctionName\",\"terms_order_by\":\"ca2e4c62-28cd-11ea-822d-3ba2c0089081\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Lambda Duration in Milliseconds [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"39dfc8d0-28cf-11ea-ba6c-49a884eb104f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:31.702Z","version":"WzMzNzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Lambda Top Invoked Functions [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"fbf0eac0-28d0-11ea-8789-f72e3366fb25\"}],\"bar_color_rules\":[{\"id\":\"f679afa0-28d0-11ea-8789-f72e3366fb25\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"ca2e4c60-28cd-11ea-822d-3ba2c0089081\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"ca2e4c61-28cd-11ea-822d-3ba2c0089081\",\"label\":\"avg(aws.metrics.Duration.avg)\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.lambda.metrics.Invocations.avg\",\"id\":\"ca2e4c62-28cd-11ea-822d-3ba2c0089081\",\"type\":\"max\"}],\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.FunctionName\",\"terms_order_by\":\"ca2e4c62-28cd-11ea-822d-3ba2c0089081\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Lambda Top Invoked Functions [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1f3f00c0-28d1-11ea-ba6c-49a884eb104f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:31.702Z","version":"WzMzNzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Lambda Top Throttles [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"fbf0eac0-28d0-11ea-8789-f72e3366fb25\"}],\"bar_color_rules\":[{\"id\":\"f679afa0-28d0-11ea-8789-f72e3366fb25\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"3eabbde0-28d1-11ea-8789-f72e3366fb25\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"ca2e4c60-28cd-11ea-822d-3ba2c0089081\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"ca2e4c61-28cd-11ea-822d-3ba2c0089081\",\"label\":\"avg(aws.metrics.Duration.avg)\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.lambda.metrics.Duration.avg\",\"id\":\"ca2e4c62-28cd-11ea-822d-3ba2c0089081\",\"type\":\"max\"}],\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.FunctionName\",\"terms_order_by\":\"ca2e4c62-28cd-11ea-822d-3ba2c0089081\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Lambda Top Throttles [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"915bcd50-28d1-11ea-ba6c-49a884eb104f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:31.702Z","version":"WzMzNzksMV0="} +{"attributes":{"description":"Overview of AWS Lambda Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"8f2d1b8f-fef3-4a9a-9cc8-7f0e2c65e35a\",\"w\":14,\"x\":0,\"y\":0},\"panelIndex\":\"8f2d1b8f-fef3-4a9a-9cc8-7f0e2c65e35a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"AWS Account Filter\",\"panelRefName\":\"panel_8f2d1b8f-fef3-4a9a-9cc8-7f0e2c65e35a\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"443a9699-3451-44f7-8415-99a16c3f45b3\",\"w\":34,\"x\":14,\"y\":0},\"panelIndex\":\"443a9699-3451-44f7-8415-99a16c3f45b3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Errors\",\"panelRefName\":\"panel_443a9699-3451-44f7-8415-99a16c3f45b3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"60a16bf0-2979-467a-b30e-05ea29547b41\",\"w\":14,\"x\":0,\"y\":5},\"panelIndex\":\"60a16bf0-2979-467a-b30e-05ea29547b41\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"AWS Region Filter\",\"panelRefName\":\"panel_60a16bf0-2979-467a-b30e-05ea29547b41\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"349ef0d1-fea1-4b91-b95d-7a668914e10b\",\"w\":48,\"x\":0,\"y\":10},\"panelIndex\":\"349ef0d1-fea1-4b91-b95d-7a668914e10b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Lambda Function Duration in Milliseconds\",\"panelRefName\":\"panel_349ef0d1-fea1-4b91-b95d-7a668914e10b\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"048b1577-5aed-48e5-8f90-147aa3d56c1a\",\"w\":24,\"x\":0,\"y\":24},\"panelIndex\":\"048b1577-5aed-48e5-8f90-147aa3d56c1a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Invoked Lambda Functions\",\"panelRefName\":\"panel_048b1577-5aed-48e5-8f90-147aa3d56c1a\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"4c8e471c-45da-47be-a866-c5bfc6d28a05\",\"w\":24,\"x\":24,\"y\":24},\"panelIndex\":\"4c8e471c-45da-47be-a866-c5bfc6d28a05\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Throttled Lambda Functions\",\"panelRefName\":\"panel_4c8e471c-45da-47be-a866-c5bfc6d28a05\"}]","timeRestore":false,"title":"[Metricbeat AWS] Lambda Overview","version":1},"coreMigrationVersion":"8.0.0","id":"7ac8e1d0-28d2-11ea-ba6c-49a884eb104f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"deab0260-2981-11e9-86eb-a3a07a77f530","name":"8f2d1b8f-fef3-4a9a-9cc8-7f0e2c65e35a:panel_8f2d1b8f-fef3-4a9a-9cc8-7f0e2c65e35a","type":"visualization"},{"id":"4bf0a740-28d1-11ea-ba6c-49a884eb104f","name":"443a9699-3451-44f7-8415-99a16c3f45b3:panel_443a9699-3451-44f7-8415-99a16c3f45b3","type":"visualization"},{"id":"b5308940-7347-11e9-816b-07687310a99a","name":"60a16bf0-2979-467a-b30e-05ea29547b41:panel_60a16bf0-2979-467a-b30e-05ea29547b41","type":"visualization"},{"id":"39dfc8d0-28cf-11ea-ba6c-49a884eb104f","name":"349ef0d1-fea1-4b91-b95d-7a668914e10b:panel_349ef0d1-fea1-4b91-b95d-7a668914e10b","type":"visualization"},{"id":"1f3f00c0-28d1-11ea-ba6c-49a884eb104f","name":"048b1577-5aed-48e5-8f90-147aa3d56c1a:panel_048b1577-5aed-48e5-8f90-147aa3d56c1a","type":"visualization"},{"id":"915bcd50-28d1-11ea-ba6c-49a884eb104f","name":"4c8e471c-45da-47be-a866-c5bfc6d28a05:panel_4c8e471c-45da-47be-a866-c5bfc6d28a05","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:31.702Z","version":"WzMzNzMsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-natgateway-overview.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-natgateway-overview.json deleted file mode 100644 index f98494984cd..00000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-natgateway-overview.json +++ /dev/null @@ -1,1410 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of AWS NAT Gateway Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Filters" - }, - "gridData": { - "h": 11, - "i": "346ce7bf-e1af-4e0d-856b-5aa412903167", - "w": 7, - "x": 0, - "y": 0 - }, - "panelIndex": "346ce7bf-e1af-4e0d-856b-5aa412903167", - "panelRefName": "panel_0", - "title": "Filters", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Error Port Allocation" - }, - "gridData": { - "h": 11, - "i": "19a9f053-a548-4e9d-a257-45932c3b73a5", - "w": 8, - "x": 7, - "y": 0 - }, - "panelIndex": "19a9f053-a548-4e9d-a257-45932c3b73a5", - "panelRefName": "panel_1", - "title": "Error Port Allocation", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Packets Drop" - }, - "gridData": { - "h": 11, - "i": "a7a70775-f4ad-4323-b13c-9c9a3bf1bdf3", - "w": 8, - "x": 15, - "y": 0 - }, - "panelIndex": "a7a70775-f4ad-4323-b13c-9c9a3bf1bdf3", - "panelRefName": "panel_2", - "title": "Packets Drop", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Total Connection Established" - }, - "gridData": { - "h": 11, - "i": "b5fe853e-d5b0-4918-93ec-8be70f2881a8", - "w": 8, - "x": 23, - "y": 0 - }, - "panelIndex": "b5fe853e-d5b0-4918-93ec-8be70f2881a8", - "panelRefName": "panel_3", - "title": "Total Connection Established", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Active Connection Count" - }, - "gridData": { - "h": 11, - "i": "33663eae-1bc3-47d4-a9fc-3cd2b43c66ef", - "w": 17, - "x": 31, - "y": 0 - }, - "panelIndex": "33663eae-1bc3-47d4-a9fc-3cd2b43c66ef", - "panelRefName": "panel_4", - "title": "Active Connection Count", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Bytes In From Destination" - }, - "gridData": { - "h": 13, - "i": "4e454740-281a-43b1-92f4-8dd2e37e184f", - "w": 24, - "x": 0, - "y": 11 - }, - "panelIndex": "4e454740-281a-43b1-92f4-8dd2e37e184f", - "panelRefName": "panel_5", - "title": "Bytes In From Destination", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Bytes In From Source" - }, - "gridData": { - "h": 13, - "i": "f40587a4-47f1-494a-b8b9-33365ce34d2f", - "w": 24, - "x": 24, - "y": 11 - }, - "panelIndex": "f40587a4-47f1-494a-b8b9-33365ce34d2f", - "panelRefName": "panel_6", - "title": "Bytes In From Source", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Bytes Out To Destination" - }, - "gridData": { - "h": 13, - "i": "00075068-bf27-49e1-8beb-d5572500205b", - "w": 24, - "x": 0, - "y": 24 - }, - "panelIndex": "00075068-bf27-49e1-8beb-d5572500205b", - "panelRefName": "panel_7", - "title": "Bytes Out To Destination", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Bytes Out To Source" - }, - "gridData": { - "h": 13, - "i": "c95ab156-9118-4c3c-94ee-55b4c9f5589c", - "w": 24, - "x": 24, - "y": 24 - }, - "panelIndex": "c95ab156-9118-4c3c-94ee-55b4c9f5589c", - "panelRefName": "panel_8", - "title": "Bytes Out To Source", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Packets In From Destination" - }, - "gridData": { - "h": 13, - "i": "f7c6e3f7-419d-43ff-a2bb-d5931371f347", - "w": 24, - "x": 0, - "y": 37 - }, - "panelIndex": "f7c6e3f7-419d-43ff-a2bb-d5931371f347", - "panelRefName": "panel_9", - "title": "Packets In From Destination", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Packets In From Source" - }, - "gridData": { - "h": 13, - "i": "dcc56438-240a-45a4-81ec-a54be3d27c43", - "w": 24, - "x": 24, - "y": 37 - }, - "panelIndex": "dcc56438-240a-45a4-81ec-a54be3d27c43", - "panelRefName": "panel_10", - "title": "Packets In From Source", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Packets Out To Destination" - }, - "gridData": { - "h": 13, - "i": "db77d690-f343-4dc2-8695-d45a03361e01", - "w": 24, - "x": 0, - "y": 50 - }, - "panelIndex": "db77d690-f343-4dc2-8695-d45a03361e01", - "panelRefName": "panel_11", - "title": "Packets Out To Destination", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Packets Out To Source" - }, - "gridData": { - "h": 13, - "i": "d882a862-87aa-4169-9dc3-0591252fa736", - "w": 24, - "x": 24, - "y": 50 - }, - "panelIndex": "d882a862-87aa-4169-9dc3-0591252fa736", - "panelRefName": "panel_12", - "title": "Packets Out To Source", - "version": "7.6.1" - } - ], - "timeRestore": false, - "title": "[Metricbeat AWS] NATGateway Overview", - "version": 1 - }, - "id": "c2b1cbc0-6891-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "8345d580-6891-11ea-b0ac-95d4ecb1fecd", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "ce7445c0-688f-11ea-b0ac-95d4ecb1fecd", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "9bf8e1e0-6890-11ea-b0ac-95d4ecb1fecd", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "68970b10-6890-11ea-b0ac-95d4ecb1fecd", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "c186b610-688d-11ea-b0ac-95d4ecb1fecd", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "b36532e0-688e-11ea-b0ac-95d4ecb1fecd", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "bc5dcc90-688e-11ea-b0ac-95d4ecb1fecd", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "e0e65e60-688e-11ea-b0ac-95d4ecb1fecd", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "c7d6cf90-688e-11ea-b0ac-95d4ecb1fecd", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "bdb8ddd0-6890-11ea-b0ac-95d4ecb1fecd", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "c84ed3d0-6890-11ea-b0ac-95d4ecb1fecd", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "08645080-6891-11ea-b0ac-95d4ecb1fecd", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "fd915180-6890-11ea-b0ac-95d4ecb1fecd", - "name": "panel_12", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-03-17T21:29:15.037Z", - "version": "Wzg2NiwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "NATGateway Filters [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.account.name", - "id": "1565034367477", - "indexPatternRefName": "control_0_index_pattern", - "label": "account name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "cloud.region", - "id": "1584478324642", - "indexPatternRefName": "control_1_index_pattern", - "label": "region", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "aws.dimensions.NatGatewayId", - "id": "1584479118709", - "indexPatternRefName": "control_2_index_pattern", - "label": "NATGateway ID", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": true - }, - "title": "NATGateway Filters [Metricbeat AWS]", - "type": "input_control_vis" - } - }, - "id": "8345d580-6891-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-03-17T21:16:38.008Z", - "version": "Wzg2MCwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "NATGateway Error Port Allocation [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0", - "value": 0 - } - ], - "bar_color_rules": [ - { - "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Total Error of Port Allocation", - "line_width": "2", - "metrics": [ - { - "field": "aws.natgateway.metrics.ErrorPortAllocation.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "terms_field": "aws.dimensions.NatGatewayId", - "terms_order_by": "_count", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "time_range_mode": "last_value", - "type": "metric" - }, - "title": "NATGateway Error Port Allocation [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "ce7445c0-688f-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-17T20:42:24.156Z", - "version": "WzgzNywyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "NATGateway Packet Drop [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0", - "value": 0 - } - ], - "bar_color_rules": [ - { - "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "f444c0e0-688f-11ea-8b7d-fd9d15a13cd0", - "label": "Total Packets Drop", - "line_width": "2", - "metrics": [ - { - "field": "aws.natgateway.metrics.PacketsDropCount.sum", - "id": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", - "type": "sum" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "terms_field": "aws.dimensions.NatGatewayId", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "time_range_mode": "last_value", - "type": "metric" - }, - "title": "NATGateway Packet Drop [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "9bf8e1e0-6890-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-17T20:48:08.957Z", - "version": "WzgzOSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "NATGateway Connection Established [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0", - "value": 0 - } - ], - "bar_color_rules": [ - { - "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "f444c0e0-688f-11ea-8b7d-fd9d15a13cd0", - "label": "Total Connections Established", - "line_width": "2", - "metrics": [ - { - "field": "aws.natgateway.metrics.ConnectionEstablishedCount.sum", - "id": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", - "type": "sum" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "terms_field": "aws.dimensions.NatGatewayId", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "time_range_mode": "last_value", - "type": "metric" - }, - "title": "NATGateway Connection Established [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "68970b10-6890-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-17T21:17:52.918Z", - "version": "Wzg2MSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "NATGateway Active Connection Count Top10 [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0" - } - ], - "bar_color_rules": [ - { - "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "3", - "metrics": [ - { - "field": "aws.natgateway.metrics.ActiveConnectionCount.max", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "2", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.NatGatewayId", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "time_range_mode": "last_value", - "type": "top_n" - }, - "title": "NATGateway Active Connection Count Top10 [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "c186b610-688d-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-17T20:27:54.652Z", - "version": "WzgzMCwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "NATGateway Bytes In From Destination [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0" - } - ], - "bar_color_rules": [ - { - "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.natgateway.metrics.BytesInFromDestination.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.NatGatewayId", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "time_range_mode": "last_value", - "type": "timeseries" - }, - "title": "NATGateway Bytes In From Destination [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "b36532e0-688e-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-17T20:34:29.261Z", - "version": "WzgzMSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "NATGateway Bytes In From Source [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0" - } - ], - "bar_color_rules": [ - { - "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.natgateway.metrics.BytesInFromSource.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.NatGatewayId", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "time_range_mode": "last_value", - "type": "timeseries" - }, - "title": "NATGateway Bytes In From Source [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "bc5dcc90-688e-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-17T20:34:44.313Z", - "version": "WzgzMiwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "NATGateway Bytes Out To Destination [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0" - } - ], - "bar_color_rules": [ - { - "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.natgateway.metrics.BytesOutToDestination.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.NatGatewayId", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "time_range_mode": "last_value", - "type": "timeseries" - }, - "title": "NATGateway Bytes Out To Destination [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "e0e65e60-688e-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-17T20:35:45.606Z", - "version": "WzgzNSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "NATGateway Bytes Out To Source [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0" - } - ], - "bar_color_rules": [ - { - "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.natgateway.metrics.BytesOutToSource.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.NatGatewayId", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "time_range_mode": "last_value", - "type": "timeseries" - }, - "title": "NATGateway Bytes Out To Source [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "c7d6cf90-688e-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-17T20:35:28.424Z", - "version": "WzgzNCwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "NATGateway Packet In From Destination [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0", - "value": 0 - } - ], - "bar_color_rules": [ - { - "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "f444c0e0-688f-11ea-8b7d-fd9d15a13cd0", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.natgateway.metrics.PacketsInFromDestination.sum", - "id": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.NatGatewayId", - "terms_order_by": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "time_range_mode": "last_value", - "type": "timeseries" - }, - "title": "NATGateway Packet In From Destination [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "bdb8ddd0-6890-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-17T20:49:05.580Z", - "version": "Wzg0MCwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "NATGateway Packet In From Source [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0", - "value": 0 - } - ], - "bar_color_rules": [ - { - "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "f444c0e0-688f-11ea-8b7d-fd9d15a13cd0", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.natgateway.metrics.PacketsInFromSource.sum", - "id": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.NatGatewayId", - "terms_order_by": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "time_range_mode": "last_value", - "type": "timeseries" - }, - "title": "NATGateway Packet In From Source [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "c84ed3d0-6890-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-17T20:49:23.341Z", - "version": "Wzg0MSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "NATGateway Packet Out To Destination [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0", - "value": 0 - } - ], - "bar_color_rules": [ - { - "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "f444c0e0-688f-11ea-8b7d-fd9d15a13cd0", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.natgateway.metrics.PacketsOutToDestination.sum", - "id": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.NatGatewayId", - "terms_order_by": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "time_range_mode": "last_value", - "type": "timeseries" - }, - "title": "NATGateway Packet Out To Destination [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "08645080-6891-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-17T20:51:10.856Z", - "version": "Wzg0MywyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "NATGateway Packet Out To Source [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0", - "value": 0 - } - ], - "bar_color_rules": [ - { - "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "f444c0e0-688f-11ea-8b7d-fd9d15a13cd0", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.natgateway.metrics.PacketsOutToSource.sum", - "id": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.NatGatewayId", - "terms_order_by": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "time_range_mode": "last_value", - "type": "timeseries" - }, - "title": "NATGateway Packet Out To Source [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "fd915180-6890-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-17T20:50:52.696Z", - "version": "Wzg0MiwyXQ==" - } - ], - "version": "7.6.1" -} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-natgateway-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-natgateway-overview.ndjson new file mode 100644 index 00000000000..025c41691f7 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-natgateway-overview.ndjson @@ -0,0 +1,14 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"NATGateway Filters [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.account.name\",\"id\":\"1565034367477\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"account name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"cloud.region\",\"id\":\"1584478324642\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"aws.dimensions.NatGatewayId\",\"id\":\"1584479118709\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"NATGateway ID\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"NATGateway Filters [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"8345d580-6891-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Error Port Allocation [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\",\"value\":0}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total Error of Port Allocation\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.ErrorPortAllocation.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"NATGateway Error Port Allocation [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ce7445c0-688f-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Packet Drop [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\",\"value\":0}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"f444c0e0-688f-11ea-8b7d-fd9d15a13cd0\",\"label\":\"Total Packets Drop\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.PacketsDropCount.sum\",\"id\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"sum\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"NATGateway Packet Drop [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9bf8e1e0-6890-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Connection Established [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\",\"value\":0}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"f444c0e0-688f-11ea-8b7d-fd9d15a13cd0\",\"label\":\"Total Connections Established\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.ConnectionEstablishedCount.sum\",\"id\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"sum\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"NATGateway Connection Established [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"68970b10-6890-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Active Connection Count Top10 [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\"}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"3\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.ActiveConnectionCount.max\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"NATGateway Active Connection Count Top10 [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c186b610-688d-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Bytes In From Destination [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\"}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.BytesInFromDestination.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"NATGateway Bytes In From Destination [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b36532e0-688e-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Bytes In From Source [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\"}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.BytesInFromSource.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"NATGateway Bytes In From Source [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bc5dcc90-688e-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Bytes Out To Destination [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\"}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.BytesOutToDestination.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"NATGateway Bytes Out To Destination [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e0e65e60-688e-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Bytes Out To Source [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\"}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.BytesOutToSource.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"NATGateway Bytes Out To Source [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c7d6cf90-688e-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Packet In From Destination [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\",\"value\":0}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"f444c0e0-688f-11ea-8b7d-fd9d15a13cd0\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.PacketsInFromDestination.sum\",\"id\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"NATGateway Packet In From Destination [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bdb8ddd0-6890-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzOTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Packet In From Source [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\",\"value\":0}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"f444c0e0-688f-11ea-8b7d-fd9d15a13cd0\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.PacketsInFromSource.sum\",\"id\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"NATGateway Packet In From Source [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c84ed3d0-6890-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzOTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Packet Out To Destination [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\",\"value\":0}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"f444c0e0-688f-11ea-8b7d-fd9d15a13cd0\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.PacketsOutToDestination.sum\",\"id\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"NATGateway Packet Out To Destination [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"08645080-6891-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzOTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Packet Out To Source [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\",\"value\":0}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"f444c0e0-688f-11ea-8b7d-fd9d15a13cd0\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.PacketsOutToSource.sum\",\"id\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"NATGateway Packet Out To Source [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fd915180-6890-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzOTMsMV0="} +{"attributes":{"description":"Overview of AWS NAT Gateway Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"346ce7bf-e1af-4e0d-856b-5aa412903167\",\"w\":7,\"x\":0,\"y\":0},\"panelIndex\":\"346ce7bf-e1af-4e0d-856b-5aa412903167\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_346ce7bf-e1af-4e0d-856b-5aa412903167\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"19a9f053-a548-4e9d-a257-45932c3b73a5\",\"w\":8,\"x\":7,\"y\":0},\"panelIndex\":\"19a9f053-a548-4e9d-a257-45932c3b73a5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Error Port Allocation\",\"panelRefName\":\"panel_19a9f053-a548-4e9d-a257-45932c3b73a5\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"a7a70775-f4ad-4323-b13c-9c9a3bf1bdf3\",\"w\":8,\"x\":15,\"y\":0},\"panelIndex\":\"a7a70775-f4ad-4323-b13c-9c9a3bf1bdf3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets Drop\",\"panelRefName\":\"panel_a7a70775-f4ad-4323-b13c-9c9a3bf1bdf3\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"b5fe853e-d5b0-4918-93ec-8be70f2881a8\",\"w\":8,\"x\":23,\"y\":0},\"panelIndex\":\"b5fe853e-d5b0-4918-93ec-8be70f2881a8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Connection Established\",\"panelRefName\":\"panel_b5fe853e-d5b0-4918-93ec-8be70f2881a8\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"33663eae-1bc3-47d4-a9fc-3cd2b43c66ef\",\"w\":17,\"x\":31,\"y\":0},\"panelIndex\":\"33663eae-1bc3-47d4-a9fc-3cd2b43c66ef\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Active Connection Count\",\"panelRefName\":\"panel_33663eae-1bc3-47d4-a9fc-3cd2b43c66ef\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"4e454740-281a-43b1-92f4-8dd2e37e184f\",\"w\":24,\"x\":0,\"y\":11},\"panelIndex\":\"4e454740-281a-43b1-92f4-8dd2e37e184f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes In From Destination\",\"panelRefName\":\"panel_4e454740-281a-43b1-92f4-8dd2e37e184f\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"f40587a4-47f1-494a-b8b9-33365ce34d2f\",\"w\":24,\"x\":24,\"y\":11},\"panelIndex\":\"f40587a4-47f1-494a-b8b9-33365ce34d2f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes In From Source\",\"panelRefName\":\"panel_f40587a4-47f1-494a-b8b9-33365ce34d2f\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"00075068-bf27-49e1-8beb-d5572500205b\",\"w\":24,\"x\":0,\"y\":24},\"panelIndex\":\"00075068-bf27-49e1-8beb-d5572500205b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes Out To Destination\",\"panelRefName\":\"panel_00075068-bf27-49e1-8beb-d5572500205b\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"c95ab156-9118-4c3c-94ee-55b4c9f5589c\",\"w\":24,\"x\":24,\"y\":24},\"panelIndex\":\"c95ab156-9118-4c3c-94ee-55b4c9f5589c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes Out To Source\",\"panelRefName\":\"panel_c95ab156-9118-4c3c-94ee-55b4c9f5589c\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"f7c6e3f7-419d-43ff-a2bb-d5931371f347\",\"w\":24,\"x\":0,\"y\":37},\"panelIndex\":\"f7c6e3f7-419d-43ff-a2bb-d5931371f347\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets In From Destination\",\"panelRefName\":\"panel_f7c6e3f7-419d-43ff-a2bb-d5931371f347\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"dcc56438-240a-45a4-81ec-a54be3d27c43\",\"w\":24,\"x\":24,\"y\":37},\"panelIndex\":\"dcc56438-240a-45a4-81ec-a54be3d27c43\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets In From Source\",\"panelRefName\":\"panel_dcc56438-240a-45a4-81ec-a54be3d27c43\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"db77d690-f343-4dc2-8695-d45a03361e01\",\"w\":24,\"x\":0,\"y\":50},\"panelIndex\":\"db77d690-f343-4dc2-8695-d45a03361e01\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets Out To Destination\",\"panelRefName\":\"panel_db77d690-f343-4dc2-8695-d45a03361e01\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"d882a862-87aa-4169-9dc3-0591252fa736\",\"w\":24,\"x\":24,\"y\":50},\"panelIndex\":\"d882a862-87aa-4169-9dc3-0591252fa736\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets Out To Source\",\"panelRefName\":\"panel_d882a862-87aa-4169-9dc3-0591252fa736\"}]","timeRestore":false,"title":"[Metricbeat AWS] NATGateway Overview","version":1},"coreMigrationVersion":"8.0.0","id":"c2b1cbc0-6891-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"8345d580-6891-11ea-b0ac-95d4ecb1fecd","name":"346ce7bf-e1af-4e0d-856b-5aa412903167:panel_346ce7bf-e1af-4e0d-856b-5aa412903167","type":"visualization"},{"id":"ce7445c0-688f-11ea-b0ac-95d4ecb1fecd","name":"19a9f053-a548-4e9d-a257-45932c3b73a5:panel_19a9f053-a548-4e9d-a257-45932c3b73a5","type":"visualization"},{"id":"9bf8e1e0-6890-11ea-b0ac-95d4ecb1fecd","name":"a7a70775-f4ad-4323-b13c-9c9a3bf1bdf3:panel_a7a70775-f4ad-4323-b13c-9c9a3bf1bdf3","type":"visualization"},{"id":"68970b10-6890-11ea-b0ac-95d4ecb1fecd","name":"b5fe853e-d5b0-4918-93ec-8be70f2881a8:panel_b5fe853e-d5b0-4918-93ec-8be70f2881a8","type":"visualization"},{"id":"c186b610-688d-11ea-b0ac-95d4ecb1fecd","name":"33663eae-1bc3-47d4-a9fc-3cd2b43c66ef:panel_33663eae-1bc3-47d4-a9fc-3cd2b43c66ef","type":"visualization"},{"id":"b36532e0-688e-11ea-b0ac-95d4ecb1fecd","name":"4e454740-281a-43b1-92f4-8dd2e37e184f:panel_4e454740-281a-43b1-92f4-8dd2e37e184f","type":"visualization"},{"id":"bc5dcc90-688e-11ea-b0ac-95d4ecb1fecd","name":"f40587a4-47f1-494a-b8b9-33365ce34d2f:panel_f40587a4-47f1-494a-b8b9-33365ce34d2f","type":"visualization"},{"id":"e0e65e60-688e-11ea-b0ac-95d4ecb1fecd","name":"00075068-bf27-49e1-8beb-d5572500205b:panel_00075068-bf27-49e1-8beb-d5572500205b","type":"visualization"},{"id":"c7d6cf90-688e-11ea-b0ac-95d4ecb1fecd","name":"c95ab156-9118-4c3c-94ee-55b4c9f5589c:panel_c95ab156-9118-4c3c-94ee-55b4c9f5589c","type":"visualization"},{"id":"bdb8ddd0-6890-11ea-b0ac-95d4ecb1fecd","name":"f7c6e3f7-419d-43ff-a2bb-d5931371f347:panel_f7c6e3f7-419d-43ff-a2bb-d5931371f347","type":"visualization"},{"id":"c84ed3d0-6890-11ea-b0ac-95d4ecb1fecd","name":"dcc56438-240a-45a4-81ec-a54be3d27c43:panel_dcc56438-240a-45a4-81ec-a54be3d27c43","type":"visualization"},{"id":"08645080-6891-11ea-b0ac-95d4ecb1fecd","name":"db77d690-f343-4dc2-8695-d45a03361e01:panel_db77d690-f343-4dc2-8695-d45a03361e01","type":"visualization"},{"id":"fd915180-6890-11ea-b0ac-95d4ecb1fecd","name":"d882a862-87aa-4169-9dc3-0591252fa736:panel_d882a862-87aa-4169-9dc3-0591252fa736","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODAsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-overview.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-overview.json deleted file mode 100644 index 31a3c05bf60..00000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-overview.json +++ /dev/null @@ -1,1508 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of AWS Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "2", - "w": 9, - "x": 0, - "y": 0 - }, - "panelIndex": "2", - "panelRefName": "panel_0", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "3", - "w": 10, - "x": 9, - "y": 0 - }, - "panelIndex": "3", - "panelRefName": "panel_1", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "4", - "w": 29, - "x": 19, - "y": 0 - }, - "panelIndex": "4", - "panelRefName": "panel_2", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "6", - "w": 9, - "x": 0, - "y": 7 - }, - "panelIndex": "6", - "panelRefName": "panel_3", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "7", - "w": 9, - "x": 9, - "y": 7 - }, - "panelIndex": "7", - "panelRefName": "panel_4", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "9", - "w": 15, - "x": 18, - "y": 7 - }, - "panelIndex": "9", - "panelRefName": "panel_5", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "10", - "w": 15, - "x": 33, - "y": 7 - }, - "panelIndex": "10", - "panelRefName": "panel_6", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "12", - "w": 13, - "x": 0, - "y": 14 - }, - "panelIndex": "12", - "panelRefName": "panel_7", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "14", - "w": 20, - "x": 13, - "y": 14 - }, - "panelIndex": "14", - "panelRefName": "panel_8", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "15", - "w": 15, - "x": 33, - "y": 14 - }, - "panelIndex": "15", - "panelRefName": "panel_9", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "17", - "w": 16, - "x": 15, - "y": 21 - }, - "panelIndex": "17", - "panelRefName": "panel_10", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "18", - "w": 15, - "x": 0, - "y": 21 - }, - "panelIndex": "18", - "panelRefName": "panel_11", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "19", - "w": 17, - "x": 31, - "y": 21 - }, - "panelIndex": "19", - "panelRefName": "panel_12", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "24", - "w": 24, - "x": 0, - "y": 28 - }, - "panelIndex": "24", - "panelRefName": "panel_13", - "version": "7.2.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "25", - "w": 24, - "x": 24, - "y": 28 - }, - "panelIndex": "25", - "panelRefName": "panel_14", - "version": "7.2.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat AWS] Overview", - "version": 1 - }, - "id": "fac28650-7349-11e9-816b-07687310a99a", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "b5308940-7347-11e9-816b-07687310a99a", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "09db13f0-2bdd-11e9-9fe1-cde861544141", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "be8828d0-f7f6-11e8-af03-c999c9dea608-ecs", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "81d83c70-4762-11e9-8062-c98a86cb6f94", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "58e17c10-7349-11e9-816b-07687310a99a", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "4658f540-734a-11e9-816b-07687310a99a", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "95b322f0-734a-11e9-816b-07687310a99a", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "b2191dd0-734c-11e9-816b-07687310a99a", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "42016bf0-728f-11e9-9a7b-4d62d5bcf4fc", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "9121ac90-734d-11e9-816b-07687310a99a", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "128fd450-734e-11e9-816b-07687310a99a", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "54e88a40-734e-11e9-816b-07687310a99a", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "398d12d0-7352-11e9-816b-07687310a99a", - "name": "panel_12", - "type": "visualization" - }, - { - "id": "4bf62a10-8310-11e9-ac83-47df3568ff90", - "name": "panel_13", - "type": "visualization" - }, - { - "id": "d2f46190-830f-11e9-ac83-47df3568ff90", - "name": "panel_14", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-06-14T17:28:35.266Z", - "version": "WzI5MjYsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Region Filter [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.region", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "region", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "AWS Region Filter", - "type": "input_control_vis" - } - }, - "id": "b5308940-7347-11e9-816b-07687310a99a", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-06-14T17:02:27.742Z", - "version": "WzI2NzQsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "EC2 Instance State [Metricbeat AWS] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "16": "#629E51", - "272": "#DEDAF7", - "80": "#E24D42", - "running": "#7EB26D", - "stopped": "#E24D42" - }, - "legendOpen": true - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "EC2 Instance State" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "", - "field": "aws.ec2.instance.state.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "labels": { - "last_level": true, - "show": true, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "EC2 Instance State [Metricbeat AWS] ECS", - "type": "pie" - } - }, - "id": "09db13f0-2bdd-11e9-9fe1-cde861544141", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-06-14T17:02:27.742Z", - "version": "WzI2NzUsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "EC2 CPU Utilization [Metricbeat AWS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [], - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "23428b30-f7f2-11e8-bff8-21537b07dd44" - } - ], - "bar_color_rules": [ - { - "id": "2592bcc0-f7f2-11e8-bff8-21537b07dd44" - } - ], - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": "", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "AWS EC2 CPU Utilization ECS", - "line_width": 1, - "metrics": [ - { - "field": "aws.ec2.cpu.total.pct", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "series_drop_last_bucket": 1, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_field": "cloud.instance.id", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "AWS EC2 CPU Utilization ECS", - "type": "metrics" - } - }, - "id": "be8828d0-f7f6-11e8-af03-c999c9dea608-ecs", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-06-14T17:02:27.742Z", - "version": "WzI2NzYsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "S3 Total Error 4xx [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "59207fe0-4762-11e9-bf81-69a4e579cab5" - } - ], - "bar_color_rules": [ - { - "id": "5ad9a190-4762-11e9-bf81-69a4e579cab5" - } - ], - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Total # of HTTP 4xx Errors", - "line_width": 1, - "metrics": [ - { - "field": "aws.s3_request.errors.4xx", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric" - }, - "title": "AWS S3 Total Error 4xx", - "type": "metrics" - } - }, - "id": "81d83c70-4762-11e9-8062-c98a86cb6f94", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-06-14T17:02:28.760Z", - "version": "WzI2OTUsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "S3 Total Error 5xx [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "59207fe0-4762-11e9-bf81-69a4e579cab5" - } - ], - "bar_color_rules": [ - { - "id": "5ad9a190-4762-11e9-bf81-69a4e579cab5" - } - ], - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Total # of HTTP 5xx Errors", - "line_width": 1, - "metrics": [ - { - "field": "aws.s3_request.errors.5xx", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric" - }, - "title": "AWS S3 Total Error 5xx", - "type": "metrics" - } - }, - "id": "58e17c10-7349-11e9-816b-07687310a99a", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-06-14T17:02:27.742Z", - "version": "WzI2NzgsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SQS Empty Receives Top5 [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "23be77d0-734a-11e9-a683-47ca322fa6f9" - } - ], - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "AWS SQS Empty Receives", - "line_width": 1, - "metrics": [ - { - "field": "aws.sqs.empty_receives", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.sqs.queue.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "AWS SQS Empty Receives Top5", - "type": "metrics" - } - }, - "id": "4658f540-734a-11e9-816b-07687310a99a", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-06-14T17:02:27.742Z", - "version": "WzI2NzksNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SQS Messages Delayed Top5 [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "23be77d0-734a-11e9-a683-47ca322fa6f9" - } - ], - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "AWS SQS Messages Delayed", - "line_width": 1, - "metrics": [ - { - "field": "aws.sqs.messages.delayed", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.sqs.queue.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "AWS SQS Messages Delayed Top5", - "type": "metrics" - } - }, - "id": "95b322f0-734a-11e9-816b-07687310a99a", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-06-14T17:02:27.742Z", - "version": "WzI2ODAsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Cloudwatch ELB Request Count Top5 [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "94f2ce40-734c-11e9-a683-47ca322fa6f9" - } - ], - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "ELB Request Count Top5", - "line_width": 1, - "metrics": [ - { - "field": "aws.elb.metrics.RequestCount", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.LoadBalancerName", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "AWS Cloudwatch ELB Request Count Top5", - "type": "metrics" - } - }, - "id": "b2191dd0-734c-11e9-816b-07687310a99a", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-06-14T17:02:27.742Z", - "version": "WzI2ODEsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Cloudwatch ELB Latency [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [], - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "23428b30-f7f2-11e8-bff8-21537b07dd44" - } - ], - "bar_color_rules": [ - { - "id": "2592bcc0-f7f2-11e8-bff8-21537b07dd44" - } - ], - "default_index_pattern": "metricbeat-8*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": "", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "AWS Cloudwatch ELB Latency", - "line_width": 1, - "metrics": [ - { - "field": "aws.elb.metrics.Latency", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "series_drop_last_bucket": 1, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_field": "aws.dimensions.LoadBalancerName", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "AWS Cloudwatch ELB Latency", - "type": "metrics" - } - }, - "id": "42016bf0-728f-11e9-9a7b-4d62d5bcf4fc", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-06-14T17:02:27.742Z", - "version": "WzI2ODIsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Cloudwatch ELB Unhealthy Host Count [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "cbb498f0-734c-11e9-a683-47ca322fa6f9" - } - ], - "bar_color_rules": [ - { - "id": "94f2ce40-734c-11e9-a683-47ca322fa6f9" - } - ], - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "ELB Unhealthy Host Count", - "line_width": 1, - "metrics": [ - { - "field": "aws.elb.metrics.UnHealthyHostCount", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.LoadBalancerName", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "AWS Cloudwatch ELB Unhealthy Host Count", - "type": "metrics" - } - }, - "id": "9121ac90-734d-11e9-816b-07687310a99a", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-06-14T17:02:27.742Z", - "version": "WzI2ODMsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Cloudwatch Lambda Invocations Top5 [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "cbb498f0-734c-11e9-a683-47ca322fa6f9" - } - ], - "bar_color_rules": [ - { - "id": "94f2ce40-734c-11e9-a683-47ca322fa6f9" - } - ], - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Lambda Invocations", - "line_width": 1, - "metrics": [ - { - "field": "aws.lambda.metrics.Invocations", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.FunctionName", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "AWS Cloudwatch Lambda Invocations Top5", - "type": "metrics" - } - }, - "id": "128fd450-734e-11e9-816b-07687310a99a", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-06-14T17:02:27.742Z", - "version": "WzI2ODQsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Cloudwatch Lambda Errors Top5 [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "cbb498f0-734c-11e9-a683-47ca322fa6f9" - } - ], - "bar_color_rules": [ - { - "id": "94f2ce40-734c-11e9-a683-47ca322fa6f9" - } - ], - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Lambda Errors", - "line_width": 1, - "metrics": [ - { - "field": "aws.lambda.metrics.Errors", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.FunctionName", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "AWS Cloudwatch Lambda Errors Top5", - "type": "metrics" - } - }, - "id": "54e88a40-734e-11e9-816b-07687310a99a", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-06-14T17:02:27.742Z", - "version": "WzI2ODUsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Cloudwatch Lambda Throttles Top5 [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "cbb498f0-734c-11e9-a683-47ca322fa6f9" - } - ], - "bar_color_rules": [ - { - "id": "94f2ce40-734c-11e9-a683-47ca322fa6f9" - } - ], - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Lambda Throttles", - "line_width": 1, - "metrics": [ - { - "field": "aws.lambda.metrics.Throttles", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.FunctionName", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "AWS Cloudwatch Lambda Throttles Top5", - "type": "metrics" - } - }, - "id": "398d12d0-7352-11e9-816b-07687310a99a", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-06-14T17:02:27.742Z", - "version": "WzI2ODYsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Cloudwatch ECS CPU Available [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "bb21d180-830d-11e9-9c4c-391fa0a2e15f" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": "", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": "(aws.cloudwatch.namespace:\"AWS/ECS\") AND (_exists_: aws.ecs.metrics.CPUReservation) AND (_exists_: aws.ecs.metrics.CPUUtilization)", - "formatter": "percent", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "aws.ecs.metrics.CPUUtilization", - "id": "17f8ddf0-830d-11e9-9f3d-ed346f48a007", - "type": "sum" - }, - { - "field": "aws.ecs.metrics.CPUReservation", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - }, - { - "id": "68a93050-830e-11e9-9c4c-391fa0a2e15f", - "script": "(params.res - params.util) / 100", - "type": "math", - "variables": [ - { - "field": "17f8ddf0-830d-11e9-9f3d-ed346f48a007", - "id": "6f338920-830e-11e9-9c4c-391fa0a2e15f", - "name": "util" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "7ab9f9a0-830e-11e9-9c4c-391fa0a2e15f", - "name": "res" - } - ] - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.ClusterName", - "terms_order_by": "_key", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "AWS Cloudwatch ECS CPU Available", - "type": "metrics" - } - }, - "id": "4bf62a10-8310-11e9-ac83-47df3568ff90", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-06-14T17:48:26.084Z", - "version": "WzI5NDEsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Cloudwatch ECS Memory Available [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "bb21d180-830d-11e9-9c4c-391fa0a2e15f" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": "", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": "(aws.cloudwatch.namespace:\"AWS/ECS\") AND (_exists_: aws.ecs.metrics.MemoryReservation) AND (_exists_: aws.ecs.metrics.MemoryUtilization)", - "formatter": "percent", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "aws.ecs.metrics.MemoryUtilization", - "id": "17f8ddf0-830d-11e9-9f3d-ed346f48a007", - "type": "sum" - }, - { - "field": "aws.ecs.metrics.MemoryReservation", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - }, - { - "id": "68a93050-830e-11e9-9c4c-391fa0a2e15f", - "script": "(params.res - params.util) / 100", - "type": "math", - "variables": [ - { - "field": "17f8ddf0-830d-11e9-9f3d-ed346f48a007", - "id": "6f338920-830e-11e9-9c4c-391fa0a2e15f", - "name": "util" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "7ab9f9a0-830e-11e9-9c4c-391fa0a2e15f", - "name": "res" - } - ] - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.ClusterName", - "terms_order_by": "_key", - "terms_size": "5", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "AWS Cloudwatch ECS Memory Available", - "type": "metrics" - } - }, - "id": "d2f46190-830f-11e9-ac83-47df3568ff90", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-06-14T17:47:50.042Z", - "version": "WzI5NDAsNF0=" - } - ], - "version": "7.2.0" -} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-overview.ndjson new file mode 100644 index 00000000000..038449be903 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-overview.ndjson @@ -0,0 +1,16 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Region Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Region Filter\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b5308940-7347-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"EC2 Instance State [Metricbeat AWS] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"16\": \"#629E51\", \"272\": \"#DEDAF7\", \"80\": \"#E24D42\", \"running\": \"#7EB26D\", \"stopped\": \"#E24D42\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"EC2 Instance State\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"\",\"field\":\"aws.ec2.instance.state.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"EC2 Instance State [Metricbeat AWS] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"09db13f0-2bdd-11e9-9fe1-cde861544141","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzMzOTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EC2 CPU Utilization [Metricbeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"23428b30-f7f2-11e8-bff8-21537b07dd44\"}],\"bar_color_rules\":[{\"id\":\"2592bcc0-f7f2-11e8-bff8-21537b07dd44\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS EC2 CPU Utilization ECS\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ec2.cpu.total.pct\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloud.instance.id\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"AWS EC2 CPU Utilization ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"be8828d0-f7f6-11e8-af03-c999c9dea608-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzMzOTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"S3 Total Error 4xx [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"59207fe0-4762-11e9-bf81-69a4e579cab5\"}],\"bar_color_rules\":[{\"id\":\"5ad9a190-4762-11e9-bf81-69a4e579cab5\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total # of HTTP 4xx Errors\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.s3_request.errors.4xx\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS S3 Total Error 4xx\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"81d83c70-4762-11e9-8062-c98a86cb6f94","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:35.750Z","version":"WzM0MjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"S3 Total Error 5xx [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"59207fe0-4762-11e9-bf81-69a4e579cab5\"}],\"bar_color_rules\":[{\"id\":\"5ad9a190-4762-11e9-bf81-69a4e579cab5\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total # of HTTP 5xx Errors\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.s3_request.errors.5xx\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS S3 Total Error 5xx\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"58e17c10-7349-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzMzOTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQS Empty Receives Top5 [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"23be77d0-734a-11e9-a683-47ca322fa6f9\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS SQS Empty Receives\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sqs.empty_receives\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.sqs.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS SQS Empty Receives Top5\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4658f540-734a-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQS Messages Delayed Top5 [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"23be77d0-734a-11e9-a683-47ca322fa6f9\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS SQS Messages Delayed\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sqs.messages.delayed\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.sqs.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS SQS Messages Delayed Top5\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"95b322f0-734a-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cloudwatch ELB Request Count Top5 [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"94f2ce40-734c-11e9-a683-47ca322fa6f9\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"ELB Request Count Top5\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.elb.metrics.RequestCount\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.LoadBalancerName\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS Cloudwatch ELB Request Count Top5\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b2191dd0-734c-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cloudwatch ELB Latency [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"23428b30-f7f2-11e8-bff8-21537b07dd44\"}],\"bar_color_rules\":[{\"id\":\"2592bcc0-f7f2-11e8-bff8-21537b07dd44\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS Cloudwatch ELB Latency\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.elb.metrics.Latency\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"aws.dimensions.LoadBalancerName\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"AWS Cloudwatch ELB Latency\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"42016bf0-728f-11e9-9a7b-4d62d5bcf4fc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cloudwatch ELB Unhealthy Host Count [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cbb498f0-734c-11e9-a683-47ca322fa6f9\"}],\"bar_color_rules\":[{\"id\":\"94f2ce40-734c-11e9-a683-47ca322fa6f9\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"ELB Unhealthy Host Count\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.elb.metrics.UnHealthyHostCount\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.LoadBalancerName\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS Cloudwatch ELB Unhealthy Host Count\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9121ac90-734d-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cloudwatch Lambda Invocations Top5 [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cbb498f0-734c-11e9-a683-47ca322fa6f9\"}],\"bar_color_rules\":[{\"id\":\"94f2ce40-734c-11e9-a683-47ca322fa6f9\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Lambda Invocations\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.lambda.metrics.Invocations\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.FunctionName\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS Cloudwatch Lambda Invocations Top5\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"128fd450-734e-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cloudwatch Lambda Errors Top5 [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cbb498f0-734c-11e9-a683-47ca322fa6f9\"}],\"bar_color_rules\":[{\"id\":\"94f2ce40-734c-11e9-a683-47ca322fa6f9\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Lambda Errors\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.lambda.metrics.Errors\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.FunctionName\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS Cloudwatch Lambda Errors Top5\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"54e88a40-734e-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cloudwatch Lambda Throttles Top5 [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cbb498f0-734c-11e9-a683-47ca322fa6f9\"}],\"bar_color_rules\":[{\"id\":\"94f2ce40-734c-11e9-a683-47ca322fa6f9\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Lambda Throttles\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.lambda.metrics.Throttles\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.FunctionName\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS Cloudwatch Lambda Throttles Top5\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"398d12d0-7352-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cloudwatch ECS CPU Available [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"bb21d180-830d-11e9-9c4c-391fa0a2e15f\"}],\"filter\":\"\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"query\":\"(aws.cloudwatch.namespace:\\\"AWS/ECS\\\") AND (_exists_: aws.ecs.metrics.CPUReservation) AND (_exists_: aws.ecs.metrics.CPUUtilization)\",\"language\":\"lucene\"},\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ecs.metrics.CPUUtilization\",\"id\":\"17f8ddf0-830d-11e9-9f3d-ed346f48a007\",\"type\":\"sum\"},{\"field\":\"aws.ecs.metrics.CPUReservation\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"id\":\"68a93050-830e-11e9-9c4c-391fa0a2e15f\",\"script\":\"(params.res - params.util) / 100\",\"type\":\"math\",\"variables\":[{\"field\":\"17f8ddf0-830d-11e9-9f3d-ed346f48a007\",\"id\":\"6f338920-830e-11e9-9c4c-391fa0a2e15f\",\"name\":\"util\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"7ab9f9a0-830e-11e9-9c4c-391fa0a2e15f\",\"name\":\"res\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.ClusterName\",\"terms_order_by\":\"_key\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"AWS Cloudwatch ECS CPU Available\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4bf62a10-8310-11e9-ac83-47df3568ff90","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cloudwatch ECS Memory Available [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"bb21d180-830d-11e9-9c4c-391fa0a2e15f\"}],\"filter\":\"\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"query\":\"(aws.cloudwatch.namespace:\\\"AWS/ECS\\\") AND (_exists_: aws.ecs.metrics.MemoryReservation) AND (_exists_: aws.ecs.metrics.MemoryUtilization)\",\"language\":\"lucene\"},\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ecs.metrics.MemoryUtilization\",\"id\":\"17f8ddf0-830d-11e9-9f3d-ed346f48a007\",\"type\":\"sum\"},{\"field\":\"aws.ecs.metrics.MemoryReservation\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"id\":\"68a93050-830e-11e9-9c4c-391fa0a2e15f\",\"script\":\"(params.res - params.util) / 100\",\"type\":\"math\",\"variables\":[{\"field\":\"17f8ddf0-830d-11e9-9f3d-ed346f48a007\",\"id\":\"6f338920-830e-11e9-9c4c-391fa0a2e15f\",\"name\":\"util\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"7ab9f9a0-830e-11e9-9c4c-391fa0a2e15f\",\"name\":\"res\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.ClusterName\",\"terms_order_by\":\"_key\",\"terms_size\":\"5\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"AWS Cloudwatch ECS Memory Available\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d2f46190-830f-11e9-ac83-47df3568ff90","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDksMV0="} +{"attributes":{"description":"Overview of AWS Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"2\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"3\",\"w\":10,\"x\":9,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"4\",\"w\":29,\"x\":19,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"6\",\"w\":9,\"x\":0,\"y\":7},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"7\",\"w\":9,\"x\":9,\"y\":7},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"9\",\"w\":15,\"x\":18,\"y\":7},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"10\",\"w\":15,\"x\":33,\"y\":7},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"12\",\"w\":13,\"x\":0,\"y\":14},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"14\",\"w\":20,\"x\":13,\"y\":14},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"15\",\"w\":15,\"x\":33,\"y\":14},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"17\",\"w\":16,\"x\":15,\"y\":21},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"18\",\"w\":15,\"x\":0,\"y\":21},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"19\",\"w\":17,\"x\":31,\"y\":21},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"24\",\"w\":24,\"x\":0,\"y\":28},\"panelIndex\":\"24\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_24\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"25\",\"w\":24,\"x\":24,\"y\":28},\"panelIndex\":\"25\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_25\"}]","timeRestore":false,"title":"[Metricbeat AWS] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"fac28650-7349-11e9-816b-07687310a99a","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"b5308940-7347-11e9-816b-07687310a99a","name":"2:panel_2","type":"visualization"},{"id":"09db13f0-2bdd-11e9-9fe1-cde861544141","name":"3:panel_3","type":"visualization"},{"id":"be8828d0-f7f6-11e8-af03-c999c9dea608-ecs","name":"4:panel_4","type":"visualization"},{"id":"81d83c70-4762-11e9-8062-c98a86cb6f94","name":"6:panel_6","type":"visualization"},{"id":"58e17c10-7349-11e9-816b-07687310a99a","name":"7:panel_7","type":"visualization"},{"id":"4658f540-734a-11e9-816b-07687310a99a","name":"9:panel_9","type":"visualization"},{"id":"95b322f0-734a-11e9-816b-07687310a99a","name":"10:panel_10","type":"visualization"},{"id":"b2191dd0-734c-11e9-816b-07687310a99a","name":"12:panel_12","type":"visualization"},{"id":"42016bf0-728f-11e9-9a7b-4d62d5bcf4fc","name":"14:panel_14","type":"visualization"},{"id":"9121ac90-734d-11e9-816b-07687310a99a","name":"15:panel_15","type":"visualization"},{"id":"128fd450-734e-11e9-816b-07687310a99a","name":"17:panel_17","type":"visualization"},{"id":"54e88a40-734e-11e9-816b-07687310a99a","name":"18:panel_18","type":"visualization"},{"id":"398d12d0-7352-11e9-816b-07687310a99a","name":"19:panel_19","type":"visualization"},{"id":"4bf62a10-8310-11e9-ac83-47df3568ff90","name":"24:panel_24","type":"visualization"},{"id":"d2f46190-830f-11e9-ac83-47df3568ff90","name":"25:panel_25","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:33.734Z","version":"WzMzOTQsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-rds-overview.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-rds-overview.json deleted file mode 100644 index cc5788e78bb..00000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-rds-overview.json +++ /dev/null @@ -1,2425 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of AWS RDS Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 7, - "i": "1", - "w": 17, - "x": 7, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_1", - "title": "Database Connections", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 8, - "i": "5", - "w": 17, - "x": 7, - "y": 7 - }, - "panelIndex": "5", - "panelRefName": "panel_5", - "title": "Transaction Blocked", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 15, - "i": "6", - "w": 7, - "x": 0, - "y": 0 - }, - "panelIndex": "6", - "panelRefName": "panel_6", - "title": "AWS Region Filter", - "type": "visualization", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 15, - "i": "4d89e43f-299c-4f43-bde2-0ada0983ff23", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "4d89e43f-299c-4f43-bde2-0ada0983ff23", - "panelRefName": "panel_4d89e43f-299c-4f43-bde2-0ada0983ff23", - "title": "Free Storage", - "type": "lens", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 15, - "i": "d409ab5d-84b5-4ecc-86ae-1f79a882b626", - "w": 24, - "x": 0, - "y": 15 - }, - "panelIndex": "d409ab5d-84b5-4ecc-86ae-1f79a882b626", - "panelRefName": "panel_d409ab5d-84b5-4ecc-86ae-1f79a882b626", - "title": "Read Latency", - "type": "lens", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "attributes": { - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-75b24975-5ca3-4da5-bc1a-92013a901a21", - "type": "index-pattern" - } - ], - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "75b24975-5ca3-4da5-bc1a-92013a901a21": { - "columnOrder": [ - "bfa06179-6b6f-43e5-a446-f856ff3e51bf", - "af96ca6c-7ab9-47a3-ad8b-29e1578c0076", - "6a87f496-b929-4d24-aede-325d54fedfa1", - "6a87f496-b929-4d24-aede-325d54fedfa1X0" - ], - "columns": { - "6a87f496-b929-4d24-aede-325d54fedfa1": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Write Latency (Milliseconds)", - "operationType": "formula", - "params": { - "formula": "average(aws.rds.latency.write)", - "isFormulaBroken": false - }, - "references": [ - "6a87f496-b929-4d24-aede-325d54fedfa1X0" - ], - "scale": "ratio" - }, - "6a87f496-b929-4d24-aede-325d54fedfa1X0": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Part of average(aws.rds.latency.write)", - "operationType": "average", - "scale": "ratio", - "sourceField": "aws.rds.latency.write" - }, - "af96ca6c-7ab9-47a3-ad8b-29e1578c0076": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "bfa06179-6b6f-43e5-a446-f856ff3e51bf": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of aws.rds.db_instance.identifier", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "fallback": true, - "type": "alphabetical" - }, - "orderDirection": "asc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "aws.rds.db_instance.identifier" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "6a87f496-b929-4d24-aede-325d54fedfa1" - ], - "layerId": "75b24975-5ca3-4da5-bc1a-92013a901a21", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "bfa06179-6b6f-43e5-a446-f856ff3e51bf", - "xAccessor": "af96ca6c-7ab9-47a3-ad8b-29e1578c0076" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "valueLabels": "hide", - "yLeftExtent": { - "mode": "full" - }, - "yRightExtent": { - "mode": "full" - } - } - }, - "title": "", - "type": "lens", - "visualizationType": "lnsXY" - }, - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 15, - "i": "1abf12dc-d009-4a02-acd4-463383d32a63", - "w": 24, - "x": 24, - "y": 15 - }, - "panelIndex": "1abf12dc-d009-4a02-acd4-463383d32a63", - "panelRefName": "panel_1abf12dc-d009-4a02-acd4-463383d32a63", - "title": "Write Latency", - "type": "lens", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 15, - "i": "c5476b0e-6a44-43e5-8bb4-0795c4d097c1", - "w": 24, - "x": 0, - "y": 30 - }, - "panelIndex": "c5476b0e-6a44-43e5-8bb4-0795c4d097c1", - "panelRefName": "panel_c5476b0e-6a44-43e5-8bb4-0795c4d097c1", - "title": "Insert Throughput", - "type": "lens", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 15, - "i": "bf74bb77-3503-4682-9f0e-6df0994dce5d", - "w": 24, - "x": 24, - "y": 30 - }, - "panelIndex": "bf74bb77-3503-4682-9f0e-6df0994dce5d", - "panelRefName": "panel_bf74bb77-3503-4682-9f0e-6df0994dce5d", - "title": "Select Throughput", - "type": "lens", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "attributes": { - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-dd0a4706-5286-4976-9bc4-f5e7a4964bf6", - "type": "index-pattern" - } - ], - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "dd0a4706-5286-4976-9bc4-f5e7a4964bf6": { - "columnOrder": [ - "a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc", - "103900c0-dcfa-416f-a272-6efa09c84fce", - "18e6079e-e955-41d0-8196-d2b932cf1fa6", - "18e6079e-e955-41d0-8196-d2b932cf1fa6X0" - ], - "columns": { - "103900c0-dcfa-416f-a272-6efa09c84fce": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "18e6079e-e955-41d0-8196-d2b932cf1fa6": { - "dataType": "number", - "isBucketed": false, - "label": "average(aws.rds.cpu.total.pct)", - "operationType": "formula", - "params": { - "formula": "average(aws.rds.cpu.total.pct)", - "isFormulaBroken": false - }, - "references": [ - "18e6079e-e955-41d0-8196-d2b932cf1fa6X0" - ], - "scale": "ratio" - }, - "18e6079e-e955-41d0-8196-d2b932cf1fa6X0": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Part of average(aws.rds.cpu.total.pct)", - "operationType": "average", - "scale": "ratio", - "sourceField": "aws.rds.cpu.total.pct" - }, - "a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of aws.rds.db_instance.identifier", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "fallback": true, - "type": "alphabetical" - }, - "orderDirection": "asc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "aws.rds.db_instance.identifier" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "18e6079e-e955-41d0-8196-d2b932cf1fa6" - ], - "layerId": "dd0a4706-5286-4976-9bc4-f5e7a4964bf6", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc", - "xAccessor": "103900c0-dcfa-416f-a272-6efa09c84fce" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "valueLabels": "hide", - "yLeftExtent": { - "mode": "full" - }, - "yRightExtent": { - "mode": "full" - } - } - }, - "title": "", - "type": "lens", - "visualizationType": "lnsXY" - }, - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 15, - "i": "249ff0a6-3fd3-4935-85c3-0c3222d3c498", - "w": 24, - "x": 0, - "y": 45 - }, - "panelIndex": "249ff0a6-3fd3-4935-85c3-0c3222d3c498", - "panelRefName": "panel_249ff0a6-3fd3-4935-85c3-0c3222d3c498", - "title": "CPU Total Pct", - "type": "lens", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "attributes": { - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-14d4ba6b-f4e1-4d40-818a-6aa829d90422", - "type": "index-pattern" - } - ], - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "14d4ba6b-f4e1-4d40-818a-6aa829d90422": { - "columnOrder": [ - "8954842c-4056-46ef-adfc-29dfc3b0cbd3", - "40493df1-c805-49eb-8dfa-9ff81f7acd4b", - "c7c3ebb2-d611-40a5-aab3-491fa36fe729", - "c7c3ebb2-d611-40a5-aab3-491fa36fe729X0" - ], - "columns": { - "40493df1-c805-49eb-8dfa-9ff81f7acd4b": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "8954842c-4056-46ef-adfc-29dfc3b0cbd3": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of aws.rds.db_instance.identifier", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "fallback": true, - "type": "alphabetical" - }, - "orderDirection": "asc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "aws.rds.db_instance.identifier" - }, - "c7c3ebb2-d611-40a5-aab3-491fa36fe729": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Queue Depth (Count)", - "operationType": "formula", - "params": { - "formula": "average(aws.rds.disk_queue_depth)", - "isFormulaBroken": false - }, - "references": [ - "c7c3ebb2-d611-40a5-aab3-491fa36fe729X0" - ], - "scale": "ratio" - }, - "c7c3ebb2-d611-40a5-aab3-491fa36fe729X0": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Part of Queue Depth (Count)", - "operationType": "average", - "scale": "ratio", - "sourceField": "aws.rds.disk_queue_depth" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "c7c3ebb2-d611-40a5-aab3-491fa36fe729" - ], - "layerId": "14d4ba6b-f4e1-4d40-818a-6aa829d90422", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "8954842c-4056-46ef-adfc-29dfc3b0cbd3", - "xAccessor": "40493df1-c805-49eb-8dfa-9ff81f7acd4b" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "valueLabels": "hide", - "yLeftExtent": { - "mode": "full" - }, - "yRightExtent": { - "mode": "full" - } - } - }, - "title": "", - "type": "lens", - "visualizationType": "lnsXY" - }, - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 15, - "i": "c28488ce-a20e-447f-9a68-ba49b542ab0a", - "w": 24, - "x": 24, - "y": 45 - }, - "panelIndex": "c28488ce-a20e-447f-9a68-ba49b542ab0a", - "panelRefName": "panel_c28488ce-a20e-447f-9a68-ba49b542ab0a", - "title": "Disk Queue Depth", - "type": "lens", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 15, - "i": "29549114-6ebf-4047-aa56-bc035f66d3b4", - "w": 24, - "x": 0, - "y": 60 - }, - "panelIndex": "29549114-6ebf-4047-aa56-bc035f66d3b4", - "panelRefName": "panel_29549114-6ebf-4047-aa56-bc035f66d3b4", - "title": "Write IOPS", - "type": "lens", - "version": "7.11.0" - }, - { - "embeddableConfig": { - "attributes": { - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-e2611df6-ca73-4d53-b0b5-afd8b718c369", - "type": "index-pattern" - } - ], - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "e2611df6-ca73-4d53-b0b5-afd8b718c369": { - "columnOrder": [ - "53a07fa4-b348-44c7-b644-83f3617e5b5c", - "b9e82720-e098-4dd7-ac5b-f3becccd344a", - "85528f23-48f2-462f-8075-eaddd94b21f2" - ], - "columns": { - "53a07fa4-b348-44c7-b644-83f3617e5b5c": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Read IOPS (Count/Second)", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "85528f23-48f2-462f-8075-eaddd94b21f2", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "aws.rds.db_instance.identifier" - }, - "85528f23-48f2-462f-8075-eaddd94b21f2": { - "dataType": "number", - "isBucketed": false, - "label": "Average of aws.rds.read_io.ops_per_sec", - "operationType": "average", - "scale": "ratio", - "sourceField": "aws.rds.read_io.ops_per_sec" - }, - "b9e82720-e098-4dd7-ac5b-f3becccd344a": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "85528f23-48f2-462f-8075-eaddd94b21f2" - ], - "layerId": "e2611df6-ca73-4d53-b0b5-afd8b718c369", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "53a07fa4-b348-44c7-b644-83f3617e5b5c", - "xAccessor": "b9e82720-e098-4dd7-ac5b-f3becccd344a" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "valueLabels": "hide", - "yLeftExtent": { - "mode": "full" - }, - "yRightExtent": { - "mode": "full" - } - } - }, - "title": "", - "type": "lens", - "visualizationType": "lnsXY" - }, - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 15, - "i": "addd441f-fa2b-4725-8015-619ee176ed0a", - "w": 24, - "x": 24, - "y": 60 - }, - "panelIndex": "addd441f-fa2b-4725-8015-619ee176ed0a", - "panelRefName": "panel_addd441f-fa2b-4725-8015-619ee176ed0a", - "title": "Read IOPS", - "type": "lens", - "version": "7.11.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat AWS] RDS Overview", - "version": 1 - }, - "coreMigrationVersion": "7.11.0", - "id": "3367c170-921f-11e9-aa19-159bf182e06f", - "migrationVersion": { - "dashboard": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "17fcda50-921b-11e9-aa19-159bf182e06f", - "name": "1:panel_1", - "type": "visualization" - }, - { - "id": "00b29040-921d-11e9-aa19-159bf182e06f", - "name": "5:panel_5", - "type": "visualization" - }, - { - "id": "b5308940-7347-11e9-816b-07687310a99a", - "name": "6:panel_6", - "type": "visualization" - }, - { - "id": "68f36fb0-f0a0-11eb-b61f-a53cb4913361", - "name": "4d89e43f-299c-4f43-bde2-0ada0983ff23:panel_4d89e43f-299c-4f43-bde2-0ada0983ff23", - "type": "lens" - }, - { - "id": "f9ff3450-f094-11eb-b61f-a53cb4913361", - "name": "d409ab5d-84b5-4ecc-86ae-1f79a882b626:panel_d409ab5d-84b5-4ecc-86ae-1f79a882b626", - "type": "lens" - }, - { - "id": "8560b400-f096-11eb-b61f-a53cb4913361", - "name": "1abf12dc-d009-4a02-acd4-463383d32a63:panel_1abf12dc-d009-4a02-acd4-463383d32a63", - "type": "lens" - }, - { - "id": "metricbeat-*", - "name": "1abf12dc-d009-4a02-acd4-463383d32a63:indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "1abf12dc-d009-4a02-acd4-463383d32a63:indexpattern-datasource-layer-75b24975-5ca3-4da5-bc1a-92013a901a21", - "type": "index-pattern" - }, - { - "id": "b0077d10-f09b-11eb-b61f-a53cb4913361", - "name": "c5476b0e-6a44-43e5-8bb4-0795c4d097c1:panel_c5476b0e-6a44-43e5-8bb4-0795c4d097c1", - "type": "lens" - }, - { - "id": "41e37710-f09d-11eb-b61f-a53cb4913361", - "name": "bf74bb77-3503-4682-9f0e-6df0994dce5d:panel_bf74bb77-3503-4682-9f0e-6df0994dce5d", - "type": "lens" - }, - { - "id": "c4419a90-f091-11eb-b61f-a53cb4913361", - "name": "249ff0a6-3fd3-4935-85c3-0c3222d3c498:panel_249ff0a6-3fd3-4935-85c3-0c3222d3c498", - "type": "lens" - }, - { - "id": "metricbeat-*", - "name": "249ff0a6-3fd3-4935-85c3-0c3222d3c498:indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "249ff0a6-3fd3-4935-85c3-0c3222d3c498:indexpattern-datasource-layer-dd0a4706-5286-4976-9bc4-f5e7a4964bf6", - "type": "index-pattern" - }, - { - "id": "bbc80900-f09e-11eb-b61f-a53cb4913361", - "name": "c28488ce-a20e-447f-9a68-ba49b542ab0a:panel_c28488ce-a20e-447f-9a68-ba49b542ab0a", - "type": "lens" - }, - { - "id": "metricbeat-*", - "name": "c28488ce-a20e-447f-9a68-ba49b542ab0a:indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "c28488ce-a20e-447f-9a68-ba49b542ab0a:indexpattern-datasource-layer-14d4ba6b-f4e1-4d40-818a-6aa829d90422", - "type": "index-pattern" - }, - { - "id": "30fd4e40-f0a1-11eb-b61f-a53cb4913361", - "name": "29549114-6ebf-4047-aa56-bc035f66d3b4:panel_29549114-6ebf-4047-aa56-bc035f66d3b4", - "type": "lens" - }, - { - "id": "f757eba0-f0a0-11eb-b61f-a53cb4913361", - "name": "addd441f-fa2b-4725-8015-619ee176ed0a:panel_addd441f-fa2b-4725-8015-619ee176ed0a", - "type": "lens" - }, - { - "id": "metricbeat-*", - "name": "addd441f-fa2b-4725-8015-619ee176ed0a:indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "addd441f-fa2b-4725-8015-619ee176ed0a:indexpattern-datasource-layer-e2611df6-ca73-4d53-b0b5-afd8b718c369", - "type": "index-pattern" - } - ], - "type": "dashboard", - "updated_at": "2021-07-29T19:19:20.426Z", - "version": "WzI2NjAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "RDS Database Connections [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "10bc2760-d978-11e9-aff2-99c15d8b7da1" - } - ], - "bar_color_rules": [ - { - "id": "f8196690-921a-11e9-badf-4b42bd1ef543" - } - ], - "hide_last_value_indicator": true, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "hide_in_legend": 0, - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Database Connections", - "line_width": 1, - "metrics": [ - { - "field": "aws.rds.database_connections", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "aws.rds.db_instance.identifier", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "metric", - "use_kibana_indexes": false - }, - "title": "RDS Database Connections [Metricbeat AWS]", - "type": "metrics" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "17fcda50-921b-11e9-aa19-159bf182e06f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-07-29T03:35:31.413Z", - "version": "WzE3MSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "RDS Transaction Blocked [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(164,221,0,1)", - "id": "27aaf910-d978-11e9-aff2-99c15d8b7da1", - "operator": "lte", - "value": 0 - }, - { - "color": "rgba(244,78,59,1)", - "id": "3526a9e0-d978-11e9-aff2-99c15d8b7da1", - "operator": "gt", - "value": 0 - }, - { - "background_color": "rgba(164,221,0,1)", - "id": "50a46c15-ab5f-41d6-83de-b988ab7f4149", - "operator": "empty", - "value": null - } - ], - "bar_color_rules": [ - { - "bar_color": "rgba(211,49,21,1)", - "id": "f8196690-921a-11e9-badf-4b42bd1ef543", - "operator": "gt", - "value": 0 - } - ], - "drilldown_url": "", - "filter": "", - "hide_last_value_indicator": true, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "hide_in_legend": 0, - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Transaction Blocked", - "line_width": 1, - "metrics": [ - { - "field": "aws.rds.transactions.blocked", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "aws.rds.db_instance.identifier", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "metric", - "use_kibana_indexes": false - }, - "title": "RDS Transaction Blocked [Metricbeat AWS]", - "type": "metrics" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "00b29040-921d-11e9-aa19-159bf182e06f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-07-29T03:35:31.413Z", - "version": "WzE3NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "AWS RDS Filters [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.region", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "region name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "aws.rds.db_instance.identifier", - "id": "1627586262745", - "indexPatternRefName": "control_1_index_pattern", - "label": "instance identifier", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "AWS RDS Filters [Metricbeat AWS]", - "type": "input_control_vis" - } - }, - "coreMigrationVersion": "7.11.0", - "id": "b5308940-7347-11e9-816b-07687310a99a", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2021-07-29T19:18:23.603Z", - "version": "WzI2NDUsMV0=" - }, - { - "attributes": { - "description": null, - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "c6ed7acb-d119-41cc-99ce-cca114d1f1cb": { - "columnOrder": [ - "1bfe525f-e68d-4504-86bc-e80fb154192c", - "08fe8b96-3fe0-410f-8ee3-3ca1379bea49", - "08fe8b96-3fe0-410f-8ee3-3ca1379bea49X0" - ], - "columns": { - "08fe8b96-3fe0-410f-8ee3-3ca1379bea49": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Free Storage Bytes", - "operationType": "formula", - "params": { - "formula": "average(aws.rds.free_storage.bytes)", - "isFormulaBroken": false - }, - "references": [ - "08fe8b96-3fe0-410f-8ee3-3ca1379bea49X0" - ], - "scale": "ratio" - }, - "08fe8b96-3fe0-410f-8ee3-3ca1379bea49X0": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Part of average(aws.rds.free_storage.bytes)", - "operationType": "average", - "scale": "ratio", - "sourceField": "aws.rds.free_storage.bytes" - }, - "1bfe525f-e68d-4504-86bc-e80fb154192c": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of aws.rds.db_instance.identifier", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "fallback": true, - "type": "alphabetical" - }, - "orderDirection": "asc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "aws.rds.db_instance.identifier" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "columns": [ - { - "columnId": "08fe8b96-3fe0-410f-8ee3-3ca1379bea49", - "isTransposed": false - }, - { - "columnId": "1bfe525f-e68d-4504-86bc-e80fb154192c", - "isTransposed": false - } - ], - "layerId": "c6ed7acb-d119-41cc-99ce-cca114d1f1cb" - } - }, - "title": "RDS Free Storage Bytes [Metricbeat AWS]", - "visualizationType": "lnsDatatable" - }, - "coreMigrationVersion": "7.12.0", - "id": "68f36fb0-f0a0-11eb-b61f-a53cb4913361", - "migrationVersion": { - "lens": "7.12.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-c6ed7acb-d119-41cc-99ce-cca114d1f1cb", - "type": "index-pattern" - } - ], - "type": "lens", - "updated_at": "2021-07-29T19:09:48.291Z", - "version": "WzI0NzYsMV0=" - }, - { - "attributes": { - "description": null, - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "5a1e8135-28e5-4e15-a675-bf9f840fca1c": { - "columnOrder": [ - "748501ab-c222-4695-9062-93c70e72a864", - "191b027e-d3d1-41da-b3fb-29315f99f4ee", - "98446733-f0c0-4666-8491-52b6eae923ed", - "98446733-f0c0-4666-8491-52b6eae923edX0" - ], - "columns": { - "191b027e-d3d1-41da-b3fb-29315f99f4ee": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "748501ab-c222-4695-9062-93c70e72a864": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of aws.rds.db_instance.identifier", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "fallback": true, - "type": "alphabetical" - }, - "orderDirection": "asc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "aws.rds.db_instance.identifier" - }, - "98446733-f0c0-4666-8491-52b6eae923ed": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Read Latency (Milliseconds)", - "operationType": "formula", - "params": { - "formula": "average(aws.rds.latency.read)", - "isFormulaBroken": false - }, - "references": [ - "98446733-f0c0-4666-8491-52b6eae923edX0" - ], - "scale": "ratio" - }, - "98446733-f0c0-4666-8491-52b6eae923edX0": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Part of average(aws.rds.latency.read)", - "operationType": "average", - "scale": "ratio", - "sourceField": "aws.rds.latency.read" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "98446733-f0c0-4666-8491-52b6eae923ed" - ], - "layerId": "5a1e8135-28e5-4e15-a675-bf9f840fca1c", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "748501ab-c222-4695-9062-93c70e72a864", - "xAccessor": "191b027e-d3d1-41da-b3fb-29315f99f4ee" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "valueLabels": "hide", - "yLeftExtent": { - "mode": "full" - }, - "yRightExtent": { - "mode": "full" - } - } - }, - "title": "RDS Read Latency in Milliseconds [Metricbeat AWS]", - "visualizationType": "lnsXY" - }, - "coreMigrationVersion": "7.11.0", - "id": "f9ff3450-f094-11eb-b61f-a53cb4913361", - "migrationVersion": { - "lens": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-5a1e8135-28e5-4e15-a675-bf9f840fca1c", - "type": "index-pattern" - } - ], - "type": "lens", - "updated_at": "2021-07-29T17:56:12.748Z", - "version": "WzE5MDksMV0=" - }, - { - "attributes": { - "description": "", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "75b24975-5ca3-4da5-bc1a-92013a901a21": { - "columnOrder": [ - "bfa06179-6b6f-43e5-a446-f856ff3e51bf", - "af96ca6c-7ab9-47a3-ad8b-29e1578c0076", - "6a87f496-b929-4d24-aede-325d54fedfa1", - "6a87f496-b929-4d24-aede-325d54fedfa1X0" - ], - "columns": { - "6a87f496-b929-4d24-aede-325d54fedfa1": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Write Latency (Milliseconds)", - "operationType": "formula", - "params": { - "formula": "average(aws.rds.latency.write)", - "isFormulaBroken": false - }, - "references": [ - "6a87f496-b929-4d24-aede-325d54fedfa1X0" - ], - "scale": "ratio" - }, - "6a87f496-b929-4d24-aede-325d54fedfa1X0": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Part of average(aws.rds.latency.write)", - "operationType": "average", - "scale": "ratio", - "sourceField": "aws.rds.latency.write" - }, - "af96ca6c-7ab9-47a3-ad8b-29e1578c0076": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "bfa06179-6b6f-43e5-a446-f856ff3e51bf": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of aws.rds.db_instance.identifier", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "fallback": true, - "type": "alphabetical" - }, - "orderDirection": "asc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "aws.rds.db_instance.identifier" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "6a87f496-b929-4d24-aede-325d54fedfa1" - ], - "layerId": "75b24975-5ca3-4da5-bc1a-92013a901a21", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "bfa06179-6b6f-43e5-a446-f856ff3e51bf", - "xAccessor": "af96ca6c-7ab9-47a3-ad8b-29e1578c0076" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "valueLabels": "hide", - "yLeftExtent": { - "mode": "full" - }, - "yRightExtent": { - "mode": "full" - } - } - }, - "title": "RDS Write Latency in Milliseconds [Metricbeat AWS]", - "visualizationType": "lnsXY" - }, - "coreMigrationVersion": "7.11.0", - "id": "8560b400-f096-11eb-b61f-a53cb4913361", - "migrationVersion": { - "lens": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-75b24975-5ca3-4da5-bc1a-92013a901a21", - "type": "index-pattern" - } - ], - "type": "lens", - "updated_at": "2021-07-29T17:58:27.177Z", - "version": "WzIwMDgsMV0=" - }, - { - "attributes": { - "description": null, - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "b8d09be0-e20a-4f42-b08e-1da4c3cc8efd": { - "columnOrder": [ - "e676afd3-ebd5-434a-85d7-a1a708b9a32f", - "545fe110-3ab4-4a3d-99d9-9eae69d6ff07", - "8293fc99-aed6-44a3-83ee-a498d2200a46" - ], - "columns": { - "545fe110-3ab4-4a3d-99d9-9eae69d6ff07": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of aws.rds.db_instance.identifier", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "8293fc99-aed6-44a3-83ee-a498d2200a46", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "aws.rds.db_instance.identifier" - }, - "8293fc99-aed6-44a3-83ee-a498d2200a46": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Insert Throughput Count/Second", - "operationType": "average", - "scale": "ratio", - "sourceField": "aws.rds.throughput.insert" - }, - "e676afd3-ebd5-434a-85d7-a1a708b9a32f": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "8293fc99-aed6-44a3-83ee-a498d2200a46" - ], - "layerId": "b8d09be0-e20a-4f42-b08e-1da4c3cc8efd", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "545fe110-3ab4-4a3d-99d9-9eae69d6ff07", - "xAccessor": "e676afd3-ebd5-434a-85d7-a1a708b9a32f" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "valueLabels": "hide", - "yLeftExtent": { - "mode": "full" - }, - "yRightExtent": { - "mode": "full" - } - } - }, - "title": "RDS Insert Throughput [Metricbeat AWS]", - "visualizationType": "lnsXY" - }, - "coreMigrationVersion": "7.11.0", - "id": "b0077d10-f09b-11eb-b61f-a53cb4913361", - "migrationVersion": { - "lens": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-b8d09be0-e20a-4f42-b08e-1da4c3cc8efd", - "type": "index-pattern" - } - ], - "type": "lens", - "updated_at": "2021-07-29T18:48:46.554Z", - "version": "WzIzMTAsMV0=" - }, - { - "attributes": { - "description": "", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "8682174a-4cff-4d95-b719-1fc306f5b33a": { - "columnOrder": [ - "bc08fa3e-ce15-4acd-a0fd-c5c5c5452441", - "f45a0753-4e23-43c4-80f7-4a9aa9548a6e", - "85980678-0e26-4f77-b735-7ec5ebbc472e", - "85980678-0e26-4f77-b735-7ec5ebbc472eX0" - ], - "columns": { - "85980678-0e26-4f77-b735-7ec5ebbc472e": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Select Throughput Count/Second", - "operationType": "formula", - "params": { - "formula": "average(aws.rds.throughput.select)", - "isFormulaBroken": false - }, - "references": [ - "85980678-0e26-4f77-b735-7ec5ebbc472eX0" - ], - "scale": "ratio" - }, - "85980678-0e26-4f77-b735-7ec5ebbc472eX0": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Part of Select Throughput Count/Second", - "operationType": "average", - "scale": "ratio", - "sourceField": "aws.rds.throughput.select" - }, - "bc08fa3e-ce15-4acd-a0fd-c5c5c5452441": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of aws.rds.db_instance.identifier", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "fallback": true, - "type": "alphabetical" - }, - "orderDirection": "asc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "aws.rds.db_instance.identifier" - }, - "f45a0753-4e23-43c4-80f7-4a9aa9548a6e": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "85980678-0e26-4f77-b735-7ec5ebbc472e" - ], - "layerId": "8682174a-4cff-4d95-b719-1fc306f5b33a", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "bc08fa3e-ce15-4acd-a0fd-c5c5c5452441", - "xAccessor": "f45a0753-4e23-43c4-80f7-4a9aa9548a6e" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "valueLabels": "hide", - "yLeftExtent": { - "mode": "full" - }, - "yRightExtent": { - "mode": "full" - } - } - }, - "title": "RDS Select Throughput[Metricbeat AWS]", - "visualizationType": "lnsXY" - }, - "coreMigrationVersion": "7.11.0", - "id": "41e37710-f09d-11eb-b61f-a53cb4913361", - "migrationVersion": { - "lens": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-8682174a-4cff-4d95-b719-1fc306f5b33a", - "type": "index-pattern" - } - ], - "type": "lens", - "updated_at": "2021-07-29T18:46:17.089Z", - "version": "WzIyODAsMV0=" - }, - { - "attributes": { - "description": null, - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "dd0a4706-5286-4976-9bc4-f5e7a4964bf6": { - "columnOrder": [ - "a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc", - "103900c0-dcfa-416f-a272-6efa09c84fce", - "18e6079e-e955-41d0-8196-d2b932cf1fa6", - "18e6079e-e955-41d0-8196-d2b932cf1fa6X0" - ], - "columns": { - "103900c0-dcfa-416f-a272-6efa09c84fce": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "18e6079e-e955-41d0-8196-d2b932cf1fa6": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": " average(aws.rds.cpu.total.pct)", - "operationType": "formula", - "params": { - "formula": "average(aws.rds.cpu.total.pct)", - "isFormulaBroken": false - }, - "references": [ - "18e6079e-e955-41d0-8196-d2b932cf1fa6X0" - ], - "scale": "ratio" - }, - "18e6079e-e955-41d0-8196-d2b932cf1fa6X0": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Part of ", - "operationType": "average", - "scale": "ratio", - "sourceField": "aws.rds.cpu.total.pct" - }, - "a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of aws.rds.db_instance.identifier", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "fallback": true, - "type": "alphabetical" - }, - "orderDirection": "asc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "aws.rds.db_instance.identifier" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "18e6079e-e955-41d0-8196-d2b932cf1fa6" - ], - "layerId": "dd0a4706-5286-4976-9bc4-f5e7a4964bf6", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc", - "xAccessor": "103900c0-dcfa-416f-a272-6efa09c84fce" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "valueLabels": "hide", - "yLeftExtent": { - "mode": "full" - }, - "yRightExtent": { - "mode": "full" - } - } - }, - "title": "RDS CPU Total Pct [Metricbeat AWS]", - "visualizationType": "lnsXY" - }, - "coreMigrationVersion": "7.11.0", - "id": "c4419a90-f091-11eb-b61f-a53cb4913361", - "migrationVersion": { - "lens": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-dd0a4706-5286-4976-9bc4-f5e7a4964bf6", - "type": "index-pattern" - } - ], - "type": "lens", - "updated_at": "2021-07-29T17:55:14.204Z", - "version": "WzE4NzQsMV0=" - }, - { - "attributes": { - "description": "", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "14d4ba6b-f4e1-4d40-818a-6aa829d90422": { - "columnOrder": [ - "8954842c-4056-46ef-adfc-29dfc3b0cbd3", - "40493df1-c805-49eb-8dfa-9ff81f7acd4b", - "c7c3ebb2-d611-40a5-aab3-491fa36fe729", - "c7c3ebb2-d611-40a5-aab3-491fa36fe729X0" - ], - "columns": { - "40493df1-c805-49eb-8dfa-9ff81f7acd4b": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "8954842c-4056-46ef-adfc-29dfc3b0cbd3": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of aws.rds.db_instance.identifier", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "fallback": true, - "type": "alphabetical" - }, - "orderDirection": "asc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "aws.rds.db_instance.identifier" - }, - "c7c3ebb2-d611-40a5-aab3-491fa36fe729": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Queue Depth (Count)", - "operationType": "formula", - "params": { - "formula": "average(aws.rds.disk_queue_depth)", - "isFormulaBroken": false - }, - "references": [ - "c7c3ebb2-d611-40a5-aab3-491fa36fe729X0" - ], - "scale": "ratio" - }, - "c7c3ebb2-d611-40a5-aab3-491fa36fe729X0": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Part of Queue Depth (Count)", - "operationType": "average", - "scale": "ratio", - "sourceField": "aws.rds.disk_queue_depth" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "c7c3ebb2-d611-40a5-aab3-491fa36fe729" - ], - "layerId": "14d4ba6b-f4e1-4d40-818a-6aa829d90422", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "8954842c-4056-46ef-adfc-29dfc3b0cbd3", - "xAccessor": "40493df1-c805-49eb-8dfa-9ff81f7acd4b" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "valueLabels": "hide", - "yLeftExtent": { - "mode": "full" - }, - "yRightExtent": { - "mode": "full" - } - } - }, - "title": "RDS Disk Queue Depth [Metricbeat AWS]", - "visualizationType": "lnsXY" - }, - "coreMigrationVersion": "7.11.0", - "id": "bbc80900-f09e-11eb-b61f-a53cb4913361", - "migrationVersion": { - "lens": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-14d4ba6b-f4e1-4d40-818a-6aa829d90422", - "type": "index-pattern" - } - ], - "type": "lens", - "updated_at": "2021-07-29T18:56:51.088Z", - "version": "WzIzODUsMV0=" - }, - { - "attributes": { - "description": null, - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "94e6f698-4af3-4acd-a018-867330b4e0de": { - "columnOrder": [ - "ba1bdf55-b2f8-4bb4-b78c-caab170367e0", - "98b1c682-acf5-4331-8129-62177616a221", - "c7534b00-fa2b-4633-84da-83d71de297f8", - "c7534b00-fa2b-4633-84da-83d71de297f8X0" - ], - "columns": { - "98b1c682-acf5-4331-8129-62177616a221": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of aws.rds.db_instance.identifier", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "fallback": true, - "type": "alphabetical" - }, - "orderDirection": "asc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "aws.rds.db_instance.identifier" - }, - "ba1bdf55-b2f8-4bb4-b78c-caab170367e0": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "c7534b00-fa2b-4633-84da-83d71de297f8": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Write IOPS (Count/Second)", - "operationType": "formula", - "params": { - "formula": "average(aws.rds.write_io.ops_per_sec)", - "isFormulaBroken": false - }, - "references": [ - "c7534b00-fa2b-4633-84da-83d71de297f8X0" - ], - "scale": "ratio" - }, - "c7534b00-fa2b-4633-84da-83d71de297f8X0": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Part of Write IOPS (Count/Second)", - "operationType": "average", - "scale": "ratio", - "sourceField": "aws.rds.write_io.ops_per_sec" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "c7534b00-fa2b-4633-84da-83d71de297f8" - ], - "layerId": "94e6f698-4af3-4acd-a018-867330b4e0de", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "98b1c682-acf5-4331-8129-62177616a221", - "xAccessor": "ba1bdf55-b2f8-4bb4-b78c-caab170367e0" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "valueLabels": "hide", - "yLeftExtent": { - "mode": "full" - }, - "yRightExtent": { - "mode": "full" - } - } - }, - "title": "RDS Write IOPS [Metricbeat AWS]", - "visualizationType": "lnsXY" - }, - "coreMigrationVersion": "7.11.0", - "id": "30fd4e40-f0a1-11eb-b61f-a53cb4913361", - "migrationVersion": { - "lens": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-94e6f698-4af3-4acd-a018-867330b4e0de", - "type": "index-pattern" - } - ], - "type": "lens", - "updated_at": "2021-07-29T19:16:08.597Z", - "version": "WzI2MDksMV0=" - }, - { - "attributes": { - "description": null, - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "e2611df6-ca73-4d53-b0b5-afd8b718c369": { - "columnOrder": [ - "53a07fa4-b348-44c7-b644-83f3617e5b5c", - "b9e82720-e098-4dd7-ac5b-f3becccd344a", - "85528f23-48f2-462f-8075-eaddd94b21f2" - ], - "columns": { - "53a07fa4-b348-44c7-b644-83f3617e5b5c": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Read IOPS (Count/Second)", - "operationType": "terms", - "params": { - "missingBucket": false, - "orderBy": { - "columnId": "85528f23-48f2-462f-8075-eaddd94b21f2", - "type": "column" - }, - "orderDirection": "desc", - "otherBucket": true, - "size": 10 - }, - "scale": "ordinal", - "sourceField": "aws.rds.db_instance.identifier" - }, - "85528f23-48f2-462f-8075-eaddd94b21f2": { - "dataType": "number", - "isBucketed": false, - "label": "Average of aws.rds.read_io.ops_per_sec", - "operationType": "average", - "scale": "ratio", - "sourceField": "aws.rds.read_io.ops_per_sec" - }, - "b9e82720-e098-4dd7-ac5b-f3becccd344a": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - } - }, - "incompleteColumns": {} - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "85528f23-48f2-462f-8075-eaddd94b21f2" - ], - "layerId": "e2611df6-ca73-4d53-b0b5-afd8b718c369", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "53a07fa4-b348-44c7-b644-83f3617e5b5c", - "xAccessor": "b9e82720-e098-4dd7-ac5b-f3becccd344a" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "valueLabels": "hide", - "yLeftExtent": { - "mode": "full" - }, - "yRightExtent": { - "mode": "full" - } - } - }, - "title": "RDS Read IOPS [Metricbeat AWS]", - "visualizationType": "lnsXY" - }, - "coreMigrationVersion": "7.11.0", - "id": "f757eba0-f0a0-11eb-b61f-a53cb4913361", - "migrationVersion": { - "lens": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-e2611df6-ca73-4d53-b0b5-afd8b718c369", - "type": "index-pattern" - } - ], - "type": "lens", - "updated_at": "2021-07-29T19:16:33.430Z", - "version": "WzI2MjMsMV0=" - } - ], - "version": "7.11.0" -} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-rds-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-rds-overview.ndjson new file mode 100644 index 00000000000..4fdc2bd9b99 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-rds-overview.ndjson @@ -0,0 +1,13 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"RDS Database Connections [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"10bc2760-d978-11e9-aff2-99c15d8b7da1\"}],\"bar_color_rules\":[{\"id\":\"f8196690-921a-11e9-badf-4b42bd1ef543\"}],\"hide_last_value_indicator\":true,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Database Connections\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.rds.database_connections\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.rds.db_instance.identifier\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"metric\",\"use_kibana_indexes\":false},\"title\":\"RDS Database Connections [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"17fcda50-921b-11e9-aa19-159bf182e06f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"RDS Transaction Blocked [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(164,221,0,1)\",\"id\":\"27aaf910-d978-11e9-aff2-99c15d8b7da1\",\"operator\":\"lte\",\"value\":0},{\"color\":\"rgba(244,78,59,1)\",\"id\":\"3526a9e0-d978-11e9-aff2-99c15d8b7da1\",\"operator\":\"gt\",\"value\":0},{\"background_color\":\"rgba(164,221,0,1)\",\"id\":\"50a46c15-ab5f-41d6-83de-b988ab7f4149\",\"operator\":\"empty\",\"value\":null},{\"background_color\":\"rgba(164,221,0,1)\",\"id\":\"6bb4d634-1d42-47fc-9c42-3f8269c8f509\",\"operator\":\"empty\",\"value\":null}],\"bar_color_rules\":[{\"bar_color\":\"rgba(211,49,21,1)\",\"id\":\"f8196690-921a-11e9-badf-4b42bd1ef543\",\"operator\":\"gt\",\"value\":0}],\"drilldown_url\":\"\",\"filter\":\"\",\"hide_last_value_indicator\":true,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Transaction Blocked\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.rds.transactions.blocked\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.rds.db_instance.identifier\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"metric\",\"use_kibana_indexes\":false},\"title\":\"RDS Transaction Blocked [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"00b29040-921d-11e9-aa19-159bf182e06f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Region Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Region Filter\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b5308940-7347-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjMsMV0="} +{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"c6ed7acb-d119-41cc-99ce-cca114d1f1cb":{"columnOrder":["1bfe525f-e68d-4504-86bc-e80fb154192c","08fe8b96-3fe0-410f-8ee3-3ca1379bea49","08fe8b96-3fe0-410f-8ee3-3ca1379bea49X0"],"columns":{"08fe8b96-3fe0-410f-8ee3-3ca1379bea49":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Free Storage Bytes","operationType":"formula","params":{"formula":"average(aws.rds.free_storage.bytes)","isFormulaBroken":false},"references":["08fe8b96-3fe0-410f-8ee3-3ca1379bea49X0"],"scale":"ratio"},"08fe8b96-3fe0-410f-8ee3-3ca1379bea49X0":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Part of average(aws.rds.free_storage.bytes)","operationType":"average","scale":"ratio","sourceField":"aws.rds.free_storage.bytes"},"1bfe525f-e68d-4504-86bc-e80fb154192c":{"dataType":"string","isBucketed":true,"label":"Top values of aws.rds.db_instance.identifier","operationType":"terms","params":{"missingBucket":false,"orderBy":{"fallback":true,"type":"alphabetical"},"orderDirection":"asc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.rds.db_instance.identifier"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"columns":[{"columnId":"08fe8b96-3fe0-410f-8ee3-3ca1379bea49","isTransposed":false},{"columnId":"1bfe525f-e68d-4504-86bc-e80fb154192c","isTransposed":false}],"layerId":"c6ed7acb-d119-41cc-99ce-cca114d1f1cb"}},"title":"RDS Free Storage Bytes [Metricbeat AWS]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"68f36fb0-f0a0-11eb-b61f-a53cb4913361","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-c6ed7acb-d119-41cc-99ce-cca114d1f1cb","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MTQsMV0="} +{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"5a1e8135-28e5-4e15-a675-bf9f840fca1c":{"columnOrder":["748501ab-c222-4695-9062-93c70e72a864","191b027e-d3d1-41da-b3fb-29315f99f4ee","98446733-f0c0-4666-8491-52b6eae923ed","98446733-f0c0-4666-8491-52b6eae923edX0"],"columns":{"191b027e-d3d1-41da-b3fb-29315f99f4ee":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"748501ab-c222-4695-9062-93c70e72a864":{"dataType":"string","isBucketed":true,"label":"Top values of aws.rds.db_instance.identifier","operationType":"terms","params":{"missingBucket":false,"orderBy":{"fallback":true,"type":"alphabetical"},"orderDirection":"asc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.rds.db_instance.identifier"},"98446733-f0c0-4666-8491-52b6eae923ed":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Read Latency (Milliseconds)","operationType":"formula","params":{"formula":"average(aws.rds.latency.read)","isFormulaBroken":false},"references":["98446733-f0c0-4666-8491-52b6eae923edX0"],"scale":"ratio"},"98446733-f0c0-4666-8491-52b6eae923edX0":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Part of average(aws.rds.latency.read)","operationType":"average","scale":"ratio","sourceField":"aws.rds.latency.read"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["98446733-f0c0-4666-8491-52b6eae923ed"],"layerId":"5a1e8135-28e5-4e15-a675-bf9f840fca1c","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"748501ab-c222-4695-9062-93c70e72a864","xAccessor":"191b027e-d3d1-41da-b3fb-29315f99f4ee"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide","yLeftExtent":{"mode":"full"},"yRightExtent":{"mode":"full"}}},"title":"RDS Read Latency in Milliseconds [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"f9ff3450-f094-11eb-b61f-a53cb4913361","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-5a1e8135-28e5-4e15-a675-bf9f840fca1c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MTUsMV0="} +{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"75b24975-5ca3-4da5-bc1a-92013a901a21":{"columnOrder":["bfa06179-6b6f-43e5-a446-f856ff3e51bf","af96ca6c-7ab9-47a3-ad8b-29e1578c0076","6a87f496-b929-4d24-aede-325d54fedfa1","6a87f496-b929-4d24-aede-325d54fedfa1X0"],"columns":{"6a87f496-b929-4d24-aede-325d54fedfa1":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Write Latency (Milliseconds)","operationType":"formula","params":{"formula":"average(aws.rds.latency.write)","isFormulaBroken":false},"references":["6a87f496-b929-4d24-aede-325d54fedfa1X0"],"scale":"ratio"},"6a87f496-b929-4d24-aede-325d54fedfa1X0":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Part of average(aws.rds.latency.write)","operationType":"average","scale":"ratio","sourceField":"aws.rds.latency.write"},"af96ca6c-7ab9-47a3-ad8b-29e1578c0076":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"bfa06179-6b6f-43e5-a446-f856ff3e51bf":{"dataType":"string","isBucketed":true,"label":"Top values of aws.rds.db_instance.identifier","operationType":"terms","params":{"missingBucket":false,"orderBy":{"fallback":true,"type":"alphabetical"},"orderDirection":"asc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.rds.db_instance.identifier"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["6a87f496-b929-4d24-aede-325d54fedfa1"],"layerId":"75b24975-5ca3-4da5-bc1a-92013a901a21","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"bfa06179-6b6f-43e5-a446-f856ff3e51bf","xAccessor":"af96ca6c-7ab9-47a3-ad8b-29e1578c0076"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide","yLeftExtent":{"mode":"full"},"yRightExtent":{"mode":"full"}}},"title":"RDS Write Latency in Milliseconds [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"8560b400-f096-11eb-b61f-a53cb4913361","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-75b24975-5ca3-4da5-bc1a-92013a901a21","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MTYsMV0="} +{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"b8d09be0-e20a-4f42-b08e-1da4c3cc8efd":{"columnOrder":["e676afd3-ebd5-434a-85d7-a1a708b9a32f","545fe110-3ab4-4a3d-99d9-9eae69d6ff07","8293fc99-aed6-44a3-83ee-a498d2200a46"],"columns":{"545fe110-3ab4-4a3d-99d9-9eae69d6ff07":{"dataType":"string","isBucketed":true,"label":"Top values of aws.rds.db_instance.identifier","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"8293fc99-aed6-44a3-83ee-a498d2200a46","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.rds.db_instance.identifier"},"8293fc99-aed6-44a3-83ee-a498d2200a46":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Insert Throughput Count/Second","operationType":"average","scale":"ratio","sourceField":"aws.rds.throughput.insert"},"e676afd3-ebd5-434a-85d7-a1a708b9a32f":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["8293fc99-aed6-44a3-83ee-a498d2200a46"],"layerId":"b8d09be0-e20a-4f42-b08e-1da4c3cc8efd","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"545fe110-3ab4-4a3d-99d9-9eae69d6ff07","xAccessor":"e676afd3-ebd5-434a-85d7-a1a708b9a32f"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide","yLeftExtent":{"mode":"full"},"yRightExtent":{"mode":"full"}}},"title":"RDS Insert Throughput [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"b0077d10-f09b-11eb-b61f-a53cb4913361","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-b8d09be0-e20a-4f42-b08e-1da4c3cc8efd","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MTcsMV0="} +{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"8682174a-4cff-4d95-b719-1fc306f5b33a":{"columnOrder":["bc08fa3e-ce15-4acd-a0fd-c5c5c5452441","f45a0753-4e23-43c4-80f7-4a9aa9548a6e","85980678-0e26-4f77-b735-7ec5ebbc472e","85980678-0e26-4f77-b735-7ec5ebbc472eX0"],"columns":{"85980678-0e26-4f77-b735-7ec5ebbc472e":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Select Throughput Count/Second","operationType":"formula","params":{"formula":"average(aws.rds.throughput.select)","isFormulaBroken":false},"references":["85980678-0e26-4f77-b735-7ec5ebbc472eX0"],"scale":"ratio"},"85980678-0e26-4f77-b735-7ec5ebbc472eX0":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Part of Select Throughput Count/Second","operationType":"average","scale":"ratio","sourceField":"aws.rds.throughput.select"},"bc08fa3e-ce15-4acd-a0fd-c5c5c5452441":{"dataType":"string","isBucketed":true,"label":"Top values of aws.rds.db_instance.identifier","operationType":"terms","params":{"missingBucket":false,"orderBy":{"fallback":true,"type":"alphabetical"},"orderDirection":"asc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.rds.db_instance.identifier"},"f45a0753-4e23-43c4-80f7-4a9aa9548a6e":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["85980678-0e26-4f77-b735-7ec5ebbc472e"],"layerId":"8682174a-4cff-4d95-b719-1fc306f5b33a","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"bc08fa3e-ce15-4acd-a0fd-c5c5c5452441","xAccessor":"f45a0753-4e23-43c4-80f7-4a9aa9548a6e"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide","yLeftExtent":{"mode":"full"},"yRightExtent":{"mode":"full"}}},"title":"RDS Select Throughput[Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"41e37710-f09d-11eb-b61f-a53cb4913361","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-8682174a-4cff-4d95-b719-1fc306f5b33a","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MTgsMV0="} +{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"dd0a4706-5286-4976-9bc4-f5e7a4964bf6":{"columnOrder":["a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc","103900c0-dcfa-416f-a272-6efa09c84fce","18e6079e-e955-41d0-8196-d2b932cf1fa6","18e6079e-e955-41d0-8196-d2b932cf1fa6X0"],"columns":{"103900c0-dcfa-416f-a272-6efa09c84fce":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"18e6079e-e955-41d0-8196-d2b932cf1fa6":{"customLabel":true,"dataType":"number","isBucketed":false,"label":" average(aws.rds.cpu.total.pct)","operationType":"formula","params":{"formula":"average(aws.rds.cpu.total.pct)","isFormulaBroken":false},"references":["18e6079e-e955-41d0-8196-d2b932cf1fa6X0"],"scale":"ratio"},"18e6079e-e955-41d0-8196-d2b932cf1fa6X0":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Part of ","operationType":"average","scale":"ratio","sourceField":"aws.rds.cpu.total.pct"},"a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc":{"dataType":"string","isBucketed":true,"label":"Top values of aws.rds.db_instance.identifier","operationType":"terms","params":{"missingBucket":false,"orderBy":{"fallback":true,"type":"alphabetical"},"orderDirection":"asc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.rds.db_instance.identifier"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["18e6079e-e955-41d0-8196-d2b932cf1fa6"],"layerId":"dd0a4706-5286-4976-9bc4-f5e7a4964bf6","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc","xAccessor":"103900c0-dcfa-416f-a272-6efa09c84fce"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide","yLeftExtent":{"mode":"full"},"yRightExtent":{"mode":"full"}}},"title":"RDS CPU Total Pct [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"c4419a90-f091-11eb-b61f-a53cb4913361","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-dd0a4706-5286-4976-9bc4-f5e7a4964bf6","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MTksMV0="} +{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"14d4ba6b-f4e1-4d40-818a-6aa829d90422":{"columnOrder":["8954842c-4056-46ef-adfc-29dfc3b0cbd3","40493df1-c805-49eb-8dfa-9ff81f7acd4b","c7c3ebb2-d611-40a5-aab3-491fa36fe729","c7c3ebb2-d611-40a5-aab3-491fa36fe729X0"],"columns":{"40493df1-c805-49eb-8dfa-9ff81f7acd4b":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"8954842c-4056-46ef-adfc-29dfc3b0cbd3":{"dataType":"string","isBucketed":true,"label":"Top values of aws.rds.db_instance.identifier","operationType":"terms","params":{"missingBucket":false,"orderBy":{"fallback":true,"type":"alphabetical"},"orderDirection":"asc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.rds.db_instance.identifier"},"c7c3ebb2-d611-40a5-aab3-491fa36fe729":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Queue Depth (Count)","operationType":"formula","params":{"formula":"average(aws.rds.disk_queue_depth)","isFormulaBroken":false},"references":["c7c3ebb2-d611-40a5-aab3-491fa36fe729X0"],"scale":"ratio"},"c7c3ebb2-d611-40a5-aab3-491fa36fe729X0":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Part of Queue Depth (Count)","operationType":"average","scale":"ratio","sourceField":"aws.rds.disk_queue_depth"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["c7c3ebb2-d611-40a5-aab3-491fa36fe729"],"layerId":"14d4ba6b-f4e1-4d40-818a-6aa829d90422","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"8954842c-4056-46ef-adfc-29dfc3b0cbd3","xAccessor":"40493df1-c805-49eb-8dfa-9ff81f7acd4b"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide","yLeftExtent":{"mode":"full"},"yRightExtent":{"mode":"full"}}},"title":"RDS Disk Queue Depth [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"bbc80900-f09e-11eb-b61f-a53cb4913361","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-14d4ba6b-f4e1-4d40-818a-6aa829d90422","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MjAsMV0="} +{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"94e6f698-4af3-4acd-a018-867330b4e0de":{"columnOrder":["ba1bdf55-b2f8-4bb4-b78c-caab170367e0","98b1c682-acf5-4331-8129-62177616a221","c7534b00-fa2b-4633-84da-83d71de297f8","c7534b00-fa2b-4633-84da-83d71de297f8X0"],"columns":{"98b1c682-acf5-4331-8129-62177616a221":{"dataType":"string","isBucketed":true,"label":"Top values of aws.rds.db_instance.identifier","operationType":"terms","params":{"missingBucket":false,"orderBy":{"fallback":true,"type":"alphabetical"},"orderDirection":"asc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.rds.db_instance.identifier"},"ba1bdf55-b2f8-4bb4-b78c-caab170367e0":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"c7534b00-fa2b-4633-84da-83d71de297f8":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Write IOPS (Count/Second)","operationType":"formula","params":{"formula":"average(aws.rds.write_io.ops_per_sec)","isFormulaBroken":false},"references":["c7534b00-fa2b-4633-84da-83d71de297f8X0"],"scale":"ratio"},"c7534b00-fa2b-4633-84da-83d71de297f8X0":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Part of Write IOPS (Count/Second)","operationType":"average","scale":"ratio","sourceField":"aws.rds.write_io.ops_per_sec"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["c7534b00-fa2b-4633-84da-83d71de297f8"],"layerId":"94e6f698-4af3-4acd-a018-867330b4e0de","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"98b1c682-acf5-4331-8129-62177616a221","xAccessor":"ba1bdf55-b2f8-4bb4-b78c-caab170367e0"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide","yLeftExtent":{"mode":"full"},"yRightExtent":{"mode":"full"}}},"title":"RDS Write IOPS [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"30fd4e40-f0a1-11eb-b61f-a53cb4913361","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-94e6f698-4af3-4acd-a018-867330b4e0de","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MjEsMV0="} +{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"e2611df6-ca73-4d53-b0b5-afd8b718c369":{"columnOrder":["53a07fa4-b348-44c7-b644-83f3617e5b5c","b9e82720-e098-4dd7-ac5b-f3becccd344a","85528f23-48f2-462f-8075-eaddd94b21f2"],"columns":{"53a07fa4-b348-44c7-b644-83f3617e5b5c":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Read IOPS (Count/Second)","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"85528f23-48f2-462f-8075-eaddd94b21f2","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.rds.db_instance.identifier"},"85528f23-48f2-462f-8075-eaddd94b21f2":{"dataType":"number","isBucketed":false,"label":"Average of aws.rds.read_io.ops_per_sec","operationType":"average","scale":"ratio","sourceField":"aws.rds.read_io.ops_per_sec"},"b9e82720-e098-4dd7-ac5b-f3becccd344a":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["85528f23-48f2-462f-8075-eaddd94b21f2"],"layerId":"e2611df6-ca73-4d53-b0b5-afd8b718c369","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"53a07fa4-b348-44c7-b644-83f3617e5b5c","xAccessor":"b9e82720-e098-4dd7-ac5b-f3becccd344a"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide","yLeftExtent":{"mode":"full"},"yRightExtent":{"mode":"full"}}},"title":"RDS Read IOPS [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"f757eba0-f0a0-11eb-b61f-a53cb4913361","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-e2611df6-ca73-4d53-b0b5-afd8b718c369","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MjIsMV0="} +{"attributes":{"description":"Overview of AWS RDS Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":7,\"i\":\"1\",\"w\":17,\"x\":7,\"y\":0},\"panelIndex\":\"1\",\"panelRefName\":\"panel_1\",\"title\":\"Database Connections\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":8,\"i\":\"5\",\"w\":17,\"x\":7,\"y\":7},\"panelIndex\":\"5\",\"panelRefName\":\"panel_5\",\"title\":\"Transaction Blocked\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":7,\"x\":0,\"y\":0},\"panelIndex\":\"6\",\"panelRefName\":\"panel_6\",\"title\":\"AWS Region Filter\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"4d89e43f-299c-4f43-bde2-0ada0983ff23\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"4d89e43f-299c-4f43-bde2-0ada0983ff23\",\"panelRefName\":\"panel_4d89e43f-299c-4f43-bde2-0ada0983ff23\",\"title\":\"Free Storage\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"d409ab5d-84b5-4ecc-86ae-1f79a882b626\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"d409ab5d-84b5-4ecc-86ae-1f79a882b626\",\"panelRefName\":\"panel_d409ab5d-84b5-4ecc-86ae-1f79a882b626\",\"title\":\"Read Latency\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"1abf12dc-d009-4a02-acd4-463383d32a63\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"1abf12dc-d009-4a02-acd4-463383d32a63\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"metricbeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"metricbeat-*\",\"name\":\"indexpattern-datasource-layer-75b24975-5ca3-4da5-bc1a-92013a901a21\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"75b24975-5ca3-4da5-bc1a-92013a901a21\":{\"columnOrder\":[\"bfa06179-6b6f-43e5-a446-f856ff3e51bf\",\"af96ca6c-7ab9-47a3-ad8b-29e1578c0076\",\"6a87f496-b929-4d24-aede-325d54fedfa1\",\"6a87f496-b929-4d24-aede-325d54fedfa1X0\"],\"columns\":{\"6a87f496-b929-4d24-aede-325d54fedfa1\":{\"customLabel\":true,\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Write Latency (Milliseconds)\",\"operationType\":\"formula\",\"params\":{\"formula\":\"average(aws.rds.latency.write)\",\"isFormulaBroken\":false},\"references\":[\"6a87f496-b929-4d24-aede-325d54fedfa1X0\"],\"scale\":\"ratio\"},\"6a87f496-b929-4d24-aede-325d54fedfa1X0\":{\"customLabel\":true,\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Part of average(aws.rds.latency.write)\",\"operationType\":\"average\",\"scale\":\"ratio\",\"sourceField\":\"aws.rds.latency.write\"},\"af96ca6c-7ab9-47a3-ad8b-29e1578c0076\":{\"dataType\":\"date\",\"isBucketed\":true,\"label\":\"@timestamp\",\"operationType\":\"date_histogram\",\"params\":{\"interval\":\"auto\"},\"scale\":\"interval\",\"sourceField\":\"@timestamp\"},\"bfa06179-6b6f-43e5-a446-f856ff3e51bf\":{\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Top values of aws.rds.db_instance.identifier\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"fallback\":true,\"type\":\"alphabetical\"},\"orderDirection\":\"asc\",\"otherBucket\":true,\"size\":10},\"scale\":\"ordinal\",\"sourceField\":\"aws.rds.db_instance.identifier\"}},\"incompleteColumns\":{}}}}},\"filters\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"axisTitlesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"fittingFunction\":\"None\",\"gridlinesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"layers\":[{\"accessors\":[\"6a87f496-b929-4d24-aede-325d54fedfa1\"],\"layerId\":\"75b24975-5ca3-4da5-bc1a-92013a901a21\",\"position\":\"top\",\"seriesType\":\"line\",\"showGridlines\":false,\"splitAccessor\":\"bfa06179-6b6f-43e5-a446-f856ff3e51bf\",\"xAccessor\":\"af96ca6c-7ab9-47a3-ad8b-29e1578c0076\"}],\"legend\":{\"isVisible\":true,\"position\":\"right\"},\"preferredSeriesType\":\"line\",\"tickLabelsVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"valueLabels\":\"hide\",\"yLeftExtent\":{\"mode\":\"full\"},\"yRightExtent\":{\"mode\":\"full\"}}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsXY\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"Write Latency\",\"panelRefName\":\"panel_1abf12dc-d009-4a02-acd4-463383d32a63\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"c5476b0e-6a44-43e5-8bb4-0795c4d097c1\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"c5476b0e-6a44-43e5-8bb4-0795c4d097c1\",\"panelRefName\":\"panel_c5476b0e-6a44-43e5-8bb4-0795c4d097c1\",\"title\":\"Insert Throughput\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"bf74bb77-3503-4682-9f0e-6df0994dce5d\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"bf74bb77-3503-4682-9f0e-6df0994dce5d\",\"panelRefName\":\"panel_bf74bb77-3503-4682-9f0e-6df0994dce5d\",\"title\":\"Select Throughput\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"249ff0a6-3fd3-4935-85c3-0c3222d3c498\",\"w\":24,\"x\":0,\"y\":45},\"panelIndex\":\"249ff0a6-3fd3-4935-85c3-0c3222d3c498\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"metricbeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"metricbeat-*\",\"name\":\"indexpattern-datasource-layer-dd0a4706-5286-4976-9bc4-f5e7a4964bf6\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"dd0a4706-5286-4976-9bc4-f5e7a4964bf6\":{\"columnOrder\":[\"a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc\",\"103900c0-dcfa-416f-a272-6efa09c84fce\",\"18e6079e-e955-41d0-8196-d2b932cf1fa6\",\"18e6079e-e955-41d0-8196-d2b932cf1fa6X0\"],\"columns\":{\"103900c0-dcfa-416f-a272-6efa09c84fce\":{\"dataType\":\"date\",\"isBucketed\":true,\"label\":\"@timestamp\",\"operationType\":\"date_histogram\",\"params\":{\"interval\":\"auto\"},\"scale\":\"interval\",\"sourceField\":\"@timestamp\"},\"18e6079e-e955-41d0-8196-d2b932cf1fa6\":{\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"average(aws.rds.cpu.total.pct)\",\"operationType\":\"formula\",\"params\":{\"formula\":\"average(aws.rds.cpu.total.pct)\",\"isFormulaBroken\":false},\"references\":[\"18e6079e-e955-41d0-8196-d2b932cf1fa6X0\"],\"scale\":\"ratio\"},\"18e6079e-e955-41d0-8196-d2b932cf1fa6X0\":{\"customLabel\":true,\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Part of average(aws.rds.cpu.total.pct)\",\"operationType\":\"average\",\"scale\":\"ratio\",\"sourceField\":\"aws.rds.cpu.total.pct\"},\"a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc\":{\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Top values of aws.rds.db_instance.identifier\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"fallback\":true,\"type\":\"alphabetical\"},\"orderDirection\":\"asc\",\"otherBucket\":true,\"size\":10},\"scale\":\"ordinal\",\"sourceField\":\"aws.rds.db_instance.identifier\"}},\"incompleteColumns\":{}}}}},\"filters\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"axisTitlesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"fittingFunction\":\"None\",\"gridlinesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"layers\":[{\"accessors\":[\"18e6079e-e955-41d0-8196-d2b932cf1fa6\"],\"layerId\":\"dd0a4706-5286-4976-9bc4-f5e7a4964bf6\",\"position\":\"top\",\"seriesType\":\"line\",\"showGridlines\":false,\"splitAccessor\":\"a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc\",\"xAccessor\":\"103900c0-dcfa-416f-a272-6efa09c84fce\"}],\"legend\":{\"isVisible\":true,\"position\":\"right\"},\"preferredSeriesType\":\"line\",\"tickLabelsVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"valueLabels\":\"hide\",\"yLeftExtent\":{\"mode\":\"full\"},\"yRightExtent\":{\"mode\":\"full\"}}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsXY\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"CPU Total Pct\",\"panelRefName\":\"panel_249ff0a6-3fd3-4935-85c3-0c3222d3c498\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"c28488ce-a20e-447f-9a68-ba49b542ab0a\",\"w\":24,\"x\":24,\"y\":45},\"panelIndex\":\"c28488ce-a20e-447f-9a68-ba49b542ab0a\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"metricbeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"metricbeat-*\",\"name\":\"indexpattern-datasource-layer-14d4ba6b-f4e1-4d40-818a-6aa829d90422\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"14d4ba6b-f4e1-4d40-818a-6aa829d90422\":{\"columnOrder\":[\"8954842c-4056-46ef-adfc-29dfc3b0cbd3\",\"40493df1-c805-49eb-8dfa-9ff81f7acd4b\",\"c7c3ebb2-d611-40a5-aab3-491fa36fe729\",\"c7c3ebb2-d611-40a5-aab3-491fa36fe729X0\"],\"columns\":{\"40493df1-c805-49eb-8dfa-9ff81f7acd4b\":{\"dataType\":\"date\",\"isBucketed\":true,\"label\":\"@timestamp\",\"operationType\":\"date_histogram\",\"params\":{\"interval\":\"auto\"},\"scale\":\"interval\",\"sourceField\":\"@timestamp\"},\"8954842c-4056-46ef-adfc-29dfc3b0cbd3\":{\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Top values of aws.rds.db_instance.identifier\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"fallback\":true,\"type\":\"alphabetical\"},\"orderDirection\":\"asc\",\"otherBucket\":true,\"size\":10},\"scale\":\"ordinal\",\"sourceField\":\"aws.rds.db_instance.identifier\"},\"c7c3ebb2-d611-40a5-aab3-491fa36fe729\":{\"customLabel\":true,\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Queue Depth (Count)\",\"operationType\":\"formula\",\"params\":{\"formula\":\"average(aws.rds.disk_queue_depth)\",\"isFormulaBroken\":false},\"references\":[\"c7c3ebb2-d611-40a5-aab3-491fa36fe729X0\"],\"scale\":\"ratio\"},\"c7c3ebb2-d611-40a5-aab3-491fa36fe729X0\":{\"customLabel\":true,\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Part of Queue Depth (Count)\",\"operationType\":\"average\",\"scale\":\"ratio\",\"sourceField\":\"aws.rds.disk_queue_depth\"}},\"incompleteColumns\":{}}}}},\"filters\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"axisTitlesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"fittingFunction\":\"None\",\"gridlinesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"layers\":[{\"accessors\":[\"c7c3ebb2-d611-40a5-aab3-491fa36fe729\"],\"layerId\":\"14d4ba6b-f4e1-4d40-818a-6aa829d90422\",\"position\":\"top\",\"seriesType\":\"line\",\"showGridlines\":false,\"splitAccessor\":\"8954842c-4056-46ef-adfc-29dfc3b0cbd3\",\"xAccessor\":\"40493df1-c805-49eb-8dfa-9ff81f7acd4b\"}],\"legend\":{\"isVisible\":true,\"position\":\"right\"},\"preferredSeriesType\":\"line\",\"tickLabelsVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"valueLabels\":\"hide\",\"yLeftExtent\":{\"mode\":\"full\"},\"yRightExtent\":{\"mode\":\"full\"}}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsXY\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"Disk Queue Depth\",\"panelRefName\":\"panel_c28488ce-a20e-447f-9a68-ba49b542ab0a\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"29549114-6ebf-4047-aa56-bc035f66d3b4\",\"w\":24,\"x\":0,\"y\":60},\"panelIndex\":\"29549114-6ebf-4047-aa56-bc035f66d3b4\",\"panelRefName\":\"panel_29549114-6ebf-4047-aa56-bc035f66d3b4\",\"title\":\"Write IOPS\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"addd441f-fa2b-4725-8015-619ee176ed0a\",\"w\":24,\"x\":24,\"y\":60},\"panelIndex\":\"addd441f-fa2b-4725-8015-619ee176ed0a\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"metricbeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"metricbeat-*\",\"name\":\"indexpattern-datasource-layer-e2611df6-ca73-4d53-b0b5-afd8b718c369\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"e2611df6-ca73-4d53-b0b5-afd8b718c369\":{\"columnOrder\":[\"53a07fa4-b348-44c7-b644-83f3617e5b5c\",\"b9e82720-e098-4dd7-ac5b-f3becccd344a\",\"85528f23-48f2-462f-8075-eaddd94b21f2\"],\"columns\":{\"53a07fa4-b348-44c7-b644-83f3617e5b5c\":{\"customLabel\":true,\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Read IOPS (Count/Second)\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"columnId\":\"85528f23-48f2-462f-8075-eaddd94b21f2\",\"type\":\"column\"},\"orderDirection\":\"desc\",\"otherBucket\":true,\"size\":10},\"scale\":\"ordinal\",\"sourceField\":\"aws.rds.db_instance.identifier\"},\"85528f23-48f2-462f-8075-eaddd94b21f2\":{\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Average of aws.rds.read_io.ops_per_sec\",\"operationType\":\"average\",\"scale\":\"ratio\",\"sourceField\":\"aws.rds.read_io.ops_per_sec\"},\"b9e82720-e098-4dd7-ac5b-f3becccd344a\":{\"dataType\":\"date\",\"isBucketed\":true,\"label\":\"@timestamp\",\"operationType\":\"date_histogram\",\"params\":{\"interval\":\"auto\"},\"scale\":\"interval\",\"sourceField\":\"@timestamp\"}},\"incompleteColumns\":{}}}}},\"filters\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"axisTitlesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"fittingFunction\":\"None\",\"gridlinesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"layers\":[{\"accessors\":[\"85528f23-48f2-462f-8075-eaddd94b21f2\"],\"layerId\":\"e2611df6-ca73-4d53-b0b5-afd8b718c369\",\"position\":\"top\",\"seriesType\":\"line\",\"showGridlines\":false,\"splitAccessor\":\"53a07fa4-b348-44c7-b644-83f3617e5b5c\",\"xAccessor\":\"b9e82720-e098-4dd7-ac5b-f3becccd344a\"}],\"legend\":{\"isVisible\":true,\"position\":\"right\"},\"preferredSeriesType\":\"line\",\"tickLabelsVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"valueLabels\":\"hide\",\"yLeftExtent\":{\"mode\":\"full\"},\"yRightExtent\":{\"mode\":\"full\"}}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsXY\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"Read IOPS\",\"panelRefName\":\"panel_addd441f-fa2b-4725-8015-619ee176ed0a\"}]","timeRestore":false,"title":"[Metricbeat AWS] RDS Overview","version":1},"coreMigrationVersion":"8.0.0","id":"3367c170-921f-11e9-aa19-159bf182e06f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"17fcda50-921b-11e9-aa19-159bf182e06f","name":"1:panel_1","type":"visualization"},{"id":"00b29040-921d-11e9-aa19-159bf182e06f","name":"5:panel_5","type":"visualization"},{"id":"b5308940-7347-11e9-816b-07687310a99a","name":"6:panel_6","type":"visualization"},{"id":"68f36fb0-f0a0-11eb-b61f-a53cb4913361","name":"4d89e43f-299c-4f43-bde2-0ada0983ff23:panel_4d89e43f-299c-4f43-bde2-0ada0983ff23","type":"lens"},{"id":"f9ff3450-f094-11eb-b61f-a53cb4913361","name":"d409ab5d-84b5-4ecc-86ae-1f79a882b626:panel_d409ab5d-84b5-4ecc-86ae-1f79a882b626","type":"lens"},{"id":"8560b400-f096-11eb-b61f-a53cb4913361","name":"1abf12dc-d009-4a02-acd4-463383d32a63:panel_1abf12dc-d009-4a02-acd4-463383d32a63","type":"lens"},{"id":"metricbeat-*","name":"1abf12dc-d009-4a02-acd4-463383d32a63:indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"1abf12dc-d009-4a02-acd4-463383d32a63:indexpattern-datasource-layer-75b24975-5ca3-4da5-bc1a-92013a901a21","type":"index-pattern"},{"id":"b0077d10-f09b-11eb-b61f-a53cb4913361","name":"c5476b0e-6a44-43e5-8bb4-0795c4d097c1:panel_c5476b0e-6a44-43e5-8bb4-0795c4d097c1","type":"lens"},{"id":"41e37710-f09d-11eb-b61f-a53cb4913361","name":"bf74bb77-3503-4682-9f0e-6df0994dce5d:panel_bf74bb77-3503-4682-9f0e-6df0994dce5d","type":"lens"},{"id":"c4419a90-f091-11eb-b61f-a53cb4913361","name":"249ff0a6-3fd3-4935-85c3-0c3222d3c498:panel_249ff0a6-3fd3-4935-85c3-0c3222d3c498","type":"lens"},{"id":"metricbeat-*","name":"249ff0a6-3fd3-4935-85c3-0c3222d3c498:indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"249ff0a6-3fd3-4935-85c3-0c3222d3c498:indexpattern-datasource-layer-dd0a4706-5286-4976-9bc4-f5e7a4964bf6","type":"index-pattern"},{"id":"bbc80900-f09e-11eb-b61f-a53cb4913361","name":"c28488ce-a20e-447f-9a68-ba49b542ab0a:panel_c28488ce-a20e-447f-9a68-ba49b542ab0a","type":"lens"},{"id":"metricbeat-*","name":"c28488ce-a20e-447f-9a68-ba49b542ab0a:indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"c28488ce-a20e-447f-9a68-ba49b542ab0a:indexpattern-datasource-layer-14d4ba6b-f4e1-4d40-818a-6aa829d90422","type":"index-pattern"},{"id":"30fd4e40-f0a1-11eb-b61f-a53cb4913361","name":"29549114-6ebf-4047-aa56-bc035f66d3b4:panel_29549114-6ebf-4047-aa56-bc035f66d3b4","type":"lens"},{"id":"f757eba0-f0a0-11eb-b61f-a53cb4913361","name":"addd441f-fa2b-4725-8015-619ee176ed0a:panel_addd441f-fa2b-4725-8015-619ee176ed0a","type":"lens"},{"id":"metricbeat-*","name":"addd441f-fa2b-4725-8015-619ee176ed0a:indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"addd441f-fa2b-4725-8015-619ee176ed0a:indexpattern-datasource-layer-e2611df6-ca73-4d53-b0b5-afd8b718c369","type":"index-pattern"}],"type":"dashboard","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MTAsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-s3-overview.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-s3-overview.json deleted file mode 100644 index 095ba9c700c..00000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-s3-overview.json +++ /dev/null @@ -1,766 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of AWS S3 Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "S3 Daily Storage Bucket Size in Bytes" - }, - "gridData": { - "h": 7, - "i": "1", - "w": 24, - "x": 0, - "y": 6 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "S3 Daily Storage Bucket Size in Bytes", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "S3 Daily Storage Number of Objects" - }, - "gridData": { - "h": 7, - "i": "2", - "w": 24, - "x": 24, - "y": 6 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "S3 Daily Storage Number of Objects", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "S3 Request Latency Total Request in ms" - }, - "gridData": { - "h": 7, - "i": "3", - "w": 24, - "x": 0, - "y": 13 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "S3 Request Latency Total Request in ms", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "S3 Total Error 4xx" - }, - "gridData": { - "h": 6, - "i": "4", - "w": 13, - "x": 24, - "y": 0 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "title": "S3 Total Error 4xx", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "S3 Total Error 5xx" - }, - "gridData": { - "h": 6, - "i": "5", - "w": 11, - "x": 37, - "y": 0 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "title": "S3 Total Error 5xx", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "S3 Filters" - }, - "gridData": { - "h": 6, - "i": "6", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "title": "S3 Filters", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "S3 Total Requests" - }, - "gridData": { - "h": 7, - "i": "7", - "w": 24, - "x": 24, - "y": 13 - }, - "panelIndex": "7", - "panelRefName": "panel_6", - "title": "S3 Total Requests", - "version": "7.7.0" - } - ], - "refreshInterval": { - "pause": true, - "value": 0 - }, - "timeFrom": "now-1d", - "timeRestore": true, - "timeTo": "now", - "title": "[Metricbeat AWS] S3 Overview", - "version": 1 - }, - "id": "a096b830-4762-11e9-8062-c98a86cb6f94", - "migrationVersion": { - "dashboard": "7.4.2" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "2dbb8f90-4760-11e9-8062-c98a86cb6f94", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "3a3914d0-4761-11e9-8062-c98a86cb6f94", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "2b2d58b0-4762-11e9-8062-c98a86cb6f94", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "81d83c70-4762-11e9-8062-c98a86cb6f94", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "8b34a100-4762-11e9-8062-c98a86cb6f94", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "6e3285d0-4763-11e9-8062-c98a86cb6f94", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "d186fd50-4763-11e9-8062-c98a86cb6f94", - "name": "panel_6", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-12-08T17:28:15.675Z", - "version": "WzEzOTI3MCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "S3 Daily Storage Bucket Size in Bytes [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "f679e680-475f-11e9-a9de-e776805ecfc9" - } - ], - "bar_color_rules": [ - { - "id": "f703aff0-475f-11e9-a9de-e776805ecfc9" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "gauge_color_rules": [ - { - "id": "f8388670-475f-11e9-a9de-e776805ecfc9" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=1d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "field": "aws.s3_daily_storage.bucket.size.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.s3.bucket.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "20" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "tooltip_mode": "show_all", - "type": "top_n" - }, - "title": "S3 Daily Storage Bucket Size in Bytes [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "2dbb8f90-4760-11e9-8062-c98a86cb6f94", - "migrationVersion": { - "visualization": "7.4.2" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-12-09T20:59:44.051Z", - "version": "WzE0MDEyMSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "S3 Daily Storage Number of Objects [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "167ea870-4761-11e9-bf81-69a4e579cab5" - } - ], - "bar_color_rules": [ - { - "id": "01dad830-4761-11e9-bf81-69a4e579cab5" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=1d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "field": "aws.s3_daily_storage.number_of_objects", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.s3.bucket.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "20" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "tooltip_mode": "show_all", - "type": "top_n" - }, - "title": "S3 Daily Storage Number of Objects [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "3a3914d0-4761-11e9-8062-c98a86cb6f94", - "migrationVersion": { - "visualization": "7.4.2" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-12-09T21:08:43.773Z", - "version": "WzE0MDE0NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "S3 Request Latency Total Request in ms [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "c0d11b00-4761-11e9-bf81-69a4e579cab5" - } - ], - "bar_color_rules": [ - { - "id": "67cb0930-4761-11e9-bf81-69a4e579cab5" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "gauge_color_rules": [ - { - "id": "6eafde10-4761-11e9-bf81-69a4e579cab5" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1d", - "isModelInvalid": false, - "pivot_id": "aws.s3.bucket.name", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "color_rules": [ - { - "id": "ac2ef870-4761-11e9-bf81-69a4e579cab5" - } - ], - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Latency in ms", - "line_width": 1, - "metrics": [ - { - "field": "aws.s3_request.latency.total_request.ms", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.s3.bucket.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "S3 Request Latency Total Request in ms [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "2b2d58b0-4762-11e9-8062-c98a86cb6f94", - "migrationVersion": { - "visualization": "7.4.2" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-12-08T17:28:15.675Z", - "version": "WzEzOTI3MywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "S3 Total Error 4xx [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "59207fe0-4762-11e9-bf81-69a4e579cab5" - } - ], - "bar_color_rules": [ - { - "id": "5ad9a190-4762-11e9-bf81-69a4e579cab5" - } - ], - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Total # of HTTP 4xx Errors", - "line_width": 1, - "metrics": [ - { - "field": "aws.s3_request.errors.4xx", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric" - }, - "title": "AWS S3 Total Error 4xx", - "type": "metrics" - } - }, - "id": "81d83c70-4762-11e9-8062-c98a86cb6f94", - "migrationVersion": { - "visualization": "7.4.2" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-12-08T17:28:15.675Z", - "version": "WzEzOTI3NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "S3 Total Error 5xx [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "59207fe0-4762-11e9-bf81-69a4e579cab5" - } - ], - "bar_color_rules": [ - { - "id": "5ad9a190-4762-11e9-bf81-69a4e579cab5" - } - ], - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Total # of HTTP 5xx Errors", - "line_width": 1, - "metrics": [ - { - "field": "aws.s3_request.errors.5xx", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric" - }, - "title": "AWS S3 Total Error 5xx", - "type": "metrics" - } - }, - "id": "8b34a100-4762-11e9-8062-c98a86cb6f94", - "migrationVersion": { - "visualization": "7.4.2" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-12-08T17:28:15.675Z", - "version": "WzEzOTI3NSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "S3 Filters [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.region", - "id": "1549397251041", - "indexPattern": "metricbeat-*", - "label": "region", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "aws.s3.bucket.name", - "id": "1549512142947", - "indexPattern": "metricbeat-*", - "label": "s3 bucket name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "AWS S3 Filters", - "type": "input_control_vis" - } - }, - "id": "6e3285d0-4763-11e9-8062-c98a86cb6f94", - "migrationVersion": { - "visualization": "7.4.2" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-12-08T17:28:15.675Z", - "version": "WzEzOTI3NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "S3 Total Requests [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "c03c4320-4763-11e9-b811-fd5d24a641d7" - } - ], - "bar_color_rules": [ - { - "id": "c7b9fca0-4763-11e9-b811-fd5d24a641d7" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "field": "aws.s3_request.requests.total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "offset_time": "", - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.s3.bucket.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "S3 Total Requests [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "d186fd50-4763-11e9-8062-c98a86cb6f94", - "migrationVersion": { - "visualization": "7.4.2" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-12-08T17:28:15.675Z", - "version": "WzEzOTI3NywxXQ==" - } - ], - "version": "7.10.0" -} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-s3-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-s3-overview.ndjson new file mode 100644 index 00000000000..2b6e8703492 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-s3-overview.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"S3 Daily Storage Bucket Size in Bytes [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"f679e680-475f-11e9-a9de-e776805ecfc9\"}],\"bar_color_rules\":[{\"id\":\"f703aff0-475f-11e9-a9de-e776805ecfc9\"}],\"drop_last_bucket\":0,\"gauge_color_rules\":[{\"id\":\"f8388670-475f-11e9-a9de-e776805ecfc9\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.s3_daily_storage.bucket.size.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.s3.bucket.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"20\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"S3 Daily Storage Bucket Size in Bytes [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2dbb8f90-4760-11e9-8062-c98a86cb6f94","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:35.750Z","version":"WzM0MjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"S3 Daily Storage Number of Objects [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"167ea870-4761-11e9-bf81-69a4e579cab5\"}],\"bar_color_rules\":[{\"id\":\"01dad830-4761-11e9-bf81-69a4e579cab5\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.s3_daily_storage.number_of_objects\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.s3.bucket.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"20\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"S3 Daily Storage Number of Objects [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3a3914d0-4761-11e9-8062-c98a86cb6f94","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:35.750Z","version":"WzM0MjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"S3 Request Latency Total Request in ms [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"c0d11b00-4761-11e9-bf81-69a4e579cab5\"}],\"bar_color_rules\":[{\"id\":\"67cb0930-4761-11e9-bf81-69a4e579cab5\"}],\"drop_last_bucket\":0,\"gauge_color_rules\":[{\"id\":\"6eafde10-4761-11e9-bf81-69a4e579cab5\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1d\",\"isModelInvalid\":false,\"pivot_id\":\"aws.s3.bucket.name\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"color_rules\":[{\"id\":\"ac2ef870-4761-11e9-bf81-69a4e579cab5\"}],\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Latency in ms\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.s3_request.latency.total_request.ms\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.s3.bucket.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"S3 Request Latency Total Request in ms [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2b2d58b0-4762-11e9-8062-c98a86cb6f94","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:35.750Z","version":"WzM0MjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"S3 Total Error 4xx [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"59207fe0-4762-11e9-bf81-69a4e579cab5\"}],\"bar_color_rules\":[{\"id\":\"5ad9a190-4762-11e9-bf81-69a4e579cab5\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total # of HTTP 4xx Errors\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.s3_request.errors.4xx\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS S3 Total Error 4xx\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"81d83c70-4762-11e9-8062-c98a86cb6f94","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:35.750Z","version":"WzM0MjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"S3 Total Error 5xx [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"59207fe0-4762-11e9-bf81-69a4e579cab5\"}],\"bar_color_rules\":[{\"id\":\"5ad9a190-4762-11e9-bf81-69a4e579cab5\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total # of HTTP 5xx Errors\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.s3_request.errors.5xx\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS S3 Total Error 5xx\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8b34a100-4762-11e9-8062-c98a86cb6f94","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:35.750Z","version":"WzM0MjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"S3 Filters [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPattern\":\"metricbeat-*\",\"label\":\"region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"aws.s3.bucket.name\",\"id\":\"1549512142947\",\"indexPattern\":\"metricbeat-*\",\"label\":\"s3 bucket name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS S3 Filters\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"6e3285d0-4763-11e9-8062-c98a86cb6f94","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:35.750Z","version":"WzM0MjksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"S3 Total Requests [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"c03c4320-4763-11e9-b811-fd5d24a641d7\"}],\"bar_color_rules\":[{\"id\":\"c7b9fca0-4763-11e9-b811-fd5d24a641d7\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.s3_request.requests.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.s3.bucket.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"S3 Total Requests [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d186fd50-4763-11e9-8062-c98a86cb6f94","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:35.750Z","version":"WzM0MzAsMV0="} +{"attributes":{"description":"Overview of AWS S3 Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":6},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"S3 Daily Storage Bucket Size in Bytes\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":6},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"S3 Daily Storage Number of Objects\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":13},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"S3 Request Latency Total Request in ms\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"4\",\"w\":13,\"x\":24,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"S3 Total Error 4xx\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"5\",\"w\":11,\"x\":37,\"y\":0},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"S3 Total Error 5xx\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"S3 Filters\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":13},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"S3 Total Requests\",\"panelRefName\":\"panel_7\"}]","refreshInterval":{"pause":true,"value":0},"timeFrom":"now-1d","timeRestore":true,"timeTo":"now","title":"[Metricbeat AWS] S3 Overview","version":1},"coreMigrationVersion":"8.0.0","id":"a096b830-4762-11e9-8062-c98a86cb6f94","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"2dbb8f90-4760-11e9-8062-c98a86cb6f94","name":"1:panel_1","type":"visualization"},{"id":"3a3914d0-4761-11e9-8062-c98a86cb6f94","name":"2:panel_2","type":"visualization"},{"id":"2b2d58b0-4762-11e9-8062-c98a86cb6f94","name":"3:panel_3","type":"visualization"},{"id":"81d83c70-4762-11e9-8062-c98a86cb6f94","name":"4:panel_4","type":"visualization"},{"id":"8b34a100-4762-11e9-8062-c98a86cb6f94","name":"5:panel_5","type":"visualization"},{"id":"6e3285d0-4763-11e9-8062-c98a86cb6f94","name":"6:panel_6","type":"visualization"},{"id":"d186fd50-4763-11e9-8062-c98a86cb6f94","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:35.750Z","version":"WzM0MjMsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sns-overview.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sns-overview.json deleted file mode 100644 index 31c6e1df333..00000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sns-overview.json +++ /dev/null @@ -1,1126 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of AWS SNS Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.dataset", - "negate": false, - "params": { - "query": "aws.sns" - }, - "type": "phrase", - "value": "aws.sns" - }, - "query": { - "match": { - "event.dataset": { - "query": "aws.sns", - "type": "phrase" - } - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 5, - "i": "3b9b0cee-b175-4268-8c5b-4ce869a09caf", - "w": 9, - "x": 0, - "y": 0 - }, - "panelIndex": "3b9b0cee-b175-4268-8c5b-4ce869a09caf", - "panelRefName": "panel_0", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "SNS Messages and Notifications" - }, - "gridData": { - "h": 10, - "i": "5f0d72c5-0f28-449f-9c93-3b4074f068f7", - "w": 39, - "x": 9, - "y": 0 - }, - "panelIndex": "5f0d72c5-0f28-449f-9c93-3b4074f068f7", - "panelRefName": "panel_1", - "title": "SNS Messages and Notifications", - "version": "7.3.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 5, - "i": "5a9d5f2f-b075-4892-8188-c6e808a1163d", - "w": 9, - "x": 0, - "y": 5 - }, - "panelIndex": "5a9d5f2f-b075-4892-8188-c6e808a1163d", - "panelRefName": "panel_2", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "SNS Publish Size" - }, - "gridData": { - "h": 10, - "i": "c6d5a54d-61a4-470b-8769-c5b6d6ab6c0f", - "w": 16, - "x": 0, - "y": 10 - }, - "panelIndex": "c6d5a54d-61a4-470b-8769-c5b6d6ab6c0f", - "panelRefName": "panel_3", - "title": "SNS Publish Size", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "SNS Notifications Filtered Out" - }, - "gridData": { - "h": 10, - "i": "0684c25d-34e8-425e-9069-dd8364e6325b", - "w": 16, - "x": 16, - "y": 10 - }, - "panelIndex": "0684c25d-34e8-425e-9069-dd8364e6325b", - "panelRefName": "panel_4", - "title": "SNS Notifications Filtered Out", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "SNS Notifications Filtered Out Invalid Attributes" - }, - "gridData": { - "h": 10, - "i": "72e987da-9a49-4dd4-99c4-4acbc49a0e0b", - "w": 16, - "x": 32, - "y": 10 - }, - "panelIndex": "72e987da-9a49-4dd4-99c4-4acbc49a0e0b", - "panelRefName": "panel_5", - "title": "SNS Notifications Filtered Out Invalid Attributes", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "SNS Notifications Filtered Out No Message Attributes" - }, - "gridData": { - "h": 10, - "i": "923bd4cd-d8fe-47b5-afcf-577bf2c5987c", - "w": 16, - "x": 0, - "y": 20 - }, - "panelIndex": "923bd4cd-d8fe-47b5-afcf-577bf2c5987c", - "panelRefName": "panel_6", - "title": "SNS Notifications Filtered Out No Message Attributes", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "SNS Notifications Failed to Redrive to DLQ" - }, - "gridData": { - "h": 10, - "i": "f176153f-4588-42f9-a7bb-3015909d5610", - "w": 16, - "x": 32, - "y": 20 - }, - "panelIndex": "f176153f-4588-42f9-a7bb-3015909d5610", - "panelRefName": "panel_7", - "title": "SNS Notifications Failed to Redrive to DLQ", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "SNS SMS Success Rate" - }, - "gridData": { - "h": 10, - "i": "f3c5915b-6848-4950-afca-53653d13d6af", - "w": 16, - "x": 0, - "y": 30 - }, - "panelIndex": "f3c5915b-6848-4950-afca-53653d13d6af", - "panelRefName": "panel_8", - "title": "SNS SMS Success Rate", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "SNS Notifications Redriven To DLQ" - }, - "gridData": { - "h": 10, - "i": "3b3cc747-b57c-44e0-a18c-77155072bee4", - "w": 16, - "x": 16, - "y": 20 - }, - "panelIndex": "3b3cc747-b57c-44e0-a18c-77155072bee4", - "panelRefName": "panel_9", - "title": "SNS Notifications Redriven To DLQ", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "SNS SMS Month To Date Spent USD" - }, - "gridData": { - "h": 10, - "i": "ee130150-c1de-465b-8a8e-013f466528bf", - "w": 16, - "x": 16, - "y": 30 - }, - "panelIndex": "ee130150-c1de-465b-8a8e-013f466528bf", - "panelRefName": "panel_10", - "title": "SNS SMS Month To Date Spent USD", - "version": "7.3.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat AWS] SNS Overview", - "version": 1 - }, - "id": "d17b1000-17a4-11ea-8e91-03c7047cbb9d", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "b5308940-7347-11e9-816b-07687310a99a", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "13e624c0-180e-11ea-8e91-03c7047cbb9d", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "59defc90-17a5-11ea-8e91-03c7047cbb9d", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "6f7f7680-180c-11ea-8e91-03c7047cbb9d", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "bf81e030-180e-11ea-8e91-03c7047cbb9d", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "d19a71b0-180e-11ea-8e91-03c7047cbb9d", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "dffa19e0-180e-11ea-8e91-03c7047cbb9d", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "09857a20-180f-11ea-8e91-03c7047cbb9d", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "abdc7480-180b-11ea-8e91-03c7047cbb9d", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "fc0869c0-180e-11ea-8e91-03c7047cbb9d", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "b7f8bf90-180f-11ea-8e91-03c7047cbb9d", - "name": "panel_10", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-12-10T18:06:49.469Z", - "version": "WzU1NywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Region Filter [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.region", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "region", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "AWS Region Filter", - "type": "input_control_vis" - } - }, - "id": "b5308940-7347-11e9-816b-07687310a99a", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-12-05T19:18:14.083Z", - "version": "WzEwNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SNS Messages and Notifications [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "s,s,3", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Messages Published", - "line_width": 1, - "metrics": [ - { - "field": "aws.sns.metrics.NumberOfMessagesPublished.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": "0", - "formatter": "s,s,3", - "id": "204ff2b0-1b77-11ea-9357-231d0e09a8a9", - "label": "Notifications Delivered", - "line_width": 1, - "metrics": [ - { - "field": "aws.sns.metrics.NumberOfNotificationsDelivered.sum", - "id": "204ff2b1-1b77-11ea-9357-231d0e09a8a9", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "terms_order_by": "204ff2b1-1b77-11ea-9357-231d0e09a8a9", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": "0", - "formatter": "s,s,3", - "id": "32e925e0-1b77-11ea-9357-231d0e09a8a9", - "label": "Notifications Failed", - "line_width": 1, - "metrics": [ - { - "field": "aws.sns.metrics.NumberOfNotificationsFailed.sum", - "id": "32e925e1-1b77-11ea-9357-231d0e09a8a9", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "terms_order_by": "32e925e1-1b77-11ea-9357-231d0e09a8a9", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "SNS Messages and Notifications [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "13e624c0-180e-11ea-8e91-03c7047cbb9d", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-12-10T18:02:45.175Z", - "version": "WzU1NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SNS Topic Name Filter [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "aws.dimensions.TopicName", - "id": "1565034367477", - "indexPatternRefName": "control_0_index_pattern", - "label": "topic name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": true - }, - "title": "SNS Topic Name Filter [Metricbeat AWS]", - "type": "input_control_vis" - } - }, - "id": "59defc90-17a5-11ea-8e91-03c7047cbb9d", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-12-05T21:32:44.559Z", - "version": "WzUwMSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SNS Publish Size [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Publish Size", - "line_width": 1, - "metrics": [ - { - "field": "aws.sns.metrics.PublishSize.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "SNS Publish Size [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "6f7f7680-180c-11ea-8e91-03c7047cbb9d", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-12-09T09:06:19.920Z", - "version": "WzU0MywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SNS Notifications Filtered Out [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "s,s,3", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Notifications Filtered Out", - "line_width": 1, - "metrics": [ - { - "field": "aws.sns.metrics.NumberOfNotificationsFilteredOut.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "SNS Notifications Filtered Out [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "bf81e030-180e-11ea-8e91-03c7047cbb9d", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-12-09T09:06:49.279Z", - "version": "WzU0NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SNS Notifications Filtered Out Invalid Attributes [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "s,s,3", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Notifications Filtered Out Invalid Attributes", - "line_width": 1, - "metrics": [ - { - "field": "aws.sns.metrics.NumberOfNotificationsFilteredOut-InvalidAttributes.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "SNS Notifications Filtered Out Invalid Attributes [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "d19a71b0-180e-11ea-8e91-03c7047cbb9d", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-12-09T09:08:00.463Z", - "version": "WzU1MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SNS Notifications Filtered Out No Message Attributes [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "s,s,3", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Notifications Filtered Out No Message Attributes", - "line_width": 1, - "metrics": [ - { - "field": "aws.sns.metrics.NumberOfNotificationsFilteredOut-NoMessageAttributes.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "SNS Notifications Filtered Out No Message Attributes [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "dffa19e0-180e-11ea-8e91-03c7047cbb9d", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-12-09T09:07:34.947Z", - "version": "WzU0OSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SNS Notifications Failed To Redrive To DLQ [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "s,s,3", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Notifications Failed To Redrive To DLQ", - "line_width": 1, - "metrics": [ - { - "field": "aws.sns.metrics.NumberOfNotificationsFailedToRedriveToDlq.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "SNS Notifications Failed To Redrive To DLQ [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "09857a20-180f-11ea-8e91-03c7047cbb9d", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-12-09T09:06:57.756Z", - "version": "WzU0NywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SNS SMS Success Rate [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "SMS Success Rate", - "line_width": 1, - "metrics": [ - { - "field": "aws.sns.metrics.SMSSuccessRate.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "SNS SMS Success Rate [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "abdc7480-180b-11ea-8e91-03c7047cbb9d", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-12-09T09:06:28.900Z", - "version": "WzU0NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SNS Notifications Redriven To DLQ [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "s,s,3", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Notifications Redriven To DLQ", - "line_width": 1, - "metrics": [ - { - "field": "aws.sns.metrics.NumberOfNotificationsRedrivenToDlq.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "SNS Notifications Redriven To DLQ [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "fc0869c0-180e-11ea-8e91-03c7047cbb9d", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-12-09T09:07:41.740Z", - "version": "WzU1MCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SNS SMS Month To Date Spent USD [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "s,s,3", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "SMS Month To Date Spent USD", - "line_width": 1, - "metrics": [ - { - "field": "aws.sns.metrics.SMSMonthToDateSpentUSD.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "SNS SMS Month To Date Spent USD [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "b7f8bf90-180f-11ea-8e91-03c7047cbb9d", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-12-09T09:08:06.137Z", - "version": "WzU1MywxXQ==" - } - ], - "version": "7.3.0" -} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sns-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sns-overview.ndjson new file mode 100644 index 00000000000..83fe9fcaef7 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sns-overview.ndjson @@ -0,0 +1,12 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Region Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Region Filter\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b5308940-7347-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SNS Messages and Notifications [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Messages Published\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.NumberOfMessagesPublished.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"204ff2b0-1b77-11ea-9357-231d0e09a8a9\",\"label\":\"Notifications Delivered\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.NumberOfNotificationsDelivered.sum\",\"id\":\"204ff2b1-1b77-11ea-9357-231d0e09a8a9\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"204ff2b1-1b77-11ea-9357-231d0e09a8a9\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"32e925e0-1b77-11ea-9357-231d0e09a8a9\",\"label\":\"Notifications Failed\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.NumberOfNotificationsFailed.sum\",\"id\":\"32e925e1-1b77-11ea-9357-231d0e09a8a9\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"32e925e1-1b77-11ea-9357-231d0e09a8a9\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SNS Messages and Notifications [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"13e624c0-180e-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0MzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"SNS Topic Name Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"aws.dimensions.TopicName\",\"id\":\"1565034367477\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"topic name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"SNS Topic Name Filter [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"59defc90-17a5-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0MzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SNS Publish Size [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Publish Size\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.PublishSize.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SNS Publish Size [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6f7f7680-180c-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0MzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SNS Notifications Filtered Out [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Notifications Filtered Out\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.NumberOfNotificationsFilteredOut.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SNS Notifications Filtered Out [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bf81e030-180e-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0MzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SNS Notifications Filtered Out Invalid Attributes [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Notifications Filtered Out Invalid Attributes\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.NumberOfNotificationsFilteredOut-InvalidAttributes.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SNS Notifications Filtered Out Invalid Attributes [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d19a71b0-180e-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0MzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SNS Notifications Filtered Out No Message Attributes [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Notifications Filtered Out No Message Attributes\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.NumberOfNotificationsFilteredOut-NoMessageAttributes.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SNS Notifications Filtered Out No Message Attributes [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"dffa19e0-180e-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0MzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SNS Notifications Failed To Redrive To DLQ [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Notifications Failed To Redrive To DLQ\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.NumberOfNotificationsFailedToRedriveToDlq.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SNS Notifications Failed To Redrive To DLQ [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"09857a20-180f-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0MzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SNS SMS Success Rate [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"SMS Success Rate\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.SMSSuccessRate.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SNS SMS Success Rate [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"abdc7480-180b-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0NDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SNS Notifications Redriven To DLQ [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Notifications Redriven To DLQ\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.NumberOfNotificationsRedrivenToDlq.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SNS Notifications Redriven To DLQ [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fc0869c0-180e-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0NDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SNS SMS Month To Date Spent USD [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"SMS Month To Date Spent USD\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.SMSMonthToDateSpentUSD.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SNS SMS Month To Date Spent USD [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b7f8bf90-180f-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0NDIsMV0="} +{"attributes":{"description":"Overview of AWS SNS Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"aws.sns\"}, \"type\": \"phrase\", \"value\": \"aws.sns\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"aws.sns\", \"type\": \"phrase\"}}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"3b9b0cee-b175-4268-8c5b-4ce869a09caf\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"3b9b0cee-b175-4268-8c5b-4ce869a09caf\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3b9b0cee-b175-4268-8c5b-4ce869a09caf\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"5f0d72c5-0f28-449f-9c93-3b4074f068f7\",\"w\":39,\"x\":9,\"y\":0},\"panelIndex\":\"5f0d72c5-0f28-449f-9c93-3b4074f068f7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SNS Messages and Notifications\",\"panelRefName\":\"panel_5f0d72c5-0f28-449f-9c93-3b4074f068f7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"5a9d5f2f-b075-4892-8188-c6e808a1163d\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"5a9d5f2f-b075-4892-8188-c6e808a1163d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5a9d5f2f-b075-4892-8188-c6e808a1163d\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"c6d5a54d-61a4-470b-8769-c5b6d6ab6c0f\",\"w\":16,\"x\":0,\"y\":10},\"panelIndex\":\"c6d5a54d-61a4-470b-8769-c5b6d6ab6c0f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SNS Publish Size\",\"panelRefName\":\"panel_c6d5a54d-61a4-470b-8769-c5b6d6ab6c0f\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"0684c25d-34e8-425e-9069-dd8364e6325b\",\"w\":16,\"x\":16,\"y\":10},\"panelIndex\":\"0684c25d-34e8-425e-9069-dd8364e6325b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SNS Notifications Filtered Out\",\"panelRefName\":\"panel_0684c25d-34e8-425e-9069-dd8364e6325b\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"72e987da-9a49-4dd4-99c4-4acbc49a0e0b\",\"w\":16,\"x\":32,\"y\":10},\"panelIndex\":\"72e987da-9a49-4dd4-99c4-4acbc49a0e0b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SNS Notifications Filtered Out Invalid Attributes\",\"panelRefName\":\"panel_72e987da-9a49-4dd4-99c4-4acbc49a0e0b\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"923bd4cd-d8fe-47b5-afcf-577bf2c5987c\",\"w\":16,\"x\":0,\"y\":20},\"panelIndex\":\"923bd4cd-d8fe-47b5-afcf-577bf2c5987c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SNS Notifications Filtered Out No Message Attributes\",\"panelRefName\":\"panel_923bd4cd-d8fe-47b5-afcf-577bf2c5987c\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"f176153f-4588-42f9-a7bb-3015909d5610\",\"w\":16,\"x\":32,\"y\":20},\"panelIndex\":\"f176153f-4588-42f9-a7bb-3015909d5610\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SNS Notifications Failed to Redrive to DLQ\",\"panelRefName\":\"panel_f176153f-4588-42f9-a7bb-3015909d5610\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"f3c5915b-6848-4950-afca-53653d13d6af\",\"w\":16,\"x\":0,\"y\":30},\"panelIndex\":\"f3c5915b-6848-4950-afca-53653d13d6af\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SNS SMS Success Rate\",\"panelRefName\":\"panel_f3c5915b-6848-4950-afca-53653d13d6af\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3b3cc747-b57c-44e0-a18c-77155072bee4\",\"w\":16,\"x\":16,\"y\":20},\"panelIndex\":\"3b3cc747-b57c-44e0-a18c-77155072bee4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SNS Notifications Redriven To DLQ\",\"panelRefName\":\"panel_3b3cc747-b57c-44e0-a18c-77155072bee4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"ee130150-c1de-465b-8a8e-013f466528bf\",\"w\":16,\"x\":16,\"y\":30},\"panelIndex\":\"ee130150-c1de-465b-8a8e-013f466528bf\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SNS SMS Month To Date Spent USD\",\"panelRefName\":\"panel_ee130150-c1de-465b-8a8e-013f466528bf\"}]","timeRestore":false,"title":"[Metricbeat AWS] SNS Overview","version":1},"coreMigrationVersion":"8.0.0","id":"d17b1000-17a4-11ea-8e91-03c7047cbb9d","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"b5308940-7347-11e9-816b-07687310a99a","name":"3b9b0cee-b175-4268-8c5b-4ce869a09caf:panel_3b9b0cee-b175-4268-8c5b-4ce869a09caf","type":"visualization"},{"id":"13e624c0-180e-11ea-8e91-03c7047cbb9d","name":"5f0d72c5-0f28-449f-9c93-3b4074f068f7:panel_5f0d72c5-0f28-449f-9c93-3b4074f068f7","type":"visualization"},{"id":"59defc90-17a5-11ea-8e91-03c7047cbb9d","name":"5a9d5f2f-b075-4892-8188-c6e808a1163d:panel_5a9d5f2f-b075-4892-8188-c6e808a1163d","type":"visualization"},{"id":"6f7f7680-180c-11ea-8e91-03c7047cbb9d","name":"c6d5a54d-61a4-470b-8769-c5b6d6ab6c0f:panel_c6d5a54d-61a4-470b-8769-c5b6d6ab6c0f","type":"visualization"},{"id":"bf81e030-180e-11ea-8e91-03c7047cbb9d","name":"0684c25d-34e8-425e-9069-dd8364e6325b:panel_0684c25d-34e8-425e-9069-dd8364e6325b","type":"visualization"},{"id":"d19a71b0-180e-11ea-8e91-03c7047cbb9d","name":"72e987da-9a49-4dd4-99c4-4acbc49a0e0b:panel_72e987da-9a49-4dd4-99c4-4acbc49a0e0b","type":"visualization"},{"id":"dffa19e0-180e-11ea-8e91-03c7047cbb9d","name":"923bd4cd-d8fe-47b5-afcf-577bf2c5987c:panel_923bd4cd-d8fe-47b5-afcf-577bf2c5987c","type":"visualization"},{"id":"09857a20-180f-11ea-8e91-03c7047cbb9d","name":"f176153f-4588-42f9-a7bb-3015909d5610:panel_f176153f-4588-42f9-a7bb-3015909d5610","type":"visualization"},{"id":"abdc7480-180b-11ea-8e91-03c7047cbb9d","name":"f3c5915b-6848-4950-afca-53653d13d6af:panel_f3c5915b-6848-4950-afca-53653d13d6af","type":"visualization"},{"id":"fc0869c0-180e-11ea-8e91-03c7047cbb9d","name":"3b3cc747-b57c-44e0-a18c-77155072bee4:panel_3b3cc747-b57c-44e0-a18c-77155072bee4","type":"visualization"},{"id":"b7f8bf90-180f-11ea-8e91-03c7047cbb9d","name":"ee130150-c1de-465b-8a8e-013f466528bf:panel_ee130150-c1de-465b-8a8e-013f466528bf","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0MzEsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sqs-overview.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sqs-overview.json deleted file mode 100644 index 4d352edb3a8..00000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sqs-overview.json +++ /dev/null @@ -1,854 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of AWS SQS Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "SQS Messages Visible" - }, - "gridData": { - "h": 8, - "i": "1", - "w": 12, - "x": 12, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "SQS Messages Visible", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "SQS Oldest Message Age in Seconds" - }, - "gridData": { - "h": 8, - "i": "2", - "w": 12, - "x": 36, - "y": 0 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "SQS Oldest Message Age in Seconds", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "SQS Messages Received" - }, - "gridData": { - "h": 8, - "i": "3", - "w": 24, - "x": 0, - "y": 8 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "SQS Messages Received", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "SQS Messages Deleted" - }, - "gridData": { - "h": 8, - "i": "4", - "w": 24, - "x": 24, - "y": 8 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "title": "SQS Messages Deleted", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "SQS Messages Delayed" - }, - "gridData": { - "h": 8, - "i": "7", - "w": 24, - "x": 0, - "y": 16 - }, - "panelIndex": "7", - "panelRefName": "panel_4", - "title": "SQS Messages Delayed", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "SQS Messages Sent" - }, - "gridData": { - "h": 8, - "i": "8", - "w": 24, - "x": 24, - "y": 16 - }, - "panelIndex": "8", - "panelRefName": "panel_5", - "title": "SQS Messages Sent", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "SQS Filters" - }, - "gridData": { - "h": 8, - "i": "9", - "w": 12, - "x": 0, - "y": 0 - }, - "panelIndex": "9", - "panelRefName": "panel_6", - "title": "SQS Filters", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "SQS Empty Receives" - }, - "gridData": { - "h": 8, - "i": "10", - "w": 12, - "x": 24, - "y": 0 - }, - "panelIndex": "10", - "panelRefName": "panel_7", - "title": "SQS Empty Receives", - "version": "7.6.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat AWS] SQS Overview", - "version": 1 - }, - "id": "234aeda0-43b7-11e9-8697-530f39afc6eb", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "f74eb760-41e8-11e9-b7a0-c99d9d127b61", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "53730d20-437e-11e9-8697-530f39afc6eb", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "1235fe50-41e7-11e9-b7a0-c99d9d127b61", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "be6c4180-41e6-11e9-b7a0-c99d9d127b61", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "dcd31cd0-41e5-11e9-b7a0-c99d9d127b61", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "dd2f2a10-41e6-11e9-b7a0-c99d9d127b61", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "b0afd3e0-43b7-11e9-8697-530f39afc6eb", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "bb82c4d0-6c25-11e9-81bc-7f4cd8b3d892", - "name": "panel_7", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-02-20T15:44:13.514Z", - "version": "Wzc4NywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SQS Messages Visible [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "d5b83c70-41e8-11e9-9e94-11d4d21d3f4b" - } - ], - "bar_color_rules": [ - { - "id": "d2d14920-41e8-11e9-9e94-11d4d21d3f4b" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "gauge_color_rules": [ - { - "id": "d2163680-41e8-11e9-9e94-11d4d21d3f4b" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "SQS Message Visible", - "line_width": 1, - "metrics": [ - { - "field": "aws.sqs.messages.visible", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.sqs.queue.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "SQS Messages Visible [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "f74eb760-41e8-11e9-b7a0-c99d9d127b61", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-20T15:42:09.980Z", - "version": "Wzc3MSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SQS Oldest Message Age in Seconds [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "3e3d3610-437e-11e9-a35d-972620e4f790" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "AWS SQS Oldest Message Age in Seconds", - "line_width": 1, - "metrics": [ - { - "field": "aws.sqs.oldest_message_age.sec", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.sqs.queue.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "SQS Oldest Message Age in Seconds [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "53730d20-437e-11e9-8697-530f39afc6eb", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-20T15:41:06.771Z", - "version": "Wzc2MSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SQS Messages Received [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "1ccb6710-43b3-11e9-8c70-d17a67455a84" - } - ], - "bar_color_rules": [ - { - "id": "57cc0200-43b5-11e9-84e9-a97a63579915" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "field": "aws.sqs.messages.received", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "separate_axis": 0, - "series_drop_last_bucket": 1, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.sqs.queue.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "SQS Messages Received [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "1235fe50-41e7-11e9-b7a0-c99d9d127b61", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-20T15:43:10.687Z", - "version": "Wzc4MywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SQS Messages Deleted [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "field": "aws.sqs.messages.deleted", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.sqs.queue.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "SQS Messages Deleted [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "be6c4180-41e6-11e9-b7a0-c99d9d127b61", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-20T15:43:21.430Z", - "version": "Wzc4NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SQS Messages Delayed [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "field": "aws.sqs.messages.delayed", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.sqs.queue.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "SQS Messages Delayed [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "dcd31cd0-41e5-11e9-b7a0-c99d9d127b61", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-20T15:44:04.576Z", - "version": "Wzc4NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SQS Messages Sent [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "d95adba0-6b8a-11e9-98b0-9b2c3d14a4c1" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "field": "aws.sqs.messages.sent", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.sqs.queue.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "SQS Messages Sent [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "dd2f2a10-41e6-11e9-b7a0-c99d9d127b61", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-20T15:43:31.048Z", - "version": "Wzc4NSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SQS Filters [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.region", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "region", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "aws.sqs.queue.name", - "id": "1549512142947", - "indexPatternRefName": "control_1_index_pattern", - "label": "queue name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "AWS SQS Filters", - "type": "input_control_vis" - } - }, - "id": "b0afd3e0-43b7-11e9-8697-530f39afc6eb", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-02-19T19:41:31.612Z", - "version": "WzIyOSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SQS Empty Receives [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "d95adba0-6b8a-11e9-98b0-9b2c3d14a4c1" - } - ], - "bar_color_rules": [ - { - "id": "a7e8c370-6c25-11e9-9cd1-3bdb0c7db024" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "gauge_color_rules": [ - { - "id": "a778eaa0-6c25-11e9-9cd1-3bdb0c7db024" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "field": "aws.sqs.empty_receives", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "numerator": "", - "percentiles": [ - { - "id": "74323cf0-6c25-11e9-9cd1-3bdb0c7db024", - "mode": "line", - "shade": 0.2, - "value": 50 - } - ], - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.sqs.queue.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "terms_size": "5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "SQS Empty Receives [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "bb82c4d0-6c25-11e9-81bc-7f4cd8b3d892", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-20T15:41:44.620Z", - "version": "Wzc2NSwxXQ==" - } - ], - "version": "7.6.0" -} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sqs-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sqs-overview.ndjson new file mode 100644 index 00000000000..007ccdf0d17 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sqs-overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQS Messages Visible [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"d5b83c70-41e8-11e9-9e94-11d4d21d3f4b\"}],\"bar_color_rules\":[{\"id\":\"d2d14920-41e8-11e9-9e94-11d4d21d3f4b\"}],\"drop_last_bucket\":0,\"gauge_color_rules\":[{\"id\":\"d2163680-41e8-11e9-9e94-11d4d21d3f4b\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"SQS Message Visible\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sqs.messages.visible\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.sqs.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"SQS Messages Visible [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f74eb760-41e8-11e9-b7a0-c99d9d127b61","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:37.811Z","version":"WzM0NDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQS Oldest Message Age in Seconds [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"3e3d3610-437e-11e9-a35d-972620e4f790\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS SQS Oldest Message Age in Seconds\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sqs.oldest_message_age.sec\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.sqs.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"SQS Oldest Message Age in Seconds [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"53730d20-437e-11e9-8697-530f39afc6eb","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:37.811Z","version":"WzM0NDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQS Messages Received [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"1ccb6710-43b3-11e9-8c70-d17a67455a84\"}],\"bar_color_rules\":[{\"id\":\"57cc0200-43b5-11e9-84e9-a97a63579915\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sqs.messages.received\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.sqs.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQS Messages Received [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1235fe50-41e7-11e9-b7a0-c99d9d127b61","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:37.811Z","version":"WzM0NDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQS Messages Deleted [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sqs.messages.deleted\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.sqs.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQS Messages Deleted [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"be6c4180-41e6-11e9-b7a0-c99d9d127b61","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:37.811Z","version":"WzM0NDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQS Messages Delayed [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sqs.messages.delayed\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.sqs.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQS Messages Delayed [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"dcd31cd0-41e5-11e9-b7a0-c99d9d127b61","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:37.811Z","version":"WzM0NDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQS Messages Sent [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"d95adba0-6b8a-11e9-98b0-9b2c3d14a4c1\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sqs.messages.sent\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.sqs.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQS Messages Sent [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"dd2f2a10-41e6-11e9-b7a0-c99d9d127b61","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:37.811Z","version":"WzM0NDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"SQS Filters [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"aws.sqs.queue.name\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"queue name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS SQS Filters\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b0afd3e0-43b7-11e9-8697-530f39afc6eb","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:37.811Z","version":"WzM0NTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQS Empty Receives [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"d95adba0-6b8a-11e9-98b0-9b2c3d14a4c1\"}],\"bar_color_rules\":[{\"id\":\"a7e8c370-6c25-11e9-9cd1-3bdb0c7db024\"}],\"drop_last_bucket\":0,\"gauge_color_rules\":[{\"id\":\"a778eaa0-6c25-11e9-9cd1-3bdb0c7db024\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sqs.empty_receives\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"numerator\":\"\",\"percentiles\":[{\"id\":\"74323cf0-6c25-11e9-9cd1-3bdb0c7db024\",\"mode\":\"line\",\"shade\":0.2,\"value\":50}],\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.sqs.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"SQS Empty Receives [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bb82c4d0-6c25-11e9-81bc-7f4cd8b3d892","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:37.811Z","version":"WzM0NTEsMV0="} +{"attributes":{"description":"Overview of AWS SQS Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"1\",\"w\":12,\"x\":12,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQS Messages Visible\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"2\",\"w\":12,\"x\":36,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQS Oldest Message Age in Seconds\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":8},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQS Messages Received\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":8},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQS Messages Deleted\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"7\",\"w\":24,\"x\":0,\"y\":16},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQS Messages Delayed\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":16},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQS Messages Sent\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"9\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQS Filters\",\"panelRefName\":\"panel_9\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"10\",\"w\":12,\"x\":24,\"y\":0},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQS Empty Receives\",\"panelRefName\":\"panel_10\"}]","timeRestore":false,"title":"[Metricbeat AWS] SQS Overview","version":1},"coreMigrationVersion":"8.0.0","id":"234aeda0-43b7-11e9-8697-530f39afc6eb","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"f74eb760-41e8-11e9-b7a0-c99d9d127b61","name":"1:panel_1","type":"visualization"},{"id":"53730d20-437e-11e9-8697-530f39afc6eb","name":"2:panel_2","type":"visualization"},{"id":"1235fe50-41e7-11e9-b7a0-c99d9d127b61","name":"3:panel_3","type":"visualization"},{"id":"be6c4180-41e6-11e9-b7a0-c99d9d127b61","name":"4:panel_4","type":"visualization"},{"id":"dcd31cd0-41e5-11e9-b7a0-c99d9d127b61","name":"7:panel_7","type":"visualization"},{"id":"dd2f2a10-41e6-11e9-b7a0-c99d9d127b61","name":"8:panel_8","type":"visualization"},{"id":"b0afd3e0-43b7-11e9-8697-530f39afc6eb","name":"9:panel_9","type":"visualization"},{"id":"bb82c4d0-6c25-11e9-81bc-7f4cd8b3d892","name":"10:panel_10","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:37.811Z","version":"WzM0NDMsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-trasitgateway-overview.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-trasitgateway-overview.json deleted file mode 100644 index 4e7169e5f43..00000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-trasitgateway-overview.json +++ /dev/null @@ -1,853 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of AWS Transit Gateway Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "filters" - }, - "gridData": { - "h": 5, - "i": "af1453d8-04d3-4b44-a3b0-138111255a23", - "w": 48, - "x": 0, - "y": 0 - }, - "panelIndex": "af1453d8-04d3-4b44-a3b0-138111255a23", - "panelRefName": "panel_0", - "title": "filters", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Bytes In" - }, - "gridData": { - "h": 12, - "i": "14555108-559d-4c07-b240-6e6b14254f16", - "w": 24, - "x": 0, - "y": 5 - }, - "panelIndex": "14555108-559d-4c07-b240-6e6b14254f16", - "panelRefName": "panel_1", - "title": "Bytes In", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Packets In" - }, - "gridData": { - "h": 12, - "i": "9c605367-60e3-4e9c-8036-a6191dbafe4a", - "w": 24, - "x": 24, - "y": 5 - }, - "panelIndex": "9c605367-60e3-4e9c-8036-a6191dbafe4a", - "panelRefName": "panel_2", - "title": "Packets In", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Bytes Out" - }, - "gridData": { - "h": 12, - "i": "271558e6-b208-4e2c-abfb-0a6b2dbb0c66", - "w": 24, - "x": 0, - "y": 17 - }, - "panelIndex": "271558e6-b208-4e2c-abfb-0a6b2dbb0c66", - "panelRefName": "panel_3", - "title": "Bytes Out", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Packets Out" - }, - "gridData": { - "h": 12, - "i": "41002ab1-845b-469e-9283-8a46a90e4662", - "w": 24, - "x": 24, - "y": 17 - }, - "panelIndex": "41002ab1-845b-469e-9283-8a46a90e4662", - "panelRefName": "panel_4", - "title": "Packets Out", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Bytes Dropped - no route" - }, - "gridData": { - "h": 12, - "i": "b141f90b-739e-46f3-83c9-9c4661183837", - "w": 24, - "x": 0, - "y": 29 - }, - "panelIndex": "b141f90b-739e-46f3-83c9-9c4661183837", - "panelRefName": "panel_5", - "title": "Bytes Dropped - no route", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Packets Dropped - no route" - }, - "gridData": { - "h": 12, - "i": "c6a76f92-248b-4cae-a03f-7d34d58098ae", - "w": 24, - "x": 24, - "y": 29 - }, - "panelIndex": "c6a76f92-248b-4cae-a03f-7d34d58098ae", - "panelRefName": "panel_6", - "title": "Packets Dropped - no route", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Bytes Dropped - black hole" - }, - "gridData": { - "h": 12, - "i": "1d08d3b8-3bd7-4f90-854d-be08cb119273", - "w": 24, - "x": 0, - "y": 41 - }, - "panelIndex": "1d08d3b8-3bd7-4f90-854d-be08cb119273", - "panelRefName": "panel_7", - "title": "Bytes Dropped - black hole", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Packets Dropped - black hole" - }, - "gridData": { - "h": 12, - "i": "40e82e50-b30c-40eb-bbee-9bbfc3d3311f", - "w": 24, - "x": 24, - "y": 41 - }, - "panelIndex": "40e82e50-b30c-40eb-bbee-9bbfc3d3311f", - "panelRefName": "panel_8", - "title": "Packets Dropped - black hole", - "version": "7.6.1" - } - ], - "timeRestore": false, - "title": "[Metricbeat AWS] TransitGateway Overview", - "version": 1 - }, - "id": "0eb5a6a0-694f-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "415fed40-694f-11ea-b0ac-95d4ecb1fecd", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "cd6419c0-6949-11ea-b0ac-95d4ecb1fecd", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "0a36b590-694c-11ea-b0ac-95d4ecb1fecd", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "dc5f65b0-6949-11ea-b0ac-95d4ecb1fecd", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "10e0f270-694c-11ea-b0ac-95d4ecb1fecd", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "01ed5990-694a-11ea-b0ac-95d4ecb1fecd", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "007ceec0-694c-11ea-b0ac-95d4ecb1fecd", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "f7c17000-6949-11ea-b0ac-95d4ecb1fecd", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "c1db9b80-694b-11ea-b0ac-95d4ecb1fecd", - "name": "panel_8", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-03-18T19:39:04.715Z", - "version": "Wzk0MSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "TransitGateway Filters [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.account.name", - "id": "1565034367477", - "indexPatternRefName": "control_0_index_pattern", - "label": "account name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "cloud.region", - "id": "1584478324642", - "indexPatternRefName": "control_1_index_pattern", - "label": "region", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "aws.dimensions.TransitGateway", - "id": "1584479118709", - "indexPatternRefName": "control_2_index_pattern", - "label": "transit gateway", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": true - }, - "title": "TransitGateway Filters [Metricbeat AWS]", - "type": "input_control_vis" - } - }, - "id": "415fed40-694f-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-03-18T19:32:50.836Z", - "version": "Wzk0MCwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Transit Gateway Bytes In [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.transitgateway.metrics.BytesIn.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.TransitGateway", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Transit Gateway Bytes In [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "cd6419c0-6949-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-18T18:53:48.764Z", - "version": "WzkyNCwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Transit Gateway Packets In [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.transitgateway.metrics.PacketsIn.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.TransitGateway", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Transit Gateway Packets In [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "0a36b590-694c-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-18T19:09:49.801Z", - "version": "WzkzNCwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Transit Gateway Bytes Out [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.transitgateway.metrics.BytesOut.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.TransitGateway", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Transit Gateway Bytes Out [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "dc5f65b0-6949-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-18T18:54:13.899Z", - "version": "WzkyNSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Transit Gateway Packets Out [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.transitgateway.metrics.PacketsOut.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.TransitGateway", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Transit Gateway Packets Out [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "10e0f270-694c-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-18T19:10:00.983Z", - "version": "WzkzNSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Transit Gateway Bytes Drop Count No Route [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.transitgateway.metrics.BytesDropCountNoRoute.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.TransitGateway", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Transit Gateway Bytes Drop Count No Route [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "01ed5990-694a-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-18T18:55:16.905Z", - "version": "WzkyNywyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Transit Gateway Packets Drop Count No Route [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.transitgateway.metrics.PacketDropCountNoRoute.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.TransitGateway", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Transit Gateway Packets Drop Count No Route [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "007ceec0-694c-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-18T19:09:33.484Z", - "version": "WzkzMywyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Transit Gateway Bytes Drop Count Blackhole [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.transitgateway.metrics.BytesDropCountBlackhole.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.TransitGateway", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Transit Gateway Bytes Drop Count Blackhole [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "f7c17000-6949-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-18T18:54:59.840Z", - "version": "WzkyNiwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Transit Gateway Packets Drop Count Blackhole [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.transitgateway.metrics.PacketDropCountBlackhole.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.TransitGateway", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Transit Gateway Packets Drop Count Blackhole [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "c1db9b80-694b-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-18T19:07:48.408Z", - "version": "WzkzMiwyXQ==" - } - ], - "version": "7.6.1" -} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-trasitgateway-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-trasitgateway-overview.ndjson new file mode 100644 index 00000000000..83eb4bd0831 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-trasitgateway-overview.ndjson @@ -0,0 +1,10 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"TransitGateway Filters [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.account.name\",\"id\":\"1565034367477\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"account name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"cloud.region\",\"id\":\"1584478324642\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"aws.dimensions.TransitGateway\",\"id\":\"1584479118709\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"transit gateway\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"TransitGateway Filters [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"415fed40-694f-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Transit Gateway Bytes In [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.transitgateway.metrics.BytesIn.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TransitGateway\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transit Gateway Bytes In [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"cd6419c0-6949-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Transit Gateway Packets In [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.transitgateway.metrics.PacketsIn.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TransitGateway\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transit Gateway Packets In [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0a36b590-694c-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Transit Gateway Bytes Out [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.transitgateway.metrics.BytesOut.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TransitGateway\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transit Gateway Bytes Out [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"dc5f65b0-6949-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Transit Gateway Packets Out [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.transitgateway.metrics.PacketsOut.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TransitGateway\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transit Gateway Packets Out [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"10e0f270-694c-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Transit Gateway Bytes Drop Count No Route [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.transitgateway.metrics.BytesDropCountNoRoute.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TransitGateway\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transit Gateway Bytes Drop Count No Route [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"01ed5990-694a-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Transit Gateway Packets Drop Count No Route [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.transitgateway.metrics.PacketDropCountNoRoute.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TransitGateway\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transit Gateway Packets Drop Count No Route [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"007ceec0-694c-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Transit Gateway Bytes Drop Count Blackhole [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.transitgateway.metrics.BytesDropCountBlackhole.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TransitGateway\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transit Gateway Bytes Drop Count Blackhole [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f7c17000-6949-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Transit Gateway Packets Drop Count Blackhole [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.transitgateway.metrics.PacketDropCountBlackhole.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TransitGateway\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transit Gateway Packets Drop Count Blackhole [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c1db9b80-694b-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NjEsMV0="} +{"attributes":{"description":"Overview of AWS Transit Gateway Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"af1453d8-04d3-4b44-a3b0-138111255a23\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"af1453d8-04d3-4b44-a3b0-138111255a23\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"filters\",\"panelRefName\":\"panel_af1453d8-04d3-4b44-a3b0-138111255a23\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"14555108-559d-4c07-b240-6e6b14254f16\",\"w\":24,\"x\":0,\"y\":5},\"panelIndex\":\"14555108-559d-4c07-b240-6e6b14254f16\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes In\",\"panelRefName\":\"panel_14555108-559d-4c07-b240-6e6b14254f16\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"9c605367-60e3-4e9c-8036-a6191dbafe4a\",\"w\":24,\"x\":24,\"y\":5},\"panelIndex\":\"9c605367-60e3-4e9c-8036-a6191dbafe4a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets In\",\"panelRefName\":\"panel_9c605367-60e3-4e9c-8036-a6191dbafe4a\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"271558e6-b208-4e2c-abfb-0a6b2dbb0c66\",\"w\":24,\"x\":0,\"y\":17},\"panelIndex\":\"271558e6-b208-4e2c-abfb-0a6b2dbb0c66\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes Out\",\"panelRefName\":\"panel_271558e6-b208-4e2c-abfb-0a6b2dbb0c66\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"41002ab1-845b-469e-9283-8a46a90e4662\",\"w\":24,\"x\":24,\"y\":17},\"panelIndex\":\"41002ab1-845b-469e-9283-8a46a90e4662\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets Out\",\"panelRefName\":\"panel_41002ab1-845b-469e-9283-8a46a90e4662\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"b141f90b-739e-46f3-83c9-9c4661183837\",\"w\":24,\"x\":0,\"y\":29},\"panelIndex\":\"b141f90b-739e-46f3-83c9-9c4661183837\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes Dropped - no route\",\"panelRefName\":\"panel_b141f90b-739e-46f3-83c9-9c4661183837\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"c6a76f92-248b-4cae-a03f-7d34d58098ae\",\"w\":24,\"x\":24,\"y\":29},\"panelIndex\":\"c6a76f92-248b-4cae-a03f-7d34d58098ae\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets Dropped - no route\",\"panelRefName\":\"panel_c6a76f92-248b-4cae-a03f-7d34d58098ae\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"1d08d3b8-3bd7-4f90-854d-be08cb119273\",\"w\":24,\"x\":0,\"y\":41},\"panelIndex\":\"1d08d3b8-3bd7-4f90-854d-be08cb119273\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes Dropped - black hole\",\"panelRefName\":\"panel_1d08d3b8-3bd7-4f90-854d-be08cb119273\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"40e82e50-b30c-40eb-bbee-9bbfc3d3311f\",\"w\":24,\"x\":24,\"y\":41},\"panelIndex\":\"40e82e50-b30c-40eb-bbee-9bbfc3d3311f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets Dropped - black hole\",\"panelRefName\":\"panel_40e82e50-b30c-40eb-bbee-9bbfc3d3311f\"}]","timeRestore":false,"title":"[Metricbeat AWS] TransitGateway Overview","version":1},"coreMigrationVersion":"8.0.0","id":"0eb5a6a0-694f-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"415fed40-694f-11ea-b0ac-95d4ecb1fecd","name":"af1453d8-04d3-4b44-a3b0-138111255a23:panel_af1453d8-04d3-4b44-a3b0-138111255a23","type":"visualization"},{"id":"cd6419c0-6949-11ea-b0ac-95d4ecb1fecd","name":"14555108-559d-4c07-b240-6e6b14254f16:panel_14555108-559d-4c07-b240-6e6b14254f16","type":"visualization"},{"id":"0a36b590-694c-11ea-b0ac-95d4ecb1fecd","name":"9c605367-60e3-4e9c-8036-a6191dbafe4a:panel_9c605367-60e3-4e9c-8036-a6191dbafe4a","type":"visualization"},{"id":"dc5f65b0-6949-11ea-b0ac-95d4ecb1fecd","name":"271558e6-b208-4e2c-abfb-0a6b2dbb0c66:panel_271558e6-b208-4e2c-abfb-0a6b2dbb0c66","type":"visualization"},{"id":"10e0f270-694c-11ea-b0ac-95d4ecb1fecd","name":"41002ab1-845b-469e-9283-8a46a90e4662:panel_41002ab1-845b-469e-9283-8a46a90e4662","type":"visualization"},{"id":"01ed5990-694a-11ea-b0ac-95d4ecb1fecd","name":"b141f90b-739e-46f3-83c9-9c4661183837:panel_b141f90b-739e-46f3-83c9-9c4661183837","type":"visualization"},{"id":"007ceec0-694c-11ea-b0ac-95d4ecb1fecd","name":"c6a76f92-248b-4cae-a03f-7d34d58098ae:panel_c6a76f92-248b-4cae-a03f-7d34d58098ae","type":"visualization"},{"id":"f7c17000-6949-11ea-b0ac-95d4ecb1fecd","name":"1d08d3b8-3bd7-4f90-854d-be08cb119273:panel_1d08d3b8-3bd7-4f90-854d-be08cb119273","type":"visualization"},{"id":"c1db9b80-694b-11ea-b0ac-95d4ecb1fecd","name":"40e82e50-b30c-40eb-bbee-9bbfc3d3311f:panel_40e82e50-b30c-40eb-bbee-9bbfc3d3311f","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NTIsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-usage-overview.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-usage-overview.json deleted file mode 100644 index 2f96fae244b..00000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-usage-overview.json +++ /dev/null @@ -1,823 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of AWS Usage Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "AWS Region Filter" - }, - "gridData": { - "h": 5, - "i": "2ea7bd59-d748-4e4a-889d-f7e2ca1cfe36", - "w": 9, - "x": 0, - "y": 0 - }, - "panelIndex": "2ea7bd59-d748-4e4a-889d-f7e2ca1cfe36", - "panelRefName": "panel_0", - "title": "Region Filter", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "Usage Resource Count" - }, - "gridData": { - "h": 15, - "i": "00c2b1f6-3367-4b6f-ac01-7e48b76c262a", - "w": 20, - "x": 9, - "y": 0 - }, - "panelIndex": "00c2b1f6-3367-4b6f-ac01-7e48b76c262a", - "panelRefName": "panel_1", - "title": "Usage Resource Count", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "Usage API Call Count" - }, - "gridData": { - "h": 15, - "i": "fecfe5d4-ef1c-4f38-954a-a2506d72bc5b", - "w": 18, - "x": 30, - "y": 0 - }, - "panelIndex": "fecfe5d4-ef1c-4f38-954a-a2506d72bc5b", - "panelRefName": "panel_2", - "title": "Usage API Call Count", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "AWS Account Filter" - }, - "gridData": { - "h": 5, - "i": "69ce7461-36ad-4e7c-b541-c6a1601bf089", - "w": 9, - "x": 0, - "y": 5 - }, - "panelIndex": "69ce7461-36ad-4e7c-b541-c6a1601bf089", - "panelRefName": "panel_3", - "title": "AWS Account Filter", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "AWS Service Filter" - }, - "gridData": { - "h": 5, - "i": "62e86407-6ae3-47d3-9136-dd61bdf3267a", - "w": 9, - "x": 0, - "y": 10 - }, - "panelIndex": "62e86407-6ae3-47d3-9136-dd61bdf3267a", - "panelRefName": "panel_4", - "title": "AWS Service Filter", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "Usage Resource Count Per Service" - }, - "gridData": { - "h": 10, - "i": "196a044c-5c20-4417-8aa0-f60fc502e46c", - "w": 48, - "x": 0, - "y": 15 - }, - "panelIndex": "196a044c-5c20-4417-8aa0-f60fc502e46c", - "panelRefName": "panel_5", - "title": "Usage Resource Count Per Service", - "version": "7.3.0" - }, - { - "embeddableConfig": { - "title": "Usage API Call Count Per Service" - }, - "gridData": { - "h": 12, - "i": "022941b7-01a1-4570-86e9-d03451d4e102", - "w": 48, - "x": 0, - "y": 25 - }, - "panelIndex": "022941b7-01a1-4570-86e9-d03451d4e102", - "panelRefName": "panel_6", - "title": "Usage API Call Count Per Service", - "version": "7.3.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat AWS] Usage Overview", - "version": 1 - }, - "id": "917a07b0-178e-11ea-8650-fb606deb5be4", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "b5308940-7347-11e9-816b-07687310a99a", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "9202d1a0-178c-11ea-8650-fb606deb5be4", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "681aab60-178c-11ea-8650-fb606deb5be4", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "deab0260-2981-11e9-86eb-a3a07a77f530", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "2929edb0-178e-11ea-8650-fb606deb5be4", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "59e2e110-178d-11ea-8650-fb606deb5be4", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "75ebfda0-1789-11ea-8650-fb606deb5be4", - "name": "panel_6", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-12-05T18:44:44.105Z", - "version": "WzU5NCw0XQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "AWS Region Filter [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.region", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "region name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "AWS Region Filter", - "type": "input_control_vis" - } - }, - "id": "b5308940-7347-11e9-816b-07687310a99a", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-12-02T16:41:47.384Z", - "version": "WzE1MiwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Usage ResourceCount [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "aws.usage.metrics.ResourceCount.sum" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "filters": [ - { - "input": { - "language": "kuery", - "query": "aws.dimensions.Type : \"Resource\" " - }, - "label": "" - } - ], - "row": true - }, - "schema": "split", - "type": "filters" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "aws.dimensions.Service", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": true, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "field": "aws.dimensions.Resource", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": true, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 4, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metric": { - "accessor": 3, - "aggType": "sum", - "format": { - "id": "number" - }, - "params": {} - }, - "splitRow": [ - { - "accessor": 0, - "aggType": "filters", - "format": {}, - "params": {} - } - ] - }, - "isDonut": true, - "labels": { - "last_level": false, - "show": true, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Usage ResourceCount [Metricbeat AWS]", - "type": "pie" - } - }, - "id": "9202d1a0-178c-11ea-8650-fb606deb5be4", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-12-05T18:25:10.073Z", - "version": "WzU4Niw0XQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Usage CallCount [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "aws.usage.metrics.CallCount.sum" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "filters": [ - { - "input": { - "language": "kuery", - "query": "aws.dimensions.Type : \"API\" " - }, - "label": "" - } - ], - "row": true - }, - "schema": "split", - "type": "filters" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "aws.dimensions.Service", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": true, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "field": "aws.dimensions.Resource", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": true, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 4, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metric": { - "accessor": 3, - "aggType": "sum", - "format": { - "id": "number" - }, - "params": {} - }, - "splitRow": [ - { - "accessor": 0, - "aggType": "filters", - "format": {}, - "params": {} - } - ] - }, - "isDonut": true, - "labels": { - "last_level": false, - "show": true, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Usage CallCount [Metricbeat AWS]", - "type": "pie" - } - }, - "id": "681aab60-178c-11ea-8650-fb606deb5be4", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-12-05T18:25:30.221Z", - "version": "WzU4Nyw0XQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "AWS Account Filter [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.account.name", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "account name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "AWS Account Filter [Metricbeat AWS]", - "type": "input_control_vis" - } - }, - "id": "deab0260-2981-11e9-86eb-a3a07a77f530", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-12-02T18:50:52.450Z", - "version": "WzU1MywyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "AWS Service Filter [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "aws.dimensions.Service", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "service name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "AWS Service Filter [Metricbeat AWS]", - "type": "input_control_vis" - } - }, - "id": "2929edb0-178e-11ea-8650-fb606deb5be4", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-12-05T18:37:35.326Z", - "version": "WzU5MSw0XQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Usage Resource Count Per Service [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "aws.dimensions.Type : \"Resource\" " - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.usage.metrics.ResourceCount.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": "4", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.Service", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Usage Resource Count Per Service [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "59e2e110-178d-11ea-8650-fb606deb5be4", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-12-05T18:30:45.409Z", - "version": "WzU4OCw0XQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Usage Call Count Per Service [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "aws.dimensions.Type : \"API\" " - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.usage.metrics.CallCount.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": "4", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.Service", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Usage Call Count Per Service [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "75ebfda0-1789-11ea-8650-fb606deb5be4", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-12-05T18:31:35.904Z", - "version": "WzU4OSw0XQ==" - } - ], - "version": "7.3.0" -} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-usage-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-usage-overview.ndjson new file mode 100644 index 00000000000..67ce02b9336 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-usage-overview.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Region Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Region Filter\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b5308940-7347-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Usage ResourceCount [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"aws.usage.metrics.ResourceCount.sum\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"aws.dimensions.Type : \\\"Resource\\\" \"},\"label\":\"\"}],\"row\":true},\"schema\":\"split\",\"type\":\"filters\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"aws.dimensions.Service\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"aws.dimensions.Resource\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":4,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":3,\"aggType\":\"sum\",\"format\":{\"id\":\"number\"},\"params\":{}},\"splitRow\":[{\"accessor\":0,\"aggType\":\"filters\",\"format\":{},\"params\":{}}]},\"isDonut\":true,\"labels\":{\"last_level\":false,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Usage ResourceCount [Metricbeat AWS]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"9202d1a0-178c-11ea-8650-fb606deb5be4","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Usage CallCount [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"aws.usage.metrics.CallCount.sum\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"aws.dimensions.Type : \\\"API\\\" \"},\"label\":\"\"}],\"row\":true},\"schema\":\"split\",\"type\":\"filters\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"aws.dimensions.Service\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"aws.dimensions.Resource\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":4,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":3,\"aggType\":\"sum\",\"format\":{\"id\":\"number\"},\"params\":{}},\"splitRow\":[{\"accessor\":0,\"aggType\":\"filters\",\"format\":{},\"params\":{}}]},\"isDonut\":true,\"labels\":{\"last_level\":false,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Usage CallCount [Metricbeat AWS]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"681aab60-178c-11ea-8650-fb606deb5be4","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Account Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.account.name\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"account name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Account Filter [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"deab0260-2981-11e9-86eb-a3a07a77f530","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Service Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"aws.dimensions.Service\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"service name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Service Filter [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"2929edb0-178e-11ea-8650-fb606deb5be4","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Usage Resource Count Per Service [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"aws.dimensions.Type : \\\"Resource\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.usage.metrics.ResourceCount.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.Service\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Usage Resource Count Per Service [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"59e2e110-178d-11ea-8650-fb606deb5be4","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Usage Call Count Per Service [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"aws.dimensions.Type : \\\"API\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.usage.metrics.CallCount.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.Service\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Usage Call Count Per Service [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"75ebfda0-1789-11ea-8650-fb606deb5be4","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjksMV0="} +{"attributes":{"description":"Overview of AWS Usage Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"2ea7bd59-d748-4e4a-889d-f7e2ca1cfe36\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"2ea7bd59-d748-4e4a-889d-f7e2ca1cfe36\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"AWS Region Filter\",\"panelRefName\":\"panel_2ea7bd59-d748-4e4a-889d-f7e2ca1cfe36\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"00c2b1f6-3367-4b6f-ac01-7e48b76c262a\",\"w\":20,\"x\":9,\"y\":0},\"panelIndex\":\"00c2b1f6-3367-4b6f-ac01-7e48b76c262a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Usage Resource Count\",\"panelRefName\":\"panel_00c2b1f6-3367-4b6f-ac01-7e48b76c262a\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"fecfe5d4-ef1c-4f38-954a-a2506d72bc5b\",\"w\":18,\"x\":30,\"y\":0},\"panelIndex\":\"fecfe5d4-ef1c-4f38-954a-a2506d72bc5b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Usage API Call Count\",\"panelRefName\":\"panel_fecfe5d4-ef1c-4f38-954a-a2506d72bc5b\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"69ce7461-36ad-4e7c-b541-c6a1601bf089\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"69ce7461-36ad-4e7c-b541-c6a1601bf089\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"AWS Account Filter\",\"panelRefName\":\"panel_69ce7461-36ad-4e7c-b541-c6a1601bf089\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"62e86407-6ae3-47d3-9136-dd61bdf3267a\",\"w\":9,\"x\":0,\"y\":10},\"panelIndex\":\"62e86407-6ae3-47d3-9136-dd61bdf3267a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"AWS Service Filter\",\"panelRefName\":\"panel_62e86407-6ae3-47d3-9136-dd61bdf3267a\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"196a044c-5c20-4417-8aa0-f60fc502e46c\",\"w\":48,\"x\":0,\"y\":15},\"panelIndex\":\"196a044c-5c20-4417-8aa0-f60fc502e46c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Usage Resource Count Per Service\",\"panelRefName\":\"panel_196a044c-5c20-4417-8aa0-f60fc502e46c\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"022941b7-01a1-4570-86e9-d03451d4e102\",\"w\":48,\"x\":0,\"y\":25},\"panelIndex\":\"022941b7-01a1-4570-86e9-d03451d4e102\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Usage API Call Count Per Service\",\"panelRefName\":\"panel_022941b7-01a1-4570-86e9-d03451d4e102\"}]","timeRestore":false,"title":"[Metricbeat AWS] Usage Overview","version":1},"coreMigrationVersion":"8.0.0","id":"917a07b0-178e-11ea-8650-fb606deb5be4","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"b5308940-7347-11e9-816b-07687310a99a","name":"2ea7bd59-d748-4e4a-889d-f7e2ca1cfe36:panel_2ea7bd59-d748-4e4a-889d-f7e2ca1cfe36","type":"visualization"},{"id":"9202d1a0-178c-11ea-8650-fb606deb5be4","name":"00c2b1f6-3367-4b6f-ac01-7e48b76c262a:panel_00c2b1f6-3367-4b6f-ac01-7e48b76c262a","type":"visualization"},{"id":"681aab60-178c-11ea-8650-fb606deb5be4","name":"fecfe5d4-ef1c-4f38-954a-a2506d72bc5b:panel_fecfe5d4-ef1c-4f38-954a-a2506d72bc5b","type":"visualization"},{"id":"deab0260-2981-11e9-86eb-a3a07a77f530","name":"69ce7461-36ad-4e7c-b541-c6a1601bf089:panel_69ce7461-36ad-4e7c-b541-c6a1601bf089","type":"visualization"},{"id":"2929edb0-178e-11ea-8650-fb606deb5be4","name":"62e86407-6ae3-47d3-9136-dd61bdf3267a:panel_62e86407-6ae3-47d3-9136-dd61bdf3267a","type":"visualization"},{"id":"59e2e110-178d-11ea-8650-fb606deb5be4","name":"196a044c-5c20-4417-8aa0-f60fc502e46c:panel_196a044c-5c20-4417-8aa0-f60fc502e46c","type":"visualization"},{"id":"75ebfda0-1789-11ea-8650-fb606deb5be4","name":"022941b7-01a1-4570-86e9-d03451d4e102:panel_022941b7-01a1-4570-86e9-d03451d4e102","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjIsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-vpn-overview.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-vpn-overview.json deleted file mode 100644 index b7d06306f8a..00000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-vpn-overview.json +++ /dev/null @@ -1,719 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of AWS VPN Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Filters" - }, - "gridData": { - "h": 14, - "i": "8ef52400-6eac-417b-936e-dce159dd5e89", - "w": 8, - "x": 0, - "y": 0 - }, - "panelIndex": "8ef52400-6eac-417b-936e-dce159dd5e89", - "panelRefName": "panel_0", - "title": "Filters", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Tunnel State Per VPN ID" - }, - "gridData": { - "h": 14, - "i": "eb78041b-afc4-458e-af92-0951b1d0cadd", - "w": 20, - "x": 8, - "y": 0 - }, - "panelIndex": "eb78041b-afc4-458e-af92-0951b1d0cadd", - "panelRefName": "panel_1", - "title": "Tunnel State Per VPN ID", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Tunnel State Per Tunnel IP" - }, - "gridData": { - "h": 14, - "i": "39a9be08-98c6-470c-b76b-312a57e11e2d", - "w": 20, - "x": 28, - "y": 0 - }, - "panelIndex": "39a9be08-98c6-470c-b76b-312a57e11e2d", - "panelRefName": "panel_2", - "title": "Tunnel State Per Tunnel IP", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Tunnel Data In Per VPN ID" - }, - "gridData": { - "h": 15, - "i": "5c8122a2-fbf0-4404-918e-249bf6fd7f07", - "w": 24, - "x": 0, - "y": 14 - }, - "panelIndex": "5c8122a2-fbf0-4404-918e-249bf6fd7f07", - "panelRefName": "panel_3", - "title": "Tunnel Data In Per VPN ID", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Tunnel Data In Per Tunnel IP" - }, - "gridData": { - "h": 15, - "i": "8ecd0f73-146f-4aed-bfd1-5c236c5dfe8c", - "w": 24, - "x": 24, - "y": 14 - }, - "panelIndex": "8ecd0f73-146f-4aed-bfd1-5c236c5dfe8c", - "panelRefName": "panel_4", - "title": "Tunnel Data In Per Tunnel IP", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Tunnel Data Out Per VPN ID" - }, - "gridData": { - "h": 15, - "i": "eb10ea7d-ffc9-4c51-9386-6f63be6322aa", - "w": 24, - "x": 0, - "y": 29 - }, - "panelIndex": "eb10ea7d-ffc9-4c51-9386-6f63be6322aa", - "panelRefName": "panel_5", - "title": "Tunnel Data Out Per VPN ID", - "version": "7.6.1" - }, - { - "embeddableConfig": { - "title": "Tunnel Data Out Per Tunnel IP" - }, - "gridData": { - "h": 15, - "i": "3b01a7e9-eb8b-43bb-977d-53d8bc9d21b7", - "w": 24, - "x": 24, - "y": 29 - }, - "panelIndex": "3b01a7e9-eb8b-43bb-977d-53d8bc9d21b7", - "panelRefName": "panel_6", - "title": "Tunnel Data Out Per Tunnel IP", - "version": "7.6.1" - } - ], - "timeRestore": false, - "title": "[Metricbeat AWS] VPN Overview", - "version": 1 - }, - "id": "67c9f900-693e-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "fcfc8d80-693e-11ea-b0ac-95d4ecb1fecd", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "142ad600-693b-11ea-b0ac-95d4ecb1fecd", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "58f5a3c0-6943-11ea-b0ac-95d4ecb1fecd", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "2ee7f420-6943-11ea-b0ac-95d4ecb1fecd", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "ea9e3d40-693a-11ea-b0ac-95d4ecb1fecd", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "26b73e50-6943-11ea-b0ac-95d4ecb1fecd", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "f58f99b0-693a-11ea-b0ac-95d4ecb1fecd", - "name": "panel_6", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-03-18T18:21:32.094Z", - "version": "WzkxNSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VPN Filters [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.account.name", - "id": "1565034367477", - "indexPatternRefName": "control_0_index_pattern", - "label": "account name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "cloud.region", - "id": "1584478324642", - "indexPatternRefName": "control_1_index_pattern", - "label": "region", - "options": { - "dynamicOptions": false, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "aws.dimensions.VpnId", - "id": "1584552913938", - "indexPatternRefName": "control_2_index_pattern", - "label": "VPN ID", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "aws.dimensions.TunnelIpAddress", - "id": "1584552958445", - "indexPatternRefName": "control_3_index_pattern", - "label": "Tunnel IP", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": true - }, - "title": "VPN Filters [Metricbeat AWS]", - "type": "input_control_vis" - } - }, - "id": "fcfc8d80-693e-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_3_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-03-18T17:36:24.152Z", - "version": "Wzg5MSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "VPN Tunnel Data State [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "05e19c00-693b-11ea-8bb6-25461aeac3d5" - } - ], - "bar_color_rules": [ - { - "id": "fdd5ac40-693a-11ea-8bb6-25461aeac3d5" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.vpn.metrics.TunnelState.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.VpnId", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "top_n" - }, - "title": "VPN Tunnel Data State [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "142ad600-693b-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-18T17:41:15.560Z", - "version": "Wzg5OCwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "VPN Tunnel Data State Per Tunnel IP [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "05e19c00-693b-11ea-8bb6-25461aeac3d5" - } - ], - "bar_color_rules": [ - { - "id": "fdd5ac40-693a-11ea-8bb6-25461aeac3d5" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.vpn.metrics.TunnelState.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.TunnelIpAddress", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "top_n" - }, - "title": "VPN Tunnel Data State Per Tunnel IP [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "58f5a3c0-6943-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-18T18:07:36.444Z", - "version": "WzkxMiwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "VPN Tunnel Data In Per VPN ID [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.vpn.metrics.TunnelDataIn.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.VpnId", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "VPN Tunnel Data In Per VPN ID [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "2ee7f420-6943-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-18T18:06:25.890Z", - "version": "WzkxMSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "VPN Tunnel Data In [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.vpn.metrics.TunnelDataIn.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.TunnelIpAddress", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "VPN Tunnel Data In [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "ea9e3d40-693a-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-18T17:07:15.348Z", - "version": "Wzg3NywyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "VPN Tunnel Data Out Per VPN ID [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.vpn.metrics.TunnelDataOut.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.VpnId", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "VPN Tunnel Data Out Per VPN ID [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "26b73e50-6943-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-18T18:06:12.149Z", - "version": "WzkxMCwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "VPN Tunnel Data Out [Metricbeat AWS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "aws.vpn.metrics.TunnelDataOut.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "aws.dimensions.TunnelIpAddress", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "VPN Tunnel Data Out [Metricbeat AWS]", - "type": "metrics" - } - }, - "id": "f58f99b0-693a-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-18T17:07:33.707Z", - "version": "Wzg3OSwyXQ==" - } - ], - "version": "7.6.1" -} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-vpn-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-vpn-overview.ndjson new file mode 100644 index 00000000000..2f1b1a3575c --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-vpn-overview.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"VPN Filters [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.account.name\",\"id\":\"1565034367477\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"account name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"cloud.region\",\"id\":\"1584478324642\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"region\",\"options\":{\"dynamicOptions\":false,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"aws.dimensions.VpnId\",\"id\":\"1584552913938\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"VPN ID\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"aws.dimensions.TunnelIpAddress\",\"id\":\"1584552958445\",\"indexPatternRefName\":\"control_3_index_pattern\",\"label\":\"Tunnel IP\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"VPN Filters [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"fcfc8d80-693e-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_3_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:40.825Z","version":"WzM0NzEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VPN Tunnel Data State [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"05e19c00-693b-11ea-8bb6-25461aeac3d5\"}],\"bar_color_rules\":[{\"id\":\"fdd5ac40-693a-11ea-8bb6-25461aeac3d5\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.vpn.metrics.TunnelState.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VpnId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"VPN Tunnel Data State [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"142ad600-693b-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:40.825Z","version":"WzM0NzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VPN Tunnel Data State Per Tunnel IP [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"05e19c00-693b-11ea-8bb6-25461aeac3d5\"}],\"bar_color_rules\":[{\"id\":\"fdd5ac40-693a-11ea-8bb6-25461aeac3d5\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.vpn.metrics.TunnelState.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TunnelIpAddress\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"VPN Tunnel Data State Per Tunnel IP [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"58f5a3c0-6943-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:40.825Z","version":"WzM0NzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VPN Tunnel Data In Per VPN ID [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.vpn.metrics.TunnelDataIn.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VpnId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VPN Tunnel Data In Per VPN ID [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2ee7f420-6943-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:40.825Z","version":"WzM0NzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VPN Tunnel Data In [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.vpn.metrics.TunnelDataIn.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TunnelIpAddress\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VPN Tunnel Data In [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ea9e3d40-693a-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:40.825Z","version":"WzM0NzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VPN Tunnel Data Out Per VPN ID [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.vpn.metrics.TunnelDataOut.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VpnId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VPN Tunnel Data Out Per VPN ID [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"26b73e50-6943-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:40.825Z","version":"WzM0NzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VPN Tunnel Data Out [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.vpn.metrics.TunnelDataOut.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TunnelIpAddress\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VPN Tunnel Data Out [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f58f99b0-693a-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:40.825Z","version":"WzM0NzcsMV0="} +{"attributes":{"description":"Overview of AWS VPN Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"8ef52400-6eac-417b-936e-dce159dd5e89\",\"w\":8,\"x\":0,\"y\":0},\"panelIndex\":\"8ef52400-6eac-417b-936e-dce159dd5e89\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_8ef52400-6eac-417b-936e-dce159dd5e89\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"eb78041b-afc4-458e-af92-0951b1d0cadd\",\"w\":20,\"x\":8,\"y\":0},\"panelIndex\":\"eb78041b-afc4-458e-af92-0951b1d0cadd\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Tunnel State Per VPN ID\",\"panelRefName\":\"panel_eb78041b-afc4-458e-af92-0951b1d0cadd\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"39a9be08-98c6-470c-b76b-312a57e11e2d\",\"w\":20,\"x\":28,\"y\":0},\"panelIndex\":\"39a9be08-98c6-470c-b76b-312a57e11e2d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Tunnel State Per Tunnel IP\",\"panelRefName\":\"panel_39a9be08-98c6-470c-b76b-312a57e11e2d\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5c8122a2-fbf0-4404-918e-249bf6fd7f07\",\"w\":24,\"x\":0,\"y\":14},\"panelIndex\":\"5c8122a2-fbf0-4404-918e-249bf6fd7f07\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Tunnel Data In Per VPN ID\",\"panelRefName\":\"panel_5c8122a2-fbf0-4404-918e-249bf6fd7f07\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"8ecd0f73-146f-4aed-bfd1-5c236c5dfe8c\",\"w\":24,\"x\":24,\"y\":14},\"panelIndex\":\"8ecd0f73-146f-4aed-bfd1-5c236c5dfe8c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Tunnel Data In Per Tunnel IP\",\"panelRefName\":\"panel_8ecd0f73-146f-4aed-bfd1-5c236c5dfe8c\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"eb10ea7d-ffc9-4c51-9386-6f63be6322aa\",\"w\":24,\"x\":0,\"y\":29},\"panelIndex\":\"eb10ea7d-ffc9-4c51-9386-6f63be6322aa\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Tunnel Data Out Per VPN ID\",\"panelRefName\":\"panel_eb10ea7d-ffc9-4c51-9386-6f63be6322aa\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3b01a7e9-eb8b-43bb-977d-53d8bc9d21b7\",\"w\":24,\"x\":24,\"y\":29},\"panelIndex\":\"3b01a7e9-eb8b-43bb-977d-53d8bc9d21b7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Tunnel Data Out Per Tunnel IP\",\"panelRefName\":\"panel_3b01a7e9-eb8b-43bb-977d-53d8bc9d21b7\"}]","timeRestore":false,"title":"[Metricbeat AWS] VPN Overview","version":1},"coreMigrationVersion":"8.0.0","id":"67c9f900-693e-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"fcfc8d80-693e-11ea-b0ac-95d4ecb1fecd","name":"8ef52400-6eac-417b-936e-dce159dd5e89:panel_8ef52400-6eac-417b-936e-dce159dd5e89","type":"visualization"},{"id":"142ad600-693b-11ea-b0ac-95d4ecb1fecd","name":"eb78041b-afc4-458e-af92-0951b1d0cadd:panel_eb78041b-afc4-458e-af92-0951b1d0cadd","type":"visualization"},{"id":"58f5a3c0-6943-11ea-b0ac-95d4ecb1fecd","name":"39a9be08-98c6-470c-b76b-312a57e11e2d:panel_39a9be08-98c6-470c-b76b-312a57e11e2d","type":"visualization"},{"id":"2ee7f420-6943-11ea-b0ac-95d4ecb1fecd","name":"5c8122a2-fbf0-4404-918e-249bf6fd7f07:panel_5c8122a2-fbf0-4404-918e-249bf6fd7f07","type":"visualization"},{"id":"ea9e3d40-693a-11ea-b0ac-95d4ecb1fecd","name":"8ecd0f73-146f-4aed-bfd1-5c236c5dfe8c:panel_8ecd0f73-146f-4aed-bfd1-5c236c5dfe8c","type":"visualization"},{"id":"26b73e50-6943-11ea-b0ac-95d4ecb1fecd","name":"eb10ea7d-ffc9-4c51-9386-6f63be6322aa:panel_eb10ea7d-ffc9-4c51-9386-6f63be6322aa","type":"visualization"},{"id":"f58f99b0-693a-11ea-b0ac-95d4ecb1fecd","name":"3b01a7e9-eb8b-43bb-977d-53d8bc9d21b7:panel_3b01a7e9-eb8b-43bb-977d-53d8bc9d21b7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:40.825Z","version":"WzM0NzAsMV0="} diff --git a/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/dashboard/Metricbeat-awsfargate-overview.json b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/dashboard/Metricbeat-awsfargate-overview.json deleted file mode 100644 index 05feb208f00..00000000000 --- a/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/dashboard/Metricbeat-awsfargate-overview.json +++ /dev/null @@ -1,1235 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of AWS Fargate Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "ECS Task Filter" - }, - "gridData": { - "h": 14, - "i": "2429ae11-ccb3-4016-b18d-c88140e29f67", - "w": 9, - "x": 0, - "y": 0 - }, - "panelIndex": "2429ae11-ccb3-4016-b18d-c88140e29f67", - "panelRefName": "panel_0", - "title": "ECS Task Filter", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Containers" - }, - "gridData": { - "h": 14, - "i": "735a25cb-f781-4a8b-99e6-2adf582f8a37", - "w": 39, - "x": 9, - "y": 0 - }, - "panelIndex": "735a25cb-f781-4a8b-99e6-2adf582f8a37", - "panelRefName": "panel_1", - "title": "Containers", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Total Number of Containers" - }, - "gridData": { - "h": 15, - "i": "5d4537e8-9aee-47e6-8580-1961d8a3a38e", - "w": 24, - "x": 0, - "y": 14 - }, - "panelIndex": "5d4537e8-9aee-47e6-8580-1961d8a3a38e", - "panelRefName": "panel_2", - "title": "Total Number of Containers", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "CPU Utilization Per Cluster" - }, - "gridData": { - "h": 15, - "i": "d3c9208e-c699-4514-a091-a731d28ab9af", - "w": 24, - "x": 24, - "y": 14 - }, - "panelIndex": "d3c9208e-c699-4514-a091-a731d28ab9af", - "panelRefName": "panel_3", - "title": "CPU Utilization Per Cluster", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Container Memory Usage Pct" - }, - "gridData": { - "h": 15, - "i": "9dd2b002-5170-49ea-afc2-30b0b46b0fd7", - "w": 24, - "x": 0, - "y": 29 - }, - "panelIndex": "9dd2b002-5170-49ea-afc2-30b0b46b0fd7", - "panelRefName": "panel_4", - "title": "Container Memory Usage Pct", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "DiskIO Write" - }, - "gridData": { - "h": 15, - "i": "89b0cd8b-13d9-4a43-8f93-3410aff125c3", - "w": 24, - "x": 24, - "y": 44 - }, - "panelIndex": "89b0cd8b-13d9-4a43-8f93-3410aff125c3", - "panelRefName": "panel_5", - "title": "DiskIO Write", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "DiskIO Read" - }, - "gridData": { - "h": 15, - "i": "d7a6623a-14cf-411c-ab73-ded3734a359b", - "w": 24, - "x": 0, - "y": 44 - }, - "panelIndex": "d7a6623a-14cf-411c-ab73-ded3734a359b", - "panelRefName": "panel_6", - "title": "DiskIO Read", - "version": "7.10.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Container CPU Total Norm Pct" - }, - "gridData": { - "h": 15, - "i": "a7a6e425-98fd-4210-b3d5-005268be6274", - "w": 24, - "x": 24, - "y": 29 - }, - "panelIndex": "a7a6e425-98fd-4210-b3d5-005268be6274", - "panelRefName": "panel_7", - "title": "Container CPU Total Norm Pct", - "version": "7.10.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat AWSFargate] Fargate Overview", - "version": 1 - }, - "id": "20dc7c50-2e89-11eb-991c-c5fd3b7f5a63", - "migrationVersion": { - "dashboard": "7.9.3" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "38eee240-2e90-11eb-a417-f961313c14f6", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "8cf592f0-2e8e-11eb-a417-f961313c14f6", - "name": "panel_1", - "type": "lens" - }, - { - "id": "86720980-3966-11eb-a417-f961313c14f6", - "name": "panel_2", - "type": "lens" - }, - { - "id": "b1837e70-396f-11eb-a417-f961313c14f6", - "name": "panel_3", - "type": "lens" - }, - { - "id": "d3f3aa80-2e8d-11eb-a417-f961313c14f6", - "name": "panel_4", - "type": "lens" - }, - { - "id": "c3952840-2e91-11eb-a417-f961313c14f6", - "name": "panel_5", - "type": "lens" - }, - { - "id": "a7970500-2e91-11eb-a417-f961313c14f6", - "name": "panel_6", - "type": "lens" - }, - { - "id": "60941700-2e88-11eb-991c-c5fd3b7f5a63", - "name": "panel_7", - "type": "lens" - } - ], - "type": "dashboard", - "updated_at": "2020-12-08T16:33:09.074Z", - "version": "WzEzNzIwNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ECS Task Filter [Metricbeat AWSFargate]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.region", - "id": "1607442436907", - "indexPatternRefName": "control_0_index_pattern", - "label": "Region Name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "awsfargate.task_stats.cluster_name", - "id": "1607442399749", - "indexPatternRefName": "control_1_index_pattern", - "label": "Cluster Name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "container.labels.com_amazonaws_ecs_task-definition-family", - "id": "1606248025028", - "indexPatternRefName": "control_2_index_pattern", - "label": "Task Name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": false, - "useTimeFilter": false - }, - "title": "ECS Task Filter [Metricbeat AWSFargate]", - "type": "input_control_vis" - } - }, - "id": "38eee240-2e90-11eb-a417-f961313c14f6", - "migrationVersion": { - "visualization": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-12-08T15:47:56.120Z", - "version": "WzEzNjYzOCwxXQ==" - }, - { - "attributes": { - "description": "", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "e350c9e6-e6b7-40f1-83ed-94a38ed9467a": { - "columnOrder": [ - "040803fd-23f9-4f4f-95da-e8be99becbc1", - "eb452b61-bf12-46c0-afae-c0f1c776156c", - "b1e08425-6a1e-4db6-bb47-a65167b7e14f", - "09de0d9e-c174-46cf-bdc8-50158475b4a7", - "e0782143-0636-43b4-8fac-b857ea5282b2", - "7626706b-6efa-4fe7-b45c-6e9afa07f982", - "441ceb32-53e7-4408-9638-6dfd38202144" - ], - "columns": { - "040803fd-23f9-4f4f-95da-e8be99becbc1": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Task Name", - "operationType": "terms", - "params": { - "orderBy": { - "type": "alphabetical" - }, - "orderDirection": "asc", - "size": 20 - }, - "scale": "ordinal", - "sourceField": "container.labels.com_amazonaws_ecs_task-definition-family" - }, - "09de0d9e-c174-46cf-bdc8-50158475b4a7": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "CPU", - "operationType": "avg", - "params": { - "format": { - "id": "percent", - "params": { - "decimals": 3 - } - } - }, - "scale": "ratio", - "sourceField": "awsfargate.task_stats.cpu.total.norm.pct" - }, - "441ceb32-53e7-4408-9638-6dfd38202144": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Memory", - "operationType": "avg", - "params": { - "format": { - "id": "percent", - "params": { - "decimals": 3 - } - } - }, - "scale": "ratio", - "sourceField": "awsfargate.task_stats.memory.usage.pct" - }, - "7626706b-6efa-4fe7-b45c-6e9afa07f982": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Memory Usage", - "operationType": "avg", - "params": { - "format": { - "id": "bytes", - "params": { - "decimals": 2 - } - } - }, - "scale": "ratio", - "sourceField": "awsfargate.task_stats.memory.usage.total" - }, - "b1e08425-6a1e-4db6-bb47-a65167b7e14f": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "ECS Cluster ARN", - "operationType": "terms", - "params": { - "orderBy": { - "type": "alphabetical" - }, - "orderDirection": "asc", - "size": 20 - }, - "scale": "ordinal", - "sourceField": "container.labels.com_amazonaws_ecs_cluster" - }, - "e0782143-0636-43b4-8fac-b857ea5282b2": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "DiskIO", - "operationType": "avg", - "scale": "ratio", - "sourceField": "awsfargate.task_stats.diskio.total" - }, - "eb452b61-bf12-46c0-afae-c0f1c776156c": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Container Name", - "operationType": "terms", - "params": { - "orderBy": { - "type": "alphabetical" - }, - "orderDirection": "asc", - "size": 20 - }, - "scale": "ordinal", - "sourceField": "container.name" - } - } - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "layers": [ - { - "columns": [ - "eb452b61-bf12-46c0-afae-c0f1c776156c", - "040803fd-23f9-4f4f-95da-e8be99becbc1", - "b1e08425-6a1e-4db6-bb47-a65167b7e14f", - "09de0d9e-c174-46cf-bdc8-50158475b4a7", - "e0782143-0636-43b4-8fac-b857ea5282b2", - "7626706b-6efa-4fe7-b45c-6e9afa07f982", - "441ceb32-53e7-4408-9638-6dfd38202144" - ], - "layerId": "e350c9e6-e6b7-40f1-83ed-94a38ed9467a" - } - ] - } - }, - "title": "Container Table [Metricbeat AWSFargate]", - "visualizationType": "lnsDatatable" - }, - "id": "8cf592f0-2e8e-11eb-a417-f961313c14f6", - "migrationVersion": { - "lens": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-e350c9e6-e6b7-40f1-83ed-94a38ed9467a", - "type": "index-pattern" - } - ], - "type": "lens", - "updated_at": "2020-12-04T21:19:50.812Z", - "version": "WzM4ODc5LDFd" - }, - { - "attributes": { - "description": "", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "450490b7-c7f9-42bf-8e7d-227cbf960e94": { - "columnOrder": [ - "b20aebaf-7126-4b1c-acca-79cfa113b44d", - "915eda3d-00ce-40d0-ada8-4eb372202b42" - ], - "columns": { - "915eda3d-00ce-40d0-ada8-4eb372202b42": { - "dataType": "number", - "isBucketed": false, - "label": "Unique count of container.id", - "operationType": "cardinality", - "scale": "ratio", - "sourceField": "container.id" - }, - "b20aebaf-7126-4b1c-acca-79cfa113b44d": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp", - "suggestedPriority": 1 - } - } - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "915eda3d-00ce-40d0-ada8-4eb372202b42" - ], - "layerId": "450490b7-c7f9-42bf-8e7d-227cbf960e94", - "position": "top", - "seriesType": "bar_stacked", - "showGridlines": false, - "xAccessor": "b20aebaf-7126-4b1c-acca-79cfa113b44d" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "bar_stacked", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - } - } - }, - "title": "Total Number of Containers [Metricbeat AWSFargate]", - "visualizationType": "lnsXY" - }, - "id": "86720980-3966-11eb-a417-f961313c14f6", - "migrationVersion": { - "lens": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-450490b7-c7f9-42bf-8e7d-227cbf960e94", - "type": "index-pattern" - } - ], - "type": "lens", - "updated_at": "2020-12-08T15:03:26.999Z", - "version": "WzEzNjU3MywxXQ==" - }, - { - "attributes": { - "description": "", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "82f43ff6-6ac1-4f73-b532-61b6b9fe15b0": { - "columnOrder": [ - "e139ccbc-54ff-4921-b345-e3c3ff6a9efc", - "d7b9836e-d606-4aab-b2d8-44cbc726a950" - ], - "columns": { - "d7b9836e-d606-4aab-b2d8-44cbc726a950": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "CPU Utilization", - "operationType": "avg", - "params": { - "format": { - "id": "percent", - "params": { - "decimals": 2 - } - } - }, - "scale": "ratio", - "sourceField": "awsfargate.task_stats.cpu.total.norm.pct", - "suggestedPriority": 0 - }, - "e139ccbc-54ff-4921-b345-e3c3ff6a9efc": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Cluster Name", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "d7b9836e-d606-4aab-b2d8-44cbc726a950", - "type": "column" - }, - "orderDirection": "desc", - "size": 20 - }, - "scale": "ordinal", - "sourceField": "awsfargate.task_stats.cluster_name" - } - } - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "d7b9836e-d606-4aab-b2d8-44cbc726a950" - ], - "layerId": "82f43ff6-6ac1-4f73-b532-61b6b9fe15b0", - "seriesType": "bar_horizontal", - "xAccessor": "e139ccbc-54ff-4921-b345-e3c3ff6a9efc" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "bar_horizontal", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - } - } - }, - "title": "CPU Utilization Per Cluster [Metricbeat AWSFargate]", - "visualizationType": "lnsXY" - }, - "id": "b1837e70-396f-11eb-a417-f961313c14f6", - "migrationVersion": { - "lens": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-82f43ff6-6ac1-4f73-b532-61b6b9fe15b0", - "type": "index-pattern" - } - ], - "type": "lens", - "updated_at": "2020-12-08T16:09:04.727Z", - "version": "WzEzNjkxNiwxXQ==" - }, - { - "attributes": { - "description": "", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "e350c9e6-e6b7-40f1-83ed-94a38ed9467a": { - "columnOrder": [ - "55121be2-80f6-407c-9352-3e13705ac860", - "eb452b61-bf12-46c0-afae-c0f1c776156c", - "5b846eff-5ca7-45b0-b4c2-0346e9986302" - ], - "columns": { - "55121be2-80f6-407c-9352-3e13705ac860": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "10s" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "5b846eff-5ca7-45b0-b4c2-0346e9986302": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Container Memory Usage Pct", - "operationType": "avg", - "params": { - "format": { - "id": "percent", - "params": { - "decimals": 2 - } - } - }, - "scale": "ratio", - "sourceField": "awsfargate.task_stats.memory.usage.pct", - "suggestedPriority": 0 - }, - "eb452b61-bf12-46c0-afae-c0f1c776156c": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "container identifier", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "5b846eff-5ca7-45b0-b4c2-0346e9986302", - "type": "column" - }, - "orderDirection": "desc", - "size": 20 - }, - "scale": "ordinal", - "sourceField": "awsfargate.task_stats.identifier" - } - } - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "5b846eff-5ca7-45b0-b4c2-0346e9986302" - ], - "layerId": "e350c9e6-e6b7-40f1-83ed-94a38ed9467a", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "eb452b61-bf12-46c0-afae-c0f1c776156c", - "xAccessor": "55121be2-80f6-407c-9352-3e13705ac860" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - } - } - }, - "title": "Container Memory Usage Pct [Metricbeat AWSFargate]", - "visualizationType": "lnsXY" - }, - "id": "d3f3aa80-2e8d-11eb-a417-f961313c14f6", - "migrationVersion": { - "lens": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-e350c9e6-e6b7-40f1-83ed-94a38ed9467a", - "type": "index-pattern" - } - ], - "type": "lens", - "updated_at": "2020-12-08T16:19:29.265Z", - "version": "WzEzNzExMSwxXQ==" - }, - { - "attributes": { - "description": "", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "c8d70f88-6554-41ca-ac1e-a3cf8b992972": { - "columnOrder": [ - "0505d890-632e-4434-a68f-f019e7893eaf", - "989ce63a-7fcd-4c83-980b-d595a1dd2469", - "ab00dce2-6c01-4a0d-8d7c-71330afbaa3b" - ], - "columns": { - "0505d890-632e-4434-a68f-f019e7893eaf": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of awsfargate.task_stats.identifier", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "ab00dce2-6c01-4a0d-8d7c-71330afbaa3b", - "type": "column" - }, - "orderDirection": "desc", - "size": 20 - }, - "scale": "ordinal", - "sourceField": "awsfargate.task_stats.identifier" - }, - "989ce63a-7fcd-4c83-980b-d595a1dd2469": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "ab00dce2-6c01-4a0d-8d7c-71330afbaa3b": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "DiskIO Write", - "operationType": "avg", - "params": { - "format": { - "id": "bytes", - "params": { - "decimals": 2 - } - } - }, - "scale": "ratio", - "sourceField": "awsfargate.task_stats.diskio.write.bytes", - "suggestedPriority": 0 - } - } - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "ab00dce2-6c01-4a0d-8d7c-71330afbaa3b" - ], - "layerId": "c8d70f88-6554-41ca-ac1e-a3cf8b992972", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "0505d890-632e-4434-a68f-f019e7893eaf", - "xAccessor": "989ce63a-7fcd-4c83-980b-d595a1dd2469" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - } - } - }, - "title": "DiskIO Write [Metricbeat AWSFargate]", - "visualizationType": "lnsXY" - }, - "id": "c3952840-2e91-11eb-a417-f961313c14f6", - "migrationVersion": { - "lens": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-c8d70f88-6554-41ca-ac1e-a3cf8b992972", - "type": "index-pattern" - } - ], - "type": "lens", - "updated_at": "2020-12-08T16:13:22.119Z", - "version": "WzEzNzAxMSwxXQ==" - }, - { - "attributes": { - "description": "", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "c8d70f88-6554-41ca-ac1e-a3cf8b992972": { - "columnOrder": [ - "0505d890-632e-4434-a68f-f019e7893eaf", - "989ce63a-7fcd-4c83-980b-d595a1dd2469", - "ab00dce2-6c01-4a0d-8d7c-71330afbaa3b" - ], - "columns": { - "0505d890-632e-4434-a68f-f019e7893eaf": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of awsfargate.task_stats.identifier", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "ab00dce2-6c01-4a0d-8d7c-71330afbaa3b", - "type": "column" - }, - "orderDirection": "desc", - "size": 20 - }, - "scale": "ordinal", - "sourceField": "awsfargate.task_stats.identifier" - }, - "989ce63a-7fcd-4c83-980b-d595a1dd2469": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "ab00dce2-6c01-4a0d-8d7c-71330afbaa3b": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "DiskIO Read", - "operationType": "avg", - "params": { - "format": { - "id": "bytes", - "params": { - "decimals": 2 - } - } - }, - "scale": "ratio", - "sourceField": "awsfargate.task_stats.diskio.read.bytes", - "suggestedPriority": 0 - } - } - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "axisTitlesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "fittingFunction": "None", - "gridlinesVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - }, - "layers": [ - { - "accessors": [ - "ab00dce2-6c01-4a0d-8d7c-71330afbaa3b" - ], - "layerId": "c8d70f88-6554-41ca-ac1e-a3cf8b992972", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "0505d890-632e-4434-a68f-f019e7893eaf", - "xAccessor": "989ce63a-7fcd-4c83-980b-d595a1dd2469" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line", - "tickLabelsVisibilitySettings": { - "x": true, - "yLeft": true, - "yRight": true - } - } - }, - "title": "DiskIO Read [Metricbeat AWSFargate]", - "visualizationType": "lnsXY" - }, - "id": "a7970500-2e91-11eb-a417-f961313c14f6", - "migrationVersion": { - "lens": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-c8d70f88-6554-41ca-ac1e-a3cf8b992972", - "type": "index-pattern" - } - ], - "type": "lens", - "updated_at": "2020-12-08T16:13:21.224Z", - "version": "WzEzNjk5NSwxXQ==" - }, - { - "attributes": { - "description": "", - "state": { - "datasourceStates": { - "indexpattern": { - "layers": { - "0749cbce-4a88-471d-9715-9f4f54510864": { - "columnOrder": [ - "35481ca7-cebb-495c-974f-34ede5f3935c", - "33d4857c-800a-4854-9369-dbf019501bdd", - "ec425562-fe79-4326-b753-20b408c806fb" - ], - "columns": { - "33d4857c-800a-4854-9369-dbf019501bdd": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Container Identifier", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "ec425562-fe79-4326-b753-20b408c806fb", - "type": "column" - }, - "orderDirection": "desc", - "size": 20 - }, - "scale": "ordinal", - "sourceField": "awsfargate.task_stats.identifier" - }, - "35481ca7-cebb-495c-974f-34ede5f3935c": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "10s" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "ec425562-fe79-4326-b753-20b408c806fb": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Container CPU Total Norm Pct", - "operationType": "avg", - "params": { - "format": { - "id": "percent", - "params": { - "decimals": 2 - } - } - }, - "scale": "ratio", - "sourceField": "awsfargate.task_stats.cpu.total.norm.pct", - "suggestedPriority": 0 - } - } - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "ec425562-fe79-4326-b753-20b408c806fb" - ], - "layerId": "0749cbce-4a88-471d-9715-9f4f54510864", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "33d4857c-800a-4854-9369-dbf019501bdd", - "xAccessor": "35481ca7-cebb-495c-974f-34ede5f3935c" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line" - } - }, - "title": "Container CPU Total Norm Pct [Metricbeat AWSFargate]", - "visualizationType": "lnsXY" - }, - "id": "60941700-2e88-11eb-991c-c5fd3b7f5a63", - "migrationVersion": { - "lens": "7.10.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-current-indexpattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "indexpattern-datasource-layer-0749cbce-4a88-471d-9715-9f4f54510864", - "type": "index-pattern" - } - ], - "type": "lens", - "updated_at": "2020-12-08T16:30:52.054Z", - "version": "WzEzNzE5OSwxXQ==" - } - ], - "version": "7.10.0" -} diff --git a/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/dashboard/Metricbeat-awsfargate-overview.ndjson b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/dashboard/Metricbeat-awsfargate-overview.ndjson new file mode 100644 index 00000000000..bef11f74f72 --- /dev/null +++ b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/dashboard/Metricbeat-awsfargate-overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"ECS Task Filter [Metricbeat AWSFargate]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1607442436907\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Region Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"awsfargate.task_stats.cluster_name\",\"id\":\"1607442399749\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Cluster Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"container.labels.com_amazonaws_ecs_task-definition-family\",\"id\":\"1606248025028\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Task Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"ECS Task Filter [Metricbeat AWSFargate]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"38eee240-2e90-11eb-a417-f961313c14f6","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:41.879Z","version":"WzM0NzksMV0="} +{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"e350c9e6-e6b7-40f1-83ed-94a38ed9467a":{"columnOrder":["040803fd-23f9-4f4f-95da-e8be99becbc1","eb452b61-bf12-46c0-afae-c0f1c776156c","b1e08425-6a1e-4db6-bb47-a65167b7e14f","09de0d9e-c174-46cf-bdc8-50158475b4a7","e0782143-0636-43b4-8fac-b857ea5282b2","7626706b-6efa-4fe7-b45c-6e9afa07f982","441ceb32-53e7-4408-9638-6dfd38202144"],"columns":{"040803fd-23f9-4f4f-95da-e8be99becbc1":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Task Name","operationType":"terms","params":{"orderBy":{"type":"alphabetical"},"orderDirection":"asc","size":20},"scale":"ordinal","sourceField":"container.labels.com_amazonaws_ecs_task-definition-family"},"09de0d9e-c174-46cf-bdc8-50158475b4a7":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"CPU","operationType":"average","params":{"format":{"id":"percent","params":{"decimals":3}}},"scale":"ratio","sourceField":"awsfargate.task_stats.cpu.total.norm.pct"},"441ceb32-53e7-4408-9638-6dfd38202144":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Memory","operationType":"average","params":{"format":{"id":"percent","params":{"decimals":3}}},"scale":"ratio","sourceField":"awsfargate.task_stats.memory.usage.pct"},"7626706b-6efa-4fe7-b45c-6e9afa07f982":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Memory Usage","operationType":"average","params":{"format":{"id":"bytes","params":{"decimals":2}}},"scale":"ratio","sourceField":"awsfargate.task_stats.memory.usage.total"},"b1e08425-6a1e-4db6-bb47-a65167b7e14f":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"ECS Cluster ARN","operationType":"terms","params":{"orderBy":{"type":"alphabetical"},"orderDirection":"asc","size":20},"scale":"ordinal","sourceField":"container.labels.com_amazonaws_ecs_cluster"},"e0782143-0636-43b4-8fac-b857ea5282b2":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"DiskIO","operationType":"average","scale":"ratio","sourceField":"awsfargate.task_stats.diskio.total"},"eb452b61-bf12-46c0-afae-c0f1c776156c":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Container Name","operationType":"terms","params":{"orderBy":{"type":"alphabetical"},"orderDirection":"asc","size":20},"scale":"ordinal","sourceField":"container.name"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"columns":[{"columnId":"eb452b61-bf12-46c0-afae-c0f1c776156c"},{"columnId":"040803fd-23f9-4f4f-95da-e8be99becbc1"},{"columnId":"b1e08425-6a1e-4db6-bb47-a65167b7e14f"},{"columnId":"09de0d9e-c174-46cf-bdc8-50158475b4a7"},{"columnId":"e0782143-0636-43b4-8fac-b857ea5282b2"},{"columnId":"7626706b-6efa-4fe7-b45c-6e9afa07f982"},{"columnId":"441ceb32-53e7-4408-9638-6dfd38202144"}],"layerId":"e350c9e6-e6b7-40f1-83ed-94a38ed9467a"}},"title":"Container Table [Metricbeat AWSFargate]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"8cf592f0-2e8e-11eb-a417-f961313c14f6","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-e350c9e6-e6b7-40f1-83ed-94a38ed9467a","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:41.879Z","version":"WzM0ODAsMV0="} +{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"450490b7-c7f9-42bf-8e7d-227cbf960e94":{"columnOrder":["b20aebaf-7126-4b1c-acca-79cfa113b44d","915eda3d-00ce-40d0-ada8-4eb372202b42"],"columns":{"915eda3d-00ce-40d0-ada8-4eb372202b42":{"dataType":"number","isBucketed":false,"label":"Unique count of container.id","operationType":"unique_count","scale":"ratio","sourceField":"container.id"},"b20aebaf-7126-4b1c-acca-79cfa113b44d":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["915eda3d-00ce-40d0-ada8-4eb372202b42"],"layerId":"450490b7-c7f9-42bf-8e7d-227cbf960e94","position":"top","seriesType":"bar_stacked","showGridlines":false,"xAccessor":"b20aebaf-7126-4b1c-acca-79cfa113b44d"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar_stacked","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true}}},"title":"Total Number of Containers [Metricbeat AWSFargate]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"86720980-3966-11eb-a417-f961313c14f6","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-450490b7-c7f9-42bf-8e7d-227cbf960e94","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:41.879Z","version":"WzM0ODEsMV0="} +{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"82f43ff6-6ac1-4f73-b532-61b6b9fe15b0":{"columnOrder":["e139ccbc-54ff-4921-b345-e3c3ff6a9efc","d7b9836e-d606-4aab-b2d8-44cbc726a950"],"columns":{"d7b9836e-d606-4aab-b2d8-44cbc726a950":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"CPU Utilization","operationType":"average","params":{"format":{"id":"percent","params":{"decimals":2}}},"scale":"ratio","sourceField":"awsfargate.task_stats.cpu.total.norm.pct"},"e139ccbc-54ff-4921-b345-e3c3ff6a9efc":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Cluster Name","operationType":"terms","params":{"orderBy":{"columnId":"d7b9836e-d606-4aab-b2d8-44cbc726a950","type":"column"},"orderDirection":"desc","size":20},"scale":"ordinal","sourceField":"awsfargate.task_stats.cluster_name"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["d7b9836e-d606-4aab-b2d8-44cbc726a950"],"layerId":"82f43ff6-6ac1-4f73-b532-61b6b9fe15b0","seriesType":"bar_horizontal","xAccessor":"e139ccbc-54ff-4921-b345-e3c3ff6a9efc"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar_horizontal","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true}}},"title":"CPU Utilization Per Cluster [Metricbeat AWSFargate]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"b1837e70-396f-11eb-a417-f961313c14f6","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-82f43ff6-6ac1-4f73-b532-61b6b9fe15b0","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:41.879Z","version":"WzM0ODIsMV0="} +{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"e350c9e6-e6b7-40f1-83ed-94a38ed9467a":{"columnOrder":["55121be2-80f6-407c-9352-3e13705ac860","eb452b61-bf12-46c0-afae-c0f1c776156c","5b846eff-5ca7-45b0-b4c2-0346e9986302"],"columns":{"55121be2-80f6-407c-9352-3e13705ac860":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"10s"},"scale":"interval","sourceField":"@timestamp"},"5b846eff-5ca7-45b0-b4c2-0346e9986302":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Container Memory Usage Pct","operationType":"average","params":{"format":{"id":"percent","params":{"decimals":2}}},"scale":"ratio","sourceField":"awsfargate.task_stats.memory.usage.pct"},"eb452b61-bf12-46c0-afae-c0f1c776156c":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"container identifier","operationType":"terms","params":{"orderBy":{"columnId":"5b846eff-5ca7-45b0-b4c2-0346e9986302","type":"column"},"orderDirection":"desc","size":20},"scale":"ordinal","sourceField":"awsfargate.task_stats.identifier"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["5b846eff-5ca7-45b0-b4c2-0346e9986302"],"layerId":"e350c9e6-e6b7-40f1-83ed-94a38ed9467a","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"eb452b61-bf12-46c0-afae-c0f1c776156c","xAccessor":"55121be2-80f6-407c-9352-3e13705ac860"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true}}},"title":"Container Memory Usage Pct [Metricbeat AWSFargate]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"d3f3aa80-2e8d-11eb-a417-f961313c14f6","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-e350c9e6-e6b7-40f1-83ed-94a38ed9467a","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:41.879Z","version":"WzM0ODMsMV0="} +{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"c8d70f88-6554-41ca-ac1e-a3cf8b992972":{"columnOrder":["0505d890-632e-4434-a68f-f019e7893eaf","989ce63a-7fcd-4c83-980b-d595a1dd2469","ab00dce2-6c01-4a0d-8d7c-71330afbaa3b"],"columns":{"0505d890-632e-4434-a68f-f019e7893eaf":{"dataType":"string","isBucketed":true,"label":"Top values of awsfargate.task_stats.identifier","operationType":"terms","params":{"orderBy":{"columnId":"ab00dce2-6c01-4a0d-8d7c-71330afbaa3b","type":"column"},"orderDirection":"desc","size":20},"scale":"ordinal","sourceField":"awsfargate.task_stats.identifier"},"989ce63a-7fcd-4c83-980b-d595a1dd2469":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"ab00dce2-6c01-4a0d-8d7c-71330afbaa3b":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"DiskIO Write","operationType":"average","params":{"format":{"id":"bytes","params":{"decimals":2}}},"scale":"ratio","sourceField":"awsfargate.task_stats.diskio.write.bytes"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["ab00dce2-6c01-4a0d-8d7c-71330afbaa3b"],"layerId":"c8d70f88-6554-41ca-ac1e-a3cf8b992972","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"0505d890-632e-4434-a68f-f019e7893eaf","xAccessor":"989ce63a-7fcd-4c83-980b-d595a1dd2469"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true}}},"title":"DiskIO Write [Metricbeat AWSFargate]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"c3952840-2e91-11eb-a417-f961313c14f6","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-c8d70f88-6554-41ca-ac1e-a3cf8b992972","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:41.879Z","version":"WzM0ODQsMV0="} +{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"c8d70f88-6554-41ca-ac1e-a3cf8b992972":{"columnOrder":["0505d890-632e-4434-a68f-f019e7893eaf","989ce63a-7fcd-4c83-980b-d595a1dd2469","ab00dce2-6c01-4a0d-8d7c-71330afbaa3b"],"columns":{"0505d890-632e-4434-a68f-f019e7893eaf":{"dataType":"string","isBucketed":true,"label":"Top values of awsfargate.task_stats.identifier","operationType":"terms","params":{"orderBy":{"columnId":"ab00dce2-6c01-4a0d-8d7c-71330afbaa3b","type":"column"},"orderDirection":"desc","size":20},"scale":"ordinal","sourceField":"awsfargate.task_stats.identifier"},"989ce63a-7fcd-4c83-980b-d595a1dd2469":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"ab00dce2-6c01-4a0d-8d7c-71330afbaa3b":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"DiskIO Read","operationType":"average","params":{"format":{"id":"bytes","params":{"decimals":2}}},"scale":"ratio","sourceField":"awsfargate.task_stats.diskio.read.bytes"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["ab00dce2-6c01-4a0d-8d7c-71330afbaa3b"],"layerId":"c8d70f88-6554-41ca-ac1e-a3cf8b992972","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"0505d890-632e-4434-a68f-f019e7893eaf","xAccessor":"989ce63a-7fcd-4c83-980b-d595a1dd2469"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true}}},"title":"DiskIO Read [Metricbeat AWSFargate]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"a7970500-2e91-11eb-a417-f961313c14f6","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-c8d70f88-6554-41ca-ac1e-a3cf8b992972","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:41.879Z","version":"WzM0ODUsMV0="} +{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"0749cbce-4a88-471d-9715-9f4f54510864":{"columnOrder":["35481ca7-cebb-495c-974f-34ede5f3935c","33d4857c-800a-4854-9369-dbf019501bdd","ec425562-fe79-4326-b753-20b408c806fb"],"columns":{"33d4857c-800a-4854-9369-dbf019501bdd":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Container Identifier","operationType":"terms","params":{"orderBy":{"columnId":"ec425562-fe79-4326-b753-20b408c806fb","type":"column"},"orderDirection":"desc","size":20},"scale":"ordinal","sourceField":"awsfargate.task_stats.identifier"},"35481ca7-cebb-495c-974f-34ede5f3935c":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"10s"},"scale":"interval","sourceField":"@timestamp"},"ec425562-fe79-4326-b753-20b408c806fb":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Container CPU Total Norm Pct","operationType":"average","params":{"format":{"id":"percent","params":{"decimals":2}}},"scale":"ratio","sourceField":"awsfargate.task_stats.cpu.total.norm.pct"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["ec425562-fe79-4326-b753-20b408c806fb"],"layerId":"0749cbce-4a88-471d-9715-9f4f54510864","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"33d4857c-800a-4854-9369-dbf019501bdd","xAccessor":"35481ca7-cebb-495c-974f-34ede5f3935c"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Container CPU Total Norm Pct [Metricbeat AWSFargate]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"60941700-2e88-11eb-991c-c5fd3b7f5a63","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-0749cbce-4a88-471d-9715-9f4f54510864","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:41.879Z","version":"WzM0ODYsMV0="} +{"attributes":{"description":"Overview of AWS Fargate Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"2429ae11-ccb3-4016-b18d-c88140e29f67\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"2429ae11-ccb3-4016-b18d-c88140e29f67\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"ECS Task Filter\",\"panelRefName\":\"panel_2429ae11-ccb3-4016-b18d-c88140e29f67\"},{\"version\":\"7.10.0\",\"type\":\"lens\",\"gridData\":{\"h\":14,\"i\":\"735a25cb-f781-4a8b-99e6-2adf582f8a37\",\"w\":39,\"x\":9,\"y\":0},\"panelIndex\":\"735a25cb-f781-4a8b-99e6-2adf582f8a37\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Containers\",\"panelRefName\":\"panel_735a25cb-f781-4a8b-99e6-2adf582f8a37\"},{\"version\":\"7.10.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"5d4537e8-9aee-47e6-8580-1961d8a3a38e\",\"w\":24,\"x\":0,\"y\":14},\"panelIndex\":\"5d4537e8-9aee-47e6-8580-1961d8a3a38e\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Total Number of Containers\",\"panelRefName\":\"panel_5d4537e8-9aee-47e6-8580-1961d8a3a38e\"},{\"version\":\"7.10.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"d3c9208e-c699-4514-a091-a731d28ab9af\",\"w\":24,\"x\":24,\"y\":14},\"panelIndex\":\"d3c9208e-c699-4514-a091-a731d28ab9af\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"CPU Utilization Per Cluster\",\"panelRefName\":\"panel_d3c9208e-c699-4514-a091-a731d28ab9af\"},{\"version\":\"7.10.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"9dd2b002-5170-49ea-afc2-30b0b46b0fd7\",\"w\":24,\"x\":0,\"y\":29},\"panelIndex\":\"9dd2b002-5170-49ea-afc2-30b0b46b0fd7\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Container Memory Usage Pct\",\"panelRefName\":\"panel_9dd2b002-5170-49ea-afc2-30b0b46b0fd7\"},{\"version\":\"7.10.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"89b0cd8b-13d9-4a43-8f93-3410aff125c3\",\"w\":24,\"x\":24,\"y\":44},\"panelIndex\":\"89b0cd8b-13d9-4a43-8f93-3410aff125c3\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"DiskIO Write\",\"panelRefName\":\"panel_89b0cd8b-13d9-4a43-8f93-3410aff125c3\"},{\"version\":\"7.10.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"d7a6623a-14cf-411c-ab73-ded3734a359b\",\"w\":24,\"x\":0,\"y\":44},\"panelIndex\":\"d7a6623a-14cf-411c-ab73-ded3734a359b\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"DiskIO Read\",\"panelRefName\":\"panel_d7a6623a-14cf-411c-ab73-ded3734a359b\"},{\"version\":\"7.10.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"a7a6e425-98fd-4210-b3d5-005268be6274\",\"w\":24,\"x\":24,\"y\":29},\"panelIndex\":\"a7a6e425-98fd-4210-b3d5-005268be6274\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Container CPU Total Norm Pct\",\"panelRefName\":\"panel_a7a6e425-98fd-4210-b3d5-005268be6274\"}]","timeRestore":false,"title":"[Metricbeat AWSFargate] Fargate Overview","version":1},"coreMigrationVersion":"8.0.0","id":"20dc7c50-2e89-11eb-991c-c5fd3b7f5a63","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"38eee240-2e90-11eb-a417-f961313c14f6","name":"2429ae11-ccb3-4016-b18d-c88140e29f67:panel_2429ae11-ccb3-4016-b18d-c88140e29f67","type":"visualization"},{"id":"8cf592f0-2e8e-11eb-a417-f961313c14f6","name":"735a25cb-f781-4a8b-99e6-2adf582f8a37:panel_735a25cb-f781-4a8b-99e6-2adf582f8a37","type":"lens"},{"id":"86720980-3966-11eb-a417-f961313c14f6","name":"5d4537e8-9aee-47e6-8580-1961d8a3a38e:panel_5d4537e8-9aee-47e6-8580-1961d8a3a38e","type":"lens"},{"id":"b1837e70-396f-11eb-a417-f961313c14f6","name":"d3c9208e-c699-4514-a091-a731d28ab9af:panel_d3c9208e-c699-4514-a091-a731d28ab9af","type":"lens"},{"id":"d3f3aa80-2e8d-11eb-a417-f961313c14f6","name":"9dd2b002-5170-49ea-afc2-30b0b46b0fd7:panel_9dd2b002-5170-49ea-afc2-30b0b46b0fd7","type":"lens"},{"id":"c3952840-2e91-11eb-a417-f961313c14f6","name":"89b0cd8b-13d9-4a43-8f93-3410aff125c3:panel_89b0cd8b-13d9-4a43-8f93-3410aff125c3","type":"lens"},{"id":"a7970500-2e91-11eb-a417-f961313c14f6","name":"d7a6623a-14cf-411c-ab73-ded3734a359b:panel_d7a6623a-14cf-411c-ab73-ded3734a359b","type":"lens"},{"id":"60941700-2e88-11eb-991c-c5fd3b7f5a63","name":"a7a6e425-98fd-4210-b3d5-005268be6274:panel_a7a6e425-98fd-4210-b3d5-005268be6274","type":"lens"}],"type":"dashboard","updated_at":"2021-08-04T16:30:41.879Z","version":"WzM0NzgsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-app-state-overview.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-app-state-overview.json deleted file mode 100644 index b447a6b276e..00000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-app-state-overview.json +++ /dev/null @@ -1,1509 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Provides relevant app insights metrics for web applications", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "controlledBy": "1532342651170", - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "azure.app_state.application_id", - "negate": false, - "params": { - "query": "42cb59a9-d5be-400b-a5c4-69b0a0026ac6" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "azure.app_state.application_id": "42cb59a9-d5be-400b-a5c4-69b0a0026ac6" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 15, - "i": "307a1ecd-284c-4f35-9a3c-d5b77c9a9c82", - "w": 7, - "x": 0, - "y": 0 - }, - "panelIndex": "307a1ecd-284c-4f35-9a3c-d5b77c9a9c82", - "panelRefName": "panel_0", - "version": "7.9.2" - }, - { - "embeddableConfig": { - "title": "Exceptions" - }, - "gridData": { - "h": 15, - "i": "654e745f-360d-4898-89b6-57f788c5f540", - "w": 20, - "x": 7, - "y": 0 - }, - "panelIndex": "654e745f-360d-4898-89b6-57f788c5f540", - "panelRefName": "panel_1", - "title": "Exceptions", - "version": "7.9.2" - }, - { - "embeddableConfig": { - "title": "Available Memory" - }, - "gridData": { - "h": 15, - "i": "5adca737-559d-4b4f-9fa7-58841daa99c5", - "w": 21, - "x": 27, - "y": 0 - }, - "panelIndex": "5adca737-559d-4b4f-9fa7-58841daa99c5", - "panelRefName": "panel_2", - "title": "Available Memory", - "version": "7.9.2" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 15, - "i": "531cf244-45e0-43c3-9920-8f32397bd973", - "w": 8, - "x": 0, - "y": 15 - }, - "panelIndex": "531cf244-45e0-43c3-9920-8f32397bd973", - "panelRefName": "panel_3", - "version": "7.9.2" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 15, - "i": "b9242495-babc-48a7-9ad7-56c62b1dc117", - "w": 8, - "x": 8, - "y": 15 - }, - "panelIndex": "b9242495-babc-48a7-9ad7-56c62b1dc117", - "panelRefName": "panel_4", - "version": "7.9.2" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 15, - "i": "d311025a-f5c5-4e48-9f1c-710f59264c43", - "w": 8, - "x": 16, - "y": 15 - }, - "panelIndex": "d311025a-f5c5-4e48-9f1c-710f59264c43", - "panelRefName": "panel_5", - "version": "7.9.2" - }, - { - "embeddableConfig": { - "title": "Requests" - }, - "gridData": { - "h": 15, - "i": "48974418-b1f7-4050-921e-a83771e125ae", - "w": 24, - "x": 24, - "y": 15 - }, - "panelIndex": "48974418-b1f7-4050-921e-a83771e125ae", - "panelRefName": "panel_6", - "title": "Requests", - "version": "7.9.2" - }, - { - "embeddableConfig": { - "title": "Browser Send/Receive Duration" - }, - "gridData": { - "h": 15, - "i": "39d20db1-316a-4ff3-811a-5571cb4497c3", - "w": 24, - "x": 0, - "y": 30 - }, - "panelIndex": "39d20db1-316a-4ff3-811a-5571cb4497c3", - "panelRefName": "panel_7", - "title": "Browser Send/Receive Duration", - "version": "7.9.2" - }, - { - "embeddableConfig": { - "title": "Browser Networking/Processing Duration" - }, - "gridData": { - "h": 15, - "i": "bc810208-0395-4c70-9057-d7307e064e43", - "w": 24, - "x": 24, - "y": 30 - }, - "panelIndex": "bc810208-0395-4c70-9057-d7307e064e43", - "panelRefName": "panel_8", - "title": "Browser Networking/Processing Duration", - "version": "7.9.2" - }, - { - "embeddableConfig": { - "title": "Process CPU Usage" - }, - "gridData": { - "h": 15, - "i": "ecf6fbfa-ba65-481e-af85-07fd9d5feb5f", - "w": 24, - "x": 0, - "y": 45 - }, - "panelIndex": "ecf6fbfa-ba65-481e-af85-07fd9d5feb5f", - "panelRefName": "panel_9", - "title": "Process CPU Usage", - "version": "7.9.2" - }, - { - "embeddableConfig": { - "title": "Process Private Bytes" - }, - "gridData": { - "h": 15, - "i": "40a1b80b-cd62-446d-91aa-a971bb3769e7", - "w": 24, - "x": 24, - "y": 45 - }, - "panelIndex": "40a1b80b-cd62-446d-91aa-a971bb3769e7", - "panelRefName": "panel_10", - "title": "Process Private Bytes", - "version": "7.9.2" - } - ], - "timeRestore": false, - "title": "[Metricbeat Azure] App State Overview", - "version": 1 - }, - "id": "d5fbd610-03d9-11eb-8034-63f2039e9d3f", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "2e5183a0-03da-11eb-8034-63f2039e9d3f", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "1064f9a0-04a5-11eb-8034-63f2039e9d3f", - "name": "panel_1", - "type": "lens" - }, - { - "id": "76cc1d70-04a7-11eb-8034-63f2039e9d3f", - "name": "panel_2", - "type": "lens" - }, - { - "id": "a89c8fd0-03ec-11eb-8034-63f2039e9d3f", - "name": "panel_3", - "type": "lens" - }, - { - "id": "cb5ec410-03ed-11eb-8034-63f2039e9d3f", - "name": "panel_4", - "type": "lens" - }, - { - "id": "0df175c0-03ee-11eb-8034-63f2039e9d3f", - "name": "panel_5", - "type": "lens" - }, - { - "id": "f0678020-04a2-11eb-8034-63f2039e9d3f", - "name": "panel_6", - "type": "lens" - }, - { - "id": "e2704140-04a3-11eb-8034-63f2039e9d3f", - "name": "panel_7", - "type": "lens" - }, - { - "id": "0e74dee0-04a4-11eb-8034-63f2039e9d3f", - "name": "panel_8", - "type": "lens" - }, - { - "id": "cfa361a0-04a8-11eb-8034-63f2039e9d3f", - "name": "panel_9", - "type": "lens" - }, - { - "id": "2b54b2c0-04a8-11eb-8034-63f2039e9d3f", - "name": "panel_10", - "type": "lens" - } - ], - "type": "dashboard", - "updated_at": "2020-10-02T12:22:06.090Z", - "version": "WzMzMDEsMl0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "controlledBy": "1532342651170", - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "azure.application_id", - "negate": false, - "params": { - "query": "42cb59a9-d5be-400b-a5c4-69b0a0026ac6" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "azure.application_id": "42cb59a9-d5be-400b-a5c4-69b0a0026ac6" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "App State Filters [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "azure.application_id", - "id": "1532342651170", - "indexPatternRefName": "control_0_index_pattern", - "label": "Application ID", - "options": { - "multiselect": true, - "order": "desc", - "size": 10, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.dimensions.request_url_host", - "id": "1601559750853", - "indexPatternRefName": "control_1_index_pattern", - "label": "Host URL", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "1532342651170", - "type": "list" - }, - { - "fieldName": "azure.dimensions.cloud_role_name", - "id": "1601640368472", - "indexPatternRefName": "control_2_index_pattern", - "label": "Name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "1532342651170", - "type": "list" - }, - { - "fieldName": "azure.dimensions.browser_timing_url_host", - "id": "1601640439434", - "indexPatternRefName": "control_3_index_pattern", - "label": "Browser URL Host", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "1532342651170", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "App State Filters [Metricbeat Azure]", - "type": "input_control_vis" - } - }, - "id": "2e5183a0-03da-11eb-8034-63f2039e9d3f", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_3_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-10-02T12:22:51.232Z", - "version": "WzMzMTIsMl0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"85644d0a-8011-45af-a751-7961b8bdd071\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true timeFields=\"@timestamp\" aggConfigs=\"[{\\\"id\\\":\\\"bcbccc16-d042-40fa-a9b2-0f09268281ff\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"date_histogram\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"@timestamp\\\",\\\"useNormalizedEsInterval\\\":true,\\\"interval\\\":\\\"auto\\\",\\\"drop_partials\\\":false,\\\"min_doc_count\\\":0,\\\"extended_bounds\\\":{}}},{\\\"id\\\":\\\"5788331a-267d-426a-a68e-94a5310af644\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.dimensions.exception_type\\\",\\\"orderBy\\\":\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\",\\\"order\\\":\\\"desc\\\",\\\"size\\\":3,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.app_state.exceptions_count.sum\\\",\\\"missing\\\":0}},{\\\"id\\\":\\\"e5c93c50-bb0a-4609-a7ce-7003f2f9a20e\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.app_state.exceptions_server.sum\\\",\\\"missing\\\":0}},{\\\"id\\\":\\\"9e183a5e-3dba-4929-b07e-2a3321f7926b\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.app_state.exceptions_browser.sum\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-bcbccc16-d042-40fa-a9b2-0f09268281ff\\\":{\\\"label\\\":\\\"@timestamp\\\",\\\"dataType\\\":\\\"date\\\",\\\"operationType\\\":\\\"date_histogram\\\",\\\"suggestedPriority\\\":1,\\\"sourceField\\\":\\\"@timestamp\\\",\\\"isBucketed\\\":true,\\\"scale\\\":\\\"interval\\\",\\\"params\\\":{\\\"interval\\\":\\\"auto\\\"},\\\"id\\\":\\\"bcbccc16-d042-40fa-a9b2-0f09268281ff\\\"},\\\"col-4-5788331a-267d-426a-a68e-94a5310af644\\\":{\\\"label\\\":\\\"Type\\\",\\\"dataType\\\":\\\"string\\\",\\\"operationType\\\":\\\"terms\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"azure.dimensions.exception_type\\\",\\\"isBucketed\\\":true,\\\"params\\\":{\\\"size\\\":3,\\\"orderBy\\\":{\\\"type\\\":\\\"column\\\",\\\"columnId\\\":\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\"},\\\"orderDirection\\\":\\\"desc\\\"},\\\"customLabel\\\":true,\\\"id\\\":\\\"5788331a-267d-426a-a68e-94a5310af644\\\"},\\\"col-5-b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\":{\\\"label\\\":\\\"Total\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"sourceField\\\":\\\"azure.app_state.exceptions_count.sum\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\"},\\\"col-6-e5c93c50-bb0a-4609-a7ce-7003f2f9a20e\\\":{\\\"label\\\":\\\"Server \\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"sourceField\\\":\\\"azure.app_state.exceptions_server.sum\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"e5c93c50-bb0a-4609-a7ce-7003f2f9a20e\\\"},\\\"col-7-9e183a5e-3dba-4929-b07e-2a3321f7926b\\\":{\\\"label\\\":\\\"Browser\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"sourceField\\\":\\\"azure.app_state.exceptions_browser.sum\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"9e183a5e-3dba-4929-b07e-2a3321f7926b\\\"}}\"}\n| lens_xy_chart xTitle=\"@timestamp\" yTitle=\"Total\" legend={lens_xy_legendConfig isVisible=true position=\"right\"} fittingFunction=\"None\" \n layers={lens_xy_layer layerId=\"85644d0a-8011-45af-a751-7961b8bdd071\" hide=false xAccessor=\"bcbccc16-d042-40fa-a9b2-0f09268281ff\" yScaleType=\"linear\" xScaleType=\"time\" isHistogram=true splitAccessor=\"5788331a-267d-426a-a68e-94a5310af644\" seriesType=\"area_stacked\" accessors=\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\" accessors=\"e5c93c50-bb0a-4609-a7ce-7003f2f9a20e\" accessors=\"9e183a5e-3dba-4929-b07e-2a3321f7926b\" columnToLabel=\"{\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\":\\\"Total\\\",\\\"e5c93c50-bb0a-4609-a7ce-7003f2f9a20e\\\":\\\"Server \\\",\\\"9e183a5e-3dba-4929-b07e-2a3321f7926b\\\":\\\"Browser\\\",\\\"5788331a-267d-426a-a68e-94a5310af644\\\":\\\"Type\\\"}\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "85644d0a-8011-45af-a751-7961b8bdd071": { - "columnOrder": [ - "bcbccc16-d042-40fa-a9b2-0f09268281ff", - "5788331a-267d-426a-a68e-94a5310af644", - "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba", - "e5c93c50-bb0a-4609-a7ce-7003f2f9a20e", - "9e183a5e-3dba-4929-b07e-2a3321f7926b" - ], - "columns": { - "5788331a-267d-426a-a68e-94a5310af644": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Type", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba", - "type": "column" - }, - "orderDirection": "desc", - "size": 3 - }, - "scale": "ordinal", - "sourceField": "azure.dimensions.exception_type" - }, - "9e183a5e-3dba-4929-b07e-2a3321f7926b": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Browser", - "operationType": "avg", - "scale": "ratio", - "sourceField": "azure.app_state.exceptions_browser.sum" - }, - "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Total", - "operationType": "avg", - "scale": "ratio", - "sourceField": "azure.app_state.exceptions_count.sum" - }, - "bcbccc16-d042-40fa-a9b2-0f09268281ff": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp", - "suggestedPriority": 1 - }, - "e5c93c50-bb0a-4609-a7ce-7003f2f9a20e": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Server ", - "operationType": "avg", - "scale": "ratio", - "sourceField": "azure.app_state.exceptions_server.sum" - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba", - "e5c93c50-bb0a-4609-a7ce-7003f2f9a20e", - "9e183a5e-3dba-4929-b07e-2a3321f7926b" - ], - "layerId": "85644d0a-8011-45af-a751-7961b8bdd071", - "position": "top", - "seriesType": "area_stacked", - "showGridlines": false, - "splitAccessor": "5788331a-267d-426a-a68e-94a5310af644", - "xAccessor": "bcbccc16-d042-40fa-a9b2-0f09268281ff" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "area_stacked" - } - }, - "title": "App state Exceptions [Metricbeat Azure]", - "visualizationType": "lnsXY" - }, - "id": "1064f9a0-04a5-11eb-8034-63f2039e9d3f", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-10-02T11:53:16.483Z", - "version": "WzI5NjMsMl0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"85644d0a-8011-45af-a751-7961b8bdd071\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true timeFields=\"@timestamp\" aggConfigs=\"[{\\\"id\\\":\\\"bcbccc16-d042-40fa-a9b2-0f09268281ff\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"date_histogram\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"@timestamp\\\",\\\"useNormalizedEsInterval\\\":true,\\\"interval\\\":\\\"auto\\\",\\\"drop_partials\\\":false,\\\"min_doc_count\\\":0,\\\"extended_bounds\\\":{}}},{\\\"id\\\":\\\"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.dimensions.cloud_role_instance\\\",\\\"orderBy\\\":\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\",\\\"order\\\":\\\"desc\\\",\\\"size\\\":3,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.app_state.performance_counters_memory_available_bytes.avg\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-bcbccc16-d042-40fa-a9b2-0f09268281ff\\\":{\\\"label\\\":\\\"@timestamp\\\",\\\"dataType\\\":\\\"date\\\",\\\"operationType\\\":\\\"date_histogram\\\",\\\"suggestedPriority\\\":1,\\\"sourceField\\\":\\\"@timestamp\\\",\\\"isBucketed\\\":true,\\\"scale\\\":\\\"interval\\\",\\\"params\\\":{\\\"interval\\\":\\\"auto\\\"},\\\"id\\\":\\\"bcbccc16-d042-40fa-a9b2-0f09268281ff\\\"},\\\"col-2-a1f669d0-c9f2-4bc5-9bdd-e40badd261b9\\\":{\\\"label\\\":\\\"Instance\\\",\\\"dataType\\\":\\\"string\\\",\\\"operationType\\\":\\\"terms\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"azure.dimensions.cloud_role_instance\\\",\\\"isBucketed\\\":true,\\\"params\\\":{\\\"size\\\":3,\\\"orderBy\\\":{\\\"type\\\":\\\"column\\\",\\\"columnId\\\":\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\"},\\\"orderDirection\\\":\\\"desc\\\"},\\\"customLabel\\\":true,\\\"id\\\":\\\"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9\\\"},\\\"col-3-b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\":{\\\"label\\\":\\\"Available memory\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"sourceField\\\":\\\"azure.app_state.performance_counters_memory_available_bytes.avg\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"params\\\":{\\\"format\\\":{\\\"id\\\":\\\"bytes\\\",\\\"params\\\":{\\\"decimals\\\":2}}},\\\"id\\\":\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\"}}\" | lens_format_column format=\"bytes\" columnId=\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\" decimals=2}\n| lens_xy_chart xTitle=\"@timestamp\" yTitle=\"Available memory\" legend={lens_xy_legendConfig isVisible=true position=\"right\"} fittingFunction=\"None\" \n layers={lens_xy_layer layerId=\"85644d0a-8011-45af-a751-7961b8bdd071\" hide=false xAccessor=\"bcbccc16-d042-40fa-a9b2-0f09268281ff\" yScaleType=\"linear\" xScaleType=\"time\" isHistogram=true splitAccessor=\"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9\" seriesType=\"area\" accessors=\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\" columnToLabel=\"{\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\":\\\"Available memory\\\",\\\"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9\\\":\\\"Instance\\\"}\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "85644d0a-8011-45af-a751-7961b8bdd071": { - "columnOrder": [ - "bcbccc16-d042-40fa-a9b2-0f09268281ff", - "a1f669d0-c9f2-4bc5-9bdd-e40badd261b9", - "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba" - ], - "columns": { - "a1f669d0-c9f2-4bc5-9bdd-e40badd261b9": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Instance", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba", - "type": "column" - }, - "orderDirection": "desc", - "size": 3 - }, - "scale": "ordinal", - "sourceField": "azure.dimensions.cloud_role_instance" - }, - "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Available memory", - "operationType": "avg", - "params": { - "format": { - "id": "bytes", - "params": { - "decimals": 2 - } - } - }, - "scale": "ratio", - "sourceField": "azure.app_state.performance_counters_memory_available_bytes.avg" - }, - "bcbccc16-d042-40fa-a9b2-0f09268281ff": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp", - "suggestedPriority": 1 - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba" - ], - "layerId": "85644d0a-8011-45af-a751-7961b8bdd071", - "position": "top", - "seriesType": "area", - "showGridlines": false, - "splitAccessor": "a1f669d0-c9f2-4bc5-9bdd-e40badd261b9", - "xAccessor": "bcbccc16-d042-40fa-a9b2-0f09268281ff" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "area" - } - }, - "title": "App state Memory [Metricbeat Azure]", - "visualizationType": "lnsXY" - }, - "id": "76cc1d70-04a7-11eb-8034-63f2039e9d3f", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-10-02T12:04:46.406Z", - "version": "WzMwNTcsMl0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"82e648a8-6d9a-4ae0-9449-b802ce1ac723\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true aggConfigs=\"[{\\\"id\\\":\\\"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.app_state.users_count.unique\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1\\\":{\\\"label\\\":\\\"Unique users\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"sourceField\\\":\\\"azure.app_state.users_count.unique\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1\\\"}}\"}\n| lens_metric_chart title=\"Unique users\" accessor=\"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1\" mode=\"full\"", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "82e648a8-6d9a-4ae0-9449-b802ce1ac723": { - "columnOrder": [ - "d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1" - ], - "columns": { - "d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Unique users", - "operationType": "avg", - "scale": "ratio", - "sourceField": "azure.app_state.users_count.unique" - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "accessor": "d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1", - "layerId": "82e648a8-6d9a-4ae0-9449-b802ce1ac723" - } - }, - "title": "App state Unique users [Metricbeat Azure]", - "visualizationType": "lnsMetric" - }, - "id": "a89c8fd0-03ec-11eb-8034-63f2039e9d3f", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-10-01T13:47:34.093Z", - "version": "WzEzMzAsMl0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"82e648a8-6d9a-4ae0-9449-b802ce1ac723\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true aggConfigs=\"[{\\\"id\\\":\\\"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.app_state.users_authenticated.unique\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1\\\":{\\\"label\\\":\\\"Unique authenticated users\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"sourceField\\\":\\\"azure.app_state.users_authenticated.unique\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1\\\"}}\"}\n| lens_metric_chart title=\"Unique authenticated users\" accessor=\"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1\" mode=\"full\"", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "82e648a8-6d9a-4ae0-9449-b802ce1ac723": { - "columnOrder": [ - "d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1" - ], - "columns": { - "d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Unique authenticated users", - "operationType": "avg", - "scale": "ratio", - "sourceField": "azure.app_state.users_authenticated.unique" - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "accessor": "d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1", - "layerId": "82e648a8-6d9a-4ae0-9449-b802ce1ac723" - } - }, - "title": "App state Unique authenticated users [Metricbeat Azure]", - "visualizationType": "lnsMetric" - }, - "id": "cb5ec410-03ed-11eb-8034-63f2039e9d3f", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-10-01T13:55:41.904Z", - "version": "WzE0MjAsMl0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"82e648a8-6d9a-4ae0-9449-b802ce1ac723\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true aggConfigs=\"[{\\\"id\\\":\\\"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.app_state.sessions_count.unique\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1\\\":{\\\"label\\\":\\\"Unique sessions\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"sourceField\\\":\\\"azure.app_state.sessions_count.unique\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1\\\"}}\"}\n| lens_metric_chart title=\"Unique sessions\" accessor=\"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1\" mode=\"full\"", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "82e648a8-6d9a-4ae0-9449-b802ce1ac723": { - "columnOrder": [ - "d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1" - ], - "columns": { - "d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Unique sessions", - "operationType": "avg", - "scale": "ratio", - "sourceField": "azure.app_state.sessions_count.unique" - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "accessor": "d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1", - "layerId": "82e648a8-6d9a-4ae0-9449-b802ce1ac723" - } - }, - "title": "App state Unique sessions [Metricbeat Azure]", - "visualizationType": "lnsMetric" - }, - "id": "0df175c0-03ee-11eb-8034-63f2039e9d3f", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-10-01T13:57:33.596Z", - "version": "WzE0NjAsMl0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"85644d0a-8011-45af-a751-7961b8bdd071\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true timeFields=\"@timestamp\" aggConfigs=\"[{\\\"id\\\":\\\"bcbccc16-d042-40fa-a9b2-0f09268281ff\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"date_histogram\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"@timestamp\\\",\\\"useNormalizedEsInterval\\\":true,\\\"interval\\\":\\\"auto\\\",\\\"drop_partials\\\":false,\\\"min_doc_count\\\":0,\\\"extended_bounds\\\":{}}},{\\\"id\\\":\\\"8864c98b-413a-484f-a61d-336a63ef3f13\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.dimensions.request_url_host\\\",\\\"orderBy\\\":\\\"9ec4d260-e302-46c4-ac09-50ef54627894\\\",\\\"order\\\":\\\"desc\\\",\\\"size\\\":3,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"9ec4d260-e302-46c4-ac09-50ef54627894\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.app_state.requests_count.sum\\\",\\\"missing\\\":0}},{\\\"id\\\":\\\"a47e59dc-fb62-42f8-90e1-236c7c5a073d\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.app_state.requests_failed.sum\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-bcbccc16-d042-40fa-a9b2-0f09268281ff\\\":{\\\"label\\\":\\\"@timestamp\\\",\\\"dataType\\\":\\\"date\\\",\\\"operationType\\\":\\\"date_histogram\\\",\\\"suggestedPriority\\\":1,\\\"sourceField\\\":\\\"@timestamp\\\",\\\"isBucketed\\\":true,\\\"scale\\\":\\\"interval\\\",\\\"params\\\":{\\\"interval\\\":\\\"auto\\\"},\\\"id\\\":\\\"bcbccc16-d042-40fa-a9b2-0f09268281ff\\\"},\\\"col-3-8864c98b-413a-484f-a61d-336a63ef3f13\\\":{\\\"label\\\":\\\"Host URL\\\",\\\"dataType\\\":\\\"string\\\",\\\"operationType\\\":\\\"terms\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"azure.dimensions.request_url_host\\\",\\\"isBucketed\\\":true,\\\"params\\\":{\\\"size\\\":3,\\\"orderBy\\\":{\\\"type\\\":\\\"column\\\",\\\"columnId\\\":\\\"9ec4d260-e302-46c4-ac09-50ef54627894\\\"},\\\"orderDirection\\\":\\\"desc\\\"},\\\"customLabel\\\":true,\\\"id\\\":\\\"8864c98b-413a-484f-a61d-336a63ef3f13\\\"},\\\"col-4-9ec4d260-e302-46c4-ac09-50ef54627894\\\":{\\\"label\\\":\\\"Total requests\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"sourceField\\\":\\\"azure.app_state.requests_count.sum\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"9ec4d260-e302-46c4-ac09-50ef54627894\\\"},\\\"col-5-a47e59dc-fb62-42f8-90e1-236c7c5a073d\\\":{\\\"label\\\":\\\"Failed requests\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"sourceField\\\":\\\"azure.app_state.requests_failed.sum\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"a47e59dc-fb62-42f8-90e1-236c7c5a073d\\\"}}\"}\n| lens_xy_chart xTitle=\"@timestamp\" yTitle=\"Total requests\" legend={lens_xy_legendConfig isVisible=true position=\"right\"} fittingFunction=\"None\" \n layers={lens_xy_layer layerId=\"85644d0a-8011-45af-a751-7961b8bdd071\" hide=false xAccessor=\"bcbccc16-d042-40fa-a9b2-0f09268281ff\" yScaleType=\"linear\" xScaleType=\"time\" isHistogram=true splitAccessor=\"8864c98b-413a-484f-a61d-336a63ef3f13\" seriesType=\"area\" accessors=\"9ec4d260-e302-46c4-ac09-50ef54627894\" accessors=\"a47e59dc-fb62-42f8-90e1-236c7c5a073d\" columnToLabel=\"{\\\"9ec4d260-e302-46c4-ac09-50ef54627894\\\":\\\"Total requests\\\",\\\"a47e59dc-fb62-42f8-90e1-236c7c5a073d\\\":\\\"Failed requests\\\",\\\"8864c98b-413a-484f-a61d-336a63ef3f13\\\":\\\"Host URL\\\"}\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "85644d0a-8011-45af-a751-7961b8bdd071": { - "columnOrder": [ - "bcbccc16-d042-40fa-a9b2-0f09268281ff", - "8864c98b-413a-484f-a61d-336a63ef3f13", - "9ec4d260-e302-46c4-ac09-50ef54627894", - "a47e59dc-fb62-42f8-90e1-236c7c5a073d" - ], - "columns": { - "8864c98b-413a-484f-a61d-336a63ef3f13": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Host URL", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "9ec4d260-e302-46c4-ac09-50ef54627894", - "type": "column" - }, - "orderDirection": "desc", - "size": 3 - }, - "scale": "ordinal", - "sourceField": "azure.dimensions.request_url_host" - }, - "9ec4d260-e302-46c4-ac09-50ef54627894": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Total requests", - "operationType": "avg", - "scale": "ratio", - "sourceField": "azure.app_state.requests_count.sum" - }, - "a47e59dc-fb62-42f8-90e1-236c7c5a073d": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Failed requests", - "operationType": "avg", - "scale": "ratio", - "sourceField": "azure.app_state.requests_failed.sum" - }, - "bcbccc16-d042-40fa-a9b2-0f09268281ff": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp", - "suggestedPriority": 1 - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "9ec4d260-e302-46c4-ac09-50ef54627894", - "a47e59dc-fb62-42f8-90e1-236c7c5a073d" - ], - "layerId": "85644d0a-8011-45af-a751-7961b8bdd071", - "position": "top", - "seriesType": "area", - "showGridlines": false, - "splitAccessor": "8864c98b-413a-484f-a61d-336a63ef3f13", - "xAccessor": "bcbccc16-d042-40fa-a9b2-0f09268281ff" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "area" - } - }, - "title": "App state Requests [Metricbeat Azure]", - "visualizationType": "lnsXY" - }, - "id": "f0678020-04a2-11eb-8034-63f2039e9d3f", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-10-02T11:32:22.946Z", - "version": "WzI0MzUsMl0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"85644d0a-8011-45af-a751-7961b8bdd071\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true timeFields=\"@timestamp\" aggConfigs=\"[{\\\"id\\\":\\\"bcbccc16-d042-40fa-a9b2-0f09268281ff\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"date_histogram\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"@timestamp\\\",\\\"useNormalizedEsInterval\\\":true,\\\"interval\\\":\\\"auto\\\",\\\"drop_partials\\\":false,\\\"min_doc_count\\\":0,\\\"extended_bounds\\\":{}}},{\\\"id\\\":\\\"4d4c068a-0194-4d54-a1fa-3863c3df9331\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.dimensions.browser_timing_url_path\\\",\\\"orderBy\\\":\\\"be6a3d8b-9428-480b-a7b3-071127726093\\\",\\\"order\\\":\\\"desc\\\",\\\"size\\\":3,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"be6a3d8b-9428-480b-a7b3-071127726093\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.app_state.browser_timings_send_duration.avg\\\",\\\"missing\\\":0}},{\\\"id\\\":\\\"6bc1fd35-168d-42d5-b9c8-7078896d8ce4\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.app_state.browser_timings_total_duration.avg\\\",\\\"missing\\\":0}},{\\\"id\\\":\\\"988e9976-3471-478c-89f6-11fd46458d7f\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.app_state.browser_timings_receive_duration.avg\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-bcbccc16-d042-40fa-a9b2-0f09268281ff\\\":{\\\"label\\\":\\\"@timestamp\\\",\\\"dataType\\\":\\\"date\\\",\\\"operationType\\\":\\\"date_histogram\\\",\\\"suggestedPriority\\\":1,\\\"sourceField\\\":\\\"@timestamp\\\",\\\"isBucketed\\\":true,\\\"scale\\\":\\\"interval\\\",\\\"params\\\":{\\\"interval\\\":\\\"auto\\\"},\\\"id\\\":\\\"bcbccc16-d042-40fa-a9b2-0f09268281ff\\\"},\\\"col-4-4d4c068a-0194-4d54-a1fa-3863c3df9331\\\":{\\\"label\\\":\\\"Url Path\\\",\\\"dataType\\\":\\\"string\\\",\\\"operationType\\\":\\\"terms\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"azure.dimensions.browser_timing_url_path\\\",\\\"isBucketed\\\":true,\\\"params\\\":{\\\"size\\\":3,\\\"orderBy\\\":{\\\"type\\\":\\\"column\\\",\\\"columnId\\\":\\\"be6a3d8b-9428-480b-a7b3-071127726093\\\"},\\\"orderDirection\\\":\\\"desc\\\"},\\\"customLabel\\\":true,\\\"id\\\":\\\"4d4c068a-0194-4d54-a1fa-3863c3df9331\\\"},\\\"col-5-be6a3d8b-9428-480b-a7b3-071127726093\\\":{\\\"label\\\":\\\"Send duration\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"sourceField\\\":\\\"azure.app_state.browser_timings_send_duration.avg\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"params\\\":{},\\\"customLabel\\\":true,\\\"id\\\":\\\"be6a3d8b-9428-480b-a7b3-071127726093\\\"},\\\"col-6-6bc1fd35-168d-42d5-b9c8-7078896d8ce4\\\":{\\\"label\\\":\\\"Total duration\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"sourceField\\\":\\\"azure.app_state.browser_timings_total_duration.avg\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"6bc1fd35-168d-42d5-b9c8-7078896d8ce4\\\"},\\\"col-7-988e9976-3471-478c-89f6-11fd46458d7f\\\":{\\\"label\\\":\\\"Receive duration\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"sourceField\\\":\\\"azure.app_state.browser_timings_receive_duration.avg\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"988e9976-3471-478c-89f6-11fd46458d7f\\\"}}\"}\n| lens_xy_chart xTitle=\"@timestamp\" yTitle=\"Send duration\" legend={lens_xy_legendConfig isVisible=true position=\"right\"} fittingFunction=\"None\" \n layers={lens_xy_layer layerId=\"85644d0a-8011-45af-a751-7961b8bdd071\" hide=false xAccessor=\"bcbccc16-d042-40fa-a9b2-0f09268281ff\" yScaleType=\"linear\" xScaleType=\"time\" isHistogram=true splitAccessor=\"4d4c068a-0194-4d54-a1fa-3863c3df9331\" seriesType=\"bar\" accessors=\"be6a3d8b-9428-480b-a7b3-071127726093\" accessors=\"6bc1fd35-168d-42d5-b9c8-7078896d8ce4\" accessors=\"988e9976-3471-478c-89f6-11fd46458d7f\" columnToLabel=\"{\\\"be6a3d8b-9428-480b-a7b3-071127726093\\\":\\\"Send duration\\\",\\\"6bc1fd35-168d-42d5-b9c8-7078896d8ce4\\\":\\\"Total duration\\\",\\\"988e9976-3471-478c-89f6-11fd46458d7f\\\":\\\"Receive duration\\\",\\\"4d4c068a-0194-4d54-a1fa-3863c3df9331\\\":\\\"Url Path\\\"}\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "85644d0a-8011-45af-a751-7961b8bdd071": { - "columnOrder": [ - "bcbccc16-d042-40fa-a9b2-0f09268281ff", - "4d4c068a-0194-4d54-a1fa-3863c3df9331", - "be6a3d8b-9428-480b-a7b3-071127726093", - "6bc1fd35-168d-42d5-b9c8-7078896d8ce4", - "988e9976-3471-478c-89f6-11fd46458d7f" - ], - "columns": { - "4d4c068a-0194-4d54-a1fa-3863c3df9331": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Url Path", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "be6a3d8b-9428-480b-a7b3-071127726093", - "type": "column" - }, - "orderDirection": "desc", - "size": 3 - }, - "scale": "ordinal", - "sourceField": "azure.dimensions.browser_timing_url_path" - }, - "6bc1fd35-168d-42d5-b9c8-7078896d8ce4": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Total duration", - "operationType": "avg", - "scale": "ratio", - "sourceField": "azure.app_state.browser_timings_total_duration.avg" - }, - "988e9976-3471-478c-89f6-11fd46458d7f": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Receive duration", - "operationType": "avg", - "scale": "ratio", - "sourceField": "azure.app_state.browser_timings_receive_duration.avg" - }, - "bcbccc16-d042-40fa-a9b2-0f09268281ff": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp", - "suggestedPriority": 1 - }, - "be6a3d8b-9428-480b-a7b3-071127726093": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Send duration", - "operationType": "avg", - "params": {}, - "scale": "ratio", - "sourceField": "azure.app_state.browser_timings_send_duration.avg" - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "be6a3d8b-9428-480b-a7b3-071127726093", - "6bc1fd35-168d-42d5-b9c8-7078896d8ce4", - "988e9976-3471-478c-89f6-11fd46458d7f" - ], - "layerId": "85644d0a-8011-45af-a751-7961b8bdd071", - "position": "top", - "seriesType": "bar", - "showGridlines": false, - "splitAccessor": "4d4c068a-0194-4d54-a1fa-3863c3df9331", - "xAccessor": "bcbccc16-d042-40fa-a9b2-0f09268281ff" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "bar" - } - }, - "title": "App state Browser Send/Receive Duration [Metricbeat Azure]", - "visualizationType": "lnsXY" - }, - "id": "e2704140-04a3-11eb-8034-63f2039e9d3f", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-10-02T11:39:09.012Z", - "version": "WzI2MzQsMl0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"85644d0a-8011-45af-a751-7961b8bdd071\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true timeFields=\"@timestamp\" aggConfigs=\"[{\\\"id\\\":\\\"bcbccc16-d042-40fa-a9b2-0f09268281ff\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"date_histogram\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"@timestamp\\\",\\\"useNormalizedEsInterval\\\":true,\\\"interval\\\":\\\"auto\\\",\\\"drop_partials\\\":false,\\\"min_doc_count\\\":0,\\\"extended_bounds\\\":{}}},{\\\"id\\\":\\\"4d4c068a-0194-4d54-a1fa-3863c3df9331\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.dimensions.browser_timing_url_path\\\",\\\"orderBy\\\":\\\"_key\\\",\\\"order\\\":\\\"asc\\\",\\\"size\\\":3,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"b5a75764-e98b-434b-a0f0-5658a4aa1cf6\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.app_state.browser_timings_network_duration.avg\\\",\\\"missing\\\":0}},{\\\"id\\\":\\\"ab158cba-532f-47f8-8450-db883504dc0f\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.app_state.browser_timings_processing_duration.avg\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-bcbccc16-d042-40fa-a9b2-0f09268281ff\\\":{\\\"label\\\":\\\"@timestamp\\\",\\\"dataType\\\":\\\"date\\\",\\\"operationType\\\":\\\"date_histogram\\\",\\\"suggestedPriority\\\":1,\\\"sourceField\\\":\\\"@timestamp\\\",\\\"isBucketed\\\":true,\\\"scale\\\":\\\"interval\\\",\\\"params\\\":{\\\"interval\\\":\\\"auto\\\"},\\\"id\\\":\\\"bcbccc16-d042-40fa-a9b2-0f09268281ff\\\"},\\\"col-3-4d4c068a-0194-4d54-a1fa-3863c3df9331\\\":{\\\"label\\\":\\\"Url Path\\\",\\\"dataType\\\":\\\"string\\\",\\\"operationType\\\":\\\"terms\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"azure.dimensions.browser_timing_url_path\\\",\\\"isBucketed\\\":true,\\\"params\\\":{\\\"size\\\":3,\\\"orderBy\\\":{\\\"type\\\":\\\"alphabetical\\\"},\\\"orderDirection\\\":\\\"asc\\\"},\\\"customLabel\\\":true,\\\"id\\\":\\\"4d4c068a-0194-4d54-a1fa-3863c3df9331\\\"},\\\"col-4-b5a75764-e98b-434b-a0f0-5658a4aa1cf6\\\":{\\\"label\\\":\\\"Networking duration\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"sourceField\\\":\\\"azure.app_state.browser_timings_network_duration.avg\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"b5a75764-e98b-434b-a0f0-5658a4aa1cf6\\\"},\\\"col-5-ab158cba-532f-47f8-8450-db883504dc0f\\\":{\\\"label\\\":\\\"Processing duration\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"sourceField\\\":\\\"azure.app_state.browser_timings_processing_duration.avg\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"ab158cba-532f-47f8-8450-db883504dc0f\\\"}}\"}\n| lens_xy_chart xTitle=\"@timestamp\" yTitle=\"Networking duration\" legend={lens_xy_legendConfig isVisible=true position=\"right\"} fittingFunction=\"None\" \n layers={lens_xy_layer layerId=\"85644d0a-8011-45af-a751-7961b8bdd071\" hide=false xAccessor=\"bcbccc16-d042-40fa-a9b2-0f09268281ff\" yScaleType=\"linear\" xScaleType=\"time\" isHistogram=true splitAccessor=\"4d4c068a-0194-4d54-a1fa-3863c3df9331\" seriesType=\"bar\" accessors=\"b5a75764-e98b-434b-a0f0-5658a4aa1cf6\" accessors=\"ab158cba-532f-47f8-8450-db883504dc0f\" columnToLabel=\"{\\\"b5a75764-e98b-434b-a0f0-5658a4aa1cf6\\\":\\\"Networking duration\\\",\\\"ab158cba-532f-47f8-8450-db883504dc0f\\\":\\\"Processing duration\\\",\\\"4d4c068a-0194-4d54-a1fa-3863c3df9331\\\":\\\"Url Path\\\"}\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "85644d0a-8011-45af-a751-7961b8bdd071": { - "columnOrder": [ - "bcbccc16-d042-40fa-a9b2-0f09268281ff", - "4d4c068a-0194-4d54-a1fa-3863c3df9331", - "b5a75764-e98b-434b-a0f0-5658a4aa1cf6", - "ab158cba-532f-47f8-8450-db883504dc0f" - ], - "columns": { - "4d4c068a-0194-4d54-a1fa-3863c3df9331": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Url Path", - "operationType": "terms", - "params": { - "orderBy": { - "type": "alphabetical" - }, - "orderDirection": "asc", - "size": 3 - }, - "scale": "ordinal", - "sourceField": "azure.dimensions.browser_timing_url_path" - }, - "ab158cba-532f-47f8-8450-db883504dc0f": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Processing duration", - "operationType": "avg", - "scale": "ratio", - "sourceField": "azure.app_state.browser_timings_processing_duration.avg" - }, - "b5a75764-e98b-434b-a0f0-5658a4aa1cf6": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Networking duration", - "operationType": "avg", - "scale": "ratio", - "sourceField": "azure.app_state.browser_timings_network_duration.avg" - }, - "bcbccc16-d042-40fa-a9b2-0f09268281ff": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp", - "suggestedPriority": 1 - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "b5a75764-e98b-434b-a0f0-5658a4aa1cf6", - "ab158cba-532f-47f8-8450-db883504dc0f" - ], - "layerId": "85644d0a-8011-45af-a751-7961b8bdd071", - "position": "top", - "seriesType": "bar", - "showGridlines": false, - "splitAccessor": "4d4c068a-0194-4d54-a1fa-3863c3df9331", - "xAccessor": "bcbccc16-d042-40fa-a9b2-0f09268281ff" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "bar" - } - }, - "title": "App state Browser Networking/Processing Duration [Metricbeat Azure]", - "visualizationType": "lnsXY" - }, - "id": "0e74dee0-04a4-11eb-8034-63f2039e9d3f", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-10-02T11:40:22.862Z", - "version": "WzI2ODQsMl0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"85644d0a-8011-45af-a751-7961b8bdd071\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true timeFields=\"@timestamp\" aggConfigs=\"[{\\\"id\\\":\\\"bcbccc16-d042-40fa-a9b2-0f09268281ff\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"date_histogram\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"@timestamp\\\",\\\"useNormalizedEsInterval\\\":true,\\\"interval\\\":\\\"auto\\\",\\\"drop_partials\\\":false,\\\"min_doc_count\\\":0,\\\"extended_bounds\\\":{}}},{\\\"id\\\":\\\"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.dimensions.cloud_role_instance\\\",\\\"orderBy\\\":\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\",\\\"order\\\":\\\"desc\\\",\\\"size\\\":3,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.app_state.performance_counters_process_cpu_percentage_total.avg\\\",\\\"missing\\\":0}},{\\\"id\\\":\\\"252dfd5f-26bd-4861-bb01-4b3530cadd95\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.app_state.performance_counters_process_cpu_percentage.avg\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-bcbccc16-d042-40fa-a9b2-0f09268281ff\\\":{\\\"label\\\":\\\"@timestamp\\\",\\\"dataType\\\":\\\"date\\\",\\\"operationType\\\":\\\"date_histogram\\\",\\\"suggestedPriority\\\":1,\\\"sourceField\\\":\\\"@timestamp\\\",\\\"isBucketed\\\":true,\\\"scale\\\":\\\"interval\\\",\\\"params\\\":{\\\"interval\\\":\\\"auto\\\"},\\\"id\\\":\\\"bcbccc16-d042-40fa-a9b2-0f09268281ff\\\"},\\\"col-3-a1f669d0-c9f2-4bc5-9bdd-e40badd261b9\\\":{\\\"label\\\":\\\"Instance\\\",\\\"dataType\\\":\\\"string\\\",\\\"operationType\\\":\\\"terms\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"azure.dimensions.cloud_role_instance\\\",\\\"isBucketed\\\":true,\\\"params\\\":{\\\"size\\\":3,\\\"orderBy\\\":{\\\"type\\\":\\\"column\\\",\\\"columnId\\\":\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\"},\\\"orderDirection\\\":\\\"desc\\\"},\\\"customLabel\\\":true,\\\"id\\\":\\\"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9\\\"},\\\"col-4-b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\":{\\\"label\\\":\\\"Total CPU percentage \\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"sourceField\\\":\\\"azure.app_state.performance_counters_process_cpu_percentage_total.avg\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"params\\\":{\\\"format\\\":{\\\"id\\\":\\\"percent\\\",\\\"params\\\":{\\\"decimals\\\":2}}},\\\"id\\\":\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\"},\\\"col-5-252dfd5f-26bd-4861-bb01-4b3530cadd95\\\":{\\\"label\\\":\\\"CPU percentage\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"sourceField\\\":\\\"azure.app_state.performance_counters_process_cpu_percentage.avg\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"params\\\":{\\\"format\\\":{\\\"id\\\":\\\"percent\\\",\\\"params\\\":{\\\"decimals\\\":2}}},\\\"customLabel\\\":true,\\\"id\\\":\\\"252dfd5f-26bd-4861-bb01-4b3530cadd95\\\"}}\" | lens_format_column format=\"percent\" columnId=\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\" decimals=2 | lens_format_column format=\"percent\" columnId=\"252dfd5f-26bd-4861-bb01-4b3530cadd95\" decimals=2}\n| lens_xy_chart xTitle=\"@timestamp\" yTitle=\"Total CPU percentage \" legend={lens_xy_legendConfig isVisible=true position=\"right\"} fittingFunction=\"None\" \n layers={lens_xy_layer layerId=\"85644d0a-8011-45af-a751-7961b8bdd071\" hide=false xAccessor=\"bcbccc16-d042-40fa-a9b2-0f09268281ff\" yScaleType=\"linear\" xScaleType=\"time\" isHistogram=true splitAccessor=\"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9\" seriesType=\"area\" accessors=\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\" accessors=\"252dfd5f-26bd-4861-bb01-4b3530cadd95\" columnToLabel=\"{\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\":\\\"Total CPU percentage \\\",\\\"252dfd5f-26bd-4861-bb01-4b3530cadd95\\\":\\\"CPU percentage\\\",\\\"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9\\\":\\\"Instance\\\"}\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "85644d0a-8011-45af-a751-7961b8bdd071": { - "columnOrder": [ - "bcbccc16-d042-40fa-a9b2-0f09268281ff", - "a1f669d0-c9f2-4bc5-9bdd-e40badd261b9", - "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba", - "252dfd5f-26bd-4861-bb01-4b3530cadd95" - ], - "columns": { - "252dfd5f-26bd-4861-bb01-4b3530cadd95": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "CPU percentage", - "operationType": "avg", - "params": { - "format": { - "id": "percent", - "params": { - "decimals": 2 - } - } - }, - "scale": "ratio", - "sourceField": "azure.app_state.performance_counters_process_cpu_percentage.avg" - }, - "a1f669d0-c9f2-4bc5-9bdd-e40badd261b9": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Instance", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba", - "type": "column" - }, - "orderDirection": "desc", - "size": 3 - }, - "scale": "ordinal", - "sourceField": "azure.dimensions.cloud_role_instance" - }, - "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Total CPU percentage ", - "operationType": "avg", - "params": { - "format": { - "id": "percent", - "params": { - "decimals": 2 - } - } - }, - "scale": "ratio", - "sourceField": "azure.app_state.performance_counters_process_cpu_percentage_total.avg" - }, - "bcbccc16-d042-40fa-a9b2-0f09268281ff": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp", - "suggestedPriority": 1 - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba", - "252dfd5f-26bd-4861-bb01-4b3530cadd95" - ], - "layerId": "85644d0a-8011-45af-a751-7961b8bdd071", - "position": "top", - "seriesType": "area", - "showGridlines": false, - "splitAccessor": "a1f669d0-c9f2-4bc5-9bdd-e40badd261b9", - "xAccessor": "bcbccc16-d042-40fa-a9b2-0f09268281ff" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "area" - } - }, - "title": "App state Process CPU usage [Metricbeat Azure]", - "visualizationType": "lnsXY" - }, - "id": "cfa361a0-04a8-11eb-8034-63f2039e9d3f", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-10-02T12:14:24.954Z", - "version": "WzMyNTMsMl0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"85644d0a-8011-45af-a751-7961b8bdd071\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true timeFields=\"@timestamp\" aggConfigs=\"[{\\\"id\\\":\\\"bcbccc16-d042-40fa-a9b2-0f09268281ff\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"date_histogram\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"@timestamp\\\",\\\"useNormalizedEsInterval\\\":true,\\\"interval\\\":\\\"auto\\\",\\\"drop_partials\\\":false,\\\"min_doc_count\\\":0,\\\"extended_bounds\\\":{}}},{\\\"id\\\":\\\"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.dimensions.cloud_role_instance\\\",\\\"orderBy\\\":\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\",\\\"order\\\":\\\"desc\\\",\\\"size\\\":3,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"azure.app_state.performance_counters_process_private_bytes.avg\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-bcbccc16-d042-40fa-a9b2-0f09268281ff\\\":{\\\"label\\\":\\\"@timestamp\\\",\\\"dataType\\\":\\\"date\\\",\\\"operationType\\\":\\\"date_histogram\\\",\\\"suggestedPriority\\\":1,\\\"sourceField\\\":\\\"@timestamp\\\",\\\"isBucketed\\\":true,\\\"scale\\\":\\\"interval\\\",\\\"params\\\":{\\\"interval\\\":\\\"auto\\\"},\\\"id\\\":\\\"bcbccc16-d042-40fa-a9b2-0f09268281ff\\\"},\\\"col-2-a1f669d0-c9f2-4bc5-9bdd-e40badd261b9\\\":{\\\"label\\\":\\\"Instance\\\",\\\"dataType\\\":\\\"string\\\",\\\"operationType\\\":\\\"terms\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"azure.dimensions.cloud_role_instance\\\",\\\"isBucketed\\\":true,\\\"params\\\":{\\\"size\\\":3,\\\"orderBy\\\":{\\\"type\\\":\\\"column\\\",\\\"columnId\\\":\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\"},\\\"orderDirection\\\":\\\"desc\\\"},\\\"customLabel\\\":true,\\\"id\\\":\\\"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9\\\"},\\\"col-3-b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\":{\\\"label\\\":\\\"Process private bytes\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"sourceField\\\":\\\"azure.app_state.performance_counters_process_private_bytes.avg\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"params\\\":{\\\"format\\\":{\\\"id\\\":\\\"bytes\\\",\\\"params\\\":{\\\"decimals\\\":2}}},\\\"id\\\":\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\"}}\" | lens_format_column format=\"bytes\" columnId=\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\" decimals=2}\n| lens_xy_chart xTitle=\"@timestamp\" yTitle=\"Process private bytes\" legend={lens_xy_legendConfig isVisible=true position=\"right\"} fittingFunction=\"None\" \n layers={lens_xy_layer layerId=\"85644d0a-8011-45af-a751-7961b8bdd071\" hide=false xAccessor=\"bcbccc16-d042-40fa-a9b2-0f09268281ff\" yScaleType=\"linear\" xScaleType=\"time\" isHistogram=true splitAccessor=\"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9\" seriesType=\"area\" accessors=\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\" columnToLabel=\"{\\\"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba\\\":\\\"Process private bytes\\\",\\\"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9\\\":\\\"Instance\\\"}\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "85644d0a-8011-45af-a751-7961b8bdd071": { - "columnOrder": [ - "bcbccc16-d042-40fa-a9b2-0f09268281ff", - "a1f669d0-c9f2-4bc5-9bdd-e40badd261b9", - "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba" - ], - "columns": { - "a1f669d0-c9f2-4bc5-9bdd-e40badd261b9": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Instance", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba", - "type": "column" - }, - "orderDirection": "desc", - "size": 3 - }, - "scale": "ordinal", - "sourceField": "azure.dimensions.cloud_role_instance" - }, - "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Process private bytes", - "operationType": "avg", - "params": { - "format": { - "id": "bytes", - "params": { - "decimals": 2 - } - } - }, - "scale": "ratio", - "sourceField": "azure.app_state.performance_counters_process_private_bytes.avg" - }, - "bcbccc16-d042-40fa-a9b2-0f09268281ff": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp", - "suggestedPriority": 1 - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba" - ], - "layerId": "85644d0a-8011-45af-a751-7961b8bdd071", - "position": "top", - "seriesType": "area", - "showGridlines": false, - "splitAccessor": "a1f669d0-c9f2-4bc5-9bdd-e40badd261b9", - "xAccessor": "bcbccc16-d042-40fa-a9b2-0f09268281ff" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "area" - } - }, - "title": "App state Process Private Bytes [Metricbeat Azure]", - "visualizationType": "lnsXY" - }, - "id": "2b54b2c0-04a8-11eb-8034-63f2039e9d3f", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-10-02T12:09:49.291Z", - "version": "WzMxMjMsMl0=" - } - ], - "version": "7.9.2" -} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-app-state-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-app-state-overview.ndjson new file mode 100644 index 00000000000..6c0da6e54f0 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-app-state-overview.ndjson @@ -0,0 +1,12 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"controlledBy\": \"1532342651170\", \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"azure.application_id\", \"negate\": false, \"params\": {\"query\": \"42cb59a9-d5be-400b-a5c4-69b0a0026ac6\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"azure.application_id\": \"42cb59a9-d5be-400b-a5c4-69b0a0026ac6\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"App State Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.application_id\",\"id\":\"1532342651170\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Application ID\",\"options\":{\"multiselect\":true,\"order\":\"desc\",\"size\":10,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.dimensions.request_url_host\",\"id\":\"1601559750853\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Host URL\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"1532342651170\",\"type\":\"list\"},{\"fieldName\":\"azure.dimensions.cloud_role_name\",\"id\":\"1601640368472\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"1532342651170\",\"type\":\"list\"},{\"fieldName\":\"azure.dimensions.browser_timing_url_host\",\"id\":\"1601640439434\",\"indexPatternRefName\":\"control_3_index_pattern\",\"label\":\"Browser URL Host\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"1532342651170\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"App State Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"2e5183a0-03da-11eb-8034-63f2039e9d3f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_3_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0ODgsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"85644d0a-8011-45af-a751-7961b8bdd071":{"columnOrder":["bcbccc16-d042-40fa-a9b2-0f09268281ff","5788331a-267d-426a-a68e-94a5310af644","b0d8f2d4-91f3-469c-8bcb-962a9fb48fba","e5c93c50-bb0a-4609-a7ce-7003f2f9a20e","9e183a5e-3dba-4929-b07e-2a3321f7926b"],"columns":{"5788331a-267d-426a-a68e-94a5310af644":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Type","operationType":"terms","params":{"orderBy":{"columnId":"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"azure.dimensions.exception_type"},"9e183a5e-3dba-4929-b07e-2a3321f7926b":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Browser","operationType":"average","scale":"ratio","sourceField":"azure.app_state.exceptions_browser.sum"},"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total","operationType":"average","scale":"ratio","sourceField":"azure.app_state.exceptions_count.sum"},"bcbccc16-d042-40fa-a9b2-0f09268281ff":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"e5c93c50-bb0a-4609-a7ce-7003f2f9a20e":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Server ","operationType":"average","scale":"ratio","sourceField":"azure.app_state.exceptions_server.sum"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["b0d8f2d4-91f3-469c-8bcb-962a9fb48fba","e5c93c50-bb0a-4609-a7ce-7003f2f9a20e","9e183a5e-3dba-4929-b07e-2a3321f7926b"],"layerId":"85644d0a-8011-45af-a751-7961b8bdd071","position":"top","seriesType":"area_stacked","showGridlines":false,"splitAccessor":"5788331a-267d-426a-a68e-94a5310af644","xAccessor":"bcbccc16-d042-40fa-a9b2-0f09268281ff"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"area_stacked"}},"title":"App state Exceptions [Metricbeat Azure]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"1064f9a0-04a5-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0ODksMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"85644d0a-8011-45af-a751-7961b8bdd071":{"columnOrder":["bcbccc16-d042-40fa-a9b2-0f09268281ff","a1f669d0-c9f2-4bc5-9bdd-e40badd261b9","b0d8f2d4-91f3-469c-8bcb-962a9fb48fba"],"columns":{"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Instance","operationType":"terms","params":{"orderBy":{"columnId":"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"azure.dimensions.cloud_role_instance"},"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Available memory","operationType":"average","params":{"format":{"id":"bytes","params":{"decimals":2}}},"scale":"ratio","sourceField":"azure.app_state.performance_counters_memory_available_bytes.avg"},"bcbccc16-d042-40fa-a9b2-0f09268281ff":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["b0d8f2d4-91f3-469c-8bcb-962a9fb48fba"],"layerId":"85644d0a-8011-45af-a751-7961b8bdd071","position":"top","seriesType":"area","showGridlines":false,"splitAccessor":"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9","xAccessor":"bcbccc16-d042-40fa-a9b2-0f09268281ff"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"area"}},"title":"App state Memory [Metricbeat Azure]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"76cc1d70-04a7-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0OTAsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"82e648a8-6d9a-4ae0-9449-b802ce1ac723":{"columnOrder":["d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1"],"columns":{"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Unique users","operationType":"average","scale":"ratio","sourceField":"azure.app_state.users_count.unique"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"accessor":"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1","layerId":"82e648a8-6d9a-4ae0-9449-b802ce1ac723"}},"title":"App state Unique users [Metricbeat Azure]","visualizationType":"lnsMetric"},"coreMigrationVersion":"8.0.0","id":"a89c8fd0-03ec-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-82e648a8-6d9a-4ae0-9449-b802ce1ac723","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0OTEsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"82e648a8-6d9a-4ae0-9449-b802ce1ac723":{"columnOrder":["d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1"],"columns":{"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Unique authenticated users","operationType":"average","scale":"ratio","sourceField":"azure.app_state.users_authenticated.unique"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"accessor":"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1","layerId":"82e648a8-6d9a-4ae0-9449-b802ce1ac723"}},"title":"App state Unique authenticated users [Metricbeat Azure]","visualizationType":"lnsMetric"},"coreMigrationVersion":"8.0.0","id":"cb5ec410-03ed-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-82e648a8-6d9a-4ae0-9449-b802ce1ac723","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0OTIsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"82e648a8-6d9a-4ae0-9449-b802ce1ac723":{"columnOrder":["d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1"],"columns":{"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Unique sessions","operationType":"average","scale":"ratio","sourceField":"azure.app_state.sessions_count.unique"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"accessor":"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1","layerId":"82e648a8-6d9a-4ae0-9449-b802ce1ac723"}},"title":"App state Unique sessions [Metricbeat Azure]","visualizationType":"lnsMetric"},"coreMigrationVersion":"8.0.0","id":"0df175c0-03ee-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-82e648a8-6d9a-4ae0-9449-b802ce1ac723","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0OTMsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"85644d0a-8011-45af-a751-7961b8bdd071":{"columnOrder":["bcbccc16-d042-40fa-a9b2-0f09268281ff","8864c98b-413a-484f-a61d-336a63ef3f13","9ec4d260-e302-46c4-ac09-50ef54627894","a47e59dc-fb62-42f8-90e1-236c7c5a073d"],"columns":{"8864c98b-413a-484f-a61d-336a63ef3f13":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Host URL","operationType":"terms","params":{"orderBy":{"columnId":"9ec4d260-e302-46c4-ac09-50ef54627894","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"azure.dimensions.request_url_host"},"9ec4d260-e302-46c4-ac09-50ef54627894":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total requests","operationType":"average","scale":"ratio","sourceField":"azure.app_state.requests_count.sum"},"a47e59dc-fb62-42f8-90e1-236c7c5a073d":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Failed requests","operationType":"average","scale":"ratio","sourceField":"azure.app_state.requests_failed.sum"},"bcbccc16-d042-40fa-a9b2-0f09268281ff":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["9ec4d260-e302-46c4-ac09-50ef54627894","a47e59dc-fb62-42f8-90e1-236c7c5a073d"],"layerId":"85644d0a-8011-45af-a751-7961b8bdd071","position":"top","seriesType":"area","showGridlines":false,"splitAccessor":"8864c98b-413a-484f-a61d-336a63ef3f13","xAccessor":"bcbccc16-d042-40fa-a9b2-0f09268281ff"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"area"}},"title":"App state Requests [Metricbeat Azure]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"f0678020-04a2-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0OTQsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"85644d0a-8011-45af-a751-7961b8bdd071":{"columnOrder":["bcbccc16-d042-40fa-a9b2-0f09268281ff","4d4c068a-0194-4d54-a1fa-3863c3df9331","be6a3d8b-9428-480b-a7b3-071127726093","6bc1fd35-168d-42d5-b9c8-7078896d8ce4","988e9976-3471-478c-89f6-11fd46458d7f"],"columns":{"4d4c068a-0194-4d54-a1fa-3863c3df9331":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Url Path","operationType":"terms","params":{"orderBy":{"columnId":"be6a3d8b-9428-480b-a7b3-071127726093","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"azure.dimensions.browser_timing_url_path"},"6bc1fd35-168d-42d5-b9c8-7078896d8ce4":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total duration","operationType":"average","scale":"ratio","sourceField":"azure.app_state.browser_timings_total_duration.avg"},"988e9976-3471-478c-89f6-11fd46458d7f":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Receive duration","operationType":"average","scale":"ratio","sourceField":"azure.app_state.browser_timings_receive_duration.avg"},"bcbccc16-d042-40fa-a9b2-0f09268281ff":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"be6a3d8b-9428-480b-a7b3-071127726093":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Send duration","operationType":"average","params":{},"scale":"ratio","sourceField":"azure.app_state.browser_timings_send_duration.avg"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["be6a3d8b-9428-480b-a7b3-071127726093","6bc1fd35-168d-42d5-b9c8-7078896d8ce4","988e9976-3471-478c-89f6-11fd46458d7f"],"layerId":"85644d0a-8011-45af-a751-7961b8bdd071","position":"top","seriesType":"bar","showGridlines":false,"splitAccessor":"4d4c068a-0194-4d54-a1fa-3863c3df9331","xAccessor":"bcbccc16-d042-40fa-a9b2-0f09268281ff"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar"}},"title":"App state Browser Send/Receive Duration [Metricbeat Azure]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"e2704140-04a3-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0OTUsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"85644d0a-8011-45af-a751-7961b8bdd071":{"columnOrder":["bcbccc16-d042-40fa-a9b2-0f09268281ff","4d4c068a-0194-4d54-a1fa-3863c3df9331","b5a75764-e98b-434b-a0f0-5658a4aa1cf6","ab158cba-532f-47f8-8450-db883504dc0f"],"columns":{"4d4c068a-0194-4d54-a1fa-3863c3df9331":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Url Path","operationType":"terms","params":{"orderBy":{"type":"alphabetical"},"orderDirection":"asc","size":3},"scale":"ordinal","sourceField":"azure.dimensions.browser_timing_url_path"},"ab158cba-532f-47f8-8450-db883504dc0f":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Processing duration","operationType":"average","scale":"ratio","sourceField":"azure.app_state.browser_timings_processing_duration.avg"},"b5a75764-e98b-434b-a0f0-5658a4aa1cf6":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Networking duration","operationType":"average","scale":"ratio","sourceField":"azure.app_state.browser_timings_network_duration.avg"},"bcbccc16-d042-40fa-a9b2-0f09268281ff":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["b5a75764-e98b-434b-a0f0-5658a4aa1cf6","ab158cba-532f-47f8-8450-db883504dc0f"],"layerId":"85644d0a-8011-45af-a751-7961b8bdd071","position":"top","seriesType":"bar","showGridlines":false,"splitAccessor":"4d4c068a-0194-4d54-a1fa-3863c3df9331","xAccessor":"bcbccc16-d042-40fa-a9b2-0f09268281ff"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar"}},"title":"App state Browser Networking/Processing Duration [Metricbeat Azure]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"0e74dee0-04a4-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0OTYsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"85644d0a-8011-45af-a751-7961b8bdd071":{"columnOrder":["bcbccc16-d042-40fa-a9b2-0f09268281ff","a1f669d0-c9f2-4bc5-9bdd-e40badd261b9","b0d8f2d4-91f3-469c-8bcb-962a9fb48fba","252dfd5f-26bd-4861-bb01-4b3530cadd95"],"columns":{"252dfd5f-26bd-4861-bb01-4b3530cadd95":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"CPU percentage","operationType":"average","params":{"format":{"id":"percent","params":{"decimals":2}}},"scale":"ratio","sourceField":"azure.app_state.performance_counters_process_cpu_percentage.avg"},"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Instance","operationType":"terms","params":{"orderBy":{"columnId":"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"azure.dimensions.cloud_role_instance"},"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total CPU percentage ","operationType":"average","params":{"format":{"id":"percent","params":{"decimals":2}}},"scale":"ratio","sourceField":"azure.app_state.performance_counters_process_cpu_percentage_total.avg"},"bcbccc16-d042-40fa-a9b2-0f09268281ff":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["b0d8f2d4-91f3-469c-8bcb-962a9fb48fba","252dfd5f-26bd-4861-bb01-4b3530cadd95"],"layerId":"85644d0a-8011-45af-a751-7961b8bdd071","position":"top","seriesType":"area","showGridlines":false,"splitAccessor":"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9","xAccessor":"bcbccc16-d042-40fa-a9b2-0f09268281ff"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"area"}},"title":"App state Process CPU usage [Metricbeat Azure]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"cfa361a0-04a8-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0OTcsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"85644d0a-8011-45af-a751-7961b8bdd071":{"columnOrder":["bcbccc16-d042-40fa-a9b2-0f09268281ff","a1f669d0-c9f2-4bc5-9bdd-e40badd261b9","b0d8f2d4-91f3-469c-8bcb-962a9fb48fba"],"columns":{"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Instance","operationType":"terms","params":{"orderBy":{"columnId":"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"azure.dimensions.cloud_role_instance"},"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Process private bytes","operationType":"average","params":{"format":{"id":"bytes","params":{"decimals":2}}},"scale":"ratio","sourceField":"azure.app_state.performance_counters_process_private_bytes.avg"},"bcbccc16-d042-40fa-a9b2-0f09268281ff":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["b0d8f2d4-91f3-469c-8bcb-962a9fb48fba"],"layerId":"85644d0a-8011-45af-a751-7961b8bdd071","position":"top","seriesType":"area","showGridlines":false,"splitAccessor":"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9","xAccessor":"bcbccc16-d042-40fa-a9b2-0f09268281ff"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"area"}},"title":"App state Process Private Bytes [Metricbeat Azure]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"2b54b2c0-04a8-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0OTgsMV0="} +{"attributes":{"description":"Provides relevant app insights metrics for web applications","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"controlledBy\": \"1532342651170\", \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"azure.app_state.application_id\", \"negate\": false, \"params\": {\"query\": \"42cb59a9-d5be-400b-a5c4-69b0a0026ac6\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"azure.app_state.application_id\": \"42cb59a9-d5be-400b-a5c4-69b0a0026ac6\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"307a1ecd-284c-4f35-9a3c-d5b77c9a9c82\",\"w\":7,\"x\":0,\"y\":0},\"panelIndex\":\"307a1ecd-284c-4f35-9a3c-d5b77c9a9c82\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_307a1ecd-284c-4f35-9a3c-d5b77c9a9c82\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"654e745f-360d-4898-89b6-57f788c5f540\",\"w\":20,\"x\":7,\"y\":0},\"panelIndex\":\"654e745f-360d-4898-89b6-57f788c5f540\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Exceptions\",\"panelRefName\":\"panel_654e745f-360d-4898-89b6-57f788c5f540\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"5adca737-559d-4b4f-9fa7-58841daa99c5\",\"w\":21,\"x\":27,\"y\":0},\"panelIndex\":\"5adca737-559d-4b4f-9fa7-58841daa99c5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Available Memory\",\"panelRefName\":\"panel_5adca737-559d-4b4f-9fa7-58841daa99c5\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"531cf244-45e0-43c3-9920-8f32397bd973\",\"w\":8,\"x\":0,\"y\":15},\"panelIndex\":\"531cf244-45e0-43c3-9920-8f32397bd973\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_531cf244-45e0-43c3-9920-8f32397bd973\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"b9242495-babc-48a7-9ad7-56c62b1dc117\",\"w\":8,\"x\":8,\"y\":15},\"panelIndex\":\"b9242495-babc-48a7-9ad7-56c62b1dc117\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_b9242495-babc-48a7-9ad7-56c62b1dc117\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"d311025a-f5c5-4e48-9f1c-710f59264c43\",\"w\":8,\"x\":16,\"y\":15},\"panelIndex\":\"d311025a-f5c5-4e48-9f1c-710f59264c43\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_d311025a-f5c5-4e48-9f1c-710f59264c43\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"48974418-b1f7-4050-921e-a83771e125ae\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"48974418-b1f7-4050-921e-a83771e125ae\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Requests\",\"panelRefName\":\"panel_48974418-b1f7-4050-921e-a83771e125ae\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"39d20db1-316a-4ff3-811a-5571cb4497c3\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"39d20db1-316a-4ff3-811a-5571cb4497c3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Browser Send/Receive Duration\",\"panelRefName\":\"panel_39d20db1-316a-4ff3-811a-5571cb4497c3\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"bc810208-0395-4c70-9057-d7307e064e43\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"bc810208-0395-4c70-9057-d7307e064e43\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Browser Networking/Processing Duration\",\"panelRefName\":\"panel_bc810208-0395-4c70-9057-d7307e064e43\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"ecf6fbfa-ba65-481e-af85-07fd9d5feb5f\",\"w\":24,\"x\":0,\"y\":45},\"panelIndex\":\"ecf6fbfa-ba65-481e-af85-07fd9d5feb5f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Process CPU Usage\",\"panelRefName\":\"panel_ecf6fbfa-ba65-481e-af85-07fd9d5feb5f\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"40a1b80b-cd62-446d-91aa-a971bb3769e7\",\"w\":24,\"x\":24,\"y\":45},\"panelIndex\":\"40a1b80b-cd62-446d-91aa-a971bb3769e7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Process Private Bytes\",\"panelRefName\":\"panel_40a1b80b-cd62-446d-91aa-a971bb3769e7\"}]","timeRestore":false,"title":"[Metricbeat Azure] App State Overview","version":1},"coreMigrationVersion":"8.0.0","id":"d5fbd610-03d9-11eb-8034-63f2039e9d3f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"2e5183a0-03da-11eb-8034-63f2039e9d3f","name":"307a1ecd-284c-4f35-9a3c-d5b77c9a9c82:panel_307a1ecd-284c-4f35-9a3c-d5b77c9a9c82","type":"visualization"},{"id":"1064f9a0-04a5-11eb-8034-63f2039e9d3f","name":"654e745f-360d-4898-89b6-57f788c5f540:panel_654e745f-360d-4898-89b6-57f788c5f540","type":"lens"},{"id":"76cc1d70-04a7-11eb-8034-63f2039e9d3f","name":"5adca737-559d-4b4f-9fa7-58841daa99c5:panel_5adca737-559d-4b4f-9fa7-58841daa99c5","type":"lens"},{"id":"a89c8fd0-03ec-11eb-8034-63f2039e9d3f","name":"531cf244-45e0-43c3-9920-8f32397bd973:panel_531cf244-45e0-43c3-9920-8f32397bd973","type":"lens"},{"id":"cb5ec410-03ed-11eb-8034-63f2039e9d3f","name":"b9242495-babc-48a7-9ad7-56c62b1dc117:panel_b9242495-babc-48a7-9ad7-56c62b1dc117","type":"lens"},{"id":"0df175c0-03ee-11eb-8034-63f2039e9d3f","name":"d311025a-f5c5-4e48-9f1c-710f59264c43:panel_d311025a-f5c5-4e48-9f1c-710f59264c43","type":"lens"},{"id":"f0678020-04a2-11eb-8034-63f2039e9d3f","name":"48974418-b1f7-4050-921e-a83771e125ae:panel_48974418-b1f7-4050-921e-a83771e125ae","type":"lens"},{"id":"e2704140-04a3-11eb-8034-63f2039e9d3f","name":"39d20db1-316a-4ff3-811a-5571cb4497c3:panel_39d20db1-316a-4ff3-811a-5571cb4497c3","type":"lens"},{"id":"0e74dee0-04a4-11eb-8034-63f2039e9d3f","name":"bc810208-0395-4c70-9057-d7307e064e43:panel_bc810208-0395-4c70-9057-d7307e064e43","type":"lens"},{"id":"cfa361a0-04a8-11eb-8034-63f2039e9d3f","name":"ecf6fbfa-ba65-481e-af85-07fd9d5feb5f:panel_ecf6fbfa-ba65-481e-af85-07fd9d5feb5f","type":"lens"},{"id":"2b54b2c0-04a8-11eb-8034-63f2039e9d3f","name":"40a1b80b-cd62-446d-91aa-a971bb3769e7:panel_40a1b80b-cd62-446d-91aa-a971bb3769e7","type":"lens"}],"type":"dashboard","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0ODcsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-billing-overview.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-billing-overview.json deleted file mode 100644 index 0776c3128e3..00000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-billing-overview.json +++ /dev/null @@ -1,760 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This dashboard gives an overview of resource costs and forecast", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "3202a4c8-ed88-4592-9d39-73846426413b", - "w": 48, - "x": 0, - "y": 0 - }, - "panelIndex": "3202a4c8-ed88-4592-9d39-73846426413b", - "panelRefName": "panel_0", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "title": "Subscriptions" - }, - "gridData": { - "h": 16, - "i": "c18f8802-6189-4966-abe5-30bf2c7c6d63", - "w": 15, - "x": 0, - "y": 5 - }, - "panelIndex": "c18f8802-6189-4966-abe5-30bf2c7c6d63", - "panelRefName": "panel_1", - "title": "Subscriptions", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "title": "Resource groups" - }, - "gridData": { - "h": 16, - "i": "0a93b125-de04-466e-a1d0-7b56d1b31b52", - "w": 16, - "x": 15, - "y": 5 - }, - "panelIndex": "0a93b125-de04-466e-a1d0-7b56d1b31b52", - "panelRefName": "panel_2", - "title": "Resource groups", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "title": "Resources" - }, - "gridData": { - "h": 16, - "i": "f6b54b8f-b9e5-4c20-9e4c-8f83935ca739", - "w": 17, - "x": 31, - "y": 5 - }, - "panelIndex": "f6b54b8f-b9e5-4c20-9e4c-8f83935ca739", - "panelRefName": "panel_3", - "title": "Resources", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "title": "Forecast" - }, - "gridData": { - "h": 17, - "i": "323f890e-c4d6-4c84-a3d8-f3d4277d3c2f", - "w": 48, - "x": 0, - "y": 21 - }, - "panelIndex": "323f890e-c4d6-4c84-a3d8-f3d4277d3c2f", - "panelRefName": "panel_4", - "title": "Forecast", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": { - "title": "Daily usage" - }, - "gridData": { - "h": 15, - "i": "fb121db4-1343-4e4d-b1a3-e3f3531ae045", - "w": 48, - "x": 0, - "y": 38 - }, - "panelIndex": "fb121db4-1343-4e4d-b1a3-e3f3531ae045", - "panelRefName": "panel_5", - "title": "Daily usage", - "version": "8.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Metricbeat Azure] Billing overview", - "version": 1 - }, - "id": "d3efeb30-c1c7-11ea-b7e7-0f48178cdb3c", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "82a51dd0-c1d7-11ea-b7e7-0f48178cdb3c", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "6ffa7e20-c1da-11ea-b7e7-0f48178cdb3c", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "b18053b0-c1da-11ea-b7e7-0f48178cdb3c", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "c8016f70-c1da-11ea-b7e7-0f48178cdb3c", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "9142aca0-c1c7-11ea-b7e7-0f48178cdb3c", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "05d5b3e0-c1c9-11ea-b7e7-0f48178cdb3c", - "name": "panel_5", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-07-09T12:59:36.436Z", - "version": "WzMyNjMsOF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Billing Filters [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "azure.billing.department_name", - "id": "1594294278147", - "indexPatternRefName": "control_0_index_pattern", - "label": "Department", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.billing.account_name", - "id": "1594294329560", - "indexPatternRefName": "control_1_index_pattern", - "label": "Account", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.subscription_id", - "id": "1549397251041", - "indexPatternRefName": "control_2_index_pattern", - "label": "Subscription", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.group", - "id": "1549512142947", - "indexPatternRefName": "control_3_index_pattern", - "label": "Resource Group", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.name", - "id": "1578578146383", - "indexPatternRefName": "control_4_index_pattern", - "label": "Resource Name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "Billing Filters [Metricbeat Azure]", - "type": "input_control_vis" - } - }, - "id": "82a51dd0-c1d7-11ea-b7e7-0f48178cdb3c", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_3_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_4_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-07-09T11:41:03.757Z", - "version": "WzMxMzksOF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Billing subscriptions [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Total costs", - "field": "azure.billing.pretax_cost" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "azure.subscription_id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Billing subscriptions [Metricbeat Azure]", - "type": "pie" - } - }, - "id": "6ffa7e20-c1da-11ea-b7e7-0f48178cdb3c", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-07-09T11:50:51.393Z", - "version": "WzMyMjYsOF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Billing resource groups [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Total costs", - "field": "azure.billing.pretax_cost" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "azure.resource.group", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "row": true, - "type": "pie" - }, - "title": "Billing resource groups [Metricbeat Azure]", - "type": "pie" - } - }, - "id": "b18053b0-c1da-11ea-b7e7-0f48178cdb3c", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-07-09T11:52:41.323Z", - "version": "WzMyMjcsOF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Billing resource names [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Total costs", - "field": "azure.billing.pretax_cost" - }, - "schema": "metric", - "type": "sum" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "azure.resource.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": true, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "row": true, - "type": "pie" - }, - "title": "Billing resource names [Metricbeat Azure]", - "type": "pie" - } - }, - "id": "c8016f70-c1da-11ea-b7e7-0f48178cdb3c", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-07-09T11:53:19.079Z", - "version": "WzMyMjgsOF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Charges Forecast [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "1f64e4e0-c1c7-11ea-879f-d1f118e66220" - } - ], - "bar_color_rules": [ - { - "id": "20dbcd70-c1c7-11ea-879f-d1f118e66220" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "gauge_color_rules": [ - { - "id": "22692430-c1c7-11ea-879f-d1f118e66220" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "24h", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(25,77,51,1)", - "fill": "0.7", - "formatter": "number", - "hide_in_legend": 0, - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Actual costs", - "line_width": 1, - "metrics": [ - { - "agg_with": "avg", - "field": "azure.billing.actual_cost", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "override_index_pattern": 0, - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "everything", - "stacked": "none", - "steps": 1, - "terms_field": "azure.billing.usage_date", - "type": "timeseries", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0.5", - "formatter": "number", - "id": "d09632c0-c120-11ea-b262-d3ff1f3885f8", - "label": "Forecast costs", - "line_width": "2", - "metrics": [ - { - "agg_with": "avg", - "field": "azure.billing.forecast_cost", - "id": "d09632c1-c120-11ea-b262-d3ff1f3885f8", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "offset_time": "", - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "azure.billing.usage_date", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Charges Forecast [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "9142aca0-c1c7-11ea-b7e7-0f48178cdb3c", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-07-09T09:45:25.575Z", - "version": "WzMwMTEsOF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Usage Details [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "1f64e4e0-c1c7-11ea-879f-d1f118e66220" - } - ], - "bar_color_rules": [ - { - "id": "20dbcd70-c1c7-11ea-879f-d1f118e66220" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "gauge_color_rules": [ - { - "id": "22692430-c1c7-11ea-879f-d1f118e66220" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "24h", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "rgba(22,165,165,1)", - "fill": "0.5", - "formatter": "number", - "id": "d09632c0-c120-11ea-b262-d3ff1f3885f8", - "label": "Usage Details", - "line_width": "2", - "metrics": [ - { - "agg_with": "sum", - "field": "azure.billing.pretax_cost", - "id": "d09632c1-c120-11ea-b262-d3ff1f3885f8", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "sum" - } - ], - "offset_time": "", - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "azure.billing.usage_start", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Usage Details [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "05d5b3e0-c1c9-11ea-b7e7-0f48178cdb3c", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-07-09T11:36:42.328Z", - "version": "WzMwOTQsOF0=" - } - ], - "version": "8.0.0-SNAPSHOT" -} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-billing-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-billing-overview.ndjson new file mode 100644 index 00000000000..e4f05aebca8 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-billing-overview.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Billing Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.billing.department_name\",\"id\":\"1594294278147\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Department\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.billing.account_name\",\"id\":\"1594294329560\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Account\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.subscription_id\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_3_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1578578146383\",\"indexPatternRefName\":\"control_4_index_pattern\",\"label\":\"Resource Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Billing Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"82a51dd0-c1d7-11ea-b7e7-0f48178cdb3c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_3_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_4_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:43.912Z","version":"WzM1MDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Billing subscriptions [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total costs\",\"field\":\"azure.billing.pretax_cost\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"azure.subscription_id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Billing subscriptions [Metricbeat Azure]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"6ffa7e20-c1da-11ea-b7e7-0f48178cdb3c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:43.912Z","version":"WzM1MDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Billing resource groups [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total costs\",\"field\":\"azure.billing.pretax_cost\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"azure.resource.group\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"row\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Billing resource groups [Metricbeat Azure]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"b18053b0-c1da-11ea-b7e7-0f48178cdb3c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:43.912Z","version":"WzM1MDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Billing resource names [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total costs\",\"field\":\"azure.billing.pretax_cost\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"azure.resource.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"row\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Billing resource names [Metricbeat Azure]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"c8016f70-c1da-11ea-b7e7-0f48178cdb3c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:43.912Z","version":"WzM1MDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Charges Forecast [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"1f64e4e0-c1c7-11ea-879f-d1f118e66220\"}],\"bar_color_rules\":[{\"id\":\"20dbcd70-c1c7-11ea-879f-d1f118e66220\"}],\"drop_last_bucket\":1,\"gauge_color_rules\":[{\"id\":\"22692430-c1c7-11ea-879f-d1f118e66220\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"24h\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(25,77,51,1)\",\"fill\":\"0.7\",\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Actual costs\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"azure.billing.actual_cost\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"override_index_pattern\":0,\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":1,\"terms_field\":\"azure.billing.usage_date\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"d09632c0-c120-11ea-b262-d3ff1f3885f8\",\"label\":\"Forecast costs\",\"line_width\":\"2\",\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"azure.billing.forecast_cost\",\"id\":\"d09632c1-c120-11ea-b262-d3ff1f3885f8\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"offset_time\":\"\",\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"azure.billing.usage_date\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Charges Forecast [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9142aca0-c1c7-11ea-b7e7-0f48178cdb3c","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:43.912Z","version":"WzM1MDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Usage Details [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"1f64e4e0-c1c7-11ea-879f-d1f118e66220\"}],\"bar_color_rules\":[{\"id\":\"20dbcd70-c1c7-11ea-879f-d1f118e66220\"}],\"drop_last_bucket\":1,\"gauge_color_rules\":[{\"id\":\"22692430-c1c7-11ea-879f-d1f118e66220\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"24h\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"d09632c0-c120-11ea-b262-d3ff1f3885f8\",\"label\":\"Usage Details\",\"line_width\":\"2\",\"metrics\":[{\"agg_with\":\"sum\",\"field\":\"azure.billing.pretax_cost\",\"id\":\"d09632c1-c120-11ea-b262-d3ff1f3885f8\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"sum\"}],\"offset_time\":\"\",\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"azure.billing.usage_start\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Usage Details [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"05d5b3e0-c1c9-11ea-b7e7-0f48178cdb3c","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:43.912Z","version":"WzM1MDUsMV0="} +{"attributes":{"description":"This dashboard gives an overview of resource costs and forecast","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"3202a4c8-ed88-4592-9d39-73846426413b\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"3202a4c8-ed88-4592-9d39-73846426413b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_3202a4c8-ed88-4592-9d39-73846426413b\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"c18f8802-6189-4966-abe5-30bf2c7c6d63\",\"w\":15,\"x\":0,\"y\":5},\"panelIndex\":\"c18f8802-6189-4966-abe5-30bf2c7c6d63\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Subscriptions\",\"panelRefName\":\"panel_c18f8802-6189-4966-abe5-30bf2c7c6d63\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"0a93b125-de04-466e-a1d0-7b56d1b31b52\",\"w\":16,\"x\":15,\"y\":5},\"panelIndex\":\"0a93b125-de04-466e-a1d0-7b56d1b31b52\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Resource groups\",\"panelRefName\":\"panel_0a93b125-de04-466e-a1d0-7b56d1b31b52\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"f6b54b8f-b9e5-4c20-9e4c-8f83935ca739\",\"w\":17,\"x\":31,\"y\":5},\"panelIndex\":\"f6b54b8f-b9e5-4c20-9e4c-8f83935ca739\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Resources\",\"panelRefName\":\"panel_f6b54b8f-b9e5-4c20-9e4c-8f83935ca739\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":17,\"i\":\"323f890e-c4d6-4c84-a3d8-f3d4277d3c2f\",\"w\":48,\"x\":0,\"y\":21},\"panelIndex\":\"323f890e-c4d6-4c84-a3d8-f3d4277d3c2f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Forecast\",\"panelRefName\":\"panel_323f890e-c4d6-4c84-a3d8-f3d4277d3c2f\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"fb121db4-1343-4e4d-b1a3-e3f3531ae045\",\"w\":48,\"x\":0,\"y\":38},\"panelIndex\":\"fb121db4-1343-4e4d-b1a3-e3f3531ae045\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Daily usage\",\"panelRefName\":\"panel_fb121db4-1343-4e4d-b1a3-e3f3531ae045\"}]","timeRestore":false,"title":"[Metricbeat Azure] Billing overview","version":1},"coreMigrationVersion":"8.0.0","id":"d3efeb30-c1c7-11ea-b7e7-0f48178cdb3c","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"82a51dd0-c1d7-11ea-b7e7-0f48178cdb3c","name":"3202a4c8-ed88-4592-9d39-73846426413b:panel_3202a4c8-ed88-4592-9d39-73846426413b","type":"visualization"},{"id":"6ffa7e20-c1da-11ea-b7e7-0f48178cdb3c","name":"c18f8802-6189-4966-abe5-30bf2c7c6d63:panel_c18f8802-6189-4966-abe5-30bf2c7c6d63","type":"visualization"},{"id":"b18053b0-c1da-11ea-b7e7-0f48178cdb3c","name":"0a93b125-de04-466e-a1d0-7b56d1b31b52:panel_0a93b125-de04-466e-a1d0-7b56d1b31b52","type":"visualization"},{"id":"c8016f70-c1da-11ea-b7e7-0f48178cdb3c","name":"f6b54b8f-b9e5-4c20-9e4c-8f83935ca739:panel_f6b54b8f-b9e5-4c20-9e4c-8f83935ca739","type":"visualization"},{"id":"9142aca0-c1c7-11ea-b7e7-0f48178cdb3c","name":"323f890e-c4d6-4c84-a3d8-f3d4277d3c2f:panel_323f890e-c4d6-4c84-a3d8-f3d4277d3c2f","type":"visualization"},{"id":"05d5b3e0-c1c9-11ea-b7e7-0f48178cdb3c","name":"fb121db4-1343-4e4d-b1a3-e3f3531ae045:panel_fb121db4-1343-4e4d-b1a3-e3f3531ae045","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:43.912Z","version":"WzM0OTksMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-blob-storage-overview.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-blob-storage-overview.json deleted file mode 100644 index f29311dfbf8..00000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-blob-storage-overview.json +++ /dev/null @@ -1,1299 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This dashboard shows metrics for the blob storage type in Azure.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": "blob", - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "azure.namespace", - "negate": false, - "params": { - "query": "Microsoft.Storage/storageAccounts/blobServices" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "azure.namespace": "Microsoft.Storage/storageAccounts/blobServices" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "ed5f5642-c94a-481b-a8c2-7dfe4c6a4f05", - "w": 9, - "x": 0, - "y": 0 - }, - "panelIndex": "ed5f5642-c94a-481b-a8c2-7dfe4c6a4f05", - "panelRefName": "panel_0", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Availability" - }, - "gridData": { - "h": 9, - "i": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", - "w": 5, - "x": 9, - "y": 0 - }, - "panelIndex": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", - "panelRefName": "panel_1", - "title": "Availability", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "0c873134-b025-487d-be81-f727dbff0174", - "w": 5, - "x": 14, - "y": 0 - }, - "panelIndex": "0c873134-b025-487d-be81-f727dbff0174", - "panelRefName": "panel_2", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "41faed50-ba96-4484-b6dc-71ed3e2d3427", - "w": 5, - "x": 19, - "y": 0 - }, - "panelIndex": "41faed50-ba96-4484-b6dc-71ed3e2d3427", - "panelRefName": "panel_3", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Transactions" - }, - "gridData": { - "h": 9, - "i": "1d623c03-4d02-4a81-b91e-49e82e112016", - "w": 19, - "x": 29, - "y": 0 - }, - "panelIndex": "1d623c03-4d02-4a81-b91e-49e82e112016", - "panelRefName": "panel_4", - "title": "Transactions", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 15, - "i": "ff6441f8-d66d-4399-bae5-25d3d861b299", - "w": 9, - "x": 0, - "y": 5 - }, - "panelIndex": "ff6441f8-d66d-4399-bae5-25d3d861b299", - "panelRefName": "panel_5", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Success Server Latency" - }, - "gridData": { - "h": 15, - "i": "87066244-7840-4555-9d12-026d64977f1a", - "w": 20, - "x": 9, - "y": 9 - }, - "panelIndex": "87066244-7840-4555-9d12-026d64977f1a", - "panelRefName": "panel_6", - "title": "Success Server Latency", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Success E2E Latency" - }, - "gridData": { - "h": 15, - "i": "756da375-e6a2-4668-af43-0cd294878254", - "w": 19, - "x": 29, - "y": 9 - }, - "panelIndex": "756da375-e6a2-4668-af43-0cd294878254", - "panelRefName": "panel_7", - "title": "Success E2E Latency", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "34aa5ce7-4f4b-4712-836f-3765e7c3fb3f", - "w": 5, - "x": 24, - "y": 0 - }, - "panelIndex": "34aa5ce7-4f4b-4712-836f-3765e7c3fb3f", - "panelRefName": "panel_8", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Egress Traffic by APIName" - }, - "gridData": { - "h": 14, - "i": "a715fafc-ca38-410c-9253-12ba506eabc0", - "w": 20, - "x": 9, - "y": 24 - }, - "panelIndex": "a715fafc-ca38-410c-9253-12ba506eabc0", - "panelRefName": "panel_9", - "title": "Egress Traffic by APIName", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Ingress Traffic by APIName" - }, - "gridData": { - "h": 14, - "i": "75f72920-be71-47a9-a967-f1c862ab2961", - "w": 19, - "x": 29, - "y": 24 - }, - "panelIndex": "75f72920-be71-47a9-a967-f1c862ab2961", - "panelRefName": "panel_10", - "title": "Ingress Traffic by APIName", - "version": "7.7.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Azure] Blob Storage Overview", - "version": 1 - }, - "id": "b165ef60-32f7-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "e4b25ee0-32f6-11ea-a83e-25b8612d00cc", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "40dbc0d0-32e3-11ea-a83e-25b8612d00cc", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "17ee2920-3391-11ea-a83e-25b8612d00cc", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "55936920-3391-11ea-a83e-25b8612d00cc", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "553f9320-32e9-11ea-a83e-25b8612d00cc", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "acced050-32d1-11ea-a83e-25b8612d00cc", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "81f16b40-32ea-11ea-a83e-25b8612d00cc", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "685fbeb0-32eb-11ea-a83e-25b8612d00cc", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "9e991b10-3391-11ea-a83e-25b8612d00cc", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "599c62c0-32d7-11ea-a83e-25b8612d00cc", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "4eaef260-32e1-11ea-a83e-25b8612d00cc", - "name": "panel_10", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-04-07T17:37:19.062Z", - "version": "WzI0ODAsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation Blob Storage Overview [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### Azure Storage\n\n[Overview](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [**Blob**](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [File](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [Table](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [Queue](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) ", - "openLinksInNewTab": false - }, - "title": "Navigation Blob Storage Overview [Metricbeat Azure]", - "type": "markdown" - } - }, - "id": "e4b25ee0-32f6-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:04:23.213Z", - "version": "WzE1OTMsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Availability [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(104,204,202,1)", - "id": "18f616c0-32e2-11ea-867b-37070aefa392", - "operator": "gte", - "value": 100 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "998b1c90-32e2-11ea-867b-37070aefa392", - "operator": "lt", - "value": 100 - } - ], - "bar_color_rules": [ - { - "id": "28142cf0-32e2-11ea-867b-37070aefa392" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "29808e30-32e2-11ea-867b-37070aefa392" - } - ], - "gauge_inner_width": "7", - "gauge_style": "circle", - "gauge_width": 10, - "id": "0e91b810-32e2-11ea-a93d-dd20c62559b3", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(22,165,165,1)", - "fill": "0.6", - "formatter": "number", - "hide_in_legend": 1, - "id": "0e91b811-32e2-11ea-a93d-dd20c62559b3", - "label": "Availability", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.availability.avg", - "id": "0e91b812-32e2-11ea-a93d-dd20c62559b3", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "terms_field": null, - "type": "timeseries", - "value_template": "{{value}} %" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "last_value", - "type": "timeseries" - }, - "title": "Storage Availability [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "40dbc0d0-32e3-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:04:30.376Z", - "version": "WzE2NjcsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Blob Capacity [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "azure.resource.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Blob Capacity", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.blob_capacity.avg", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "azure.resource.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Storage Blob Capacity [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "17ee2920-3391-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:35:44.618Z", - "version": "WzI0NjAsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Blob Count [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "'0'", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Blob Count", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.blob_count.avg", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "azure.resource.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Storage Blob Count [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "55936920-3391-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:36:21.027Z", - "version": "WzI0NzEsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Transactions [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#3185FC", - "fill": 0.5, - "formatter": "number", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "avg(azure.storage.transactions.total)", - "line_width": "1", - "metrics": [ - { - "field": "azure.storage.transactions.total", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.response_type", - "terms_order_by": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Transactions [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "553f9320-32e9-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:29:35.827Z", - "version": "WzIzODMsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Filters [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "azure.subscription_id", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "Subscription", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.group", - "id": "1549512142947", - "indexPatternRefName": "control_1_index_pattern", - "label": "Resource Group", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.name", - "id": "1578578146383", - "indexPatternRefName": "control_2_index_pattern", - "label": "Resource Name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "Storage Filters [Metricbeat Azure]", - "type": "input_control_vis" - } - }, - "id": "acced050-32d1-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-04-07T17:04:30.376Z", - "version": "WzE2NzIsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Success Server Latency [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "e9a40230-32e9-11ea-bda2-69435df36a5c", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#3185FC", - "fill": 0.5, - "formatter": "number", - "id": "e9a40231-32e9-11ea-bda2-69435df36a5c", - "label": "SuccessServerLatency (ms)", - "line_width": "1", - "metrics": [ - { - "field": "azure.storage.success_server_latency.avg", - "id": "e9a40232-32e9-11ea-bda2-69435df36a5c", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "e9a40232-32e9-11ea-bda2-69435df36a5c", - "type": "timeseries", - "value_template": "{{value}} ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Success Server Latency [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "81f16b40-32ea-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:15:09.491Z", - "version": "WzIxNzYsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Success E2E Latency [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "da4459b0-32ea-11ea-be35-cb10be813609", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#3185FC", - "fill": 0.5, - "formatter": "number", - "id": "da4459b1-32ea-11ea-be35-cb10be813609", - "label": "Success E2E Latency (ms)", - "line_width": "1", - "metrics": [ - { - "field": "azure.storage.success_e2elatency.avg", - "id": "da4459b2-32ea-11ea-be35-cb10be813609", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "da4459b2-32ea-11ea-be35-cb10be813609", - "type": "timeseries", - "value_template": "{{value}} ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Success E2E Latency [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "685fbeb0-32eb-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:28:09.199Z", - "version": "WzIzMzUsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Container Count [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "'0'", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Container Count", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.container_count.avg", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "azure.resource.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Storage Container Count [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "9e991b10-3391-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:36:35.970Z", - "version": "WzI0NzUsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Account Egress Traffic [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "0791c5a0-32d8-11ea-98d2-1194b9f2bfc0" - } - ], - "bar_color_rules": [ - { - "id": "fca016e0-32de-11ea-a435-e7199eba380d" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "fb8be7c0-32de-11ea-a435-e7199eba380d" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "f0edca80-32d5-11ea-b19d-fb5049b980ca", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,149,177,1)", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "hidden": false, - "id": "f0edf190-32d5-11ea-b19d-fb5049b980ca", - "label": "Storage Accounts Egress Total", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.egress.total", - "id": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "rgba(0,98,177,1)", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "283dc410-32d9-11ea-98d2-1194b9f2bfc0" - } - ], - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Account Egress Traffic [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "599c62c0-32d7-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:21:03.231Z", - "version": "WzIyNzIsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Account Ingress Traffic [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "0791c5a0-32d8-11ea-98d2-1194b9f2bfc0" - } - ], - "bar_color_rules": [ - { - "id": "fca016e0-32de-11ea-a435-e7199eba380d" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "fb8be7c0-32de-11ea-a435-e7199eba380d" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "f0edca80-32d5-11ea-b19d-fb5049b980ca", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "hidden": false, - "id": "f0edf190-32d5-11ea-b19d-fb5049b980ca", - "label": "Storage Accounts Ingress Total", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.ingress.total", - "id": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "rgba(0,98,177,1)", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "283dc410-32d9-11ea-98d2-1194b9f2bfc0" - } - ], - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Account Ingress Traffic [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "4eaef260-32e1-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:21:51.411Z", - "version": "WzIyODMsNF0=" - } - ], - "version": "7.7.0" -} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-blob-storage-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-blob-storage-overview.ndjson new file mode 100644 index 00000000000..e4f310cdece --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-blob-storage-overview.ndjson @@ -0,0 +1,12 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Blob Storage Overview [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Azure Storage\\n\\n[Overview](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [**Blob**](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [File](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [Table](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [Queue](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Blob Storage Overview [Metricbeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"e4b25ee0-32f6-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:44.945Z","version":"WzM1MDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Availability [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(104,204,202,1)\",\"id\":\"18f616c0-32e2-11ea-867b-37070aefa392\",\"operator\":\"gte\",\"value\":100},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"998b1c90-32e2-11ea-867b-37070aefa392\",\"operator\":\"lt\",\"value\":100}],\"bar_color_rules\":[{\"id\":\"28142cf0-32e2-11ea-867b-37070aefa392\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"29808e30-32e2-11ea-867b-37070aefa392\"}],\"gauge_inner_width\":\"7\",\"gauge_style\":\"circle\",\"gauge_width\":10,\"id\":\"0e91b810-32e2-11ea-a93d-dd20c62559b3\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0.6\",\"formatter\":\"number\",\"hide_in_legend\":1,\"id\":\"0e91b811-32e2-11ea-a93d-dd20c62559b3\",\"label\":\"Availability\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.availability.avg\",\"id\":\"0e91b812-32e2-11ea-a93d-dd20c62559b3\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}} %\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Availability [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Blob Capacity [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"azure.resource.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Blob Capacity\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.blob_capacity.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Blob Capacity [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"17ee2920-3391-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:44.945Z","version":"WzM1MDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Blob Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0'\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Blob Count\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.blob_count.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Blob Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"55936920-3391-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:44.945Z","version":"WzM1MTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Transactions [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"avg(azure.storage.transactions.total)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.transactions.total\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.response_type\",\"terms_order_by\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Transactions [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"553f9320-32e9-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Storage Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1578578146383\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Resource Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Storage Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"acced050-32d1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success Server Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"SuccessServerLatency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_server_latency.avg\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success Server Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success E2E Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"da4459b0-32ea-11ea-be35-cb10be813609\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"da4459b1-32ea-11ea-be35-cb10be813609\",\"label\":\"Success E2E Latency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_e2elatency.avg\",\"id\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success E2E Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Container Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0'\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Container Count\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.container_count.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Container Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9e991b10-3391-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:44.945Z","version":"WzM1MTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Egress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,149,177,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Egress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.egress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Egress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Ingress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Ingress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.ingress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Ingress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTksMV0="} +{"attributes":{"description":"This dashboard shows metrics for the blob storage type in Azure.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": \"blob\", \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"azure.namespace\", \"negate\": false, \"params\": {\"query\": \"Microsoft.Storage/storageAccounts/blobServices\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"azure.namespace\": \"Microsoft.Storage/storageAccounts/blobServices\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"ed5f5642-c94a-481b-a8c2-7dfe4c6a4f05\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"ed5f5642-c94a-481b-a8c2-7dfe4c6a4f05\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ed5f5642-c94a-481b-a8c2-7dfe4c6a4f05\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"w\":5,\"x\":9,\"y\":0},\"panelIndex\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Availability\",\"panelRefName\":\"panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"0c873134-b025-487d-be81-f727dbff0174\",\"w\":5,\"x\":14,\"y\":0},\"panelIndex\":\"0c873134-b025-487d-be81-f727dbff0174\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_0c873134-b025-487d-be81-f727dbff0174\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"41faed50-ba96-4484-b6dc-71ed3e2d3427\",\"w\":5,\"x\":19,\"y\":0},\"panelIndex\":\"41faed50-ba96-4484-b6dc-71ed3e2d3427\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_41faed50-ba96-4484-b6dc-71ed3e2d3427\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"w\":19,\"x\":29,\"y\":0},\"panelIndex\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Transactions\",\"panelRefName\":\"panel_1d623c03-4d02-4a81-b91e-49e82e112016\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ff6441f8-d66d-4399-bae5-25d3d861b299\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"87066244-7840-4555-9d12-026d64977f1a\",\"w\":20,\"x\":9,\"y\":9},\"panelIndex\":\"87066244-7840-4555-9d12-026d64977f1a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success Server Latency\",\"panelRefName\":\"panel_87066244-7840-4555-9d12-026d64977f1a\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"756da375-e6a2-4668-af43-0cd294878254\",\"w\":19,\"x\":29,\"y\":9},\"panelIndex\":\"756da375-e6a2-4668-af43-0cd294878254\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success E2E Latency\",\"panelRefName\":\"panel_756da375-e6a2-4668-af43-0cd294878254\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"34aa5ce7-4f4b-4712-836f-3765e7c3fb3f\",\"w\":5,\"x\":24,\"y\":0},\"panelIndex\":\"34aa5ce7-4f4b-4712-836f-3765e7c3fb3f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_34aa5ce7-4f4b-4712-836f-3765e7c3fb3f\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"w\":20,\"x\":9,\"y\":24},\"panelIndex\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Egress Traffic by APIName\",\"panelRefName\":\"panel_a715fafc-ca38-410c-9253-12ba506eabc0\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"w\":19,\"x\":29,\"y\":24},\"panelIndex\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ingress Traffic by APIName\",\"panelRefName\":\"panel_75f72920-be71-47a9-a967-f1c862ab2961\"}]","timeRestore":false,"title":"[Metricbeat Azure] Blob Storage Overview","version":1},"coreMigrationVersion":"8.0.0","id":"b165ef60-32f7-11ea-a83e-25b8612d00cc","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"e4b25ee0-32f6-11ea-a83e-25b8612d00cc","name":"ed5f5642-c94a-481b-a8c2-7dfe4c6a4f05:panel_ed5f5642-c94a-481b-a8c2-7dfe4c6a4f05","type":"visualization"},{"id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","name":"a9456b9b-efa6-410d-a56c-4b66aa8c499e:panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e","type":"visualization"},{"id":"17ee2920-3391-11ea-a83e-25b8612d00cc","name":"0c873134-b025-487d-be81-f727dbff0174:panel_0c873134-b025-487d-be81-f727dbff0174","type":"visualization"},{"id":"55936920-3391-11ea-a83e-25b8612d00cc","name":"41faed50-ba96-4484-b6dc-71ed3e2d3427:panel_41faed50-ba96-4484-b6dc-71ed3e2d3427","type":"visualization"},{"id":"553f9320-32e9-11ea-a83e-25b8612d00cc","name":"1d623c03-4d02-4a81-b91e-49e82e112016:panel_1d623c03-4d02-4a81-b91e-49e82e112016","type":"visualization"},{"id":"acced050-32d1-11ea-a83e-25b8612d00cc","name":"ff6441f8-d66d-4399-bae5-25d3d861b299:panel_ff6441f8-d66d-4399-bae5-25d3d861b299","type":"visualization"},{"id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","name":"87066244-7840-4555-9d12-026d64977f1a:panel_87066244-7840-4555-9d12-026d64977f1a","type":"visualization"},{"id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","name":"756da375-e6a2-4668-af43-0cd294878254:panel_756da375-e6a2-4668-af43-0cd294878254","type":"visualization"},{"id":"9e991b10-3391-11ea-a83e-25b8612d00cc","name":"34aa5ce7-4f4b-4712-836f-3765e7c3fb3f:panel_34aa5ce7-4f4b-4712-836f-3765e7c3fb3f","type":"visualization"},{"id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","name":"a715fafc-ca38-410c-9253-12ba506eabc0:panel_a715fafc-ca38-410c-9253-12ba506eabc0","type":"visualization"},{"id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","name":"75f72920-be71-47a9-a967-f1c862ab2961:panel_75f72920-be71-47a9-a967-f1c862ab2961","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:44.945Z","version":"WzM1MDYsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-instance-overview.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-instance-overview.json deleted file mode 100644 index 92555a11e4d..00000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-instance-overview.json +++ /dev/null @@ -1,571 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This dashboard shows metrics for the container instances in Azure.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "c3f93abd-4a7c-43fa-bde7-d26925082d2f", - "w": 11, - "x": 0, - "y": 0 - }, - "panelIndex": "c3f93abd-4a7c-43fa-bde7-d26925082d2f", - "panelRefName": "panel_0", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Container Instance CPU Utilization" - }, - "gridData": { - "h": 16, - "i": "ea4c505b-43fb-4869-a94a-bba028071ecc", - "w": 17, - "x": 11, - "y": 0 - }, - "panelIndex": "ea4c505b-43fb-4869-a94a-bba028071ecc", - "panelRefName": "panel_1", - "title": "Container Instance CPU Utilization", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Container Instance Memory Utilization" - }, - "gridData": { - "h": 16, - "i": "0899027b-629e-4889-821f-45ee0161bd91", - "w": 20, - "x": 28, - "y": 0 - }, - "panelIndex": "0899027b-629e-4889-821f-45ee0161bd91", - "panelRefName": "panel_2", - "title": "Container Instance Memory Utilization", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Containers Filters" - }, - "gridData": { - "h": 11, - "i": "f72bd066-3696-4e0a-9660-78fb47c92152", - "w": 11, - "x": 0, - "y": 5 - }, - "panelIndex": "f72bd066-3696-4e0a-9660-78fb47c92152", - "panelRefName": "panel_3", - "title": "Containers Filters", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Container Instance Netowrk Bytes Received/s" - }, - "gridData": { - "h": 15, - "i": "7c9016b9-a76e-41f6-9945-ac6880fd9ab0", - "w": 24, - "x": 0, - "y": 16 - }, - "panelIndex": "7c9016b9-a76e-41f6-9945-ac6880fd9ab0", - "panelRefName": "panel_4", - "title": "Container Instance Netowrk Bytes Received/s", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Container Instance Network Bytes Transmitted/s" - }, - "gridData": { - "h": 15, - "i": "0abdf4ee-b569-430b-972a-a60160ef2221", - "w": 24, - "x": 24, - "y": 16 - }, - "panelIndex": "0abdf4ee-b569-430b-972a-a60160ef2221", - "panelRefName": "panel_5", - "title": "Container Instance Network Bytes Transmitted/s", - "version": "7.6.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Azure] Container Instance Overview", - "version": 1 - }, - "id": "9c11ac60-6cf6-11ea-8fe8-71add5fd7c38", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "5720b830-6aad-11ea-af5c-73e8f396b3e9", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "04f8eec0-6ab1-11ea-af5c-73e8f396b3e9", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "942844b0-6ac5-11ea-af5c-73e8f396b3e9", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "0fa31060-6aae-11ea-af5c-73e8f396b3e9", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "bd1c93b0-6cf7-11ea-8fe8-71add5fd7c38", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "74a8e130-6cfa-11ea-8fe8-71add5fd7c38", - "name": "panel_5", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-03-24T13:44:34.832Z", - "version": "WzY1MzIsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Navigation Container Instance Overview [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "### Azure Containers\n\n[**Instances**](#/dashboard/9c11ac60-6cf6-11ea-8fe8-71add5fd7c38) |\n[Registries](#/dashboard/6f2393f0-6d08-11ea-8fe8-71add5fd7c38) |\n[Services](#/dashboard/dae20ed0-6d0a-11ea-8fe8-71add5fd7c38) ", - "openLinksInNewTab": false - }, - "title": "Navigation Container Instance Overview [Metricbeat Azure]", - "type": "markdown" - } - }, - "id": "5720b830-6aad-11ea-af5c-73e8f396b3e9", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-23T19:02:37.594Z", - "version": "WzY0NDQsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Container Instance CPU Utilization [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.ContainerInstance/containerGroups\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(164,221,0,1)", - "fill": "", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Azure Container CPU Utilization", - "line_width": "2", - "metrics": [ - { - "field": "azure.container_instance.cpu_usage.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Container Instance CPU Utilization [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "04f8eec0-6ab1-11ea-af5c-73e8f396b3e9", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-23T11:39:04.001Z", - "version": "WzU5NjYsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Container Instance Memory Utilization [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.ContainerInstance/containerGroups\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Container Instance Memory Utilization", - "line_width": "2", - "metrics": [ - { - "field": "azure.container_instance.memory_usage.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "0", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Container Instance Memory Utilization [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "942844b0-6ac5-11ea-af5c-73e8f396b3e9", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-23T11:40:55.708Z", - "version": "WzU5NzEsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Containers Filters [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "azure.subscription_id", - "id": "1584710440054", - "indexPatternRefName": "control_0_index_pattern", - "label": "Subscription", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.group", - "id": "1584710497045", - "indexPatternRefName": "control_1_index_pattern", - "label": "Resource Group", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.name", - "id": "1584710535722", - "indexPatternRefName": "control_2_index_pattern", - "label": "Resource", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "Containers Filters [Metricbeat Azure]", - "type": "input_control_vis" - } - }, - "id": "0fa31060-6aae-11ea-af5c-73e8f396b3e9", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-03-23T18:32:43.461Z", - "version": "WzY0MDAsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Container Instance Network Bytes Received/s [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.ContainerInstance/containerGroups\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(251,158,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Container Instance Network Bytes Received/s", - "line_width": "2", - "metrics": [ - { - "field": "azure.container_instance.network_bytes_received_per_second.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Container Instance Network Bytes Received/s [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "bd1c93b0-6cf7-11ea-8fe8-71add5fd7c38", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-23T16:22:21.233Z", - "version": "WzYyODUsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Container Instance Network Bytes Transmitted/s [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.ContainerInstance/containerGroups\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(128,137,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Container Instance Network Bytes Transmitted/s", - "line_width": "2", - "metrics": [ - { - "field": "azure.container_instance.network_bytes_transmitted_per_second.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Container Instance Network Bytes Transmitted/s [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "74a8e130-6cfa-11ea-8fe8-71add5fd7c38", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-23T16:23:04.729Z", - "version": "WzYyOTMsNV0=" - } - ], - "version": "7.6.0" -} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-instance-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-instance-overview.ndjson new file mode 100644 index 00000000000..f9834330bdf --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-instance-overview.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Navigation Container Instance Overview [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"### Azure Containers\\n\\n[**Instances**](#/dashboard/9c11ac60-6cf6-11ea-8fe8-71add5fd7c38) |\\n[Registries](#/dashboard/6f2393f0-6d08-11ea-8fe8-71add5fd7c38) |\\n[Services](#/dashboard/dae20ed0-6d0a-11ea-8fe8-71add5fd7c38) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Container Instance Overview [Metricbeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"5720b830-6aad-11ea-af5c-73e8f396b3e9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:45.960Z","version":"WzM1MTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Instance CPU Utilization [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerInstance/containerGroups\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Azure Container CPU Utilization\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"azure.container_instance.cpu_usage.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Instance CPU Utilization [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"04f8eec0-6ab1-11ea-af5c-73e8f396b3e9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:45.960Z","version":"WzM1MjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Instance Memory Utilization [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerInstance/containerGroups\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Instance Memory Utilization\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"azure.container_instance.memory_usage.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Instance Memory Utilization [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"942844b0-6ac5-11ea-af5c-73e8f396b3e9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:45.960Z","version":"WzM1MjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Containers Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1584710440054\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1584710497045\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1584710535722\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Resource\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Containers Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"0fa31060-6aae-11ea-af5c-73e8f396b3e9","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Instance Network Bytes Received/s [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerInstance/containerGroups\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Instance Network Bytes Received/s\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"azure.container_instance.network_bytes_received_per_second.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Instance Network Bytes Received/s [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bd1c93b0-6cf7-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:45.960Z","version":"WzM1MjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Instance Network Bytes Transmitted/s [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerInstance/containerGroups\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(128,137,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Instance Network Bytes Transmitted/s\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"azure.container_instance.network_bytes_transmitted_per_second.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Instance Network Bytes Transmitted/s [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"74a8e130-6cfa-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:45.960Z","version":"WzM1MjQsMV0="} +{"attributes":{"description":"This dashboard shows metrics for the container instances in Azure.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"c3f93abd-4a7c-43fa-bde7-d26925082d2f\",\"w\":11,\"x\":0,\"y\":0},\"panelIndex\":\"c3f93abd-4a7c-43fa-bde7-d26925082d2f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_c3f93abd-4a7c-43fa-bde7-d26925082d2f\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"ea4c505b-43fb-4869-a94a-bba028071ecc\",\"w\":17,\"x\":11,\"y\":0},\"panelIndex\":\"ea4c505b-43fb-4869-a94a-bba028071ecc\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Instance CPU Utilization\",\"panelRefName\":\"panel_ea4c505b-43fb-4869-a94a-bba028071ecc\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"0899027b-629e-4889-821f-45ee0161bd91\",\"w\":20,\"x\":28,\"y\":0},\"panelIndex\":\"0899027b-629e-4889-821f-45ee0161bd91\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Instance Memory Utilization\",\"panelRefName\":\"panel_0899027b-629e-4889-821f-45ee0161bd91\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"f72bd066-3696-4e0a-9660-78fb47c92152\",\"w\":11,\"x\":0,\"y\":5},\"panelIndex\":\"f72bd066-3696-4e0a-9660-78fb47c92152\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Containers Filters\",\"panelRefName\":\"panel_f72bd066-3696-4e0a-9660-78fb47c92152\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7c9016b9-a76e-41f6-9945-ac6880fd9ab0\",\"w\":24,\"x\":0,\"y\":16},\"panelIndex\":\"7c9016b9-a76e-41f6-9945-ac6880fd9ab0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Instance Netowrk Bytes Received/s\",\"panelRefName\":\"panel_7c9016b9-a76e-41f6-9945-ac6880fd9ab0\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"0abdf4ee-b569-430b-972a-a60160ef2221\",\"w\":24,\"x\":24,\"y\":16},\"panelIndex\":\"0abdf4ee-b569-430b-972a-a60160ef2221\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Instance Network Bytes Transmitted/s\",\"panelRefName\":\"panel_0abdf4ee-b569-430b-972a-a60160ef2221\"}]","timeRestore":false,"title":"[Metricbeat Azure] Container Instance Overview","version":1},"coreMigrationVersion":"8.0.0","id":"9c11ac60-6cf6-11ea-8fe8-71add5fd7c38","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"5720b830-6aad-11ea-af5c-73e8f396b3e9","name":"c3f93abd-4a7c-43fa-bde7-d26925082d2f:panel_c3f93abd-4a7c-43fa-bde7-d26925082d2f","type":"visualization"},{"id":"04f8eec0-6ab1-11ea-af5c-73e8f396b3e9","name":"ea4c505b-43fb-4869-a94a-bba028071ecc:panel_ea4c505b-43fb-4869-a94a-bba028071ecc","type":"visualization"},{"id":"942844b0-6ac5-11ea-af5c-73e8f396b3e9","name":"0899027b-629e-4889-821f-45ee0161bd91:panel_0899027b-629e-4889-821f-45ee0161bd91","type":"visualization"},{"id":"0fa31060-6aae-11ea-af5c-73e8f396b3e9","name":"f72bd066-3696-4e0a-9660-78fb47c92152:panel_f72bd066-3696-4e0a-9660-78fb47c92152","type":"visualization"},{"id":"bd1c93b0-6cf7-11ea-8fe8-71add5fd7c38","name":"7c9016b9-a76e-41f6-9945-ac6880fd9ab0:panel_7c9016b9-a76e-41f6-9945-ac6880fd9ab0","type":"visualization"},{"id":"74a8e130-6cfa-11ea-8fe8-71add5fd7c38","name":"0abdf4ee-b569-430b-972a-a60160ef2221:panel_0abdf4ee-b569-430b-972a-a60160ef2221","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:45.960Z","version":"WzM1MTgsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-registry-overview.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-registry-overview.json deleted file mode 100644 index 61516d560b7..00000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-registry-overview.json +++ /dev/null @@ -1,556 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This dashboard shows metrics for the container registry in Azure.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "51fee31f-97e1-4f8e-aeb2-daeca1ccf9be", - "w": 9, - "x": 0, - "y": 0 - }, - "panelIndex": "51fee31f-97e1-4f8e-aeb2-daeca1ccf9be", - "panelRefName": "panel_0", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Container Registry Successful Pull Count" - }, - "gridData": { - "h": 16, - "i": "dde974c7-6d81-4580-9b7f-c7a999ecc19e", - "w": 18, - "x": 9, - "y": 0 - }, - "panelIndex": "dde974c7-6d81-4580-9b7f-c7a999ecc19e", - "panelRefName": "panel_1", - "title": "Container Registry Successful Pull Count", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Container Registry Successful Push Count" - }, - "gridData": { - "h": 16, - "i": "25a02616-f735-494a-97f7-4a56531e9e5e", - "w": 21, - "x": 27, - "y": 0 - }, - "panelIndex": "25a02616-f735-494a-97f7-4a56531e9e5e", - "panelRefName": "panel_2", - "title": "Container Registry Successful Push Count", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Containers Filters" - }, - "gridData": { - "h": 11, - "i": "ec183a66-545b-4a67-bfb4-568def660612", - "w": 9, - "x": 0, - "y": 5 - }, - "panelIndex": "ec183a66-545b-4a67-bfb4-568def660612", - "panelRefName": "panel_3", - "title": "Containers Filters", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Container Registry Total Pull Count" - }, - "gridData": { - "h": 15, - "i": "7f508c43-afd7-4874-86ef-c6976700759b", - "w": 24, - "x": 0, - "y": 16 - }, - "panelIndex": "7f508c43-afd7-4874-86ef-c6976700759b", - "panelRefName": "panel_4", - "title": "Container Registry Total Pull Count", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Container Registry Total Push Count" - }, - "gridData": { - "h": 15, - "i": "97a048da-9b56-420b-af8c-1f0d568f0f94", - "w": 24, - "x": 24, - "y": 16 - }, - "panelIndex": "97a048da-9b56-420b-af8c-1f0d568f0f94", - "panelRefName": "panel_5", - "title": "Container Registry Total Push Count", - "version": "7.6.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Azure] Container Registry Overview", - "version": 1 - }, - "id": "6f2393f0-6d08-11ea-8fe8-71add5fd7c38", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "1e70dc50-6d22-11ea-8fe8-71add5fd7c38", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "7972b260-6d07-11ea-8fe8-71add5fd7c38", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "b88b7f90-6d07-11ea-8fe8-71add5fd7c38", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "0fa31060-6aae-11ea-af5c-73e8f396b3e9", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "ff303710-6d07-11ea-8fe8-71add5fd7c38", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "ddea7430-6d07-11ea-8fe8-71add5fd7c38", - "name": "panel_5", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-03-24T13:49:52.134Z", - "version": "WzY1NDUsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Navigation Container Registry Overview [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "### Azure Containers\n\n[Instances](#/dashboard/9c11ac60-6cf6-11ea-8fe8-71add5fd7c38) |\n[**Registries**](#/dashboard/6f2393f0-6d08-11ea-8fe8-71add5fd7c38) |\n[Services](#/dashboard/dae20ed0-6d0a-11ea-8fe8-71add5fd7c38) ", - "openLinksInNewTab": false - }, - "title": "Navigation Container Registry Overview [Metricbeat Azure]", - "type": "markdown" - } - }, - "id": "1e70dc50-6d22-11ea-8fe8-71add5fd7c38", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-23T18:59:05.580Z", - "version": "WzY0MjksNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Container Registry Successful Pull Count [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.ContainerRegistry/registries\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(188,74,0,1)", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Container Registry Successful Pull Count", - "line_width": "02", - "metrics": [ - { - "field": "azure.container_registry.successful_pull_count.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Container Registry Successful Pull Count [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "7972b260-6d07-11ea-8fe8-71add5fd7c38", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-23T16:26:30.797Z", - "version": "WzYzMTEsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Container Registry Successful Push Count [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.ContainerRegistry/registries\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(128,137,0,1)", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Container Registry Successful Push Count", - "line_width": "02", - "metrics": [ - { - "field": "azure.container_registry.successful_push_count.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Container Registry Successful Push Count [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "b88b7f90-6d07-11ea-8fe8-71add5fd7c38", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-23T16:27:11.947Z", - "version": "WzYzMTgsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Containers Filters [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "azure.subscription_id", - "id": "1584710440054", - "indexPatternRefName": "control_0_index_pattern", - "label": "Subscription", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.group", - "id": "1584710497045", - "indexPatternRefName": "control_1_index_pattern", - "label": "Resource Group", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.name", - "id": "1584710535722", - "indexPatternRefName": "control_2_index_pattern", - "label": "Resource", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "Containers Filters [Metricbeat Azure]", - "type": "input_control_vis" - } - }, - "id": "0fa31060-6aae-11ea-af5c-73e8f396b3e9", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-03-23T18:32:43.461Z", - "version": "WzY0MDAsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Container Registry Total Pull Count [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.ContainerRegistry/registries\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(254,146,0,1)", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Container Registry Total Pull Count", - "line_width": "02", - "metrics": [ - { - "field": "azure.container_registry.total_pull_count.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Container Registry Total Pull Count [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "ff303710-6d07-11ea-8fe8-71add5fd7c38", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-23T13:13:17.642Z", - "version": "WzYwNDQsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Container Registry Total Push Count [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.ContainerRegistry/registries\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Container Registry Total Push Count", - "line_width": "02", - "metrics": [ - { - "field": "azure.container_registry.total_push_count.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Container Registry Total Push Count [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "ddea7430-6d07-11ea-8fe8-71add5fd7c38", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-23T13:12:37.912Z", - "version": "WzYwMzYsNV0=" - } - ], - "version": "7.6.0" -} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-registry-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-registry-overview.ndjson new file mode 100644 index 00000000000..c33a9cd65d2 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-registry-overview.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Navigation Container Registry Overview [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"### Azure Containers\\n\\n[Instances](#/dashboard/9c11ac60-6cf6-11ea-8fe8-71add5fd7c38) |\\n[**Registries**](#/dashboard/6f2393f0-6d08-11ea-8fe8-71add5fd7c38) |\\n[Services](#/dashboard/dae20ed0-6d0a-11ea-8fe8-71add5fd7c38) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Container Registry Overview [Metricbeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"1e70dc50-6d22-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:46.992Z","version":"WzM1MjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Registry Successful Pull Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerRegistry/registries\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(188,74,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Registry Successful Pull Count\",\"line_width\":\"02\",\"metrics\":[{\"field\":\"azure.container_registry.successful_pull_count.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Registry Successful Pull Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7972b260-6d07-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:46.992Z","version":"WzM1MjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Registry Successful Push Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerRegistry/registries\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(128,137,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Registry Successful Push Count\",\"line_width\":\"02\",\"metrics\":[{\"field\":\"azure.container_registry.successful_push_count.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Registry Successful Push Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b88b7f90-6d07-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:46.992Z","version":"WzM1MjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Containers Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1584710440054\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1584710497045\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1584710535722\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Resource\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Containers Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"0fa31060-6aae-11ea-af5c-73e8f396b3e9","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Registry Total Pull Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerRegistry/registries\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Registry Total Pull Count\",\"line_width\":\"02\",\"metrics\":[{\"field\":\"azure.container_registry.total_pull_count.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Registry Total Pull Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ff303710-6d07-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:46.992Z","version":"WzM1MzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Registry Total Push Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerRegistry/registries\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Registry Total Push Count\",\"line_width\":\"02\",\"metrics\":[{\"field\":\"azure.container_registry.total_push_count.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Registry Total Push Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ddea7430-6d07-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:46.992Z","version":"WzM1MzEsMV0="} +{"attributes":{"description":"This dashboard shows metrics for the container registry in Azure.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"51fee31f-97e1-4f8e-aeb2-daeca1ccf9be\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"51fee31f-97e1-4f8e-aeb2-daeca1ccf9be\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_51fee31f-97e1-4f8e-aeb2-daeca1ccf9be\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"dde974c7-6d81-4580-9b7f-c7a999ecc19e\",\"w\":18,\"x\":9,\"y\":0},\"panelIndex\":\"dde974c7-6d81-4580-9b7f-c7a999ecc19e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Registry Successful Pull Count\",\"panelRefName\":\"panel_dde974c7-6d81-4580-9b7f-c7a999ecc19e\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"25a02616-f735-494a-97f7-4a56531e9e5e\",\"w\":21,\"x\":27,\"y\":0},\"panelIndex\":\"25a02616-f735-494a-97f7-4a56531e9e5e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Registry Successful Push Count\",\"panelRefName\":\"panel_25a02616-f735-494a-97f7-4a56531e9e5e\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"ec183a66-545b-4a67-bfb4-568def660612\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"ec183a66-545b-4a67-bfb4-568def660612\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Containers Filters\",\"panelRefName\":\"panel_ec183a66-545b-4a67-bfb4-568def660612\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7f508c43-afd7-4874-86ef-c6976700759b\",\"w\":24,\"x\":0,\"y\":16},\"panelIndex\":\"7f508c43-afd7-4874-86ef-c6976700759b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Registry Total Pull Count\",\"panelRefName\":\"panel_7f508c43-afd7-4874-86ef-c6976700759b\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"97a048da-9b56-420b-af8c-1f0d568f0f94\",\"w\":24,\"x\":24,\"y\":16},\"panelIndex\":\"97a048da-9b56-420b-af8c-1f0d568f0f94\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Registry Total Push Count\",\"panelRefName\":\"panel_97a048da-9b56-420b-af8c-1f0d568f0f94\"}]","timeRestore":false,"title":"[Metricbeat Azure] Container Registry Overview","version":1},"coreMigrationVersion":"8.0.0","id":"6f2393f0-6d08-11ea-8fe8-71add5fd7c38","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"1e70dc50-6d22-11ea-8fe8-71add5fd7c38","name":"51fee31f-97e1-4f8e-aeb2-daeca1ccf9be:panel_51fee31f-97e1-4f8e-aeb2-daeca1ccf9be","type":"visualization"},{"id":"7972b260-6d07-11ea-8fe8-71add5fd7c38","name":"dde974c7-6d81-4580-9b7f-c7a999ecc19e:panel_dde974c7-6d81-4580-9b7f-c7a999ecc19e","type":"visualization"},{"id":"b88b7f90-6d07-11ea-8fe8-71add5fd7c38","name":"25a02616-f735-494a-97f7-4a56531e9e5e:panel_25a02616-f735-494a-97f7-4a56531e9e5e","type":"visualization"},{"id":"0fa31060-6aae-11ea-af5c-73e8f396b3e9","name":"ec183a66-545b-4a67-bfb4-568def660612:panel_ec183a66-545b-4a67-bfb4-568def660612","type":"visualization"},{"id":"ff303710-6d07-11ea-8fe8-71add5fd7c38","name":"7f508c43-afd7-4874-86ef-c6976700759b:panel_7f508c43-afd7-4874-86ef-c6976700759b","type":"visualization"},{"id":"ddea7430-6d07-11ea-8fe8-71add5fd7c38","name":"97a048da-9b56-420b-af8c-1f0d568f0f94:panel_97a048da-9b56-420b-af8c-1f0d568f0f94","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:46.992Z","version":"WzM1MjUsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-service-overview.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-service-overview.json deleted file mode 100644 index 46ff5161f28..00000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-service-overview.json +++ /dev/null @@ -1,822 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This dashboard shows metrics for the container service in Azure.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "32b4e6e2-bf3f-4c4a-8fdb-925f21f9d22b", - "w": 9, - "x": 0, - "y": 0 - }, - "panelIndex": "32b4e6e2-bf3f-4c4a-8fdb-925f21f9d22b", - "panelRefName": "panel_0", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Container Service Kube Node Status Allocatable Memory" - }, - "gridData": { - "h": 17, - "i": "c35d3d89-2f34-43a0-b346-85ba0e7c9e89", - "w": 18, - "x": 9, - "y": 0 - }, - "panelIndex": "c35d3d89-2f34-43a0-b346-85ba0e7c9e89", - "panelRefName": "panel_1", - "title": "Container Service Kube Node Status Allocatable Memory", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Container Service Kube Node Status Allocatable CPU Cores" - }, - "gridData": { - "h": 17, - "i": "e1952edf-ed31-49ee-8db1-24370998ab89", - "w": 21, - "x": 27, - "y": 0 - }, - "panelIndex": "e1952edf-ed31-49ee-8db1-24370998ab89", - "panelRefName": "panel_2", - "title": "Container Service Kube Node Status Allocatable CPU Cores", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Container Filters" - }, - "gridData": { - "h": 12, - "i": "ec183a66-545b-4a67-bfb4-568def660612", - "w": 9, - "x": 0, - "y": 5 - }, - "panelIndex": "ec183a66-545b-4a67-bfb4-568def660612", - "panelRefName": "panel_3", - "title": "Container Filters", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Container Service Kube Pod Status Phase" - }, - "gridData": { - "h": 15, - "i": "ada37452-619f-470a-b9cd-bafa20e7d7b1", - "w": 24, - "x": 0, - "y": 17 - }, - "panelIndex": "ada37452-619f-470a-b9cd-bafa20e7d7b1", - "panelRefName": "panel_4", - "title": "Container Service Kube Pod Status Phase", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Container Service Kube Pod Status Ready" - }, - "gridData": { - "h": 15, - "i": "c8d3ed1a-6e72-4115-9a69-db1919a36fc4", - "w": 24, - "x": 24, - "y": 17 - }, - "panelIndex": "c8d3ed1a-6e72-4115-9a69-db1919a36fc4", - "panelRefName": "panel_5", - "title": "Container Service Kube Pod Status Ready", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Container Service Kube Node Status Condition" - }, - "gridData": { - "h": 15, - "i": "707fb714-99af-4484-a56e-bfecdf592c58", - "w": 48, - "x": 0, - "y": 32 - }, - "panelIndex": "707fb714-99af-4484-a56e-bfecdf592c58", - "panelRefName": "panel_6", - "title": "Container Service Kube Node Status Condition", - "version": "7.6.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Azure] Container Service Overview", - "version": 1 - }, - "id": "dae20ed0-6d0a-11ea-8fe8-71add5fd7c38", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "3630b9a0-6d22-11ea-8fe8-71add5fd7c38", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "eda368d0-6d1d-11ea-8fe8-71add5fd7c38", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "6e2d9930-6d1e-11ea-8fe8-71add5fd7c38", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "0fa31060-6aae-11ea-af5c-73e8f396b3e9", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "bda7b580-6d1f-11ea-8fe8-71add5fd7c38", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "c19586f0-6d1e-11ea-8fe8-71add5fd7c38", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "e79211c0-6d37-11ea-8fe8-71add5fd7c38", - "name": "panel_6", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-03-24T13:52:52.325Z", - "version": "WzY1NTAsN10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Navigation Container Service Overview [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "### Azure Containers\n\n[Instances](#/dashboard/9c11ac60-6cf6-11ea-8fe8-71add5fd7c38) |\n[Registries](#/dashboard/6f2393f0-6d08-11ea-8fe8-71add5fd7c38) |\n[**Services**](#/dashboard/dae20ed0-6d0a-11ea-8fe8-71add5fd7c38) ", - "openLinksInNewTab": false - }, - "title": "Navigation Container Service Overview [Metricbeat Azure]", - "type": "markdown" - } - }, - "id": "3630b9a0-6d22-11ea-8fe8-71add5fd7c38", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-23T18:35:29.015Z", - "version": "WzY0MTEsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Container Service Kube Node Status Allocatable Memory Bytes [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.ContainerService/managedClusters\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(176,188,0,1)", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Container Service Kube Node Status Allocatable Memory Bytes", - "line_width": "02", - "metrics": [ - { - "field": "azure.container_service.kube_node_status_allocatable_memory_bytes.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Container Service Kube Node Status Allocatable Memory Bytes [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "eda368d0-6d1d-11ea-8fe8-71add5fd7c38", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-23T16:07:52.221Z", - "version": "WzYxOTMsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Container Service Kube Node Status Allocatable CPU Cores [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.ContainerService/managedClusters\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(196,81,0,1)", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Container Service Kube Node Status Allocatable CPU Cores", - "line_width": "02", - "metrics": [ - { - "field": "azure.container_service.kube_node_status_allocatable_cpu_cores.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Container Service Kube Node Status Allocatable CPU Cores [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "6e2d9930-6d1e-11ea-8fe8-71add5fd7c38", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-23T16:09:00.844Z", - "version": "WzYyMDMsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Containers Filters [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "azure.subscription_id", - "id": "1584710440054", - "indexPatternRefName": "control_0_index_pattern", - "label": "Subscription", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.group", - "id": "1584710497045", - "indexPatternRefName": "control_1_index_pattern", - "label": "Resource Group", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.name", - "id": "1584710535722", - "indexPatternRefName": "control_2_index_pattern", - "label": "Resource", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "Containers Filters [Metricbeat Azure]", - "type": "input_control_vis" - } - }, - "id": "0fa31060-6aae-11ea-af5c-73e8f396b3e9", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-03-23T18:32:43.461Z", - "version": "WzY0MDAsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Container Service Kube Pod Status Phase [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "0d772fb0-6d1f-11ea-a156-a582cfb250e8" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.ContainerService/managedClusters\" " - }, - "gauge_color_rules": [ - { - "id": "0ba507c0-6d1f-11ea-a156-a582cfb250e8" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(240,213,175,1)", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Container Service Kube Pod Status Phase", - "line_width": "2", - "metrics": [ - { - "field": "azure.container_service.kube_pod_status_phase.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "00", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.pod" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Container Service Kube Pod Status Phase [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "bda7b580-6d1f-11ea-8fe8-71add5fd7c38", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-23T16:06:42.759Z", - "version": "WzYxODUsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Container Service Kube Pod Status Ready [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.ContainerService/managedClusters\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(200,205,124,1)", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "02", - "metrics": [ - { - "field": "azure.container_service.kube_pod_status_ready.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.pod", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Container Service Kube Pod Status Ready [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "c19586f0-6d1e-11ea-8fe8-71add5fd7c38", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-23T16:05:32.621Z", - "version": "WzYxODEsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index" - } - }, - "title": "Container Service Kube Node Status Condition [Metricbeat Azure]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 0.2": "rgb(165,0,38)", - "0.2 - 0.4": "rgb(244,109,67)", - "0.4 - 0.6": "rgb(254,224,139)", - "0.6 - 0.8": "rgb(217,239,139)", - "0.8 - 1": "rgb(102,189,99)" - }, - "legendOpen": true - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "azure.container_service.kube_node_status_condition.avg" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "filters": [ - { - "input": { - "language": "kuery", - "query": "azure.dimensions.condition : \"Ready\" and azure.dimensions.status : \"true\" " - }, - "label": "Ready \"true\"" - }, - { - "input": { - "language": "kuery", - "query": "azure.dimensions.condition : \"Ready\" and azure.dimensions.status : \"false\" " - }, - "label": "Ready \"false\"" - }, - { - "input": { - "language": "kuery", - "query": "azure.dimensions.condition : \"NetworkUnavailable\" and azure.dimensions.status : \"true\" " - }, - "label": "Network Unavailable \"true\"" - }, - { - "input": { - "language": "kuery", - "query": "azure.dimensions.condition : \"NetworkUnavailable\" and azure.dimensions.status : \"false\" " - }, - "label": "NetworkUnavailable \"false\"" - }, - { - "input": { - "language": "kuery", - "query": "azure.dimensions.condition : \"OutOfDisk\" and azure.dimensions.status : \"false\" " - }, - "label": "OutOfDisk \"false\"" - }, - { - "input": { - "language": "kuery", - "query": "azure.dimensions.condition : \"OutOfDisk\" and azure.dimensions.status : \"true\" " - }, - "label": "OutOfDisk \"true\"" - }, - { - "input": { - "language": "kuery", - "query": "azure.dimensions.condition : \"MemoryPressure\" and azure.dimensions.status : \"true\" " - }, - "label": "MemoryPressure \"true\"" - }, - { - "input": { - "language": "kuery", - "query": "azure.dimensions.condition : \"MemoryPressure\" and azure.dimensions.status : \"false\" " - }, - "label": "MemoryPressure \"false\"" - }, - { - "input": { - "language": "kuery", - "query": "azure.dimensions.condition : \"DiskPressure\" and azure.dimensions.status : \"false\" " - }, - "label": "DiskPressure \"false\"" - }, - { - "input": { - "language": "kuery", - "query": "azure.dimensions.condition : \"DiskPressure\" and azure.dimensions.status : \"true\" " - }, - "label": "DiskPressure \"true\"" - } - ] - }, - "schema": "segment", - "type": "filters" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "azure.dimensions.node", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "colorSchema": "Green to Red", - "colorsNumber": 5, - "colorsRange": [ - { - "from": 0, - "to": 10 - } - ], - "dimensions": { - "series": [ - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "", - "origin": "http://localhost:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "azure.dimensions.node: Descending", - "params": {} - } - ], - "x": { - "accessor": 0, - "aggType": "filters", - "format": {}, - "label": "filters", - "params": {} - }, - "y": [ - { - "accessor": 2, - "aggType": "avg", - "format": { - "id": "number", - "params": { - "parsedUrl": { - "basePath": "", - "origin": "http://localhost:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "Average azure.container_service.kube_node_status_condition.avg", - "params": {} - } - ] - }, - "enableHover": false, - "invertColors": true, - "legendPosition": "right", - "percentageMode": false, - "setColorRange": false, - "times": [], - "type": "heatmap", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "color": "black", - "overwriteColor": false, - "rotate": 0, - "show": false - }, - "scale": { - "defaultYExtents": false, - "type": "linear" - }, - "show": false, - "type": "value" - } - ] - }, - "title": "Container Service Kube Node Status Condition [Metricbeat Azure]", - "type": "heatmap" - } - }, - "id": "e79211c0-6d37-11ea-8fe8-71add5fd7c38", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-03-23T18:55:46.396Z", - "version": "WzY0MjAsNV0=" - } - ], - "version": "7.6.0" -} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-service-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-service-overview.ndjson new file mode 100644 index 00000000000..e72286bc50a --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-service-overview.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Navigation Container Service Overview [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"### Azure Containers\\n\\n[Instances](#/dashboard/9c11ac60-6cf6-11ea-8fe8-71add5fd7c38) |\\n[Registries](#/dashboard/6f2393f0-6d08-11ea-8fe8-71add5fd7c38) |\\n[**Services**](#/dashboard/dae20ed0-6d0a-11ea-8fe8-71add5fd7c38) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Container Service Overview [Metricbeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"3630b9a0-6d22-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Service Kube Node Status Allocatable Memory Bytes [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerService/managedClusters\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Service Kube Node Status Allocatable Memory Bytes\",\"line_width\":\"02\",\"metrics\":[{\"field\":\"azure.container_service.kube_node_status_allocatable_memory_bytes.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Service Kube Node Status Allocatable Memory Bytes [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"eda368d0-6d1d-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Service Kube Node Status Allocatable CPU Cores [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerService/managedClusters\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(196,81,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Service Kube Node Status Allocatable CPU Cores\",\"line_width\":\"02\",\"metrics\":[{\"field\":\"azure.container_service.kube_node_status_allocatable_cpu_cores.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Service Kube Node Status Allocatable CPU Cores [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6e2d9930-6d1e-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Containers Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1584710440054\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1584710497045\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1584710535722\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Resource\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Containers Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"0fa31060-6aae-11ea-af5c-73e8f396b3e9","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Service Kube Pod Status Phase [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0d772fb0-6d1f-11ea-a156-a582cfb250e8\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerService/managedClusters\\\" \"},\"gauge_color_rules\":[{\"id\":\"0ba507c0-6d1f-11ea-a156-a582cfb250e8\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(240,213,175,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Service Kube Pod Status Phase\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"azure.container_service.kube_pod_status_phase.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"00\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.pod\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Service Kube Pod Status Phase [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bda7b580-6d1f-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Service Kube Pod Status Ready [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerService/managedClusters\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(200,205,124,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"02\",\"metrics\":[{\"field\":\"azure.container_service.kube_pod_status_ready.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.pod\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Service Kube Pod Status Ready [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c19586f0-6d1e-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Container Service Kube Node Status Condition [Metricbeat Azure]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 0.2\": \"rgb(165,0,38)\", \"0.2 - 0.4\": \"rgb(244,109,67)\", \"0.4 - 0.6\": \"rgb(254,224,139)\", \"0.6 - 0.8\": \"rgb(217,239,139)\", \"0.8 - 1\": \"rgb(102,189,99)\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"azure.container_service.kube_node_status_condition.avg\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"Ready\\\" and azure.dimensions.status : \\\"true\\\" \"},\"label\":\"Ready \\\"true\\\"\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"Ready\\\" and azure.dimensions.status : \\\"false\\\" \"},\"label\":\"Ready \\\"false\\\"\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"NetworkUnavailable\\\" and azure.dimensions.status : \\\"true\\\" \"},\"label\":\"Network Unavailable \\\"true\\\"\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"NetworkUnavailable\\\" and azure.dimensions.status : \\\"false\\\" \"},\"label\":\"NetworkUnavailable \\\"false\\\"\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"OutOfDisk\\\" and azure.dimensions.status : \\\"false\\\" \"},\"label\":\"OutOfDisk \\\"false\\\"\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"OutOfDisk\\\" and azure.dimensions.status : \\\"true\\\" \"},\"label\":\"OutOfDisk \\\"true\\\"\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"MemoryPressure\\\" and azure.dimensions.status : \\\"true\\\" \"},\"label\":\"MemoryPressure \\\"true\\\"\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"MemoryPressure\\\" and azure.dimensions.status : \\\"false\\\" \"},\"label\":\"MemoryPressure \\\"false\\\"\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"DiskPressure\\\" and azure.dimensions.status : \\\"false\\\" \"},\"label\":\"DiskPressure \\\"false\\\"\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"DiskPressure\\\" and azure.dimensions.status : \\\"true\\\" \"},\"label\":\"DiskPressure \\\"true\\\"\"}]},\"schema\":\"segment\",\"type\":\"filters\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"azure.dimensions.node\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Green to Red\",\"colorsNumber\":5,\"colorsRange\":[{\"from\":0,\"to\":10}],\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"azure.dimensions.node: Descending\",\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"filters\",\"format\":{},\"label\":\"filters\",\"params\":{}},\"y\":[{\"accessor\":2,\"aggType\":\"avg\",\"format\":{\"id\":\"number\",\"params\":{\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Average azure.container_service.kube_node_status_condition.avg\",\"params\":{}}]},\"enableHover\":false,\"invertColors\":true,\"legendPosition\":\"right\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"black\",\"overwriteColor\":false,\"rotate\":0,\"show\":false},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Container Service Kube Node Status Condition [Metricbeat Azure]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"8.0.0","id":"e79211c0-6d37-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzksMV0="} +{"attributes":{"description":"This dashboard shows metrics for the container service in Azure.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"32b4e6e2-bf3f-4c4a-8fdb-925f21f9d22b\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"32b4e6e2-bf3f-4c4a-8fdb-925f21f9d22b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_32b4e6e2-bf3f-4c4a-8fdb-925f21f9d22b\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":17,\"i\":\"c35d3d89-2f34-43a0-b346-85ba0e7c9e89\",\"w\":18,\"x\":9,\"y\":0},\"panelIndex\":\"c35d3d89-2f34-43a0-b346-85ba0e7c9e89\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Service Kube Node Status Allocatable Memory\",\"panelRefName\":\"panel_c35d3d89-2f34-43a0-b346-85ba0e7c9e89\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":17,\"i\":\"e1952edf-ed31-49ee-8db1-24370998ab89\",\"w\":21,\"x\":27,\"y\":0},\"panelIndex\":\"e1952edf-ed31-49ee-8db1-24370998ab89\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Service Kube Node Status Allocatable CPU Cores\",\"panelRefName\":\"panel_e1952edf-ed31-49ee-8db1-24370998ab89\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"ec183a66-545b-4a67-bfb4-568def660612\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"ec183a66-545b-4a67-bfb4-568def660612\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Filters\",\"panelRefName\":\"panel_ec183a66-545b-4a67-bfb4-568def660612\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"ada37452-619f-470a-b9cd-bafa20e7d7b1\",\"w\":24,\"x\":0,\"y\":17},\"panelIndex\":\"ada37452-619f-470a-b9cd-bafa20e7d7b1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Service Kube Pod Status Phase\",\"panelRefName\":\"panel_ada37452-619f-470a-b9cd-bafa20e7d7b1\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"c8d3ed1a-6e72-4115-9a69-db1919a36fc4\",\"w\":24,\"x\":24,\"y\":17},\"panelIndex\":\"c8d3ed1a-6e72-4115-9a69-db1919a36fc4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Service Kube Pod Status Ready\",\"panelRefName\":\"panel_c8d3ed1a-6e72-4115-9a69-db1919a36fc4\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"707fb714-99af-4484-a56e-bfecdf592c58\",\"w\":48,\"x\":0,\"y\":32},\"panelIndex\":\"707fb714-99af-4484-a56e-bfecdf592c58\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Service Kube Node Status Condition\",\"panelRefName\":\"panel_707fb714-99af-4484-a56e-bfecdf592c58\"}]","timeRestore":false,"title":"[Metricbeat Azure] Container Service Overview","version":1},"coreMigrationVersion":"8.0.0","id":"dae20ed0-6d0a-11ea-8fe8-71add5fd7c38","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"3630b9a0-6d22-11ea-8fe8-71add5fd7c38","name":"32b4e6e2-bf3f-4c4a-8fdb-925f21f9d22b:panel_32b4e6e2-bf3f-4c4a-8fdb-925f21f9d22b","type":"visualization"},{"id":"eda368d0-6d1d-11ea-8fe8-71add5fd7c38","name":"c35d3d89-2f34-43a0-b346-85ba0e7c9e89:panel_c35d3d89-2f34-43a0-b346-85ba0e7c9e89","type":"visualization"},{"id":"6e2d9930-6d1e-11ea-8fe8-71add5fd7c38","name":"e1952edf-ed31-49ee-8db1-24370998ab89:panel_e1952edf-ed31-49ee-8db1-24370998ab89","type":"visualization"},{"id":"0fa31060-6aae-11ea-af5c-73e8f396b3e9","name":"ec183a66-545b-4a67-bfb4-568def660612:panel_ec183a66-545b-4a67-bfb4-568def660612","type":"visualization"},{"id":"bda7b580-6d1f-11ea-8fe8-71add5fd7c38","name":"ada37452-619f-470a-b9cd-bafa20e7d7b1:panel_ada37452-619f-470a-b9cd-bafa20e7d7b1","type":"visualization"},{"id":"c19586f0-6d1e-11ea-8fe8-71add5fd7c38","name":"c8d3ed1a-6e72-4115-9a69-db1919a36fc4:panel_c8d3ed1a-6e72-4115-9a69-db1919a36fc4","type":"visualization"},{"id":"e79211c0-6d37-11ea-8fe8-71add5fd7c38","name":"707fb714-99af-4484-a56e-bfecdf592c58:panel_707fb714-99af-4484-a56e-bfecdf592c58","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzIsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-database-account-overview.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-database-account-overview.json deleted file mode 100644 index c0552fd8e8f..00000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-database-account-overview.json +++ /dev/null @@ -1,974 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This Azure Database Account dashboard visualizes the most important database account metrics.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 4, - "i": "fe2125b1-526c-4293-b488-86d8c15ea3fb", - "w": 9, - "x": 0, - "y": 0 - }, - "panelIndex": "fe2125b1-526c-4293-b488-86d8c15ea3fb", - "panelRefName": "panel_0", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Data Usage" - }, - "gridData": { - "h": 18, - "i": "db895503-5a84-4b26-b889-c3c7ca964643", - "w": 18, - "x": 9, - "y": 0 - }, - "panelIndex": "db895503-5a84-4b26-b889-c3c7ca964643", - "panelRefName": "panel_1", - "title": "Data Usage", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Index Usage" - }, - "gridData": { - "h": 18, - "i": "0b986285-a5d0-4a31-bdb8-0f29cd50c2eb", - "w": 21, - "x": 27, - "y": 0 - }, - "panelIndex": "0b986285-a5d0-4a31-bdb8-0f29cd50c2eb", - "panelRefName": "panel_2", - "title": "Index Usage", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 14, - "i": "7d7b71ea-eb6b-43bf-be61-80235d1d4529", - "w": 9, - "x": 0, - "y": 4 - }, - "panelIndex": "7d7b71ea-eb6b-43bf-be61-80235d1d4529", - "panelRefName": "panel_3", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Total Requests" - }, - "gridData": { - "h": 15, - "i": "f6ce8b48-a876-4031-a43f-3ca3704a4ad6", - "w": 24, - "x": 0, - "y": 18 - }, - "panelIndex": "f6ce8b48-a876-4031-a43f-3ca3704a4ad6", - "panelRefName": "panel_4", - "title": "Total Requests", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Document Count" - }, - "gridData": { - "h": 15, - "i": "c604014a-647f-4a1d-b2e9-0304fdacc363", - "w": 24, - "x": 24, - "y": 18 - }, - "panelIndex": "c604014a-647f-4a1d-b2e9-0304fdacc363", - "panelRefName": "panel_5", - "title": "Document Count", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Available Storage" - }, - "gridData": { - "h": 15, - "i": "b0cbeaf7-8a12-4efa-b63b-5479c2cb39a9", - "w": 24, - "x": 0, - "y": 33 - }, - "panelIndex": "b0cbeaf7-8a12-4efa-b63b-5479c2cb39a9", - "panelRefName": "panel_6", - "title": "Available Storage", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Requests Per Status Code" - }, - "gridData": { - "h": 15, - "i": "5e755432-3e55-405c-91cf-3348d5067a3a", - "w": 24, - "x": 24, - "y": 33 - }, - "panelIndex": "5e755432-3e55-405c-91cf-3348d5067a3a", - "panelRefName": "panel_7", - "title": "Requests Per Status Code", - "version": "7.6.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Azure] Database Account Overview", - "version": 1 - }, - "id": "b232c220-8481-11ea-b181-4b1a9e0110f9", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "4177aab0-83cc-11ea-be84-f5d4d6b9a792", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "a49b4e20-8490-11ea-b181-4b1a9e0110f9", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "d2801d70-8490-11ea-b181-4b1a9e0110f9", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "674c1d70-83cc-11ea-be84-f5d4d6b9a792", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "a16b5900-8492-11ea-b181-4b1a9e0110f9", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "d3ac7d90-8492-11ea-b181-4b1a9e0110f9", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "81f16b40-32ea-11ea-a83e-25b8612d00cc", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "037382e0-856e-11ea-91bc-ab084c7ec0e7", - "name": "panel_7", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-04-23T14:26:12.702Z", - "version": "WzczNTAsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Navigation Database Account Overview [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "### Azure Database Accounts\n", - "openLinksInNewTab": false - }, - "title": "Navigation Database Account Overview [Metricbeat Azure]", - "type": "markdown" - } - }, - "id": "4177aab0-83cc-11ea-be84-f5d4d6b9a792", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-21T12:33:08.312Z", - "version": "WzY4OTcsMTFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Database Account Data Usage [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.DocumentDb/databaseAccounts\" " - }, - "id": "e9a40230-32e9-11ea-bda2-69435df36a5c", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "id": "e9a40231-32e9-11ea-bda2-69435df36a5c", - "label": "Data Usage", - "line_width": "2", - "metrics": [ - { - "field": "azure.database_account.data_usage.total", - "id": "e9a40232-32e9-11ea-bda2-69435df36a5c", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_exclude": "\"\u003cempty\u003e\"", - "terms_field": "azure.dimensions.database_name", - "terms_order_by": "_count", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Database Account Data Usage [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "a49b4e20-8490-11ea-b181-4b1a9e0110f9", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-23T11:58:07.195Z", - "version": "WzcxODEsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Database Account Index Usage [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.DocumentDb/databaseAccounts\" " - }, - "id": "e9a40230-32e9-11ea-bda2-69435df36a5c", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(176,188,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "id": "e9a40231-32e9-11ea-bda2-69435df36a5c", - "label": "Index Usage", - "line_width": "2", - "metrics": [ - { - "field": "azure.database_account.index_usage.total", - "id": "e9a40232-32e9-11ea-bda2-69435df36a5c", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_exclude": "\"\u003cempty\u003e\"", - "terms_field": "azure.dimensions.database_name", - "terms_order_by": "_count", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Database Account Index Usage [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "d2801d70-8490-11ea-b181-4b1a9e0110f9", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-23T11:59:31.862Z", - "version": "WzcyMDEsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Database Account Filters [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "azure.subscription_id", - "id": "1584710440054", - "indexPatternRefName": "control_0_index_pattern", - "label": "Subscription", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.group", - "id": "1584710497045", - "indexPatternRefName": "control_1_index_pattern", - "label": "Resource Group", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.name", - "id": "1584710535722", - "indexPatternRefName": "control_2_index_pattern", - "label": "Resource", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.dimensions.database_name", - "id": "1587643606086", - "indexPatternRefName": "control_3_index_pattern", - "label": "Database", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "1584710535722", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "Database Account Filters [Metricbeat Azure]", - "type": "input_control_vis" - } - }, - "id": "674c1d70-83cc-11ea-be84-f5d4d6b9a792", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_3_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-04-23T12:08:07.587Z", - "version": "WzcyNDAsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Database Account Total Requests [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.DocumentDb/databaseAccounts\" " - }, - "id": "e9a40230-32e9-11ea-bda2-69435df36a5c", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "e9a40231-32e9-11ea-bda2-69435df36a5c", - "label": "Total Requests", - "line_width": "2", - "metrics": [ - { - "field": "azure.database_account.total_requests.count", - "id": "e9a40232-32e9-11ea-bda2-69435df36a5c", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_exclude": "\"\u003cempty\u003e\"", - "terms_field": "azure.dimensions.database_name", - "terms_order_by": "_count", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Database Account Total Requests [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "a16b5900-8492-11ea-b181-4b1a9e0110f9", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-23T12:00:24.232Z", - "version": "WzcyMTEsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Database Account Document Count [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.DocumentDb/databaseAccounts\" " - }, - "id": "e9a40230-32e9-11ea-bda2-69435df36a5c", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(102,102,102,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "e9a40231-32e9-11ea-bda2-69435df36a5c", - "label": "Document Count", - "line_width": "2", - "metrics": [ - { - "field": "azure.database_account.document_count.total", - "id": "e9a40232-32e9-11ea-bda2-69435df36a5c", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_exclude": "\"\u003cempty\u003e\"", - "terms_field": "azure.dimensions.database_name", - "terms_order_by": "_count", - "type": "timeseries", - "value_template": "{{value}} " - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Database Account Document Count [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "d3ac7d90-8492-11ea-b181-4b1a9e0110f9", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-23T12:05:03.644Z", - "version": "WzcyMjEsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Database Account Available Storage [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.DocumentDb/databaseAccounts\" " - }, - "id": "e9a40230-32e9-11ea-bda2-69435df36a5c", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(101,50,148,1)", - "fill": "0", - "formatter": "bytes", - "id": "e9a40231-32e9-11ea-bda2-69435df36a5c", - "label": "Available storage", - "line_width": "2", - "metrics": [ - { - "field": "azure.database_account.available_storage.total", - "id": "e9a40232-32e9-11ea-bda2-69435df36a5c", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_exclude": "\"\u003cempty\u003e\"", - "terms_field": "azure.dimensions.database_name", - "terms_order_by": "e9a40232-32e9-11ea-bda2-69435df36a5c", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Database Account Available Storage [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "81f16b40-32ea-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-23T12:05:58.477Z", - "version": "WzcyMzMsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index" - } - }, - "title": " Database Account Requests By Status Code [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Total Requests", - "field": "azure.database_account.total_requests.count" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Status Codes", - "field": "azure.dimensions.status_code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Database", - "field": "azure.dimensions.database_name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "row": false, - "size": 5 - }, - "schema": "split", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": false, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": false, - "style": {}, - "title": {}, - "type": "category" - } - ], - "dimensions": { - "series": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "", - "origin": "http://localhost:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "Status Codes", - "params": {} - } - ], - "splitColumn": [ - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "", - "origin": "http://localhost:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "Database", - "params": {} - } - ], - "x": null, - "y": [ - { - "accessor": 2, - "aggType": "avg", - "format": { - "id": "number", - "params": { - "parsedUrl": { - "basePath": "", - "origin": "http://localhost:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "Total Requests", - "params": {} - } - ] - }, - "grid": { - "categoryLines": false - }, - "labels": { - "show": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Total Requests" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Total Requests" - }, - "type": "value" - } - ] - }, - "title": " Database Account Requests By Status Code [Metricbeat Azure]", - "type": "histogram" - } - }, - "id": "037382e0-856e-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-04-23T14:23:33.900Z", - "version": "WzczNDMsMTNd" - } - ], - "version": "7.6.0" -} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-database-account-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-database-account-overview.ndjson new file mode 100644 index 00000000000..ac318a1dccc --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-database-account-overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Navigation Database Account Overview [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"### Azure Database Accounts\\n\",\"openLinksInNewTab\":false},\"title\":\"Navigation Database Account Overview [Metricbeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"4177aab0-83cc-11ea-be84-f5d4d6b9a792","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:49.091Z","version":"WzM1NDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Database Account Data Usage [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.DocumentDb/databaseAccounts\\\" \"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"Data Usage\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"azure.database_account.data_usage.total\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_exclude\":\"\\\"\\\"\",\"terms_field\":\"azure.dimensions.database_name\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Database Account Data Usage [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a49b4e20-8490-11ea-b181-4b1a9e0110f9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:49.091Z","version":"WzM1NDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Database Account Index Usage [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.DocumentDb/databaseAccounts\\\" \"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"Index Usage\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"azure.database_account.index_usage.total\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_exclude\":\"\\\"\\\"\",\"terms_field\":\"azure.dimensions.database_name\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Database Account Index Usage [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d2801d70-8490-11ea-b181-4b1a9e0110f9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:49.091Z","version":"WzM1NDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Database Account Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1584710440054\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1584710497045\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1584710535722\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Resource\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.dimensions.database_name\",\"id\":\"1587643606086\",\"indexPatternRefName\":\"control_3_index_pattern\",\"label\":\"Database\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"1584710535722\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Database Account Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"674c1d70-83cc-11ea-be84-f5d4d6b9a792","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_3_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:49.091Z","version":"WzM1NDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Database Account Total Requests [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.DocumentDb/databaseAccounts\\\" \"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"Total Requests\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"azure.database_account.total_requests.count\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_exclude\":\"\\\"\\\"\",\"terms_field\":\"azure.dimensions.database_name\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Database Account Total Requests [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a16b5900-8492-11ea-b181-4b1a9e0110f9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:49.091Z","version":"WzM1NDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Database Account Document Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.DocumentDb/databaseAccounts\\\" \"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(102,102,102,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"Document Count\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"azure.database_account.document_count.total\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_exclude\":\"\\\"\\\"\",\"terms_field\":\"azure.dimensions.database_name\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Database Account Document Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d3ac7d90-8492-11ea-b181-4b1a9e0110f9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:49.091Z","version":"WzM1NDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success Server Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"SuccessServerLatency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_server_latency.avg\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success Server Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":" Database Account Requests By Status Code [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total Requests\",\"field\":\"azure.database_account.total_requests.count\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Status Codes\",\"field\":\"azure.dimensions.status_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Database\",\"field\":\"azure.dimensions.database_name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":false,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":false,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Status Codes\",\"params\":{}}],\"splitColumn\":[{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Database\",\"params\":{}}],\"x\":null,\"y\":[{\"accessor\":2,\"aggType\":\"avg\",\"format\":{\"id\":\"number\",\"params\":{\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Total Requests\",\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Total Requests\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Total Requests\"},\"type\":\"value\"}],\"row\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\" Database Account Requests By Status Code [Metricbeat Azure]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"037382e0-856e-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:49.091Z","version":"WzM1NDgsMV0="} +{"attributes":{"description":"This Azure Database Account dashboard visualizes the most important database account metrics.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"fe2125b1-526c-4293-b488-86d8c15ea3fb\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"fe2125b1-526c-4293-b488-86d8c15ea3fb\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_fe2125b1-526c-4293-b488-86d8c15ea3fb\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"db895503-5a84-4b26-b889-c3c7ca964643\",\"w\":18,\"x\":9,\"y\":0},\"panelIndex\":\"db895503-5a84-4b26-b889-c3c7ca964643\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Data Usage\",\"panelRefName\":\"panel_db895503-5a84-4b26-b889-c3c7ca964643\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"0b986285-a5d0-4a31-bdb8-0f29cd50c2eb\",\"w\":21,\"x\":27,\"y\":0},\"panelIndex\":\"0b986285-a5d0-4a31-bdb8-0f29cd50c2eb\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Index Usage\",\"panelRefName\":\"panel_0b986285-a5d0-4a31-bdb8-0f29cd50c2eb\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"7d7b71ea-eb6b-43bf-be61-80235d1d4529\",\"w\":9,\"x\":0,\"y\":4},\"panelIndex\":\"7d7b71ea-eb6b-43bf-be61-80235d1d4529\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_7d7b71ea-eb6b-43bf-be61-80235d1d4529\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"f6ce8b48-a876-4031-a43f-3ca3704a4ad6\",\"w\":24,\"x\":0,\"y\":18},\"panelIndex\":\"f6ce8b48-a876-4031-a43f-3ca3704a4ad6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Requests\",\"panelRefName\":\"panel_f6ce8b48-a876-4031-a43f-3ca3704a4ad6\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"c604014a-647f-4a1d-b2e9-0304fdacc363\",\"w\":24,\"x\":24,\"y\":18},\"panelIndex\":\"c604014a-647f-4a1d-b2e9-0304fdacc363\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Document Count\",\"panelRefName\":\"panel_c604014a-647f-4a1d-b2e9-0304fdacc363\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"b0cbeaf7-8a12-4efa-b63b-5479c2cb39a9\",\"w\":24,\"x\":0,\"y\":33},\"panelIndex\":\"b0cbeaf7-8a12-4efa-b63b-5479c2cb39a9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Available Storage\",\"panelRefName\":\"panel_b0cbeaf7-8a12-4efa-b63b-5479c2cb39a9\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5e755432-3e55-405c-91cf-3348d5067a3a\",\"w\":24,\"x\":24,\"y\":33},\"panelIndex\":\"5e755432-3e55-405c-91cf-3348d5067a3a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Requests Per Status Code\",\"panelRefName\":\"panel_5e755432-3e55-405c-91cf-3348d5067a3a\"}]","timeRestore":false,"title":"[Metricbeat Azure] Database Account Overview","version":1},"coreMigrationVersion":"8.0.0","id":"b232c220-8481-11ea-b181-4b1a9e0110f9","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"4177aab0-83cc-11ea-be84-f5d4d6b9a792","name":"fe2125b1-526c-4293-b488-86d8c15ea3fb:panel_fe2125b1-526c-4293-b488-86d8c15ea3fb","type":"visualization"},{"id":"a49b4e20-8490-11ea-b181-4b1a9e0110f9","name":"db895503-5a84-4b26-b889-c3c7ca964643:panel_db895503-5a84-4b26-b889-c3c7ca964643","type":"visualization"},{"id":"d2801d70-8490-11ea-b181-4b1a9e0110f9","name":"0b986285-a5d0-4a31-bdb8-0f29cd50c2eb:panel_0b986285-a5d0-4a31-bdb8-0f29cd50c2eb","type":"visualization"},{"id":"674c1d70-83cc-11ea-be84-f5d4d6b9a792","name":"7d7b71ea-eb6b-43bf-be61-80235d1d4529:panel_7d7b71ea-eb6b-43bf-be61-80235d1d4529","type":"visualization"},{"id":"a16b5900-8492-11ea-b181-4b1a9e0110f9","name":"f6ce8b48-a876-4031-a43f-3ca3704a4ad6:panel_f6ce8b48-a876-4031-a43f-3ca3704a4ad6","type":"visualization"},{"id":"d3ac7d90-8492-11ea-b181-4b1a9e0110f9","name":"c604014a-647f-4a1d-b2e9-0304fdacc363:panel_c604014a-647f-4a1d-b2e9-0304fdacc363","type":"visualization"},{"id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","name":"b0cbeaf7-8a12-4efa-b63b-5479c2cb39a9:panel_b0cbeaf7-8a12-4efa-b63b-5479c2cb39a9","type":"visualization"},{"id":"037382e0-856e-11ea-91bc-ab084c7ec0e7","name":"5e755432-3e55-405c-91cf-3348d5067a3a:panel_5e755432-3e55-405c-91cf-3348d5067a3a","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:49.091Z","version":"WzM1NDAsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-file-storage-overview.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-file-storage-overview.json deleted file mode 100644 index b58598e3838..00000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-file-storage-overview.json +++ /dev/null @@ -1,1553 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This dashboard shows metrics for file storage type in Azure.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": "file", - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "azure.namespace", - "negate": false, - "params": { - "query": "Microsoft.Storage/storageAccounts/fileServices" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "azure.namespace": "Microsoft.Storage/storageAccounts/fileServices" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "ee131d2d-7ab5-4434-9e3b-230759c3e5ff", - "w": 9, - "x": 0, - "y": 0 - }, - "panelIndex": "ee131d2d-7ab5-4434-9e3b-230759c3e5ff", - "panelRefName": "panel_0", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Availability" - }, - "gridData": { - "h": 9, - "i": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", - "w": 5, - "x": 9, - "y": 0 - }, - "panelIndex": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", - "panelRefName": "panel_1", - "title": "Availability", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "b24e3e0d-a748-4bb9-ad71-e0de392e2696", - "w": 5, - "x": 14, - "y": 0 - }, - "panelIndex": "b24e3e0d-a748-4bb9-ad71-e0de392e2696", - "panelRefName": "panel_2", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "8131dfcd-2c52-4641-8259-2f4f2e7558d0", - "w": 5, - "x": 19, - "y": 0 - }, - "panelIndex": "8131dfcd-2c52-4641-8259-2f4f2e7558d0", - "panelRefName": "panel_3", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "49233089-be1d-4cda-9ccf-2815152e1016", - "w": 5, - "x": 24, - "y": 0 - }, - "panelIndex": "49233089-be1d-4cda-9ccf-2815152e1016", - "panelRefName": "panel_4", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Transactions" - }, - "gridData": { - "h": 9, - "i": "1d623c03-4d02-4a81-b91e-49e82e112016", - "w": 19, - "x": 29, - "y": 0 - }, - "panelIndex": "1d623c03-4d02-4a81-b91e-49e82e112016", - "panelRefName": "panel_5", - "title": "Transactions", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 15, - "i": "ff6441f8-d66d-4399-bae5-25d3d861b299", - "w": 9, - "x": 0, - "y": 5 - }, - "panelIndex": "ff6441f8-d66d-4399-bae5-25d3d861b299", - "panelRefName": "panel_6", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Success Server Latency" - }, - "gridData": { - "h": 15, - "i": "87066244-7840-4555-9d12-026d64977f1a", - "w": 20, - "x": 9, - "y": 9 - }, - "panelIndex": "87066244-7840-4555-9d12-026d64977f1a", - "panelRefName": "panel_7", - "title": "Success Server Latency", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Success E2E Latency" - }, - "gridData": { - "h": 15, - "i": "756da375-e6a2-4668-af43-0cd294878254", - "w": 19, - "x": 29, - "y": 9 - }, - "panelIndex": "756da375-e6a2-4668-af43-0cd294878254", - "panelRefName": "panel_8", - "title": "Success E2E Latency", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 8, - "i": "2d5c6c0f-f4d2-44fb-b7e5-1a855b75e40f", - "w": 4, - "x": 0, - "y": 20 - }, - "panelIndex": "2d5c6c0f-f4d2-44fb-b7e5-1a855b75e40f", - "panelRefName": "panel_9", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 8, - "i": "c6792441-37b6-4ef4-ad8b-21f137b2f0b4", - "w": 5, - "x": 4, - "y": 20 - }, - "panelIndex": "c6792441-37b6-4ef4-ad8b-21f137b2f0b4", - "panelRefName": "panel_10", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Egress Traffic by APIName" - }, - "gridData": { - "h": 14, - "i": "a715fafc-ca38-410c-9253-12ba506eabc0", - "w": 20, - "x": 9, - "y": 24 - }, - "panelIndex": "a715fafc-ca38-410c-9253-12ba506eabc0", - "panelRefName": "panel_11", - "title": "Egress Traffic by APIName", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Ingress Traffic by APIName" - }, - "gridData": { - "h": 14, - "i": "75f72920-be71-47a9-a967-f1c862ab2961", - "w": 19, - "x": 29, - "y": 24 - }, - "panelIndex": "75f72920-be71-47a9-a967-f1c862ab2961", - "panelRefName": "panel_12", - "title": "Ingress Traffic by APIName", - "version": "7.7.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Azure] File Storage Overview", - "version": 1 - }, - "id": "dff7a080-32f7-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "f18a7cb0-32f6-11ea-a83e-25b8612d00cc", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "40dbc0d0-32e3-11ea-a83e-25b8612d00cc", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "453965a0-3393-11ea-a83e-25b8612d00cc", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "722ef2f0-3393-11ea-a83e-25b8612d00cc", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "a4bf9710-3393-11ea-a83e-25b8612d00cc", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "553f9320-32e9-11ea-a83e-25b8612d00cc", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "acced050-32d1-11ea-a83e-25b8612d00cc", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "81f16b40-32ea-11ea-a83e-25b8612d00cc", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "685fbeb0-32eb-11ea-a83e-25b8612d00cc", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "09a6f150-3399-11ea-a83e-25b8612d00cc", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "241a55e0-3399-11ea-a83e-25b8612d00cc", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "599c62c0-32d7-11ea-a83e-25b8612d00cc", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "4eaef260-32e1-11ea-a83e-25b8612d00cc", - "name": "panel_12", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-04-07T17:45:34.658Z", - "version": "WzI1NjcsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation File Storage Overview [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### Azure Storage\n\n[Overview](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [Blob](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [**File**](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [Table](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [Queue](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) ", - "openLinksInNewTab": false - }, - "title": "Navigation File Storage Overview [Metricbeat Azure]", - "type": "markdown" - } - }, - "id": "f18a7cb0-32f6-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:04:27.299Z", - "version": "WzE2MjcsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Availability [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(104,204,202,1)", - "id": "18f616c0-32e2-11ea-867b-37070aefa392", - "operator": "gte", - "value": 100 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "998b1c90-32e2-11ea-867b-37070aefa392", - "operator": "lt", - "value": 100 - } - ], - "bar_color_rules": [ - { - "id": "28142cf0-32e2-11ea-867b-37070aefa392" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "29808e30-32e2-11ea-867b-37070aefa392" - } - ], - "gauge_inner_width": "7", - "gauge_style": "circle", - "gauge_width": 10, - "id": "0e91b810-32e2-11ea-a93d-dd20c62559b3", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(22,165,165,1)", - "fill": "0.6", - "formatter": "number", - "hide_in_legend": 1, - "id": "0e91b811-32e2-11ea-a93d-dd20c62559b3", - "label": "Availability", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.availability.avg", - "id": "0e91b812-32e2-11ea-a93d-dd20c62559b3", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "terms_field": null, - "type": "timeseries", - "value_template": "{{value}} %" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "last_value", - "type": "timeseries" - }, - "title": "Storage Availability [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "40dbc0d0-32e3-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:04:30.376Z", - "version": "WzE2NjcsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage File Capacity [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "azure.resource.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "File Capacity", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.file_capacity.avg", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "azure.resource.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Storage File Capacity [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "453965a0-3393-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:44:50.934Z", - "version": "WzI1NTEsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage File Count [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(164,221,0,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "'0'", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "File Count", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.file_count.avg", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "azure.resource.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Storage File Count [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "722ef2f0-3393-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:45:14.875Z", - "version": "WzI1NjMsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage File Share Count [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(164,221,0,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "'0'", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "File Share Count", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.file_share_count.avg", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "azure.resource.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Storage File Share Count [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "a4bf9710-3393-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:45:25.865Z", - "version": "WzI1NjYsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Transactions [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#3185FC", - "fill": 0.5, - "formatter": "number", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "avg(azure.storage.transactions.total)", - "line_width": "1", - "metrics": [ - { - "field": "azure.storage.transactions.total", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.response_type", - "terms_order_by": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Transactions [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "553f9320-32e9-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:29:35.827Z", - "version": "WzIzODMsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Filters [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "azure.subscription_id", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "Subscription", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.group", - "id": "1549512142947", - "indexPatternRefName": "control_1_index_pattern", - "label": "Resource Group", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.name", - "id": "1578578146383", - "indexPatternRefName": "control_2_index_pattern", - "label": "Resource Name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "Storage Filters [Metricbeat Azure]", - "type": "input_control_vis" - } - }, - "id": "acced050-32d1-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-04-07T17:04:30.376Z", - "version": "WzE2NzIsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Success Server Latency [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "e9a40230-32e9-11ea-bda2-69435df36a5c", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#3185FC", - "fill": 0.5, - "formatter": "number", - "id": "e9a40231-32e9-11ea-bda2-69435df36a5c", - "label": "SuccessServerLatency (ms)", - "line_width": "1", - "metrics": [ - { - "field": "azure.storage.success_server_latency.avg", - "id": "e9a40232-32e9-11ea-bda2-69435df36a5c", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "e9a40232-32e9-11ea-bda2-69435df36a5c", - "type": "timeseries", - "value_template": "{{value}} ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Success Server Latency [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "81f16b40-32ea-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:15:09.491Z", - "version": "WzIxNzYsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Success E2E Latency [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "da4459b0-32ea-11ea-be35-cb10be813609", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#3185FC", - "fill": 0.5, - "formatter": "number", - "id": "da4459b1-32ea-11ea-be35-cb10be813609", - "label": "Success E2E Latency (ms)", - "line_width": "1", - "metrics": [ - { - "field": "azure.storage.success_e2elatency.avg", - "id": "da4459b2-32ea-11ea-be35-cb10be813609", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "da4459b2-32ea-11ea-be35-cb10be813609", - "type": "timeseries", - "value_template": "{{value}} ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Success E2E Latency [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "685fbeb0-32eb-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:28:09.199Z", - "version": "WzIzMzUsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage File Share Snapshot Count [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "azure.resource.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,98,177,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "'0'", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "File Share Snapshot Count", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.file_share_snapshot_count.avg", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "azure.resource.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Storage File Share Snapshot Count [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "09a6f150-3399-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:43:27.381Z", - "version": "WzI1MjUsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage File Share Snapshot Size [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "azure.resource.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,98,177,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "File Share Snapshot Size", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.file_share_snapshot_size.avg", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "azure.resource.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Storage File Share Snapshot Size [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "241a55e0-3399-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:44:18.919Z", - "version": "WzI1NDIsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Account Egress Traffic [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "0791c5a0-32d8-11ea-98d2-1194b9f2bfc0" - } - ], - "bar_color_rules": [ - { - "id": "fca016e0-32de-11ea-a435-e7199eba380d" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "fb8be7c0-32de-11ea-a435-e7199eba380d" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "f0edca80-32d5-11ea-b19d-fb5049b980ca", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,149,177,1)", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "hidden": false, - "id": "f0edf190-32d5-11ea-b19d-fb5049b980ca", - "label": "Storage Accounts Egress Total", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.egress.total", - "id": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "rgba(0,98,177,1)", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "283dc410-32d9-11ea-98d2-1194b9f2bfc0" - } - ], - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Account Egress Traffic [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "599c62c0-32d7-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:21:03.231Z", - "version": "WzIyNzIsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Account Ingress Traffic [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "0791c5a0-32d8-11ea-98d2-1194b9f2bfc0" - } - ], - "bar_color_rules": [ - { - "id": "fca016e0-32de-11ea-a435-e7199eba380d" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "fb8be7c0-32de-11ea-a435-e7199eba380d" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "f0edca80-32d5-11ea-b19d-fb5049b980ca", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "hidden": false, - "id": "f0edf190-32d5-11ea-b19d-fb5049b980ca", - "label": "Storage Accounts Ingress Total", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.ingress.total", - "id": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "rgba(0,98,177,1)", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "283dc410-32d9-11ea-98d2-1194b9f2bfc0" - } - ], - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Account Ingress Traffic [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "4eaef260-32e1-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:21:51.411Z", - "version": "WzIyODMsNF0=" - } - ], - "version": "7.7.0" -} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-file-storage-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-file-storage-overview.ndjson new file mode 100644 index 00000000000..3f8904dc396 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-file-storage-overview.ndjson @@ -0,0 +1,14 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation File Storage Overview [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Azure Storage\\n\\n[Overview](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [Blob](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [**File**](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [Table](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [Queue](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) \",\"openLinksInNewTab\":false},\"title\":\"Navigation File Storage Overview [Metricbeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"f18a7cb0-32f6-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:50.051Z","version":"WzM1NTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Availability [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(104,204,202,1)\",\"id\":\"18f616c0-32e2-11ea-867b-37070aefa392\",\"operator\":\"gte\",\"value\":100},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"998b1c90-32e2-11ea-867b-37070aefa392\",\"operator\":\"lt\",\"value\":100}],\"bar_color_rules\":[{\"id\":\"28142cf0-32e2-11ea-867b-37070aefa392\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"29808e30-32e2-11ea-867b-37070aefa392\"}],\"gauge_inner_width\":\"7\",\"gauge_style\":\"circle\",\"gauge_width\":10,\"id\":\"0e91b810-32e2-11ea-a93d-dd20c62559b3\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0.6\",\"formatter\":\"number\",\"hide_in_legend\":1,\"id\":\"0e91b811-32e2-11ea-a93d-dd20c62559b3\",\"label\":\"Availability\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.availability.avg\",\"id\":\"0e91b812-32e2-11ea-a93d-dd20c62559b3\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}} %\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Availability [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage File Capacity [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"azure.resource.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"File Capacity\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.file_capacity.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage File Capacity [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"453965a0-3393-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:50.051Z","version":"WzM1NTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage File Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0'\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"File Count\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.file_count.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage File Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"722ef2f0-3393-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:50.051Z","version":"WzM1NTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage File Share Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0'\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"File Share Count\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.file_share_count.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage File Share Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a4bf9710-3393-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:50.051Z","version":"WzM1NTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Transactions [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"avg(azure.storage.transactions.total)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.transactions.total\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.response_type\",\"terms_order_by\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Transactions [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"553f9320-32e9-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Storage Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1578578146383\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Resource Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Storage Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"acced050-32d1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success Server Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"SuccessServerLatency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_server_latency.avg\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success Server Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success E2E Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"da4459b0-32ea-11ea-be35-cb10be813609\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"da4459b1-32ea-11ea-be35-cb10be813609\",\"label\":\"Success E2E Latency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_e2elatency.avg\",\"id\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success E2E Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage File Share Snapshot Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"azure.resource.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,98,177,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0'\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"File Share Snapshot Count\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.file_share_snapshot_count.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage File Share Snapshot Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"09a6f150-3399-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:50.051Z","version":"WzM1NTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage File Share Snapshot Size [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"azure.resource.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,98,177,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"File Share Snapshot Size\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.file_share_snapshot_size.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage File Share Snapshot Size [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"241a55e0-3399-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:50.051Z","version":"WzM1NjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Egress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,149,177,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Egress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.egress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Egress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Ingress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Ingress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.ingress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Ingress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTksMV0="} +{"attributes":{"description":"This dashboard shows metrics for file storage type in Azure.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": \"file\", \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"azure.namespace\", \"negate\": false, \"params\": {\"query\": \"Microsoft.Storage/storageAccounts/fileServices\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"azure.namespace\": \"Microsoft.Storage/storageAccounts/fileServices\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"ee131d2d-7ab5-4434-9e3b-230759c3e5ff\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"ee131d2d-7ab5-4434-9e3b-230759c3e5ff\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ee131d2d-7ab5-4434-9e3b-230759c3e5ff\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"w\":5,\"x\":9,\"y\":0},\"panelIndex\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Availability\",\"panelRefName\":\"panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"b24e3e0d-a748-4bb9-ad71-e0de392e2696\",\"w\":5,\"x\":14,\"y\":0},\"panelIndex\":\"b24e3e0d-a748-4bb9-ad71-e0de392e2696\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_b24e3e0d-a748-4bb9-ad71-e0de392e2696\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"8131dfcd-2c52-4641-8259-2f4f2e7558d0\",\"w\":5,\"x\":19,\"y\":0},\"panelIndex\":\"8131dfcd-2c52-4641-8259-2f4f2e7558d0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_8131dfcd-2c52-4641-8259-2f4f2e7558d0\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"49233089-be1d-4cda-9ccf-2815152e1016\",\"w\":5,\"x\":24,\"y\":0},\"panelIndex\":\"49233089-be1d-4cda-9ccf-2815152e1016\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_49233089-be1d-4cda-9ccf-2815152e1016\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"w\":19,\"x\":29,\"y\":0},\"panelIndex\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Transactions\",\"panelRefName\":\"panel_1d623c03-4d02-4a81-b91e-49e82e112016\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ff6441f8-d66d-4399-bae5-25d3d861b299\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"87066244-7840-4555-9d12-026d64977f1a\",\"w\":20,\"x\":9,\"y\":9},\"panelIndex\":\"87066244-7840-4555-9d12-026d64977f1a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success Server Latency\",\"panelRefName\":\"panel_87066244-7840-4555-9d12-026d64977f1a\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"756da375-e6a2-4668-af43-0cd294878254\",\"w\":19,\"x\":29,\"y\":9},\"panelIndex\":\"756da375-e6a2-4668-af43-0cd294878254\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success E2E Latency\",\"panelRefName\":\"panel_756da375-e6a2-4668-af43-0cd294878254\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"2d5c6c0f-f4d2-44fb-b7e5-1a855b75e40f\",\"w\":4,\"x\":0,\"y\":20},\"panelIndex\":\"2d5c6c0f-f4d2-44fb-b7e5-1a855b75e40f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_2d5c6c0f-f4d2-44fb-b7e5-1a855b75e40f\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"c6792441-37b6-4ef4-ad8b-21f137b2f0b4\",\"w\":5,\"x\":4,\"y\":20},\"panelIndex\":\"c6792441-37b6-4ef4-ad8b-21f137b2f0b4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_c6792441-37b6-4ef4-ad8b-21f137b2f0b4\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"w\":20,\"x\":9,\"y\":24},\"panelIndex\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Egress Traffic by APIName\",\"panelRefName\":\"panel_a715fafc-ca38-410c-9253-12ba506eabc0\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"w\":19,\"x\":29,\"y\":24},\"panelIndex\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ingress Traffic by APIName\",\"panelRefName\":\"panel_75f72920-be71-47a9-a967-f1c862ab2961\"}]","timeRestore":false,"title":"[Metricbeat Azure] File Storage Overview","version":1},"coreMigrationVersion":"8.0.0","id":"dff7a080-32f7-11ea-a83e-25b8612d00cc","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"f18a7cb0-32f6-11ea-a83e-25b8612d00cc","name":"ee131d2d-7ab5-4434-9e3b-230759c3e5ff:panel_ee131d2d-7ab5-4434-9e3b-230759c3e5ff","type":"visualization"},{"id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","name":"a9456b9b-efa6-410d-a56c-4b66aa8c499e:panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e","type":"visualization"},{"id":"453965a0-3393-11ea-a83e-25b8612d00cc","name":"b24e3e0d-a748-4bb9-ad71-e0de392e2696:panel_b24e3e0d-a748-4bb9-ad71-e0de392e2696","type":"visualization"},{"id":"722ef2f0-3393-11ea-a83e-25b8612d00cc","name":"8131dfcd-2c52-4641-8259-2f4f2e7558d0:panel_8131dfcd-2c52-4641-8259-2f4f2e7558d0","type":"visualization"},{"id":"a4bf9710-3393-11ea-a83e-25b8612d00cc","name":"49233089-be1d-4cda-9ccf-2815152e1016:panel_49233089-be1d-4cda-9ccf-2815152e1016","type":"visualization"},{"id":"553f9320-32e9-11ea-a83e-25b8612d00cc","name":"1d623c03-4d02-4a81-b91e-49e82e112016:panel_1d623c03-4d02-4a81-b91e-49e82e112016","type":"visualization"},{"id":"acced050-32d1-11ea-a83e-25b8612d00cc","name":"ff6441f8-d66d-4399-bae5-25d3d861b299:panel_ff6441f8-d66d-4399-bae5-25d3d861b299","type":"visualization"},{"id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","name":"87066244-7840-4555-9d12-026d64977f1a:panel_87066244-7840-4555-9d12-026d64977f1a","type":"visualization"},{"id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","name":"756da375-e6a2-4668-af43-0cd294878254:panel_756da375-e6a2-4668-af43-0cd294878254","type":"visualization"},{"id":"09a6f150-3399-11ea-a83e-25b8612d00cc","name":"2d5c6c0f-f4d2-44fb-b7e5-1a855b75e40f:panel_2d5c6c0f-f4d2-44fb-b7e5-1a855b75e40f","type":"visualization"},{"id":"241a55e0-3399-11ea-a83e-25b8612d00cc","name":"c6792441-37b6-4ef4-ad8b-21f137b2f0b4:panel_c6792441-37b6-4ef4-ad8b-21f137b2f0b4","type":"visualization"},{"id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","name":"a715fafc-ca38-410c-9253-12ba506eabc0:panel_a715fafc-ca38-410c-9253-12ba506eabc0","type":"visualization"},{"id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","name":"75f72920-be71-47a9-a967-f1c862ab2961:panel_75f72920-be71-47a9-a967-f1c862ab2961","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:50.051Z","version":"WzM1NDksMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-queue-storage-overview.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-queue-storage-overview.json deleted file mode 100644 index 6226342295c..00000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-queue-storage-overview.json +++ /dev/null @@ -1,1299 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This dashboard shows metrics for queue storage type in Azure.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": "queue", - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "azure.namespace", - "negate": false, - "params": { - "query": "Microsoft.Storage/storageAccounts/queueServices" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "azure.namespace": "Microsoft.Storage/storageAccounts/queueServices" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "933a427d-a8b7-48ff-ac53-337f32b340ea", - "w": 9, - "x": 0, - "y": 0 - }, - "panelIndex": "933a427d-a8b7-48ff-ac53-337f32b340ea", - "panelRefName": "panel_0", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Availability" - }, - "gridData": { - "h": 9, - "i": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", - "w": 5, - "x": 9, - "y": 0 - }, - "panelIndex": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", - "panelRefName": "panel_1", - "title": "Availability", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "0b4107a7-6a3d-4092-9813-00edb56bc838", - "w": 5, - "x": 14, - "y": 0 - }, - "panelIndex": "0b4107a7-6a3d-4092-9813-00edb56bc838", - "panelRefName": "panel_2", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "cf022a47-2314-4ab6-b397-b1d860944179", - "w": 5, - "x": 19, - "y": 0 - }, - "panelIndex": "cf022a47-2314-4ab6-b397-b1d860944179", - "panelRefName": "panel_3", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "9d84188c-5a30-41ac-81cc-fe4fed360dd3", - "w": 5, - "x": 24, - "y": 0 - }, - "panelIndex": "9d84188c-5a30-41ac-81cc-fe4fed360dd3", - "panelRefName": "panel_4", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Transactions" - }, - "gridData": { - "h": 9, - "i": "1d623c03-4d02-4a81-b91e-49e82e112016", - "w": 19, - "x": 29, - "y": 0 - }, - "panelIndex": "1d623c03-4d02-4a81-b91e-49e82e112016", - "panelRefName": "panel_5", - "title": "Transactions", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 15, - "i": "ff6441f8-d66d-4399-bae5-25d3d861b299", - "w": 9, - "x": 0, - "y": 5 - }, - "panelIndex": "ff6441f8-d66d-4399-bae5-25d3d861b299", - "panelRefName": "panel_6", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Success Server Latency" - }, - "gridData": { - "h": 15, - "i": "87066244-7840-4555-9d12-026d64977f1a", - "w": 20, - "x": 9, - "y": 9 - }, - "panelIndex": "87066244-7840-4555-9d12-026d64977f1a", - "panelRefName": "panel_7", - "title": "Success Server Latency", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Success E2E Latency" - }, - "gridData": { - "h": 15, - "i": "756da375-e6a2-4668-af43-0cd294878254", - "w": 19, - "x": 29, - "y": 9 - }, - "panelIndex": "756da375-e6a2-4668-af43-0cd294878254", - "panelRefName": "panel_8", - "title": "Success E2E Latency", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Egress Traffic by APIName" - }, - "gridData": { - "h": 14, - "i": "a715fafc-ca38-410c-9253-12ba506eabc0", - "w": 20, - "x": 9, - "y": 24 - }, - "panelIndex": "a715fafc-ca38-410c-9253-12ba506eabc0", - "panelRefName": "panel_9", - "title": "Egress Traffic by APIName", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Ingress Traffic by APIName" - }, - "gridData": { - "h": 14, - "i": "75f72920-be71-47a9-a967-f1c862ab2961", - "w": 19, - "x": 29, - "y": 24 - }, - "panelIndex": "75f72920-be71-47a9-a967-f1c862ab2961", - "panelRefName": "panel_10", - "title": "Ingress Traffic by APIName", - "version": "7.7.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Azure] Queue Storage Overview", - "version": 1 - }, - "id": "10efa340-32f8-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "09f05e00-32f7-11ea-a83e-25b8612d00cc", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "40dbc0d0-32e3-11ea-a83e-25b8612d00cc", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "e159b990-339c-11ea-a83e-25b8612d00cc", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "2bedaca0-339d-11ea-a83e-25b8612d00cc", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "0241cc10-339d-11ea-a83e-25b8612d00cc", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "553f9320-32e9-11ea-a83e-25b8612d00cc", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "acced050-32d1-11ea-a83e-25b8612d00cc", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "81f16b40-32ea-11ea-a83e-25b8612d00cc", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "685fbeb0-32eb-11ea-a83e-25b8612d00cc", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "599c62c0-32d7-11ea-a83e-25b8612d00cc", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "4eaef260-32e1-11ea-a83e-25b8612d00cc", - "name": "panel_10", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-04-07T17:57:17.584Z", - "version": "WzI3MjAsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation Queue Storage Overview [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### Azure Storage\n\n[Overview](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [Blob](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [File](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [Table](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [**Queue**](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) ", - "openLinksInNewTab": false - }, - "title": "Navigation Queue Storage Overview [Metricbeat Azure]", - "type": "markdown" - } - }, - "id": "09f05e00-32f7-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:04:28.324Z", - "version": "WzE2NDEsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Availability [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(104,204,202,1)", - "id": "18f616c0-32e2-11ea-867b-37070aefa392", - "operator": "gte", - "value": 100 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "998b1c90-32e2-11ea-867b-37070aefa392", - "operator": "lt", - "value": 100 - } - ], - "bar_color_rules": [ - { - "id": "28142cf0-32e2-11ea-867b-37070aefa392" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "29808e30-32e2-11ea-867b-37070aefa392" - } - ], - "gauge_inner_width": "7", - "gauge_style": "circle", - "gauge_width": 10, - "id": "0e91b810-32e2-11ea-a93d-dd20c62559b3", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(22,165,165,1)", - "fill": "0.6", - "formatter": "number", - "hide_in_legend": 1, - "id": "0e91b811-32e2-11ea-a93d-dd20c62559b3", - "label": "Availability", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.availability.avg", - "id": "0e91b812-32e2-11ea-a93d-dd20c62559b3", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "terms_field": null, - "type": "timeseries", - "value_template": "{{value}} %" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "last_value", - "type": "timeseries" - }, - "title": "Storage Availability [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "40dbc0d0-32e3-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:04:30.376Z", - "version": "WzE2NjcsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Queue Capacity [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "azure.resource.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Queue Capacity", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.queue_capacity.avg", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "azure.resource.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Storage Queue Capacity [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "e159b990-339c-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:56:48.523Z", - "version": "WzI3MTUsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Queue Message Count [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "'0a'", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Queue Message Count", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.queue_message_count.avg", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "azure.resource.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Storage Queue Message Count [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "2bedaca0-339d-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:57:02.052Z", - "version": "WzI3MTcsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Queue Count [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(164,221,0,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "'0'", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Queue Count", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.queue_count.avg", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "azure.resource.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Storage Queue Count [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "0241cc10-339d-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:57:12.002Z", - "version": "WzI3MTksNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Transactions [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#3185FC", - "fill": 0.5, - "formatter": "number", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "avg(azure.storage.transactions.total)", - "line_width": "1", - "metrics": [ - { - "field": "azure.storage.transactions.total", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.response_type", - "terms_order_by": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Transactions [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "553f9320-32e9-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:29:35.827Z", - "version": "WzIzODMsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Filters [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "azure.subscription_id", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "Subscription", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.group", - "id": "1549512142947", - "indexPatternRefName": "control_1_index_pattern", - "label": "Resource Group", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.name", - "id": "1578578146383", - "indexPatternRefName": "control_2_index_pattern", - "label": "Resource Name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "Storage Filters [Metricbeat Azure]", - "type": "input_control_vis" - } - }, - "id": "acced050-32d1-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-04-07T17:04:30.376Z", - "version": "WzE2NzIsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Success Server Latency [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "e9a40230-32e9-11ea-bda2-69435df36a5c", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#3185FC", - "fill": 0.5, - "formatter": "number", - "id": "e9a40231-32e9-11ea-bda2-69435df36a5c", - "label": "SuccessServerLatency (ms)", - "line_width": "1", - "metrics": [ - { - "field": "azure.storage.success_server_latency.avg", - "id": "e9a40232-32e9-11ea-bda2-69435df36a5c", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "e9a40232-32e9-11ea-bda2-69435df36a5c", - "type": "timeseries", - "value_template": "{{value}} ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Success Server Latency [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "81f16b40-32ea-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:15:09.491Z", - "version": "WzIxNzYsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Success E2E Latency [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "da4459b0-32ea-11ea-be35-cb10be813609", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#3185FC", - "fill": 0.5, - "formatter": "number", - "id": "da4459b1-32ea-11ea-be35-cb10be813609", - "label": "Success E2E Latency (ms)", - "line_width": "1", - "metrics": [ - { - "field": "azure.storage.success_e2elatency.avg", - "id": "da4459b2-32ea-11ea-be35-cb10be813609", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "da4459b2-32ea-11ea-be35-cb10be813609", - "type": "timeseries", - "value_template": "{{value}} ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Success E2E Latency [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "685fbeb0-32eb-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:28:09.199Z", - "version": "WzIzMzUsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Account Egress Traffic [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "0791c5a0-32d8-11ea-98d2-1194b9f2bfc0" - } - ], - "bar_color_rules": [ - { - "id": "fca016e0-32de-11ea-a435-e7199eba380d" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "fb8be7c0-32de-11ea-a435-e7199eba380d" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "f0edca80-32d5-11ea-b19d-fb5049b980ca", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,149,177,1)", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "hidden": false, - "id": "f0edf190-32d5-11ea-b19d-fb5049b980ca", - "label": "Storage Accounts Egress Total", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.egress.total", - "id": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "rgba(0,98,177,1)", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "283dc410-32d9-11ea-98d2-1194b9f2bfc0" - } - ], - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Account Egress Traffic [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "599c62c0-32d7-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:21:03.231Z", - "version": "WzIyNzIsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Account Ingress Traffic [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "0791c5a0-32d8-11ea-98d2-1194b9f2bfc0" - } - ], - "bar_color_rules": [ - { - "id": "fca016e0-32de-11ea-a435-e7199eba380d" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "fb8be7c0-32de-11ea-a435-e7199eba380d" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "f0edca80-32d5-11ea-b19d-fb5049b980ca", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "hidden": false, - "id": "f0edf190-32d5-11ea-b19d-fb5049b980ca", - "label": "Storage Accounts Ingress Total", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.ingress.total", - "id": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "rgba(0,98,177,1)", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "283dc410-32d9-11ea-98d2-1194b9f2bfc0" - } - ], - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Account Ingress Traffic [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "4eaef260-32e1-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:21:51.411Z", - "version": "WzIyODMsNF0=" - } - ], - "version": "7.7.0" -} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-queue-storage-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-queue-storage-overview.ndjson new file mode 100644 index 00000000000..2afa9874be6 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-queue-storage-overview.ndjson @@ -0,0 +1,12 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Queue Storage Overview [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Azure Storage\\n\\n[Overview](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [Blob](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [File](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [Table](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [**Queue**](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Queue Storage Overview [Metricbeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"09f05e00-32f7-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:51.088Z","version":"WzM1NjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Availability [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(104,204,202,1)\",\"id\":\"18f616c0-32e2-11ea-867b-37070aefa392\",\"operator\":\"gte\",\"value\":100},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"998b1c90-32e2-11ea-867b-37070aefa392\",\"operator\":\"lt\",\"value\":100}],\"bar_color_rules\":[{\"id\":\"28142cf0-32e2-11ea-867b-37070aefa392\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"29808e30-32e2-11ea-867b-37070aefa392\"}],\"gauge_inner_width\":\"7\",\"gauge_style\":\"circle\",\"gauge_width\":10,\"id\":\"0e91b810-32e2-11ea-a93d-dd20c62559b3\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0.6\",\"formatter\":\"number\",\"hide_in_legend\":1,\"id\":\"0e91b811-32e2-11ea-a93d-dd20c62559b3\",\"label\":\"Availability\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.availability.avg\",\"id\":\"0e91b812-32e2-11ea-a93d-dd20c62559b3\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}} %\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Availability [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Queue Capacity [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"azure.resource.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Queue Capacity\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.queue_capacity.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Queue Capacity [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e159b990-339c-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:51.088Z","version":"WzM1NjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Queue Message Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0a'\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Queue Message Count\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.queue_message_count.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Queue Message Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2bedaca0-339d-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:51.088Z","version":"WzM1NjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Queue Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0'\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Queue Count\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.queue_count.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Queue Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0241cc10-339d-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:51.088Z","version":"WzM1NjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Transactions [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"avg(azure.storage.transactions.total)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.transactions.total\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.response_type\",\"terms_order_by\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Transactions [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"553f9320-32e9-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Storage Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1578578146383\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Resource Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Storage Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"acced050-32d1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success Server Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"SuccessServerLatency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_server_latency.avg\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success Server Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success E2E Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"da4459b0-32ea-11ea-be35-cb10be813609\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"da4459b1-32ea-11ea-be35-cb10be813609\",\"label\":\"Success E2E Latency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_e2elatency.avg\",\"id\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success E2E Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Egress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,149,177,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Egress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.egress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Egress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Ingress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Ingress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.ingress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Ingress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTksMV0="} +{"attributes":{"description":"This dashboard shows metrics for queue storage type in Azure.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": \"queue\", \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"azure.namespace\", \"negate\": false, \"params\": {\"query\": \"Microsoft.Storage/storageAccounts/queueServices\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"azure.namespace\": \"Microsoft.Storage/storageAccounts/queueServices\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"933a427d-a8b7-48ff-ac53-337f32b340ea\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"933a427d-a8b7-48ff-ac53-337f32b340ea\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_933a427d-a8b7-48ff-ac53-337f32b340ea\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"w\":5,\"x\":9,\"y\":0},\"panelIndex\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Availability\",\"panelRefName\":\"panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"0b4107a7-6a3d-4092-9813-00edb56bc838\",\"w\":5,\"x\":14,\"y\":0},\"panelIndex\":\"0b4107a7-6a3d-4092-9813-00edb56bc838\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_0b4107a7-6a3d-4092-9813-00edb56bc838\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"cf022a47-2314-4ab6-b397-b1d860944179\",\"w\":5,\"x\":19,\"y\":0},\"panelIndex\":\"cf022a47-2314-4ab6-b397-b1d860944179\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_cf022a47-2314-4ab6-b397-b1d860944179\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"9d84188c-5a30-41ac-81cc-fe4fed360dd3\",\"w\":5,\"x\":24,\"y\":0},\"panelIndex\":\"9d84188c-5a30-41ac-81cc-fe4fed360dd3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_9d84188c-5a30-41ac-81cc-fe4fed360dd3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"w\":19,\"x\":29,\"y\":0},\"panelIndex\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Transactions\",\"panelRefName\":\"panel_1d623c03-4d02-4a81-b91e-49e82e112016\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ff6441f8-d66d-4399-bae5-25d3d861b299\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"87066244-7840-4555-9d12-026d64977f1a\",\"w\":20,\"x\":9,\"y\":9},\"panelIndex\":\"87066244-7840-4555-9d12-026d64977f1a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success Server Latency\",\"panelRefName\":\"panel_87066244-7840-4555-9d12-026d64977f1a\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"756da375-e6a2-4668-af43-0cd294878254\",\"w\":19,\"x\":29,\"y\":9},\"panelIndex\":\"756da375-e6a2-4668-af43-0cd294878254\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success E2E Latency\",\"panelRefName\":\"panel_756da375-e6a2-4668-af43-0cd294878254\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"w\":20,\"x\":9,\"y\":24},\"panelIndex\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Egress Traffic by APIName\",\"panelRefName\":\"panel_a715fafc-ca38-410c-9253-12ba506eabc0\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"w\":19,\"x\":29,\"y\":24},\"panelIndex\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ingress Traffic by APIName\",\"panelRefName\":\"panel_75f72920-be71-47a9-a967-f1c862ab2961\"}]","timeRestore":false,"title":"[Metricbeat Azure] Queue Storage Overview","version":1},"coreMigrationVersion":"8.0.0","id":"10efa340-32f8-11ea-a83e-25b8612d00cc","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"09f05e00-32f7-11ea-a83e-25b8612d00cc","name":"933a427d-a8b7-48ff-ac53-337f32b340ea:panel_933a427d-a8b7-48ff-ac53-337f32b340ea","type":"visualization"},{"id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","name":"a9456b9b-efa6-410d-a56c-4b66aa8c499e:panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e","type":"visualization"},{"id":"e159b990-339c-11ea-a83e-25b8612d00cc","name":"0b4107a7-6a3d-4092-9813-00edb56bc838:panel_0b4107a7-6a3d-4092-9813-00edb56bc838","type":"visualization"},{"id":"2bedaca0-339d-11ea-a83e-25b8612d00cc","name":"cf022a47-2314-4ab6-b397-b1d860944179:panel_cf022a47-2314-4ab6-b397-b1d860944179","type":"visualization"},{"id":"0241cc10-339d-11ea-a83e-25b8612d00cc","name":"9d84188c-5a30-41ac-81cc-fe4fed360dd3:panel_9d84188c-5a30-41ac-81cc-fe4fed360dd3","type":"visualization"},{"id":"553f9320-32e9-11ea-a83e-25b8612d00cc","name":"1d623c03-4d02-4a81-b91e-49e82e112016:panel_1d623c03-4d02-4a81-b91e-49e82e112016","type":"visualization"},{"id":"acced050-32d1-11ea-a83e-25b8612d00cc","name":"ff6441f8-d66d-4399-bae5-25d3d861b299:panel_ff6441f8-d66d-4399-bae5-25d3d861b299","type":"visualization"},{"id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","name":"87066244-7840-4555-9d12-026d64977f1a:panel_87066244-7840-4555-9d12-026d64977f1a","type":"visualization"},{"id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","name":"756da375-e6a2-4668-af43-0cd294878254:panel_756da375-e6a2-4668-af43-0cd294878254","type":"visualization"},{"id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","name":"a715fafc-ca38-410c-9253-12ba506eabc0:panel_a715fafc-ca38-410c-9253-12ba506eabc0","type":"visualization"},{"id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","name":"75f72920-be71-47a9-a967-f1c862ab2961:panel_75f72920-be71-47a9-a967-f1c862ab2961","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:51.088Z","version":"WzM1NjMsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-storage-overview.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-storage-overview.json deleted file mode 100644 index 54724b58089..00000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-storage-overview.json +++ /dev/null @@ -1,1399 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This dashboard shows metrics for different storage types in Azure.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "3e05fed8-0edd-4973-a640-3499c62b141d", - "w": 9, - "x": 0, - "y": 0 - }, - "panelIndex": "3e05fed8-0edd-4973-a640-3499c62b141d", - "panelRefName": "panel_0", - "version": "7.5.0" - }, - { - "embeddableConfig": { - "title": "Availability" - }, - "gridData": { - "h": 9, - "i": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", - "w": 5, - "x": 9, - "y": 0 - }, - "panelIndex": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", - "panelRefName": "panel_1", - "title": "Availability", - "version": "7.5.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "ed66fab5-f4e7-45d9-b27f-2315e0a10850", - "w": 5, - "x": 14, - "y": 0 - }, - "panelIndex": "ed66fab5-f4e7-45d9-b27f-2315e0a10850", - "panelRefName": "panel_2", - "version": "7.5.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "71f11ae2-b13c-49b5-ae16-3d6d5e1dacec", - "w": 5, - "x": 19, - "y": 0 - }, - "panelIndex": "71f11ae2-b13c-49b5-ae16-3d6d5e1dacec", - "panelRefName": "panel_3", - "version": "7.5.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "dae9895e-c53a-4989-bab1-1b7b7c233c56", - "w": 5, - "x": 24, - "y": 0 - }, - "panelIndex": "dae9895e-c53a-4989-bab1-1b7b7c233c56", - "panelRefName": "panel_4", - "version": "7.5.0" - }, - { - "embeddableConfig": { - "title": "Transactions" - }, - "gridData": { - "h": 9, - "i": "1d623c03-4d02-4a81-b91e-49e82e112016", - "w": 19, - "x": 29, - "y": 0 - }, - "panelIndex": "1d623c03-4d02-4a81-b91e-49e82e112016", - "panelRefName": "panel_5", - "title": "Transactions", - "version": "7.5.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 15, - "i": "ff6441f8-d66d-4399-bae5-25d3d861b299", - "w": 9, - "x": 0, - "y": 5 - }, - "panelIndex": "ff6441f8-d66d-4399-bae5-25d3d861b299", - "panelRefName": "panel_6", - "version": "7.5.0" - }, - { - "embeddableConfig": { - "title": "Success Server Latency" - }, - "gridData": { - "h": 15, - "i": "87066244-7840-4555-9d12-026d64977f1a", - "w": 20, - "x": 9, - "y": 9 - }, - "panelIndex": "87066244-7840-4555-9d12-026d64977f1a", - "panelRefName": "panel_7", - "title": "Success Server Latency", - "version": "7.5.0" - }, - { - "embeddableConfig": { - "title": "Success E2E Latency" - }, - "gridData": { - "h": 15, - "i": "756da375-e6a2-4668-af43-0cd294878254", - "w": 19, - "x": 29, - "y": 9 - }, - "panelIndex": "756da375-e6a2-4668-af43-0cd294878254", - "panelRefName": "panel_8", - "title": "Success E2E Latency", - "version": "7.5.0" - }, - { - "embeddableConfig": { - "title": "Used Capacity by Resource" - }, - "gridData": { - "h": 18, - "i": "bf57aed2-3b69-4c8c-b602-e9054d08deb9", - "w": 9, - "x": 0, - "y": 20 - }, - "panelIndex": "bf57aed2-3b69-4c8c-b602-e9054d08deb9", - "panelRefName": "panel_9", - "title": "Used Capacity by Resource", - "version": "7.5.0" - }, - { - "embeddableConfig": { - "title": "Egress Traffic by APIName" - }, - "gridData": { - "h": 14, - "i": "a715fafc-ca38-410c-9253-12ba506eabc0", - "w": 20, - "x": 9, - "y": 24 - }, - "panelIndex": "a715fafc-ca38-410c-9253-12ba506eabc0", - "panelRefName": "panel_10", - "title": "Egress Traffic by APIName", - "version": "7.5.0" - }, - { - "embeddableConfig": { - "title": "Ingress Traffic by APIName" - }, - "gridData": { - "h": 14, - "i": "75f72920-be71-47a9-a967-f1c862ab2961", - "w": 19, - "x": 29, - "y": 24 - }, - "panelIndex": "75f72920-be71-47a9-a967-f1c862ab2961", - "panelRefName": "panel_11", - "title": "Ingress Traffic by APIName", - "version": "7.5.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Azure] Storage Overview", - "version": 1 - }, - "id": "1a151f80-32db-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "fcc24d70-32f5-11ea-a83e-25b8612d00cc", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "40dbc0d0-32e3-11ea-a83e-25b8612d00cc", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "634b83c0-32ee-11ea-a83e-25b8612d00cc", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "33d645e0-32ed-11ea-a83e-25b8612d00cc", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "2219de20-32ed-11ea-a83e-25b8612d00cc", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "553f9320-32e9-11ea-a83e-25b8612d00cc", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "acced050-32d1-11ea-a83e-25b8612d00cc", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "81f16b40-32ea-11ea-a83e-25b8612d00cc", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "685fbeb0-32eb-11ea-a83e-25b8612d00cc", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "109ec950-32e6-11ea-a83e-25b8612d00cc", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "599c62c0-32d7-11ea-a83e-25b8612d00cc", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "4eaef260-32e1-11ea-a83e-25b8612d00cc", - "name": "panel_11", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-04-07T17:04:29.344Z", - "version": "WzE2NTIsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation Storage Overview [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### Azure Storage\n\n[**Overview**](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [Blob](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [File](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [Table](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [Queue](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) ", - "openLinksInNewTab": false - }, - "title": "Navigation Storage Overview [Metricbeat Azure]", - "type": "markdown" - } - }, - "id": "fcc24d70-32f5-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:04:29.344Z", - "version": "WzE2NTMsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Availability [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(104,204,202,1)", - "id": "18f616c0-32e2-11ea-867b-37070aefa392", - "operator": "gte", - "value": 100 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "998b1c90-32e2-11ea-867b-37070aefa392", - "operator": "lt", - "value": 100 - } - ], - "bar_color_rules": [ - { - "id": "28142cf0-32e2-11ea-867b-37070aefa392" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "29808e30-32e2-11ea-867b-37070aefa392" - } - ], - "gauge_inner_width": "7", - "gauge_style": "circle", - "gauge_width": 10, - "id": "0e91b810-32e2-11ea-a93d-dd20c62559b3", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(22,165,165,1)", - "fill": "0.6", - "formatter": "number", - "hide_in_legend": 1, - "id": "0e91b811-32e2-11ea-a93d-dd20c62559b3", - "label": "Availability", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.availability.avg", - "id": "0e91b812-32e2-11ea-a93d-dd20c62559b3", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "terms_field": null, - "type": "timeseries", - "value_template": "{{value}} %" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "last_value", - "type": "timeseries" - }, - "title": "Storage Availability [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "40dbc0d0-32e3-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:04:30.376Z", - "version": "WzE2NjcsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Used Capacity [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "azure.resource.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Used Capacity", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.used_capacity.avg", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "azure.resource.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Storage Used Capacity [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "634b83c0-32ee-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:04:29.344Z", - "version": "WzE2NTUsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Ingress Gauge [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Ingress", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.ingress.total", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "azure.resource.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Storage Ingress Gauge [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "33d645e0-32ed-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:04:29.344Z", - "version": "WzE2NTYsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Egress Gauge [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Egress", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.egress.total", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "azure.resource.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Storage Egress Gauge [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "2219de20-32ed-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:04:29.344Z", - "version": "WzE2NTcsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Transactions [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#3185FC", - "fill": 0.5, - "formatter": "number", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "avg(azure.storage.transactions.total)", - "line_width": "1", - "metrics": [ - { - "field": "azure.storage.transactions.total", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.response_type", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Transactions [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "553f9320-32e9-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:17:21.500Z", - "version": "WzIyMjMsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Filters [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "azure.subscription_id", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "Subscription", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.group", - "id": "1549512142947", - "indexPatternRefName": "control_1_index_pattern", - "label": "Resource Group", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.name", - "id": "1578578146383", - "indexPatternRefName": "control_2_index_pattern", - "label": "Resource Name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "Storage Filters [Metricbeat Azure]", - "type": "input_control_vis" - } - }, - "id": "acced050-32d1-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-04-07T17:04:30.376Z", - "version": "WzE2NzIsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Success Server Latency [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "e9a40230-32e9-11ea-bda2-69435df36a5c", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#3185FC", - "fill": 0.5, - "formatter": "number", - "id": "e9a40231-32e9-11ea-bda2-69435df36a5c", - "label": "SuccessServerLatency (ms)", - "line_width": "1", - "metrics": [ - { - "field": "azure.storage.success_server_latency.avg", - "id": "e9a40232-32e9-11ea-bda2-69435df36a5c", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "e9a40232-32e9-11ea-bda2-69435df36a5c", - "type": "timeseries", - "value_template": "{{value}} ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Success Server Latency [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "81f16b40-32ea-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:15:09.491Z", - "version": "WzIxNzYsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Success E2E Latency [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "da4459b0-32ea-11ea-be35-cb10be813609", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#3185FC", - "fill": 0.5, - "formatter": "number", - "id": "da4459b1-32ea-11ea-be35-cb10be813609", - "label": "Success E2E Latency (ms)", - "line_width": "1", - "metrics": [ - { - "field": "azure.storage.success_e2elatency.avg", - "id": "da4459b2-32ea-11ea-be35-cb10be813609", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "da4459b2-32ea-11ea-be35-cb10be813609", - "type": "timeseries", - "value_template": "{{value}} ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Success E2E Latency [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "685fbeb0-32eb-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:15:05.346Z", - "version": "WzIxNzUsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Used Capacity Resource Table [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "azure.resource.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Used Capacity", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.used_capacity.avg", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "Storage Used Capacity Resource Table [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "109ec950-32e6-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:04:29.344Z", - "version": "WzE2NjIsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Account Egress Traffic [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "0791c5a0-32d8-11ea-98d2-1194b9f2bfc0" - } - ], - "bar_color_rules": [ - { - "id": "fca016e0-32de-11ea-a435-e7199eba380d" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "fb8be7c0-32de-11ea-a435-e7199eba380d" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "f0edca80-32d5-11ea-b19d-fb5049b980ca", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,149,177,1)", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "hidden": false, - "id": "f0edf190-32d5-11ea-b19d-fb5049b980ca", - "label": "Storage Accounts Egress Total", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.egress.total", - "id": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "rgba(0,98,177,1)", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "283dc410-32d9-11ea-98d2-1194b9f2bfc0" - } - ], - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Account Egress Traffic [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "599c62c0-32d7-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:21:03.231Z", - "version": "WzIyNzIsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Account Ingress Traffic [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "0791c5a0-32d8-11ea-98d2-1194b9f2bfc0" - } - ], - "bar_color_rules": [ - { - "id": "fca016e0-32de-11ea-a435-e7199eba380d" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "fb8be7c0-32de-11ea-a435-e7199eba380d" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "f0edca80-32d5-11ea-b19d-fb5049b980ca", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "hidden": false, - "id": "f0edf190-32d5-11ea-b19d-fb5049b980ca", - "label": "Storage Accounts Ingress Total", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.ingress.total", - "id": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "rgba(0,98,177,1)", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "283dc410-32d9-11ea-98d2-1194b9f2bfc0" - } - ], - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Account Ingress Traffic [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "4eaef260-32e1-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:21:51.411Z", - "version": "WzIyODMsNF0=" - } - ], - "version": "7.7.0" -} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-storage-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-storage-overview.ndjson new file mode 100644 index 00000000000..784191aeedd --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-storage-overview.ndjson @@ -0,0 +1,13 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Storage Overview [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Azure Storage\\n\\n[**Overview**](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [Blob](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [File](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [Table](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [Queue](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Storage Overview [Metricbeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"fcc24d70-32f5-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:52.180Z","version":"WzM1NzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Availability [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(104,204,202,1)\",\"id\":\"18f616c0-32e2-11ea-867b-37070aefa392\",\"operator\":\"gte\",\"value\":100},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"998b1c90-32e2-11ea-867b-37070aefa392\",\"operator\":\"lt\",\"value\":100}],\"bar_color_rules\":[{\"id\":\"28142cf0-32e2-11ea-867b-37070aefa392\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"29808e30-32e2-11ea-867b-37070aefa392\"}],\"gauge_inner_width\":\"7\",\"gauge_style\":\"circle\",\"gauge_width\":10,\"id\":\"0e91b810-32e2-11ea-a93d-dd20c62559b3\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0.6\",\"formatter\":\"number\",\"hide_in_legend\":1,\"id\":\"0e91b811-32e2-11ea-a93d-dd20c62559b3\",\"label\":\"Availability\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.availability.avg\",\"id\":\"0e91b812-32e2-11ea-a93d-dd20c62559b3\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}} %\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Availability [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Used Capacity [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"azure.resource.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Used Capacity\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.used_capacity.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Used Capacity [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"634b83c0-32ee-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:52.180Z","version":"WzM1NzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Ingress Gauge [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Ingress\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.ingress.total\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Ingress Gauge [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"33d645e0-32ed-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:52.180Z","version":"WzM1NzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Egress Gauge [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Egress\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.egress.total\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Egress Gauge [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2219de20-32ed-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:52.180Z","version":"WzM1ODAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Transactions [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"avg(azure.storage.transactions.total)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.transactions.total\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.response_type\",\"terms_order_by\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Transactions [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"553f9320-32e9-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Storage Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1578578146383\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Resource Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Storage Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"acced050-32d1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success Server Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"SuccessServerLatency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_server_latency.avg\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success Server Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success E2E Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"da4459b0-32ea-11ea-be35-cb10be813609\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"da4459b1-32ea-11ea-be35-cb10be813609\",\"label\":\"Success E2E Latency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_e2elatency.avg\",\"id\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success E2E Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Used Capacity Resource Table [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"azure.resource.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Used Capacity\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.used_capacity.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Used Capacity Resource Table [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"109ec950-32e6-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:52.180Z","version":"WzM1ODUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Egress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,149,177,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Egress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.egress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Egress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Ingress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Ingress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.ingress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Ingress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTksMV0="} +{"attributes":{"description":"This dashboard shows metrics for different storage types in Azure.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"3e05fed8-0edd-4973-a640-3499c62b141d\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"3e05fed8-0edd-4973-a640-3499c62b141d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_3e05fed8-0edd-4973-a640-3499c62b141d\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"w\":5,\"x\":9,\"y\":0},\"panelIndex\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Availability\",\"panelRefName\":\"panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"ed66fab5-f4e7-45d9-b27f-2315e0a10850\",\"w\":5,\"x\":14,\"y\":0},\"panelIndex\":\"ed66fab5-f4e7-45d9-b27f-2315e0a10850\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ed66fab5-f4e7-45d9-b27f-2315e0a10850\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"71f11ae2-b13c-49b5-ae16-3d6d5e1dacec\",\"w\":5,\"x\":19,\"y\":0},\"panelIndex\":\"71f11ae2-b13c-49b5-ae16-3d6d5e1dacec\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_71f11ae2-b13c-49b5-ae16-3d6d5e1dacec\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"dae9895e-c53a-4989-bab1-1b7b7c233c56\",\"w\":5,\"x\":24,\"y\":0},\"panelIndex\":\"dae9895e-c53a-4989-bab1-1b7b7c233c56\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_dae9895e-c53a-4989-bab1-1b7b7c233c56\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"w\":19,\"x\":29,\"y\":0},\"panelIndex\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Transactions\",\"panelRefName\":\"panel_1d623c03-4d02-4a81-b91e-49e82e112016\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ff6441f8-d66d-4399-bae5-25d3d861b299\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"87066244-7840-4555-9d12-026d64977f1a\",\"w\":20,\"x\":9,\"y\":9},\"panelIndex\":\"87066244-7840-4555-9d12-026d64977f1a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success Server Latency\",\"panelRefName\":\"panel_87066244-7840-4555-9d12-026d64977f1a\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"756da375-e6a2-4668-af43-0cd294878254\",\"w\":19,\"x\":29,\"y\":9},\"panelIndex\":\"756da375-e6a2-4668-af43-0cd294878254\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success E2E Latency\",\"panelRefName\":\"panel_756da375-e6a2-4668-af43-0cd294878254\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"bf57aed2-3b69-4c8c-b602-e9054d08deb9\",\"w\":9,\"x\":0,\"y\":20},\"panelIndex\":\"bf57aed2-3b69-4c8c-b602-e9054d08deb9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Used Capacity by Resource\",\"panelRefName\":\"panel_bf57aed2-3b69-4c8c-b602-e9054d08deb9\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"w\":20,\"x\":9,\"y\":24},\"panelIndex\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Egress Traffic by APIName\",\"panelRefName\":\"panel_a715fafc-ca38-410c-9253-12ba506eabc0\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"w\":19,\"x\":29,\"y\":24},\"panelIndex\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ingress Traffic by APIName\",\"panelRefName\":\"panel_75f72920-be71-47a9-a967-f1c862ab2961\"}]","timeRestore":false,"title":"[Metricbeat Azure] Storage Overview","version":1},"coreMigrationVersion":"8.0.0","id":"1a151f80-32db-11ea-a83e-25b8612d00cc","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"fcc24d70-32f5-11ea-a83e-25b8612d00cc","name":"3e05fed8-0edd-4973-a640-3499c62b141d:panel_3e05fed8-0edd-4973-a640-3499c62b141d","type":"visualization"},{"id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","name":"a9456b9b-efa6-410d-a56c-4b66aa8c499e:panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e","type":"visualization"},{"id":"634b83c0-32ee-11ea-a83e-25b8612d00cc","name":"ed66fab5-f4e7-45d9-b27f-2315e0a10850:panel_ed66fab5-f4e7-45d9-b27f-2315e0a10850","type":"visualization"},{"id":"33d645e0-32ed-11ea-a83e-25b8612d00cc","name":"71f11ae2-b13c-49b5-ae16-3d6d5e1dacec:panel_71f11ae2-b13c-49b5-ae16-3d6d5e1dacec","type":"visualization"},{"id":"2219de20-32ed-11ea-a83e-25b8612d00cc","name":"dae9895e-c53a-4989-bab1-1b7b7c233c56:panel_dae9895e-c53a-4989-bab1-1b7b7c233c56","type":"visualization"},{"id":"553f9320-32e9-11ea-a83e-25b8612d00cc","name":"1d623c03-4d02-4a81-b91e-49e82e112016:panel_1d623c03-4d02-4a81-b91e-49e82e112016","type":"visualization"},{"id":"acced050-32d1-11ea-a83e-25b8612d00cc","name":"ff6441f8-d66d-4399-bae5-25d3d861b299:panel_ff6441f8-d66d-4399-bae5-25d3d861b299","type":"visualization"},{"id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","name":"87066244-7840-4555-9d12-026d64977f1a:panel_87066244-7840-4555-9d12-026d64977f1a","type":"visualization"},{"id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","name":"756da375-e6a2-4668-af43-0cd294878254:panel_756da375-e6a2-4668-af43-0cd294878254","type":"visualization"},{"id":"109ec950-32e6-11ea-a83e-25b8612d00cc","name":"bf57aed2-3b69-4c8c-b602-e9054d08deb9:panel_bf57aed2-3b69-4c8c-b602-e9054d08deb9","type":"visualization"},{"id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","name":"a715fafc-ca38-410c-9253-12ba506eabc0:panel_a715fafc-ca38-410c-9253-12ba506eabc0","type":"visualization"},{"id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","name":"75f72920-be71-47a9-a967-f1c862ab2961:panel_75f72920-be71-47a9-a967-f1c862ab2961","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:52.180Z","version":"WzM1NzUsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-table-storage-overview.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-table-storage-overview.json deleted file mode 100644 index 87d5bba8410..00000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-table-storage-overview.json +++ /dev/null @@ -1,1299 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This dashboard shows metrics for table storage type in Azure.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": "table", - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "azure.namespace", - "negate": false, - "params": { - "query": "Microsoft.Storage/storageAccounts/tableServices" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "azure.namespace": "Microsoft.Storage/storageAccounts/tableServices" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "204cbabc-fafd-472c-b106-bd08f5262b1f", - "w": 9, - "x": 0, - "y": 0 - }, - "panelIndex": "204cbabc-fafd-472c-b106-bd08f5262b1f", - "panelRefName": "panel_0", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Availability" - }, - "gridData": { - "h": 9, - "i": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", - "w": 5, - "x": 9, - "y": 0 - }, - "panelIndex": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", - "panelRefName": "panel_1", - "title": "Availability", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "15b7c108-0214-4af6-9719-fab59affafec", - "w": 5, - "x": 14, - "y": 0 - }, - "panelIndex": "15b7c108-0214-4af6-9719-fab59affafec", - "panelRefName": "panel_2", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "4177a6e6-97d7-447e-bcf3-ee9c1d660bd8", - "w": 5, - "x": 19, - "y": 0 - }, - "panelIndex": "4177a6e6-97d7-447e-bcf3-ee9c1d660bd8", - "panelRefName": "panel_3", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "28d85d90-3881-4d1f-b60c-43b545fc9f0e", - "w": 5, - "x": 24, - "y": 0 - }, - "panelIndex": "28d85d90-3881-4d1f-b60c-43b545fc9f0e", - "panelRefName": "panel_4", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Transactions" - }, - "gridData": { - "h": 9, - "i": "1d623c03-4d02-4a81-b91e-49e82e112016", - "w": 19, - "x": 29, - "y": 0 - }, - "panelIndex": "1d623c03-4d02-4a81-b91e-49e82e112016", - "panelRefName": "panel_5", - "title": "Transactions", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 15, - "i": "ff6441f8-d66d-4399-bae5-25d3d861b299", - "w": 9, - "x": 0, - "y": 5 - }, - "panelIndex": "ff6441f8-d66d-4399-bae5-25d3d861b299", - "panelRefName": "panel_6", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Success Server Latency" - }, - "gridData": { - "h": 15, - "i": "87066244-7840-4555-9d12-026d64977f1a", - "w": 20, - "x": 9, - "y": 9 - }, - "panelIndex": "87066244-7840-4555-9d12-026d64977f1a", - "panelRefName": "panel_7", - "title": "Success Server Latency", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Success E2E Latency" - }, - "gridData": { - "h": 15, - "i": "756da375-e6a2-4668-af43-0cd294878254", - "w": 19, - "x": 29, - "y": 9 - }, - "panelIndex": "756da375-e6a2-4668-af43-0cd294878254", - "panelRefName": "panel_8", - "title": "Success E2E Latency", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Egress Traffic by APIName" - }, - "gridData": { - "h": 14, - "i": "a715fafc-ca38-410c-9253-12ba506eabc0", - "w": 20, - "x": 9, - "y": 24 - }, - "panelIndex": "a715fafc-ca38-410c-9253-12ba506eabc0", - "panelRefName": "panel_9", - "title": "Egress Traffic by APIName", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Ingress Traffic by APIName" - }, - "gridData": { - "h": 14, - "i": "75f72920-be71-47a9-a967-f1c862ab2961", - "w": 19, - "x": 29, - "y": 24 - }, - "panelIndex": "75f72920-be71-47a9-a967-f1c862ab2961", - "panelRefName": "panel_10", - "title": "Ingress Traffic by APIName", - "version": "7.7.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Azure] Table Storage Overview", - "version": 1 - }, - "id": "ff2fe020-32f7-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "fdef3f40-32f6-11ea-a83e-25b8612d00cc", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "40dbc0d0-32e3-11ea-a83e-25b8612d00cc", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "f528e6a0-339a-11ea-a83e-25b8612d00cc", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "43b31a20-339b-11ea-a83e-25b8612d00cc", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "5cbf5820-339c-11ea-a83e-25b8612d00cc", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "553f9320-32e9-11ea-a83e-25b8612d00cc", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "acced050-32d1-11ea-a83e-25b8612d00cc", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "81f16b40-32ea-11ea-a83e-25b8612d00cc", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "685fbeb0-32eb-11ea-a83e-25b8612d00cc", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "599c62c0-32d7-11ea-a83e-25b8612d00cc", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "4eaef260-32e1-11ea-a83e-25b8612d00cc", - "name": "panel_10", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-04-07T17:53:55.492Z", - "version": "WzI2NjYsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation Table Storage Overview [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### Azure Storage\n\n[Overview](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [Blob](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [File](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [**Table**](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [Queue](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) ", - "openLinksInNewTab": false - }, - "title": "Navigation Table Storage Overview [Metricbeat Azure]", - "type": "markdown" - } - }, - "id": "fdef3f40-32f6-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:04:30.376Z", - "version": "WzE2NjYsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Availability [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(104,204,202,1)", - "id": "18f616c0-32e2-11ea-867b-37070aefa392", - "operator": "gte", - "value": 100 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "998b1c90-32e2-11ea-867b-37070aefa392", - "operator": "lt", - "value": 100 - } - ], - "bar_color_rules": [ - { - "id": "28142cf0-32e2-11ea-867b-37070aefa392" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "29808e30-32e2-11ea-867b-37070aefa392" - } - ], - "gauge_inner_width": "7", - "gauge_style": "circle", - "gauge_width": 10, - "id": "0e91b810-32e2-11ea-a93d-dd20c62559b3", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(22,165,165,1)", - "fill": "0.6", - "formatter": "number", - "hide_in_legend": 1, - "id": "0e91b811-32e2-11ea-a93d-dd20c62559b3", - "label": "Availability", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.availability.avg", - "id": "0e91b812-32e2-11ea-a93d-dd20c62559b3", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "terms_field": null, - "type": "timeseries", - "value_template": "{{value}} %" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "last_value", - "type": "timeseries" - }, - "title": "Storage Availability [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "40dbc0d0-32e3-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:04:30.376Z", - "version": "WzE2NjcsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Table Capacity [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "azure.resource.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Table Capacity", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.table_capacity.avg", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "azure.resource.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Storage Table Capacity [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "f528e6a0-339a-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:53:02.515Z", - "version": "WzI2NTQsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Table Count [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "'0'", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Table Count", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.table_count.avg", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "azure.resource.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Storage Table Count [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "43b31a20-339b-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:53:50.518Z", - "version": "WzI2NjUsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Table Entity Count [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "'0a'", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Table Entity Count", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.table_entity_count.avg", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "azure.resource.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "gauge" - }, - "title": "Storage Table Entity Count [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "5cbf5820-339c-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:53:46.270Z", - "version": "WzI2NjQsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Transactions [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#3185FC", - "fill": 0.5, - "formatter": "number", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "avg(azure.storage.transactions.total)", - "line_width": "1", - "metrics": [ - { - "field": "azure.storage.transactions.total", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.response_type", - "terms_order_by": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Transactions [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "553f9320-32e9-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:29:35.827Z", - "version": "WzIzODMsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Filters [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "azure.subscription_id", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "Subscription", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.group", - "id": "1549512142947", - "indexPatternRefName": "control_1_index_pattern", - "label": "Resource Group", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.name", - "id": "1578578146383", - "indexPatternRefName": "control_2_index_pattern", - "label": "Resource Name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "Storage Filters [Metricbeat Azure]", - "type": "input_control_vis" - } - }, - "id": "acced050-32d1-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-04-07T17:04:30.376Z", - "version": "WzE2NzIsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Success Server Latency [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "e9a40230-32e9-11ea-bda2-69435df36a5c", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#3185FC", - "fill": 0.5, - "formatter": "number", - "id": "e9a40231-32e9-11ea-bda2-69435df36a5c", - "label": "SuccessServerLatency (ms)", - "line_width": "1", - "metrics": [ - { - "field": "azure.storage.success_server_latency.avg", - "id": "e9a40232-32e9-11ea-bda2-69435df36a5c", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "e9a40232-32e9-11ea-bda2-69435df36a5c", - "type": "timeseries", - "value_template": "{{value}} ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Success Server Latency [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "81f16b40-32ea-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:15:09.491Z", - "version": "WzIxNzYsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Success E2E Latency [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "da4459b0-32ea-11ea-be35-cb10be813609", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#3185FC", - "fill": 0.5, - "formatter": "number", - "id": "da4459b1-32ea-11ea-be35-cb10be813609", - "label": "Success E2E Latency (ms)", - "line_width": "1", - "metrics": [ - { - "field": "azure.storage.success_e2elatency.avg", - "id": "da4459b2-32ea-11ea-be35-cb10be813609", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "da4459b2-32ea-11ea-be35-cb10be813609", - "type": "timeseries", - "value_template": "{{value}} ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Success E2E Latency [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "685fbeb0-32eb-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:28:09.199Z", - "version": "WzIzMzUsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Account Egress Traffic [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "0791c5a0-32d8-11ea-98d2-1194b9f2bfc0" - } - ], - "bar_color_rules": [ - { - "id": "fca016e0-32de-11ea-a435-e7199eba380d" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "fb8be7c0-32de-11ea-a435-e7199eba380d" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "f0edca80-32d5-11ea-b19d-fb5049b980ca", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,149,177,1)", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "hidden": false, - "id": "f0edf190-32d5-11ea-b19d-fb5049b980ca", - "label": "Storage Accounts Egress Total", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.egress.total", - "id": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "rgba(0,98,177,1)", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "283dc410-32d9-11ea-98d2-1194b9f2bfc0" - } - ], - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Account Egress Traffic [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "599c62c0-32d7-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:21:03.231Z", - "version": "WzIyNzIsNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Storage Account Ingress Traffic [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "0791c5a0-32d8-11ea-98d2-1194b9f2bfc0" - } - ], - "bar_color_rules": [ - { - "id": "fca016e0-32de-11ea-a435-e7199eba380d" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "fb8be7c0-32de-11ea-a435-e7199eba380d" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "f0edca80-32d5-11ea-b19d-fb5049b980ca", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "hidden": false, - "id": "f0edf190-32d5-11ea-b19d-fb5049b980ca", - "label": "Storage Accounts Ingress Total", - "line_width": 2, - "metrics": [ - { - "field": "azure.storage.ingress.total", - "id": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "rgba(0,98,177,1)", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "283dc410-32d9-11ea-98d2-1194b9f2bfc0" - } - ], - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.dimensions.api_name", - "terms_order_by": "f0edf191-32d5-11ea-b19d-fb5049b980ca", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Storage Account Ingress Traffic [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "4eaef260-32e1-11ea-a83e-25b8612d00cc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-07T17:21:51.411Z", - "version": "WzIyODMsNF0=" - } - ], - "version": "7.7.0" -} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-table-storage-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-table-storage-overview.ndjson new file mode 100644 index 00000000000..e0e8d34d5e1 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-table-storage-overview.ndjson @@ -0,0 +1,12 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Table Storage Overview [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Azure Storage\\n\\n[Overview](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [Blob](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [File](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [**Table**](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [Queue](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Table Storage Overview [Metricbeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"fdef3f40-32f6-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1ODksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Availability [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(104,204,202,1)\",\"id\":\"18f616c0-32e2-11ea-867b-37070aefa392\",\"operator\":\"gte\",\"value\":100},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"998b1c90-32e2-11ea-867b-37070aefa392\",\"operator\":\"lt\",\"value\":100}],\"bar_color_rules\":[{\"id\":\"28142cf0-32e2-11ea-867b-37070aefa392\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"29808e30-32e2-11ea-867b-37070aefa392\"}],\"gauge_inner_width\":\"7\",\"gauge_style\":\"circle\",\"gauge_width\":10,\"id\":\"0e91b810-32e2-11ea-a93d-dd20c62559b3\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0.6\",\"formatter\":\"number\",\"hide_in_legend\":1,\"id\":\"0e91b811-32e2-11ea-a93d-dd20c62559b3\",\"label\":\"Availability\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.availability.avg\",\"id\":\"0e91b812-32e2-11ea-a93d-dd20c62559b3\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}} %\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Availability [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Table Capacity [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"azure.resource.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Table Capacity\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.table_capacity.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Table Capacity [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f528e6a0-339a-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Table Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0'\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Table Count\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.table_count.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Table Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"43b31a20-339b-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Table Entity Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0a'\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Table Entity Count\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.table_entity_count.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Table Entity Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5cbf5820-339c-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Transactions [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"avg(azure.storage.transactions.total)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.transactions.total\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.response_type\",\"terms_order_by\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Transactions [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"553f9320-32e9-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Storage Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1578578146383\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Resource Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Storage Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"acced050-32d1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success Server Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"SuccessServerLatency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_server_latency.avg\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success Server Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success E2E Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"da4459b0-32ea-11ea-be35-cb10be813609\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"da4459b1-32ea-11ea-be35-cb10be813609\",\"label\":\"Success E2E Latency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_e2elatency.avg\",\"id\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success E2E Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Egress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,149,177,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Egress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.egress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Egress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Ingress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Ingress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.ingress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Ingress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTksMV0="} +{"attributes":{"description":"This dashboard shows metrics for table storage type in Azure.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": \"table\", \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"azure.namespace\", \"negate\": false, \"params\": {\"query\": \"Microsoft.Storage/storageAccounts/tableServices\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"azure.namespace\": \"Microsoft.Storage/storageAccounts/tableServices\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"204cbabc-fafd-472c-b106-bd08f5262b1f\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"204cbabc-fafd-472c-b106-bd08f5262b1f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_204cbabc-fafd-472c-b106-bd08f5262b1f\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"w\":5,\"x\":9,\"y\":0},\"panelIndex\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Availability\",\"panelRefName\":\"panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"15b7c108-0214-4af6-9719-fab59affafec\",\"w\":5,\"x\":14,\"y\":0},\"panelIndex\":\"15b7c108-0214-4af6-9719-fab59affafec\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_15b7c108-0214-4af6-9719-fab59affafec\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"4177a6e6-97d7-447e-bcf3-ee9c1d660bd8\",\"w\":5,\"x\":19,\"y\":0},\"panelIndex\":\"4177a6e6-97d7-447e-bcf3-ee9c1d660bd8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_4177a6e6-97d7-447e-bcf3-ee9c1d660bd8\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"28d85d90-3881-4d1f-b60c-43b545fc9f0e\",\"w\":5,\"x\":24,\"y\":0},\"panelIndex\":\"28d85d90-3881-4d1f-b60c-43b545fc9f0e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_28d85d90-3881-4d1f-b60c-43b545fc9f0e\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"w\":19,\"x\":29,\"y\":0},\"panelIndex\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Transactions\",\"panelRefName\":\"panel_1d623c03-4d02-4a81-b91e-49e82e112016\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ff6441f8-d66d-4399-bae5-25d3d861b299\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"87066244-7840-4555-9d12-026d64977f1a\",\"w\":20,\"x\":9,\"y\":9},\"panelIndex\":\"87066244-7840-4555-9d12-026d64977f1a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success Server Latency\",\"panelRefName\":\"panel_87066244-7840-4555-9d12-026d64977f1a\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"756da375-e6a2-4668-af43-0cd294878254\",\"w\":19,\"x\":29,\"y\":9},\"panelIndex\":\"756da375-e6a2-4668-af43-0cd294878254\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success E2E Latency\",\"panelRefName\":\"panel_756da375-e6a2-4668-af43-0cd294878254\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"w\":20,\"x\":9,\"y\":24},\"panelIndex\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Egress Traffic by APIName\",\"panelRefName\":\"panel_a715fafc-ca38-410c-9253-12ba506eabc0\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"w\":19,\"x\":29,\"y\":24},\"panelIndex\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ingress Traffic by APIName\",\"panelRefName\":\"panel_75f72920-be71-47a9-a967-f1c862ab2961\"}]","timeRestore":false,"title":"[Metricbeat Azure] Table Storage Overview","version":1},"coreMigrationVersion":"8.0.0","id":"ff2fe020-32f7-11ea-a83e-25b8612d00cc","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"fdef3f40-32f6-11ea-a83e-25b8612d00cc","name":"204cbabc-fafd-472c-b106-bd08f5262b1f:panel_204cbabc-fafd-472c-b106-bd08f5262b1f","type":"visualization"},{"id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","name":"a9456b9b-efa6-410d-a56c-4b66aa8c499e:panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e","type":"visualization"},{"id":"f528e6a0-339a-11ea-a83e-25b8612d00cc","name":"15b7c108-0214-4af6-9719-fab59affafec:panel_15b7c108-0214-4af6-9719-fab59affafec","type":"visualization"},{"id":"43b31a20-339b-11ea-a83e-25b8612d00cc","name":"4177a6e6-97d7-447e-bcf3-ee9c1d660bd8:panel_4177a6e6-97d7-447e-bcf3-ee9c1d660bd8","type":"visualization"},{"id":"5cbf5820-339c-11ea-a83e-25b8612d00cc","name":"28d85d90-3881-4d1f-b60c-43b545fc9f0e:panel_28d85d90-3881-4d1f-b60c-43b545fc9f0e","type":"visualization"},{"id":"553f9320-32e9-11ea-a83e-25b8612d00cc","name":"1d623c03-4d02-4a81-b91e-49e82e112016:panel_1d623c03-4d02-4a81-b91e-49e82e112016","type":"visualization"},{"id":"acced050-32d1-11ea-a83e-25b8612d00cc","name":"ff6441f8-d66d-4399-bae5-25d3d861b299:panel_ff6441f8-d66d-4399-bae5-25d3d861b299","type":"visualization"},{"id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","name":"87066244-7840-4555-9d12-026d64977f1a:panel_87066244-7840-4555-9d12-026d64977f1a","type":"visualization"},{"id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","name":"756da375-e6a2-4668-af43-0cd294878254:panel_756da375-e6a2-4668-af43-0cd294878254","type":"visualization"},{"id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","name":"a715fafc-ca38-410c-9253-12ba506eabc0:panel_a715fafc-ca38-410c-9253-12ba506eabc0","type":"visualization"},{"id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","name":"75f72920-be71-47a9-a967-f1c862ab2961:panel_75f72920-be71-47a9-a967-f1c862ab2961","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1ODgsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-guestmetrics-overview.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-guestmetrics-overview.json deleted file mode 100644 index 873616c609c..00000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-guestmetrics-overview.json +++ /dev/null @@ -1,999 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This dashboards shows ASP.NET and SQL Server specific metrics extracted from the azure.vm.windows.guestmetrics namespace", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Filters" - }, - "gridData": { - "h": 12, - "i": "b7b8bcc1-f776-45cf-a149-36665f2de746", - "w": 6, - "x": 0, - "y": 0 - }, - "panelIndex": "b7b8bcc1-f776-45cf-a149-36665f2de746", - "panelRefName": "panel_0", - "title": "Filters", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Applications Running" - }, - "gridData": { - "h": 12, - "i": "bc65dd87-08f6-49f7-b8bf-0d371431ad4d", - "w": 18, - "x": 6, - "y": 0 - }, - "panelIndex": "bc65dd87-08f6-49f7-b8bf-0d371431ad4d", - "panelRefName": "panel_1", - "title": "Applications Running", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "SQL Server User Connections" - }, - "gridData": { - "h": 12, - "i": "6a5abca9-1cfd-45ef-aa88-9b4a72ce2dca", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "6a5abca9-1cfd-45ef-aa88-9b4a72ce2dca", - "panelRefName": "panel_2", - "title": "SQL Server User Connections", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Application Requests" - }, - "gridData": { - "h": 12, - "i": "5c0158cc-c884-4665-8bbf-7fc34d885d55", - "w": 12, - "x": 0, - "y": 12 - }, - "panelIndex": "5c0158cc-c884-4665-8bbf-7fc34d885d55", - "panelRefName": "panel_3", - "title": "Application Requests", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Application Error Rates" - }, - "gridData": { - "h": 12, - "i": "03c9cff0-b2ec-4dd1-9a2f-db7f441e5e71", - "w": 12, - "x": 12, - "y": 12 - }, - "panelIndex": "03c9cff0-b2ec-4dd1-9a2f-db7f441e5e71", - "panelRefName": "panel_4", - "title": "Application Error Rates", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "SQL Server Total Server Memory" - }, - "gridData": { - "h": 12, - "i": "aaa96404-80de-44dc-990c-76bf40d3827b", - "w": 24, - "x": 24, - "y": 12 - }, - "panelIndex": "aaa96404-80de-44dc-990c-76bf40d3827b", - "panelRefName": "panel_5", - "title": "SQL Server Total Server Memory", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Application Sessions" - }, - "gridData": { - "h": 12, - "i": "b89c7551-e0e1-4642-ac18-01322ea72db8", - "w": 24, - "x": 0, - "y": 24 - }, - "panelIndex": "b89c7551-e0e1-4642-ac18-01322ea72db8", - "panelRefName": "panel_6", - "title": "Application Sessions", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "SQL Server Page Reads/Writes" - }, - "gridData": { - "h": 12, - "i": "43effd82-fc6a-4d11-bd1e-d3b12a34cbce", - "w": 24, - "x": 24, - "y": 24 - }, - "panelIndex": "43effd82-fc6a-4d11-bd1e-d3b12a34cbce", - "panelRefName": "panel_7", - "title": "SQL Server Page Reads/Writes", - "version": "7.4.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Azure] VM Guest Metrics Overview", - "version": 1 - }, - "id": "a6f5d430-eaa6-11e9-90ec-112a988266d5", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "5031b220-eb61-11e9-90ec-112a988266d5", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "1f5c1cd0-eaa3-11e9-90ec-112a988266d5", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "0aacc190-eaa8-11e9-90ec-112a988266d5", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "097bc300-eaa5-11e9-90ec-112a988266d5", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "6d52a660-eaa4-11e9-90ec-112a988266d5", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "d7ea4290-eaa8-11e9-90ec-112a988266d5", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "b9aa9b20-eaa5-11e9-90ec-112a988266d5", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "787a0a20-eaa8-11e9-90ec-112a988266d5", - "name": "panel_7", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-10-15T11:58:39.685Z", - "version": "WzMyMjQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VM Filters [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.region", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "Region", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.group", - "id": "1549512142947", - "indexPatternRefName": "control_1_index_pattern", - "label": "Resource Group", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.name", - "id": "1570774891724", - "indexPatternRefName": "control_2_index_pattern", - "label": "VM Name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "VM Filters [Metricbeat Azure]", - "type": "input_control_vis" - } - }, - "id": "5031b220-eb61-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-10-11T06:35:45.645Z", - "version": "WzE0ODMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ASP.NET Applications Running [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "04bf3740-eaa3-11e9-8742-b533e334ee9a" - } - ], - "bar_color_rules": [ - { - "id": "03eec7e0-eaa3-11e9-8742-b533e334ee9a" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " - }, - "gauge_color_rules": [ - { - "id": "07485320-eaa3-11e9-8742-b533e334ee9a" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "d1acb8f0-eaa2-11e9-a229-c9171499dcc6", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": "0.2", - "formatter": "number", - "id": "d1acb8f1-eaa2-11e9-a229-c9171499dcc6", - "label": "applications running", - "line_width": "1", - "metrics": [ - { - "field": "azure.compute_vm.asp_net_applications_running.avg", - "id": "d1acb8f2-eaa2-11e9-a229-c9171499dcc6", - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "ASP.NET Applications Running [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "1f5c1cd0-eaa3-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-15T11:56:33.857Z", - "version": "WzMyMTEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SQL Server User Connections [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type :\"Microsoft.Compute/virtualMachines\" " - }, - "id": "da495db0-eaa7-11e9-a88b-4b683ca3087b", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "formatter": "number", - "id": "da495db1-eaa7-11e9-a88b-4b683ca3087b", - "label": "connections", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.sqlserver_general_statistics_user_connections.avg", - "id": "da495db2-eaa7-11e9-a88b-4b683ca3087b", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "SQL Server User Connections [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "0aacc190-eaa8-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-15T11:56:54.774Z", - "version": "WzMyMTMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ASP.NET Application Requests [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " - }, - "id": "be74e9e0-eaa4-11e9-8923-850d87d8e766", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(254,146,0,1)", - "fill": 0, - "formatter": "number", - "id": "be74e9e1-eaa4-11e9-8923-850d87d8e766", - "label": "timed out", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.asp_net_applications_requests_timed_out.avg", - "id": "be74e9e2-eaa4-11e9-8923-850d87d8e766", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#DB1374", - "fill": 0, - "formatter": "number", - "id": "be74e9e3-eaa4-11e9-8923-850d87d8e766", - "label": "failed", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.asp_net_applications_requests_failed.avg", - "id": "be74e9e4-eaa4-11e9-8923-850d87d8e766", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#00B3A4", - "fill": 0, - "formatter": "number", - "id": "be7510f0-eaa4-11e9-8923-850d87d8e766", - "label": "succeeded", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.asp_net_applications_requests_succeeded.avg", - "id": "be7510f1-eaa4-11e9-8923-850d87d8e766", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#490092", - "fill": 0, - "formatter": "number", - "id": "be7510f2-eaa4-11e9-8923-850d87d8e766", - "label": "total", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.asp_net_applications_requests_total.avg", - "id": "be7510f3-eaa4-11e9-8923-850d87d8e766", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "ASP.NET Application Requests [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "097bc300-eaa5-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-15T11:57:11.237Z", - "version": "WzMyMTUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ASP.NET Application Error Rates [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " - }, - "id": "29576400-eaa4-11e9-a2d3-e7a00bbd3c18", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": "0.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "29578b10-eaa4-11e9-a2d3-e7a00bbd3c18", - "label": "errors", - "line_width": "1", - "metrics": [ - { - "field": "azure.compute_vm.asp_net_applications_errors_total.avg", - "id": "29578b11-eaa4-11e9-a2d3-e7a00bbd3c18", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "ASP.NET Application Error Rates [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "6d52a660-eaa4-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-15T11:57:29.302Z", - "version": "WzMyMTcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SQL Server Total Server Memory [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type:\"Microsoft.Compute/virtualMachines\" " - }, - "id": "94af6a00-eaa8-11e9-9269-d92e2d3f77fd", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "formatter": "bytes", - "id": "94af6a01-eaa8-11e9-9269-d92e2d3f77fd", - "label": "memory", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.sqlserver_memory_manager_total_server_memory.avg", - "id": "94af6a02-eaa8-11e9-9269-d92e2d3f77fd", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "SQL Server Total Server Memory [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "d7ea4290-eaa8-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-15T11:57:45.878Z", - "version": "WzMyMTksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ASP.NET Application Sessions [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " - }, - "id": "6d6575a0-eaa5-11e9-84ad-5919a47b8f34", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "formatter": "number", - "id": "6d6575a1-eaa5-11e9-84ad-5919a47b8f34", - "label": "active", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.asp_net_applications_sessions_active.avg", - "id": "6d6575a2-eaa5-11e9-84ad-5919a47b8f34", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#DB1374", - "fill": 0, - "formatter": "number", - "id": "6d6575a3-eaa5-11e9-84ad-5919a47b8f34", - "label": "timed out", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.asp_net_applications_sessions_timed_out.avg", - "id": "6d6575a4-eaa5-11e9-84ad-5919a47b8f34", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#00B3A4", - "fill": 0, - "formatter": "number", - "id": "6d6575a5-eaa5-11e9-84ad-5919a47b8f34", - "label": "abandoned", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.asp_net_applications_sessions_abandoned.avg", - "id": "6d6575a6-eaa5-11e9-84ad-5919a47b8f34", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#490092", - "fill": 0, - "formatter": "number", - "id": "6d6575a7-eaa5-11e9-84ad-5919a47b8f34", - "label": "total", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.asp_net_applications_sessions_total.avg", - "id": "6d6575a8-eaa5-11e9-84ad-5919a47b8f34", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "ASP.NET Application Sessions [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "b9aa9b20-eaa5-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-15T11:58:04.891Z", - "version": "WzMyMjEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SQL Server Page Reads/Writes [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " - }, - "id": "35459a30-eaa8-11e9-a379-c33a712c0373", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": 0, - "formatter": "number", - "id": "35459a31-eaa8-11e9-a379-c33a712c0373", - "label": "Page Reads/s", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.sqlserver_buffer_manager_page_reads_per_sec.avg", - "id": "35459a32-eaa8-11e9-a379-c33a712c0373", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(176,188,0,1)", - "fill": 0, - "formatter": "number", - "id": "35459a33-eaa8-11e9-a379-c33a712c0373", - "label": "Page Writes/s", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.sqlserver_buffer_manager_page_writes_per_sec.avg", - "id": "35459a34-eaa8-11e9-a379-c33a712c0373", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "SQL Server Page Reads/Writes [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "787a0a20-eaa8-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-15T11:58:24.951Z", - "version": "WzMyMjMsMV0=" - } - ], - "version": "7.4.0" -} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-guestmetrics-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-guestmetrics-overview.ndjson new file mode 100644 index 00000000000..b3089b9638d --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-guestmetrics-overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"VM Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1570774891724\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"VM Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"VM Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"5031b220-eb61-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ASP.NET Applications Running [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"04bf3740-eaa3-11e9-8742-b533e334ee9a\"}],\"bar_color_rules\":[{\"id\":\"03eec7e0-eaa3-11e9-8742-b533e334ee9a\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"gauge_color_rules\":[{\"id\":\"07485320-eaa3-11e9-8742-b533e334ee9a\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"d1acb8f0-eaa2-11e9-a229-c9171499dcc6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"d1acb8f1-eaa2-11e9-a229-c9171499dcc6\",\"label\":\"applications running\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_running.avg\",\"id\":\"d1acb8f2-eaa2-11e9-a229-c9171499dcc6\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ASP.NET Applications Running [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1f5c1cd0-eaa3-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:54.175Z","version":"WzM2MDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQL Server User Connections [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type :\\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"da495db0-eaa7-11e9-a88b-4b683ca3087b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"da495db1-eaa7-11e9-a88b-4b683ca3087b\",\"label\":\"connections\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.sqlserver_general_statistics_user_connections.avg\",\"id\":\"da495db2-eaa7-11e9-a88b-4b683ca3087b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQL Server User Connections [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0aacc190-eaa8-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:54.175Z","version":"WzM2MDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ASP.NET Application Requests [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"be74e9e0-eaa4-11e9-8923-850d87d8e766\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"be74e9e1-eaa4-11e9-8923-850d87d8e766\",\"label\":\"timed out\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_requests_timed_out.avg\",\"id\":\"be74e9e2-eaa4-11e9-8923-850d87d8e766\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":0,\"formatter\":\"number\",\"id\":\"be74e9e3-eaa4-11e9-8923-850d87d8e766\",\"label\":\"failed\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_requests_failed.avg\",\"id\":\"be74e9e4-eaa4-11e9-8923-850d87d8e766\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":0,\"formatter\":\"number\",\"id\":\"be7510f0-eaa4-11e9-8923-850d87d8e766\",\"label\":\"succeeded\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_requests_succeeded.avg\",\"id\":\"be7510f1-eaa4-11e9-8923-850d87d8e766\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#490092\",\"fill\":0,\"formatter\":\"number\",\"id\":\"be7510f2-eaa4-11e9-8923-850d87d8e766\",\"label\":\"total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_requests_total.avg\",\"id\":\"be7510f3-eaa4-11e9-8923-850d87d8e766\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ASP.NET Application Requests [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"097bc300-eaa5-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:54.175Z","version":"WzM2MDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ASP.NET Application Error Rates [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"29576400-eaa4-11e9-a2d3-e7a00bbd3c18\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"29578b10-eaa4-11e9-a2d3-e7a00bbd3c18\",\"label\":\"errors\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_errors_total.avg\",\"id\":\"29578b11-eaa4-11e9-a2d3-e7a00bbd3c18\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ASP.NET Application Error Rates [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6d52a660-eaa4-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:54.175Z","version":"WzM2MDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQL Server Total Server Memory [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type:\\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"94af6a00-eaa8-11e9-9269-d92e2d3f77fd\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"94af6a01-eaa8-11e9-9269-d92e2d3f77fd\",\"label\":\"memory\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.sqlserver_memory_manager_total_server_memory.avg\",\"id\":\"94af6a02-eaa8-11e9-9269-d92e2d3f77fd\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQL Server Total Server Memory [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d7ea4290-eaa8-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:54.175Z","version":"WzM2MDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ASP.NET Application Sessions [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"6d6575a0-eaa5-11e9-84ad-5919a47b8f34\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"6d6575a1-eaa5-11e9-84ad-5919a47b8f34\",\"label\":\"active\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_sessions_active.avg\",\"id\":\"6d6575a2-eaa5-11e9-84ad-5919a47b8f34\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":0,\"formatter\":\"number\",\"id\":\"6d6575a3-eaa5-11e9-84ad-5919a47b8f34\",\"label\":\"timed out\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_sessions_timed_out.avg\",\"id\":\"6d6575a4-eaa5-11e9-84ad-5919a47b8f34\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":0,\"formatter\":\"number\",\"id\":\"6d6575a5-eaa5-11e9-84ad-5919a47b8f34\",\"label\":\"abandoned\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_sessions_abandoned.avg\",\"id\":\"6d6575a6-eaa5-11e9-84ad-5919a47b8f34\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#490092\",\"fill\":0,\"formatter\":\"number\",\"id\":\"6d6575a7-eaa5-11e9-84ad-5919a47b8f34\",\"label\":\"total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_sessions_total.avg\",\"id\":\"6d6575a8-eaa5-11e9-84ad-5919a47b8f34\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ASP.NET Application Sessions [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b9aa9b20-eaa5-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:54.175Z","version":"WzM2MDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQL Server Page Reads/Writes [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"35459a30-eaa8-11e9-a379-c33a712c0373\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"35459a31-eaa8-11e9-a379-c33a712c0373\",\"label\":\"Page Reads/s\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.sqlserver_buffer_manager_page_reads_per_sec.avg\",\"id\":\"35459a32-eaa8-11e9-a379-c33a712c0373\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"35459a33-eaa8-11e9-a379-c33a712c0373\",\"label\":\"Page Writes/s\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.sqlserver_buffer_manager_page_writes_per_sec.avg\",\"id\":\"35459a34-eaa8-11e9-a379-c33a712c0373\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQL Server Page Reads/Writes [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"787a0a20-eaa8-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:54.175Z","version":"WzM2MDgsMV0="} +{"attributes":{"description":"This dashboards shows ASP.NET and SQL Server specific metrics extracted from the azure.vm.windows.guestmetrics namespace","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"b7b8bcc1-f776-45cf-a149-36665f2de746\",\"w\":6,\"x\":0,\"y\":0},\"panelIndex\":\"b7b8bcc1-f776-45cf-a149-36665f2de746\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_b7b8bcc1-f776-45cf-a149-36665f2de746\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"bc65dd87-08f6-49f7-b8bf-0d371431ad4d\",\"w\":18,\"x\":6,\"y\":0},\"panelIndex\":\"bc65dd87-08f6-49f7-b8bf-0d371431ad4d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Applications Running\",\"panelRefName\":\"panel_bc65dd87-08f6-49f7-b8bf-0d371431ad4d\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6a5abca9-1cfd-45ef-aa88-9b4a72ce2dca\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"6a5abca9-1cfd-45ef-aa88-9b4a72ce2dca\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQL Server User Connections\",\"panelRefName\":\"panel_6a5abca9-1cfd-45ef-aa88-9b4a72ce2dca\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"5c0158cc-c884-4665-8bbf-7fc34d885d55\",\"w\":12,\"x\":0,\"y\":12},\"panelIndex\":\"5c0158cc-c884-4665-8bbf-7fc34d885d55\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Application Requests\",\"panelRefName\":\"panel_5c0158cc-c884-4665-8bbf-7fc34d885d55\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"03c9cff0-b2ec-4dd1-9a2f-db7f441e5e71\",\"w\":12,\"x\":12,\"y\":12},\"panelIndex\":\"03c9cff0-b2ec-4dd1-9a2f-db7f441e5e71\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Application Error Rates\",\"panelRefName\":\"panel_03c9cff0-b2ec-4dd1-9a2f-db7f441e5e71\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"aaa96404-80de-44dc-990c-76bf40d3827b\",\"w\":24,\"x\":24,\"y\":12},\"panelIndex\":\"aaa96404-80de-44dc-990c-76bf40d3827b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQL Server Total Server Memory\",\"panelRefName\":\"panel_aaa96404-80de-44dc-990c-76bf40d3827b\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"b89c7551-e0e1-4642-ac18-01322ea72db8\",\"w\":24,\"x\":0,\"y\":24},\"panelIndex\":\"b89c7551-e0e1-4642-ac18-01322ea72db8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Application Sessions\",\"panelRefName\":\"panel_b89c7551-e0e1-4642-ac18-01322ea72db8\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"43effd82-fc6a-4d11-bd1e-d3b12a34cbce\",\"w\":24,\"x\":24,\"y\":24},\"panelIndex\":\"43effd82-fc6a-4d11-bd1e-d3b12a34cbce\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQL Server Page Reads/Writes\",\"panelRefName\":\"panel_43effd82-fc6a-4d11-bd1e-d3b12a34cbce\"}]","timeRestore":false,"title":"[Metricbeat Azure] VM Guest Metrics Overview","version":1},"coreMigrationVersion":"8.0.0","id":"a6f5d430-eaa6-11e9-90ec-112a988266d5","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"5031b220-eb61-11e9-90ec-112a988266d5","name":"b7b8bcc1-f776-45cf-a149-36665f2de746:panel_b7b8bcc1-f776-45cf-a149-36665f2de746","type":"visualization"},{"id":"1f5c1cd0-eaa3-11e9-90ec-112a988266d5","name":"bc65dd87-08f6-49f7-b8bf-0d371431ad4d:panel_bc65dd87-08f6-49f7-b8bf-0d371431ad4d","type":"visualization"},{"id":"0aacc190-eaa8-11e9-90ec-112a988266d5","name":"6a5abca9-1cfd-45ef-aa88-9b4a72ce2dca:panel_6a5abca9-1cfd-45ef-aa88-9b4a72ce2dca","type":"visualization"},{"id":"097bc300-eaa5-11e9-90ec-112a988266d5","name":"5c0158cc-c884-4665-8bbf-7fc34d885d55:panel_5c0158cc-c884-4665-8bbf-7fc34d885d55","type":"visualization"},{"id":"6d52a660-eaa4-11e9-90ec-112a988266d5","name":"03c9cff0-b2ec-4dd1-9a2f-db7f441e5e71:panel_03c9cff0-b2ec-4dd1-9a2f-db7f441e5e71","type":"visualization"},{"id":"d7ea4290-eaa8-11e9-90ec-112a988266d5","name":"aaa96404-80de-44dc-990c-76bf40d3827b:panel_aaa96404-80de-44dc-990c-76bf40d3827b","type":"visualization"},{"id":"b9aa9b20-eaa5-11e9-90ec-112a988266d5","name":"b89c7551-e0e1-4642-ac18-01322ea72db8:panel_b89c7551-e0e1-4642-ac18-01322ea72db8","type":"visualization"},{"id":"787a0a20-eaa8-11e9-90ec-112a988266d5","name":"43effd82-fc6a-4d11-bd1e-d3b12a34cbce:panel_43effd82-fc6a-4d11-bd1e-d3b12a34cbce","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:54.175Z","version":"WzM2MDAsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-overview.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-overview.json deleted file mode 100644 index 78660789d5b..00000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-overview.json +++ /dev/null @@ -1,969 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This dashboard visualized relevant metrics for VMs running on Azure cloud.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "VM Filters" - }, - "gridData": { - "h": 12, - "i": "aa881f9d-28d3-4722-822e-3e670021cf52", - "w": 6, - "x": 0, - "y": 0 - }, - "panelIndex": "aa881f9d-28d3-4722-822e-3e670021cf52", - "panelRefName": "panel_0", - "title": "VM Filters", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "VM CPU Utilization" - }, - "gridData": { - "h": 12, - "i": "e673f70c-f811-4290-9087-578c7dd13675", - "w": 20, - "x": 6, - "y": 0 - }, - "panelIndex": "e673f70c-f811-4290-9087-578c7dd13675", - "panelRefName": "panel_1", - "title": "VM CPU Utilization", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "VM Available Memory" - }, - "gridData": { - "h": 12, - "i": "2473ef72-c56c-4783-a36a-f4b8efd66ab7", - "w": 22, - "x": 26, - "y": 0 - }, - "panelIndex": "2473ef72-c56c-4783-a36a-f4b8efd66ab7", - "panelRefName": "panel_2", - "title": "VM Available Memory", - "version": "7.9.1" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "14e225ef-6417-4377-b2cb-6b46b6693b78", - "w": 12, - "x": 36, - "y": 12 - }, - "panelIndex": "14e225ef-6417-4377-b2cb-6b46b6693b78", - "panelRefName": "panel_3", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "VM Network In Total" - }, - "gridData": { - "h": 12, - "i": "535d70b3-3f3c-4a84-85ba-ab671b6d144f", - "w": 12, - "x": 0, - "y": 12 - }, - "panelIndex": "535d70b3-3f3c-4a84-85ba-ab671b6d144f", - "panelRefName": "panel_4", - "title": "VM Network In Total", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "VM Network Out Total" - }, - "gridData": { - "h": 12, - "i": "6903a45e-bf11-4db2-9497-fd9692e83448", - "w": 12, - "x": 12, - "y": 12 - }, - "panelIndex": "6903a45e-bf11-4db2-9497-fd9692e83448", - "panelRefName": "panel_5", - "title": "VM Network Out Total", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "VM Disk Writes" - }, - "gridData": { - "h": 12, - "i": "aa57fa8f-f6ea-45e3-9b2c-ba948d625813", - "w": 12, - "x": 24, - "y": 12 - }, - "panelIndex": "aa57fa8f-f6ea-45e3-9b2c-ba948d625813", - "panelRefName": "panel_6", - "title": "VM Disk Writes", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "VM Disk Read Operations/s" - }, - "gridData": { - "h": 13, - "i": "8879143b-ed83-45ec-8c58-b10dc1597c22", - "w": 24, - "x": 0, - "y": 24 - }, - "panelIndex": "8879143b-ed83-45ec-8c58-b10dc1597c22", - "panelRefName": "panel_7", - "title": "VM Disk Read Operations/s", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "VM Disk Write Operations/s" - }, - "gridData": { - "h": 13, - "i": "4071f2bf-1794-45ff-b76d-58864226d8b7", - "w": 24, - "x": 24, - "y": 24 - }, - "panelIndex": "4071f2bf-1794-45ff-b76d-58864226d8b7", - "panelRefName": "panel_8", - "title": "VM Disk Write Operations/s", - "version": "7.9.1" - } - ], - "timeRestore": false, - "title": "[Metricbeat Azure] Compute VMs Overview", - "version": 1 - }, - "id": "eb3f05f0-ea9a-11e9-90ec-112a988266d5", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "5031b220-eb61-11e9-90ec-112a988266d5", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "db9a3490-ea8f-11e9-90ec-112a988266d5", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "7205a4f0-ea95-11e9-90ec-112a988266d5", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "e8ca65c0-eb45-11e9-90ec-112a988266d5", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "8b6b9450-ea99-11e9-90ec-112a988266d5", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "abd32c30-ea99-11e9-90ec-112a988266d5", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "5c016810-ea9a-11e9-90ec-112a988266d5", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "3a50e950-eb46-11e9-90ec-112a988266d5", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "0892eaa0-ea9a-11e9-90ec-112a988266d5", - "name": "panel_8", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-09-15T16:10:59.501Z", - "version": "Wzg4NSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VM Filters [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.region", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "Region", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.group", - "id": "1549512142947", - "indexPatternRefName": "control_1_index_pattern", - "label": "Resource Group", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.name", - "id": "1570774891724", - "indexPatternRefName": "control_2_index_pattern", - "label": "VM Name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "VM Filters [Metricbeat Azure]", - "type": "input_control_vis" - } - }, - "id": "5031b220-eb61-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-09-15T16:21:47.113Z", - "version": "WzkyNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VM CPU Utilization [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " - }, - "id": "4f6c1610-ea8e-11e9-8c73-71740bcf3d8b", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "4f6c1611-ea8e-11e9-8c73-71740bcf3d8b", - "label": "Azure VM CPU Utilization", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.percentage_cpu.avg", - "id": "4f6c1612-ea8e-11e9-8c73-71740bcf3d8b", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "value_template": "{{value}}%" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "VM CPU Utilization [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "db9a3490-ea8f-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:01:27.530Z", - "version": "WzMzMywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VM Available Memory [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " - }, - "id": "c7e12030-ea94-11e9-bf06-bfc27258c9ad", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(176,188,0,1)", - "fill": 0, - "formatter": "bytes", - "id": "c7e12031-ea94-11e9-bf06-bfc27258c9ad", - "label": "VM Available Memory", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.memory_available_bytes.avg", - "id": "c7e12032-ea94-11e9-bf06-bfc27258c9ad", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "VM Available Memory [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "7205a4f0-ea95-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:01:27.530Z", - "version": "WzMzNCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VM Disk Reads [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type :\"Microsoft.Compute/virtualMachines\" " - }, - "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": 0, - "formatter": "bytes", - "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", - "label": "VM Disk Read bytes", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.disk_read_bytes.total", - "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "VM Disk Reads [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "e8ca65c0-eb45-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:01:27.530Z", - "version": "WzMzNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VM Network In Total [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " - }, - "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": 0, - "formatter": "bytes", - "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", - "label": "Azure VM Network In Total", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.network_in_total.total", - "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "VM Network In Total [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "8b6b9450-ea99-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:01:27.530Z", - "version": "WzMzNiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VM Network Out Total [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " - }, - "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": 0, - "formatter": "bytes", - "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", - "label": "Azure VM Network Out Total", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.network_out_total.total", - "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "VM Network Out Total [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "abd32c30-ea99-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:01:27.530Z", - "version": "WzMzNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VM Disk Writes [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type :\"Microsoft.Compute/virtualMachines\" " - }, - "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(176,188,0,1)", - "fill": 0, - "formatter": "bytes", - "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", - "label": "VM Disk Writes bytes", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.disk_write_bytes.total", - "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "VM Disk Writes [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "5c016810-ea9a-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:01:27.530Z", - "version": "WzMzOCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VM Disk Read Operations/s [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " - }, - "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": 0, - "formatter": "number", - "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", - "label": "VM Disk Read Operations/s", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.disk_read_operations_per_sec.avg", - "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "VM Disk Read Operations/s [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "3a50e950-eb46-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:01:27.530Z", - "version": "WzMzOSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VM Disk Write Operations/s [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " - }, - "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": 0, - "formatter": "number", - "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", - "label": "VM Disk Write Operations/s", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm.disk_write_operations_per_sec.avg", - "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "VM Disk Write Operations/s [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "0892eaa0-ea9a-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:01:27.530Z", - "version": "WzM0MCwxXQ==" - } - ], - "version": "7.9.1" -} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-overview.ndjson new file mode 100644 index 00000000000..d8b43ee86c7 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-overview.ndjson @@ -0,0 +1,10 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"VM Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1570774891724\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"VM Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"VM Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"5031b220-eb61-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM CPU Utilization [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"4f6c1610-ea8e-11e9-8c73-71740bcf3d8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"4f6c1611-ea8e-11e9-8c73-71740bcf3d8b\",\"label\":\"Azure VM CPU Utilization\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.percentage_cpu.avg\",\"id\":\"4f6c1612-ea8e-11e9-8c73-71740bcf3d8b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"value_template\":\"{{value}}%\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VM CPU Utilization [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"db9a3490-ea8f-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM Available Memory [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"c7e12030-ea94-11e9-bf06-bfc27258c9ad\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"c7e12031-ea94-11e9-bf06-bfc27258c9ad\",\"label\":\"VM Available Memory\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.memory_available_bytes.avg\",\"id\":\"c7e12032-ea94-11e9-bf06-bfc27258c9ad\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VM Available Memory [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7205a4f0-ea95-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM Disk Reads [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type :\\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"VM Disk Read bytes\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.disk_read_bytes.total\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VM Disk Reads [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e8ca65c0-eb45-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM Network In Total [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"Azure VM Network In Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.network_in_total.total\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VM Network In Total [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8b6b9450-ea99-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM Network Out Total [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"Azure VM Network Out Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.network_out_total.total\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VM Network Out Total [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"abd32c30-ea99-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM Disk Writes [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type :\\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"VM Disk Writes bytes\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.disk_write_bytes.total\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VM Disk Writes [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5c016810-ea9a-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM Disk Read Operations/s [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"VM Disk Read Operations/s\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.disk_read_operations_per_sec.avg\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VM Disk Read Operations/s [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3a50e950-eb46-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM Disk Write Operations/s [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"VM Disk Write Operations/s\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.disk_write_operations_per_sec.avg\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VM Disk Write Operations/s [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0892eaa0-ea9a-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTgsMV0="} +{"attributes":{"description":"This dashboard visualized relevant metrics for VMs running on Azure cloud.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"aa881f9d-28d3-4722-822e-3e670021cf52\",\"w\":6,\"x\":0,\"y\":0},\"panelIndex\":\"aa881f9d-28d3-4722-822e-3e670021cf52\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VM Filters\",\"panelRefName\":\"panel_aa881f9d-28d3-4722-822e-3e670021cf52\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"e673f70c-f811-4290-9087-578c7dd13675\",\"w\":20,\"x\":6,\"y\":0},\"panelIndex\":\"e673f70c-f811-4290-9087-578c7dd13675\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VM CPU Utilization\",\"panelRefName\":\"panel_e673f70c-f811-4290-9087-578c7dd13675\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"2473ef72-c56c-4783-a36a-f4b8efd66ab7\",\"w\":22,\"x\":26,\"y\":0},\"panelIndex\":\"2473ef72-c56c-4783-a36a-f4b8efd66ab7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VM Available Memory\",\"panelRefName\":\"panel_2473ef72-c56c-4783-a36a-f4b8efd66ab7\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"14e225ef-6417-4377-b2cb-6b46b6693b78\",\"w\":12,\"x\":36,\"y\":12},\"panelIndex\":\"14e225ef-6417-4377-b2cb-6b46b6693b78\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14e225ef-6417-4377-b2cb-6b46b6693b78\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"535d70b3-3f3c-4a84-85ba-ab671b6d144f\",\"w\":12,\"x\":0,\"y\":12},\"panelIndex\":\"535d70b3-3f3c-4a84-85ba-ab671b6d144f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VM Network In Total\",\"panelRefName\":\"panel_535d70b3-3f3c-4a84-85ba-ab671b6d144f\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6903a45e-bf11-4db2-9497-fd9692e83448\",\"w\":12,\"x\":12,\"y\":12},\"panelIndex\":\"6903a45e-bf11-4db2-9497-fd9692e83448\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VM Network Out Total\",\"panelRefName\":\"panel_6903a45e-bf11-4db2-9497-fd9692e83448\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"aa57fa8f-f6ea-45e3-9b2c-ba948d625813\",\"w\":12,\"x\":24,\"y\":12},\"panelIndex\":\"aa57fa8f-f6ea-45e3-9b2c-ba948d625813\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VM Disk Writes\",\"panelRefName\":\"panel_aa57fa8f-f6ea-45e3-9b2c-ba948d625813\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"8879143b-ed83-45ec-8c58-b10dc1597c22\",\"w\":24,\"x\":0,\"y\":24},\"panelIndex\":\"8879143b-ed83-45ec-8c58-b10dc1597c22\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VM Disk Read Operations/s\",\"panelRefName\":\"panel_8879143b-ed83-45ec-8c58-b10dc1597c22\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"4071f2bf-1794-45ff-b76d-58864226d8b7\",\"w\":24,\"x\":24,\"y\":24},\"panelIndex\":\"4071f2bf-1794-45ff-b76d-58864226d8b7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VM Disk Write Operations/s\",\"panelRefName\":\"panel_4071f2bf-1794-45ff-b76d-58864226d8b7\"}]","timeRestore":false,"title":"[Metricbeat Azure] Compute VMs Overview","version":1},"coreMigrationVersion":"8.0.0","id":"eb3f05f0-ea9a-11e9-90ec-112a988266d5","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"5031b220-eb61-11e9-90ec-112a988266d5","name":"aa881f9d-28d3-4722-822e-3e670021cf52:panel_aa881f9d-28d3-4722-822e-3e670021cf52","type":"visualization"},{"id":"db9a3490-ea8f-11e9-90ec-112a988266d5","name":"e673f70c-f811-4290-9087-578c7dd13675:panel_e673f70c-f811-4290-9087-578c7dd13675","type":"visualization"},{"id":"7205a4f0-ea95-11e9-90ec-112a988266d5","name":"2473ef72-c56c-4783-a36a-f4b8efd66ab7:panel_2473ef72-c56c-4783-a36a-f4b8efd66ab7","type":"visualization"},{"id":"e8ca65c0-eb45-11e9-90ec-112a988266d5","name":"14e225ef-6417-4377-b2cb-6b46b6693b78:panel_14e225ef-6417-4377-b2cb-6b46b6693b78","type":"visualization"},{"id":"8b6b9450-ea99-11e9-90ec-112a988266d5","name":"535d70b3-3f3c-4a84-85ba-ab671b6d144f:panel_535d70b3-3f3c-4a84-85ba-ab671b6d144f","type":"visualization"},{"id":"abd32c30-ea99-11e9-90ec-112a988266d5","name":"6903a45e-bf11-4db2-9497-fd9692e83448:panel_6903a45e-bf11-4db2-9497-fd9692e83448","type":"visualization"},{"id":"5c016810-ea9a-11e9-90ec-112a988266d5","name":"aa57fa8f-f6ea-45e3-9b2c-ba948d625813:panel_aa57fa8f-f6ea-45e3-9b2c-ba948d625813","type":"visualization"},{"id":"3a50e950-eb46-11e9-90ec-112a988266d5","name":"8879143b-ed83-45ec-8c58-b10dc1597c22:panel_8879143b-ed83-45ec-8c58-b10dc1597c22","type":"visualization"},{"id":"0892eaa0-ea9a-11e9-90ec-112a988266d5","name":"4071f2bf-1794-45ff-b76d-58864226d8b7:panel_4071f2bf-1794-45ff-b76d-58864226d8b7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MDksMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vmss-overview.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vmss-overview.json deleted file mode 100644 index fe615da131f..00000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vmss-overview.json +++ /dev/null @@ -1,932 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This dashboard visualized relevant metrics for VMs running on Azure cloud.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Filters" - }, - "gridData": { - "h": 12, - "i": "d84767cd-3fc9-438c-a969-f15c4d5fc9c5", - "w": 6, - "x": 0, - "y": 0 - }, - "panelIndex": "d84767cd-3fc9-438c-a969-f15c4d5fc9c5", - "panelRefName": "panel_0", - "title": "Filters", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Percentage CPU" - }, - "gridData": { - "h": 12, - "i": "127eff01-d34c-4bda-8f19-4cf06982989f", - "w": 20, - "x": 6, - "y": 0 - }, - "panelIndex": "127eff01-d34c-4bda-8f19-4cf06982989f", - "panelRefName": "panel_1", - "title": "Percentage CPU", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Available Memory" - }, - "gridData": { - "h": 12, - "i": "2f85c4f1-a575-49a1-99d3-fbed8a2806ec", - "w": 22, - "x": 26, - "y": 0 - }, - "panelIndex": "2f85c4f1-a575-49a1-99d3-fbed8a2806ec", - "panelRefName": "panel_2", - "title": "Available Memory", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Disk Reads" - }, - "gridData": { - "h": 11, - "i": "6cbc30b4-658e-4f7a-a888-221775fd0af3", - "w": 12, - "x": 36, - "y": 12 - }, - "panelIndex": "6cbc30b4-658e-4f7a-a888-221775fd0af3", - "panelRefName": "panel_3", - "title": "Disk Reads", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Network In Total" - }, - "gridData": { - "h": 11, - "i": "e195e7ba-c736-4bf7-9f23-c96f4acd9b6b", - "w": 12, - "x": 0, - "y": 12 - }, - "panelIndex": "e195e7ba-c736-4bf7-9f23-c96f4acd9b6b", - "panelRefName": "panel_4", - "title": "Network In Total", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Network Out Total" - }, - "gridData": { - "h": 11, - "i": "64fc0214-97f7-4d52-a9bd-a91449293f1c", - "w": 12, - "x": 12, - "y": 12 - }, - "panelIndex": "64fc0214-97f7-4d52-a9bd-a91449293f1c", - "panelRefName": "panel_5", - "title": "Network Out Total", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Disk Writes" - }, - "gridData": { - "h": 11, - "i": "12c9c185-81ed-4313-b274-b3384de2d396", - "w": 12, - "x": 24, - "y": 12 - }, - "panelIndex": "12c9c185-81ed-4313-b274-b3384de2d396", - "panelRefName": "panel_6", - "title": "Disk Writes", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Disk Read Operations/s" - }, - "gridData": { - "h": 15, - "i": "200ae92b-4184-4aed-9868-6ce5e16e7a8d", - "w": 24, - "x": 0, - "y": 23 - }, - "panelIndex": "200ae92b-4184-4aed-9868-6ce5e16e7a8d", - "panelRefName": "panel_7", - "title": "Disk Read Operations/s", - "version": "7.4.0" - }, - { - "embeddableConfig": { - "title": "Disk Write Operations/s" - }, - "gridData": { - "h": 15, - "i": "36c46a84-3e6b-4a7e-9246-357ae9d10d1e", - "w": 24, - "x": 24, - "y": 23 - }, - "panelIndex": "36c46a84-3e6b-4a7e-9246-357ae9d10d1e", - "panelRefName": "panel_8", - "title": "Disk Write Operations/s", - "version": "7.4.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Azure] VM Scale Sets Overview ", - "version": 1 - }, - "id": "91afcc50-eaad-11e9-90ec-112a988266d5", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "686bc990-ea92-11e9-90ec-112a988266d5", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "33500790-eaaf-11e9-90ec-112a988266d5", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "cecd6680-eb41-11e9-90ec-112a988266d5", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "42cc28d0-ea9a-11e9-90ec-112a988266d5", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "64266ec0-eb42-11e9-90ec-112a988266d5", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "b45fd8e0-eb42-11e9-90ec-112a988266d5", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "0d03a670-eb43-11e9-90ec-112a988266d5", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "9c1a1910-ea9a-11e9-90ec-112a988266d5", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "cfaedaf0-eb43-11e9-90ec-112a988266d5", - "name": "panel_8", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-10-15T11:55:55.792Z", - "version": "WzMyMDksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VMSS Filters [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.region", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "Region", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.resource.group", - "id": "1549512142947", - "indexPatternRefName": "control_1_index_pattern", - "label": "Resource Group", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "azure.dimensions.vmname", - "id": "1570711989416", - "indexPatternRefName": "control_2_index_pattern", - "label": "VM Name (dimension)", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "VMSS Filters [Metricbeat Azure]", - "type": "input_control_vis" - } - }, - "id": "686bc990-ea92-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-10-10T13:24:24.225Z", - "version": "WzE0MTMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VMSS CPU Utilization [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type :\"Microsoft.Compute/virtualMachineScaleSets\" " - }, - "id": "7666abc0-eaae-11e9-a083-57ad7f0b1ec1", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": 0, - "formatter": "number", - "id": "7666abc1-eaae-11e9-a083-57ad7f0b1ec1", - "label": "avg(azure.compute_vm_scaleset.percentage_cpu.avg)", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm_scaleset.percentage_cpu.avg", - "id": "7666abc2-eaae-11e9-a083-57ad7f0b1ec1", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "VMSS CPU Utilization [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "33500790-eaaf-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-15T11:53:31.250Z", - "version": "WzMxOTMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VMSS Available Memory [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type :\"Microsoft.Compute/virtualMachineScaleSets\" " - }, - "id": "e25fa710-eb3e-11e9-8bf6-ff656bce9010", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(22,165,165,1)", - "fill": 0, - "formatter": "bytes", - "id": "e25fa711-eb3e-11e9-8bf6-ff656bce9010", - "label": "avg(azure.compute_vm_scaleset.memory_available_bytes.avg)", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm_scaleset.memory_available_bytes.avg", - "id": "e25fa712-eb3e-11e9-8bf6-ff656bce9010", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "VMSS Available Memory [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "cecd6680-eb41-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-15T11:53:55.061Z", - "version": "WzMxOTUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VMSS Disk Reads [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type :\"Microsoft.Compute/virtualMachineScaleSets\" " - }, - "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": 0, - "formatter": "bytes", - "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", - "label": "VM Disk Read bytes", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm_scaleset.disk_read_bytes.total", - "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "VMSS Disk Reads [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "42cc28d0-ea9a-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-15T11:55:06.753Z", - "version": "WzMyMDMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VMSS Network In Total [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.Compute/virtualMachineScaleSets\" " - }, - "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": 0, - "formatter": "bytes", - "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", - "label": "Azure VMSS Network In Total", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm_scaleset.network_in_total.total", - "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "VMSS Network In Total [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "64266ec0-eb42-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-15T11:54:14.745Z", - "version": "WzMxOTcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VMSS Network Out Total [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.Compute/virtualMachineScaleSets\" " - }, - "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": 0, - "formatter": "bytes", - "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", - "label": "Azure VM Network Out Total", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm_scaleset.network_out_total.total", - "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "VMSS Network Out Total [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "b45fd8e0-eb42-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-15T11:54:30.361Z", - "version": "WzMxOTksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VMSS Disk Writes [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type :\"Microsoft.Compute/virtualMachineScaleSets\" " - }, - "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,180,251,1)", - "fill": 0, - "formatter": "bytes", - "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", - "label": "VM Disk Writes bytes", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm_scaleset.disk_write_bytes.total", - "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "VMSS Disk Writes [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "0d03a670-eb43-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-15T11:54:48.472Z", - "version": "WzMyMDEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VMSS Disk Read Operations [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.Compute/virtualMachineScaleSets\" " - }, - "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": 0, - "formatter": "number", - "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", - "label": "VM Disk Read Operations/s", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm_scaleset.disk_read_operations_per_sec.avg", - "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "VMSS Disk Read Operations [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "9c1a1910-ea9a-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-15T11:55:26.389Z", - "version": "WzMyMDUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VMSS Disk Write Operations [Metricbeat Azure]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "azure.resource.type : \"Microsoft.Compute/virtualMachineScaleSets\" " - }, - "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": 0, - "formatter": "number", - "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", - "label": "VM Disk Write Operations/s", - "line_width": 2, - "metrics": [ - { - "field": "azure.compute_vm_scaleset.disk_write_operations_per_sec.avg", - "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "azure.resource.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "VMSS Disk Write Operations [Metricbeat Azure]", - "type": "metrics" - } - }, - "id": "cfaedaf0-eb43-11e9-90ec-112a988266d5", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-15T11:55:48.348Z", - "version": "WzMyMDcsMV0=" - } - ], - "version": "7.4.0" -} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vmss-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vmss-overview.ndjson new file mode 100644 index 00000000000..27f6f9578df --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vmss-overview.ndjson @@ -0,0 +1,10 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"VMSS Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.dimensions.vmname\",\"id\":\"1570711989416\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"VM Name (dimension)\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"VMSS Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"686bc990-ea92-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VMSS CPU Utilization [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type :\\\"Microsoft.Compute/virtualMachineScaleSets\\\" \"},\"id\":\"7666abc0-eaae-11e9-a083-57ad7f0b1ec1\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7666abc1-eaae-11e9-a083-57ad7f0b1ec1\",\"label\":\"avg(azure.compute_vm_scaleset.percentage_cpu.avg)\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm_scaleset.percentage_cpu.avg\",\"id\":\"7666abc2-eaae-11e9-a083-57ad7f0b1ec1\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VMSS CPU Utilization [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"33500790-eaaf-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VMSS Available Memory [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type :\\\"Microsoft.Compute/virtualMachineScaleSets\\\" \"},\"id\":\"e25fa710-eb3e-11e9-8bf6-ff656bce9010\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"e25fa711-eb3e-11e9-8bf6-ff656bce9010\",\"label\":\"avg(azure.compute_vm_scaleset.memory_available_bytes.avg)\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm_scaleset.memory_available_bytes.avg\",\"id\":\"e25fa712-eb3e-11e9-8bf6-ff656bce9010\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VMSS Available Memory [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"cecd6680-eb41-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VMSS Disk Reads [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type :\\\"Microsoft.Compute/virtualMachineScaleSets\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"VM Disk Read bytes\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm_scaleset.disk_read_bytes.total\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VMSS Disk Reads [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"42cc28d0-ea9a-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VMSS Network In Total [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachineScaleSets\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"Azure VMSS Network In Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm_scaleset.network_in_total.total\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VMSS Network In Total [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"64266ec0-eb42-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VMSS Network Out Total [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachineScaleSets\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"Azure VM Network Out Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm_scaleset.network_out_total.total\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VMSS Network Out Total [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b45fd8e0-eb42-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VMSS Disk Writes [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type :\\\"Microsoft.Compute/virtualMachineScaleSets\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,180,251,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"VM Disk Writes bytes\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm_scaleset.disk_write_bytes.total\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VMSS Disk Writes [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0d03a670-eb43-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VMSS Disk Read Operations [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachineScaleSets\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"VM Disk Read Operations/s\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm_scaleset.disk_read_operations_per_sec.avg\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VMSS Disk Read Operations [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c1a1910-ea9a-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VMSS Disk Write Operations [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachineScaleSets\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"VM Disk Write Operations/s\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm_scaleset.disk_write_operations_per_sec.avg\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VMSS Disk Write Operations [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"cfaedaf0-eb43-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MjgsMV0="} +{"attributes":{"description":"This dashboard visualized relevant metrics for VMs running on Azure cloud.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"d84767cd-3fc9-438c-a969-f15c4d5fc9c5\",\"w\":6,\"x\":0,\"y\":0},\"panelIndex\":\"d84767cd-3fc9-438c-a969-f15c4d5fc9c5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_d84767cd-3fc9-438c-a969-f15c4d5fc9c5\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"127eff01-d34c-4bda-8f19-4cf06982989f\",\"w\":20,\"x\":6,\"y\":0},\"panelIndex\":\"127eff01-d34c-4bda-8f19-4cf06982989f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Percentage CPU\",\"panelRefName\":\"panel_127eff01-d34c-4bda-8f19-4cf06982989f\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"2f85c4f1-a575-49a1-99d3-fbed8a2806ec\",\"w\":22,\"x\":26,\"y\":0},\"panelIndex\":\"2f85c4f1-a575-49a1-99d3-fbed8a2806ec\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Available Memory\",\"panelRefName\":\"panel_2f85c4f1-a575-49a1-99d3-fbed8a2806ec\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"6cbc30b4-658e-4f7a-a888-221775fd0af3\",\"w\":12,\"x\":36,\"y\":12},\"panelIndex\":\"6cbc30b4-658e-4f7a-a888-221775fd0af3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Disk Reads\",\"panelRefName\":\"panel_6cbc30b4-658e-4f7a-a888-221775fd0af3\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"e195e7ba-c736-4bf7-9f23-c96f4acd9b6b\",\"w\":12,\"x\":0,\"y\":12},\"panelIndex\":\"e195e7ba-c736-4bf7-9f23-c96f4acd9b6b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Network In Total\",\"panelRefName\":\"panel_e195e7ba-c736-4bf7-9f23-c96f4acd9b6b\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"64fc0214-97f7-4d52-a9bd-a91449293f1c\",\"w\":12,\"x\":12,\"y\":12},\"panelIndex\":\"64fc0214-97f7-4d52-a9bd-a91449293f1c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Network Out Total\",\"panelRefName\":\"panel_64fc0214-97f7-4d52-a9bd-a91449293f1c\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"12c9c185-81ed-4313-b274-b3384de2d396\",\"w\":12,\"x\":24,\"y\":12},\"panelIndex\":\"12c9c185-81ed-4313-b274-b3384de2d396\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Disk Writes\",\"panelRefName\":\"panel_12c9c185-81ed-4313-b274-b3384de2d396\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"200ae92b-4184-4aed-9868-6ce5e16e7a8d\",\"w\":24,\"x\":0,\"y\":23},\"panelIndex\":\"200ae92b-4184-4aed-9868-6ce5e16e7a8d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Disk Read Operations/s\",\"panelRefName\":\"panel_200ae92b-4184-4aed-9868-6ce5e16e7a8d\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"36c46a84-3e6b-4a7e-9246-357ae9d10d1e\",\"w\":24,\"x\":24,\"y\":23},\"panelIndex\":\"36c46a84-3e6b-4a7e-9246-357ae9d10d1e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Disk Write Operations/s\",\"panelRefName\":\"panel_36c46a84-3e6b-4a7e-9246-357ae9d10d1e\"}]","timeRestore":false,"title":"[Metricbeat Azure] VM Scale Sets Overview ","version":1},"coreMigrationVersion":"8.0.0","id":"91afcc50-eaad-11e9-90ec-112a988266d5","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"686bc990-ea92-11e9-90ec-112a988266d5","name":"d84767cd-3fc9-438c-a969-f15c4d5fc9c5:panel_d84767cd-3fc9-438c-a969-f15c4d5fc9c5","type":"visualization"},{"id":"33500790-eaaf-11e9-90ec-112a988266d5","name":"127eff01-d34c-4bda-8f19-4cf06982989f:panel_127eff01-d34c-4bda-8f19-4cf06982989f","type":"visualization"},{"id":"cecd6680-eb41-11e9-90ec-112a988266d5","name":"2f85c4f1-a575-49a1-99d3-fbed8a2806ec:panel_2f85c4f1-a575-49a1-99d3-fbed8a2806ec","type":"visualization"},{"id":"42cc28d0-ea9a-11e9-90ec-112a988266d5","name":"6cbc30b4-658e-4f7a-a888-221775fd0af3:panel_6cbc30b4-658e-4f7a-a888-221775fd0af3","type":"visualization"},{"id":"64266ec0-eb42-11e9-90ec-112a988266d5","name":"e195e7ba-c736-4bf7-9f23-c96f4acd9b6b:panel_e195e7ba-c736-4bf7-9f23-c96f4acd9b6b","type":"visualization"},{"id":"b45fd8e0-eb42-11e9-90ec-112a988266d5","name":"64fc0214-97f7-4d52-a9bd-a91449293f1c:panel_64fc0214-97f7-4d52-a9bd-a91449293f1c","type":"visualization"},{"id":"0d03a670-eb43-11e9-90ec-112a988266d5","name":"12c9c185-81ed-4313-b274-b3384de2d396:panel_12c9c185-81ed-4313-b274-b3384de2d396","type":"visualization"},{"id":"9c1a1910-ea9a-11e9-90ec-112a988266d5","name":"200ae92b-4184-4aed-9868-6ce5e16e7a8d:panel_200ae92b-4184-4aed-9868-6ce5e16e7a8d","type":"visualization"},{"id":"cfaedaf0-eb43-11e9-90ec-112a988266d5","name":"36c46a84-3e6b-4a7e-9246-357ae9d10d1e:panel_36c46a84-3e6b-4a7e-9246-357ae9d10d1e","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MTksMV0="} diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-overview.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-overview.json deleted file mode 100644 index 4d7fd18d965..00000000000 --- a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-overview.json +++ /dev/null @@ -1,3992 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of Cloud Foundry", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 2, - "i": "614e3c18-7b1d-4510-9308-a7c64077076b", - "w": 48, - "x": 0, - "y": 0 - }, - "panelIndex": "614e3c18-7b1d-4510-9308-a7c64077076b", - "panelRefName": "panel_0", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Components health" - }, - "gridData": { - "h": 1, - "i": "efc5cc53-f0f5-4d09-850f-36baed6cea70", - "w": 15, - "x": 0, - "y": 2 - }, - "panelIndex": "efc5cc53-f0f5-4d09-850f-36baed6cea70", - "panelRefName": "panel_1", - "title": "Components health", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Job queue length" - }, - "gridData": { - "h": 7, - "i": "77151f90-5dd1-4c52-bbc8-eae071029c74", - "w": 14, - "x": 15, - "y": 2 - }, - "panelIndex": "77151f90-5dd1-4c52-bbc8-eae071029c74", - "panelRefName": "panel_2", - "title": "Job queue length", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Top CPU usage" - }, - "gridData": { - "h": 13, - "i": "e3830a7f-00ba-4133-9be0-5bf881956830", - "w": 7, - "x": 29, - "y": 2 - }, - "panelIndex": "e3830a7f-00ba-4133-9be0-5bf881956830", - "panelRefName": "panel_3", - "title": "Top CPU usage", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Top ephemeral disk usage" - }, - "gridData": { - "h": 13, - "i": "f9d0d4bf-f7b3-45f1-9bde-2ed389ecffe0", - "w": 6, - "x": 36, - "y": 2 - }, - "panelIndex": "f9d0d4bf-f7b3-45f1-9bde-2ed389ecffe0", - "panelRefName": "panel_4", - "title": "Top ephemeral disk usage", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Top persistent disk usage" - }, - "gridData": { - "h": 13, - "i": "e00759d3-5853-4e0e-bb74-9c6be0f0cafe", - "w": 6, - "x": 42, - "y": 2 - }, - "panelIndex": "e00759d3-5853-4e0e-bb74-9c6be0f0cafe", - "panelRefName": "panel_5", - "title": "Top persistent disk usage", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "8ba21983-ee6b-464a-b9e6-083b8f9af911", - "w": 3, - "x": 0, - "y": 3 - }, - "panelIndex": "8ba21983-ee6b-464a-b9e6-083b8f9af911", - "panelRefName": "panel_6", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "ffb54b2e-36b9-477e-a722-96d4c4c6f493", - "w": 3, - "x": 3, - "y": 3 - }, - "panelIndex": "ffb54b2e-36b9-477e-a722-96d4c4c6f493", - "panelRefName": "panel_7", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "1695ac40-80fd-4164-8db3-41b31604c757", - "w": 3, - "x": 6, - "y": 3 - }, - "panelIndex": "1695ac40-80fd-4164-8db3-41b31604c757", - "panelRefName": "panel_8", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "8f111936-e953-45c2-859f-7adc28161741", - "w": 3, - "x": 9, - "y": 3 - }, - "panelIndex": "8f111936-e953-45c2-859f-7adc28161741", - "panelRefName": "panel_9", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "040843ca-cc51-4b6e-b15f-6cf8684ee63d", - "w": 3, - "x": 12, - "y": 3 - }, - "panelIndex": "040843ca-cc51-4b6e-b15f-6cf8684ee63d", - "panelRefName": "panel_10", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Outstanding requests" - }, - "gridData": { - "h": 7, - "i": "207fe6aa-ca8e-4931-abae-7c2b0f78cc1d", - "w": 14, - "x": 15, - "y": 9 - }, - "panelIndex": "207fe6aa-ca8e-4931-abae-7c2b0f78cc1d", - "panelRefName": "panel_11", - "title": "Outstanding requests", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "c4e3338c-f3d9-4c7d-bac7-e784f706bb57", - "w": 5, - "x": 0, - "y": 10 - }, - "panelIndex": "c4e3338c-f3d9-4c7d-bac7-e784f706bb57", - "panelRefName": "panel_12", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "30ed1180-cf4b-41b2-a60a-5332de7f6e46", - "w": 5, - "x": 5, - "y": 10 - }, - "panelIndex": "30ed1180-cf4b-41b2-a60a-5332de7f6e46", - "panelRefName": "panel_13", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "d77bfe2e-7057-4cfb-829b-c4011640ae2d", - "w": 5, - "x": 10, - "y": 10 - }, - "panelIndex": "d77bfe2e-7057-4cfb-829b-c4011640ae2d", - "panelRefName": "panel_14", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "b1ba0667-de29-4458-95d6-49217a6875cb", - "w": 5, - "x": 0, - "y": 15 - }, - "panelIndex": "b1ba0667-de29-4458-95d6-49217a6875cb", - "panelRefName": "panel_15", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "ff23d11d-8396-4245-a334-ddafc5cbc198", - "w": 5, - "x": 5, - "y": 15 - }, - "panelIndex": "ff23d11d-8396-4245-a334-ddafc5cbc198", - "panelRefName": "panel_16", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "ee0d79d3-92f8-4360-b724-e9ebfd73b53e", - "w": 5, - "x": 10, - "y": 15 - }, - "panelIndex": "ee0d79d3-92f8-4360-b724-e9ebfd73b53e", - "panelRefName": "panel_17", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "GoRouter latency PAS" - }, - "gridData": { - "h": 8, - "i": "da31ae1e-e713-4d4f-b225-59824b203797", - "w": 19, - "x": 29, - "y": 15 - }, - "panelIndex": "da31ae1e-e713-4d4f-b225-59824b203797", - "panelRefName": "panel_18", - "title": "GoRouter latency PAS", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Diego cell time to sync" - }, - "gridData": { - "h": 7, - "i": "a7138e23-fa21-42b8-8d09-d124c2640293", - "w": 14, - "x": 15, - "y": 16 - }, - "panelIndex": "a7138e23-fa21-42b8-8d09-d124c2640293", - "panelRefName": "panel_19", - "title": "Diego cell time to sync", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 3, - "i": "2b4f53d8-a91c-447d-a8e4-f94589abe07f", - "w": 7, - "x": 0, - "y": 20 - }, - "panelIndex": "2b4f53d8-a91c-447d-a8e4-f94589abe07f", - "panelRefName": "panel_20", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 3, - "i": "fdd1c5d5-bd8f-41db-8d16-9d0b8adcb3a4", - "w": 8, - "x": 7, - "y": 20 - }, - "panelIndex": "fdd1c5d5-bd8f-41db-8d16-9d0b8adcb3a4", - "panelRefName": "panel_21", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Maximum CPU utilization" - }, - "gridData": { - "h": 10, - "i": "e2291bb2-2b6d-452b-8bb0-652ed6b4ea7b", - "w": 7, - "x": 0, - "y": 23 - }, - "panelIndex": "e2291bb2-2b6d-452b-8bb0-652ed6b4ea7b", - "panelRefName": "panel_22", - "title": "Maximum CPU utilization", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Available disk space" - }, - "gridData": { - "h": 10, - "i": "5db37b04-577a-4703-a8ef-07d70299023e", - "w": 8, - "x": 7, - "y": 23 - }, - "panelIndex": "5db37b04-577a-4703-a8ef-07d70299023e", - "panelRefName": "panel_23", - "title": "Available disk space", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Available memory by cell" - }, - "gridData": { - "h": 10, - "i": "dfb10794-82ba-4da3-80b7-5e4aa82dfd5c", - "w": 14, - "x": 15, - "y": 23 - }, - "panelIndex": "dfb10794-82ba-4da3-80b7-5e4aa82dfd5c", - "panelRefName": "panel_24", - "title": "Available memory by cell", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Total routes in GoRouter" - }, - "gridData": { - "h": 10, - "i": "a6c34327-7e71-4bf3-a057-f43de540247c", - "w": 19, - "x": 29, - "y": 23 - }, - "panelIndex": "a6c34327-7e71-4bf3-a057-f43de540247c", - "panelRefName": "panel_25", - "title": "Total routes in GoRouter", - "version": "7.9.0" - } - ], - "refreshInterval": { - "pause": true, - "value": 0 - }, - "timeFrom": "now-15m", - "timeRestore": true, - "timeTo": "now", - "title": "[Metricbeat Cloud Foundry] Overview", - "version": 1 - }, - "id": "9c81cf34-f84e-11ea-a49d-f3f94f5e4fac", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "435133e4-f8d2-11ea-a49e-d36460a01dbe", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "9ca39c36-f84e-11ea-9b0e-af32e8072a87", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "9ca9737c-f84e-11ea-b8a5-9f245d6f7121", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "9c9f12b0-f84e-11ea-bfe0-8f64de3dbbbd", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "9c5e5c7a-f84e-11ea-9c79-3f5f46484ce3", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "9c975020-f84e-11ea-9d35-0ba5b289cee7", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "9caafdaa-f84e-11ea-8c78-43aac4b09aa5", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "9c7b602c-f84e-11ea-8762-e7aef60b5522", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "9cb33038-f84e-11ea-8929-07701f2b1c26", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "9ca526aa-f84e-11ea-aad5-ef2777854f3d", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "9caf798e-f84e-11ea-ac4b-4795663aee6b", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "9cbb8cd8-f84e-11ea-9a20-af708256c3a9", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "9c69684a-f84e-11ea-bf59-4bba486da283", - "name": "panel_12", - "type": "visualization" - }, - { - "id": "9c93270c-f84e-11ea-8b23-c7a1cc31369e", - "name": "panel_13", - "type": "visualization" - }, - { - "id": "9c7328ee-f84e-11ea-9259-772ddb1805fb", - "name": "panel_14", - "type": "visualization" - }, - { - "id": "9c99314c-f84e-11ea-92d5-9bcd6abdce0f", - "name": "panel_15", - "type": "visualization" - }, - { - "id": "9c635824-f84e-11ea-9b02-735b8407166a", - "name": "panel_16", - "type": "visualization" - }, - { - "id": "9caddb24-f84e-11ea-b008-df9bd2aed7cc", - "name": "panel_17", - "type": "visualization" - }, - { - "id": "9c58b248-f84e-11ea-87a9-67d346210280", - "name": "panel_18", - "type": "visualization" - }, - { - "id": "9ca805fa-f84e-11ea-ab90-2b00dd50450c", - "name": "panel_19", - "type": "visualization" - }, - { - "id": "9c89336e-f84e-11ea-bbcd-23e329286ac7", - "name": "panel_20", - "type": "visualization" - }, - { - "id": "9c9d9c14-f84e-11ea-a575-a30e017a09e9", - "name": "panel_21", - "type": "visualization" - }, - { - "id": "9c8ed8fa-f84e-11ea-b20d-bb82d7a8e05d", - "name": "panel_22", - "type": "visualization" - }, - { - "id": "9c948fb6-f84e-11ea-96f5-dff115716ba4", - "name": "panel_23", - "type": "visualization" - }, - { - "id": "9cac69e2-f84e-11ea-b8d4-4b40313a5eb0", - "name": "panel_24", - "type": "visualization" - }, - { - "id": "9c77cf84-f84e-11ea-a3ff-7f7f73eabd57", - "name": "panel_25", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-09-17T10:38:25.337Z", - "version": "WzE5MCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboards Navigation Overview [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "**Overview** | [Platform Health](#/dashboard/94364424-f851-11ea-8206-7b08cd60917a)", - "openLinksInNewTab": false - }, - "title": "Dashboards Navigation [Metricbeat Cloud Foundry]", - "type": "markdown" - } - }, - "id": "435133e4-f8d2-11ea-a49e-d36460a01dbe", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:37:54.081Z", - "version": "WzE4MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Components health title [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "", - "openLinksInNewTab": false - }, - "title": "Components health title [Metricbeat Cloud Foundry]", - "type": "markdown" - } - }, - "id": "9ca39c36-f84e-11ea-9b0e-af32e8072a87", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "Wzk0LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Job Queue [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(244,78,59,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "gt", - "value": 60000 - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"cc\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(188,0,19,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"failed_job_count.total\" " - }, - "formatter": "number", - "hide_in_legend": 1, - "id": "9c9054dc-f84e-11ea-920b-1f1a72488310", - "label": "Avg Failed Job Count", - "line_width": 1, - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c91bfd4-f84e-11ea-a2df-b7ca8c11c9b1", - "type": "avg" - } - ], - "point_size": "4", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "cloudfoundry.envelope.deployment", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name:\"job_queue_length.total\" " - }, - "formatter": "number", - "hide_in_legend": 1, - "id": "9c837802-f84e-11ea-8b5e-ef886d2383c6", - "label": "Avg Job Queue Length", - "line_width": 1, - "metrics": [ - { - "id": "9c84e098-f84e-11ea-b8dc-ff0b80823e94", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "cloudfoundry.value.value", - "terms_order_by": "_count" - } - ], - "show_grid": 1, - "show_legend": 0, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Job queue [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9ca9737c-f84e-11ea-b8a5-9f245d6f7121", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "Wzk1LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Diego cell Top CPU user usage [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(244,78,59,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "gt", - "value": 60000 - } - ], - "bar_color_rules": [ - { - "bar_color": "rgba(104,188,0,1)", - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401", - "operator": "lt", - "value": 65 - }, - { - "bar_color": "rgba(252,220,0,1)", - "id": "9c87c1f0-f84e-11ea-abf6-9bcf7a4dd500", - "operator": "gte", - "value": 65 - }, - { - "bar_color": "rgba(244,78,59,1)", - "id": "9c95f1b2-f84e-11ea-9ca9-53ceca17b640", - "operator": "gt", - "value": 75 - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"bosh-system-metrics-forwarder\"" - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"system.cpu.user\" " - }, - "formatter": "number", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Max CPU utilization (Load)", - "line_width": "2", - "metrics": [ - { - "agg_with": "avg", - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "order": "desc", - "size": 1, - "type": "avg" - } - ], - "offset_time": "", - "point_size": "4", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_field": "cloudfoundry.envelope.job", - "terms_include": "", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "tooltip_mode": "show_all", - "type": "top_n" - }, - "title": "Top CPU user usage [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9c9f12b0-f84e-11ea-bfe0-8f64de3dbbbd", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "Wzk2LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top ephemeral disk usage [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(244,78,59,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "gt", - "value": 60000 - } - ], - "bar_color_rules": [ - { - "bar_color": "rgba(104,188,0,1)", - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401", - "operator": "lt", - "value": 65 - }, - { - "bar_color": "rgba(252,220,0,1)", - "id": "9c87c1f0-f84e-11ea-abf6-9bcf7a4dd500", - "operator": "gte", - "value": 65 - }, - { - "bar_color": "rgba(244,78,59,1)", - "id": "9c95f1b2-f84e-11ea-9ca9-53ceca17b640", - "operator": "gt", - "value": 75 - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"bosh-system-metrics-forwarder\"" - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"system.disk.ephemeral.percent\" " - }, - "formatter": "00.00", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Top Max Ephemeral Disk Usage (%)", - "line_width": "2", - "metrics": [ - { - "agg_with": "avg", - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "order": "desc", - "size": 1, - "type": "max" - } - ], - "offset_time": "", - "point_size": "4", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_field": "cloudfoundry.envelope.job", - "terms_include": "", - "terms_order_by": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "timeseries", - "value_template": "{{value}} %" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "top_n" - }, - "title": "Top ephemeral disk usage [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9c5e5c7a-f84e-11ea-9c79-3f5f46484ce3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "Wzk3LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top persistent disk usage [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(244,78,59,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "gt", - "value": 60000 - } - ], - "bar_color_rules": [ - { - "bar_color": "rgba(104,188,0,1)", - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401", - "operator": "lt", - "value": 65 - }, - { - "bar_color": "rgba(252,220,0,1)", - "id": "9c87c1f0-f84e-11ea-abf6-9bcf7a4dd500", - "operator": "gte", - "value": 65 - }, - { - "bar_color": "rgba(244,78,59,1)", - "id": "9c95f1b2-f84e-11ea-9ca9-53ceca17b640", - "operator": "gt", - "value": 75 - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"bosh-system-metrics-forwarder\"" - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"system.disk.persistent.percent\" " - }, - "formatter": "00.00", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Top Max Ephemeral Disk Usage (%)", - "line_width": "2", - "metrics": [ - { - "agg_with": "avg", - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "order": "desc", - "size": 1, - "type": "max" - } - ], - "offset_time": "", - "point_size": "4", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_field": "cloudfoundry.envelope.job", - "terms_include": "", - "terms_order_by": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "timeseries", - "value_template": "{{value}} %" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "tooltip_mode": "show_all", - "type": "top_n" - }, - "title": "Top persistent disk usage [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9c975020-f84e-11ea-9d35-0ba5b289cee7", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "Wzk4LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Doppler health [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(104,188,0,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "gte", - "value": 1 - }, - { - "id": "9c6cce9a-f84e-11ea-9fea-039104d18522", - "operator": "lt", - "value": 1 - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"bosh-system-metrics-forwarder\" and cloudfoundry.envelope.job :\"doppler\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"system.healthy\"" - }, - "formatter": "percent", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Doppler", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "4", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": null, - "terms_include": "", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "tooltip_mode": "show_all", - "type": "metric" - }, - "title": "Doppler health [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9caafdaa-f84e-11ea-8c78-43aac4b09aa5", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "Wzk5LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Router health [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(104,188,0,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "gte", - "value": 1 - }, - { - "id": "9c6cce9a-f84e-11ea-9fea-039104d18522", - "operator": "lt", - "value": 1 - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"bosh-system-metrics-forwarder\" and cloudfoundry.envelope.job :\"router\"" - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"system.healthy\"" - }, - "formatter": "percent", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Router", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "4", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": null, - "terms_include": "", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Router health [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9c7b602c-f84e-11ea-8762-e7aef60b5522", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "WzEwMCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Backup-Restore health [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(104,188,0,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "gte", - "value": 1 - }, - { - "id": "9c6cce9a-f84e-11ea-9fea-039104d18522", - "operator": "lt", - "value": 1 - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"bosh-system-metrics-forwarder\" and cloudfoundry.envelope.job :\"backup_restore\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"system.healthy\"" - }, - "formatter": "percent", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Backup-Restore", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "4", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": null, - "terms_include": "", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Backup-Restore health [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9cb33038-f84e-11ea-8929-07701f2b1c26", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "WzEwMSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Diego Brain health [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(104,188,0,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "gte", - "value": 1 - }, - { - "id": "9c6cce9a-f84e-11ea-9fea-039104d18522", - "operator": "lt", - "value": 1 - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"bosh-system-metrics-forwarder\" and cloudfoundry.envelope.job :\"diego_brain\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"system.healthy\"" - }, - "formatter": "percent", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Diego Brain", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "4", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": null, - "terms_include": "", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Diego Brain health [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9ca526aa-f84e-11ea-aad5-ef2777854f3d", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "WzEwMiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Diego cell health [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(104,188,0,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "gte", - "value": 1 - }, - { - "background_color": "rgba(252,220,0,1)", - "color": null, - "id": "9c6cce9a-f84e-11ea-9fea-039104d18522", - "operator": "lt", - "value": 1 - }, - { - "background_color": "rgba(244,78,59,1)", - "color": null, - "id": "9cb7224c-f84e-11ea-aedc-27587a803e41", - "operator": "lt", - "value": 0.5 - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"bosh-system-metrics-forwarder\" and cloudfoundry.envelope.job :\"diego_cell\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"system.healthy\"" - }, - "formatter": "percent", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Diego cell", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "4", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": null, - "terms_include": "", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Diego cell health [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9caf798e-f84e-11ea-ac4b-4795663aee6b", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "WzEwMywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Outstanding Requests [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(244,78,59,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "gt", - "value": 60000 - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"cc\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"requests.outstanding\"" - }, - "formatter": "number", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Avg Oustanding Requests", - "line_width": "1", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": null, - "terms_include": "", - "type": "timeseries", - "value_template": "" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Outstanding Requests [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9cbb8cd8-f84e-11ea-9a20-af708256c3a9", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "WzEwNCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Diego cell time to sync [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(104,188,0,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "lt", - "value": 10000000000 - }, - { - "background_color": "rgba(252,220,0,1)", - "id": "9cb134b8-f84e-11ea-9fd8-cb6a1b33696f", - "operator": "gte", - "value": 10000000000 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "9cb588d8-f84e-11ea-af5a-c3012766d944", - "operator": "gt", - "value": 15000000000 - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"rep\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"RepBulkSyncDuration\"" - }, - "formatter": "ns,s,2", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Max Cell Rep Time to Sync", - "line_width": "01", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "max" - } - ], - "offset_time": "", - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "cf.envelope.deployment", - "terms_include": "", - "terms_order_by": "_key", - "type": "timeseries", - "value_template": "{{value}} s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Diego cell time to sync [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9c69684a-f84e-11ea-bf59-4bba486da283", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "WzEwNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Diego cell Missing LRPs [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(104,188,0,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "lt", - "value": 5 - }, - { - "background_color": "rgba(252,220,0,1)", - "id": "9cb134b8-f84e-11ea-9fd8-cb6a1b33696f", - "operator": "gte", - "value": 5 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "9cb588d8-f84e-11ea-af5a-c3012766d944", - "operator": "gt", - "value": 10 - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"bbs\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"LRPsMissing\" " - }, - "formatter": "number", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Max Missing LRPs", - "line_width": "01", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "cf.envelope.deployment", - "terms_include": "", - "terms_order_by": "_key", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Diego cell Missing LRPs [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9c93270c-f84e-11ea-8b23-c7a1cc31369e", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "WzEwNiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Diego cell fetch state times [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(104,188,0,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "lt", - "value": 5000000000 - }, - { - "background_color": "rgba(252,220,0,1)", - "id": "9cb134b8-f84e-11ea-9fd8-cb6a1b33696f", - "operator": "gte", - "value": 5000000000 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "9cb588d8-f84e-11ea-af5a-c3012766d944", - "operator": "gt", - "value": 10000000000 - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"auctioneer\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"AuctioneerFetchStatesDuration\" " - }, - "formatter": "ns,s,", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Max fetch cell state times", - "line_width": "01", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "max" - } - ], - "offset_time": "", - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "cf.envelope.deployment", - "terms_include": "", - "terms_order_by": "_key", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Diego cell fetch state times [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9c7328ee-f84e-11ea-9259-772ddb1805fb", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "WzEwNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Diego cell Apps domain freshness [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(104,188,0,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "gte", - "value": 0.9 - }, - { - "background_color": "rgba(252,220,0,1)", - "id": "9cb134b8-f84e-11ea-9fd8-cb6a1b33696f", - "operator": "lte", - "value": 0.9 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "9cb588d8-f84e-11ea-af5a-c3012766d944", - "operator": "lt", - "value": 0.8 - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"bbs\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"Domain.cf-apps\" " - }, - "formatter": "percent", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Avg 'cf-apps' Domain Freshness", - "line_width": "01", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "cf.envelope.deployment", - "terms_include": "", - "terms_order_by": "_key", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": null, - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Diego-cell Apps domain freshness [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9c99314c-f84e-11ea-92d5-9bcd6abdce0f", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "WzEwOCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Diego cell Router emitter sync duration [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(104,188,0,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "lt", - "value": 10000000000 - }, - { - "background_color": "rgba(252,220,0,1)", - "id": "9cb134b8-f84e-11ea-9fd8-cb6a1b33696f", - "operator": "gte", - "value": 10000000000 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "9cb588d8-f84e-11ea-af5a-c3012766d944", - "operator": "gt", - "value": 20000000000 - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"route_emitter\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"RouteEmitterSyncDuration\" " - }, - "formatter": "ns,s,", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Max Router emitter sync duration", - "line_width": "01", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "max" - } - ], - "offset_time": "", - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "cf.envelope.deployment", - "terms_include": "", - "terms_order_by": "_key", - "type": "timeseries", - "value_template": "{{value}} s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Diego cell Router emitter sync duration [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9c635824-f84e-11ea-9b02-735b8407166a", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "WzEwOSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Diego cell convergence LRP duration [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(104,188,0,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "lt", - "value": 10000000000 - }, - { - "background_color": "rgba(252,220,0,1)", - "id": "9cb134b8-f84e-11ea-9fd8-cb6a1b33696f", - "operator": "gte", - "value": 10000000000 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "9cb588d8-f84e-11ea-af5a-c3012766d944", - "operator": "gt", - "value": 20000000000 - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"bbs\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"ConvergenceLRPDuration\" " - }, - "formatter": "ns,s,", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Max Convergence LRP Duration", - "line_width": "01", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "max" - } - ], - "offset_time": "", - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "cf.envelope.deployment", - "terms_include": "", - "terms_order_by": "_key", - "type": "timeseries", - "value_template": "{{value}} s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Diego cell convergence LRP duration [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9caddb24-f84e-11ea-b008-df9bd2aed7cc", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "WzExMCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "GoRouter latency PAS [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(244,78,59,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "gt", - "value": 60000 - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"gorouter\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(123,100,255,1)", - "fill": "0.2", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"latency\"" - }, - "formatter": "number", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "GoRouter latency", - "line_width": "01", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_field": "cloudfoundry.envelope.deployment", - "terms_include": "", - "terms_order_by": "_key", - "type": "timeseries", - "value_template": "{{value}} ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "GoRouter latency PAS [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9c58b248-f84e-11ea-87a9-67d346210280", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "WzExMSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Diego cell rep time to sync [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(244,78,59,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "gt", - "value": 60000 - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"rep\"" - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"RepBulkSyncDuration\"" - }, - "formatter": "ns,ms,2", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Cell Rep Time to Sync", - "line_width": "01", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_field": "cloudfoundry.envelope.deployment", - "terms_include": "", - "terms_order_by": "_key", - "type": "timeseries", - "value_template": "{{value}} ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Diego cell rep time to sync [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9ca805fa-f84e-11ea-ab90-2b00dd50450c", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "WzExMiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Diego cell total disk [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "9c8666fc-f84e-11ea-a43e-0f7a3a14396c" - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"rep\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"CapacityTotalDisk\" " - }, - "formatter": "0,0", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Total Disk", - "line_width": "01", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "cloudfoundry.envelope.ip", - "terms_include": "", - "terms_order_by": "_key", - "type": "timeseries", - "value_template": "{{value}} MiB" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "tooltip_mode": "show_all", - "type": "metric" - }, - "title": "Diego cell total disk [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9c89336e-f84e-11ea-bbcd-23e329286ac7", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "WzExMywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Diego cell total memory [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "9c8666fc-f84e-11ea-a43e-0f7a3a14396c" - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"rep\"" - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"CapacityTotalMemory\" " - }, - "formatter": "bytes", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Total Memory", - "line_width": "01", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "avg" - }, - { - "id": "9c9ac4da-f84e-11ea-8efa-7393d43821d0", - "script": "params.megabytes * 1024 * 1024", - "type": "math", - "variables": [ - { - "field": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "id": "9c9c36e4-f84e-11ea-bba1-abb4ba65473f", - "name": "megabytes" - } - ] - } - ], - "offset_time": "", - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "cloudfoundry.value.value", - "terms_include": "", - "terms_order_by": "_key", - "type": "timeseries", - "value_template": "" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "tooltip_mode": "show_all", - "type": "metric" - }, - "title": "Diego cell total memory [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9c9d9c14-f84e-11ea-a575-a30e017a09e9", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "WzExNCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Diego cell CPU utilization load [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(244,78,59,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "gt", - "value": 60000 - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"bosh-system-metrics-forwarder\"" - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"system.cpu.user\" " - }, - "formatter": "number", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Max CPU utilization Load", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "max" - } - ], - "offset_time": "", - "point_size": "4", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": null, - "terms_include": "", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Diego cell CPU utilization load [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9c8ed8fa-f84e-11ea-b20d-bb82d7a8e05d", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "WzExNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Diego cell remaining disk [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "9c8666fc-f84e-11ea-a43e-0f7a3a14396c" - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin : \"rep\"" - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"CapacityRemainingDisk\" " - }, - "formatter": "bytes", - "hidden": false, - "hide_in_legend": 1, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Remaining Disk", - "line_width": "01", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "avg" - }, - { - "id": "9c79728a-f84e-11ea-a0b0-cbbc2af24ed3", - "script": "params.megabytes * 1024 * 1024", - "type": "math", - "variables": [ - { - "field": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "id": "9c8030c0-f84e-11ea-acf6-13a6b4ddcd67", - "name": "megabytes" - } - ] - } - ], - "offset_time": "", - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_field": "cloudfoundry.envelope.ip", - "terms_include": "", - "terms_order_by": "_key", - "type": "timeseries", - "value_template": "" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Diego cell remaining disk [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9c948fb6-f84e-11ea-96f5-dff115716ba4", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "WzExNiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Diego cell available memory by cell [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(244,78,59,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "gt", - "value": 60000 - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"rep\"" - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"CapacityRemainingMemory\"" - }, - "formatter": "bytes", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Available memory by cell", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "avg" - }, - { - "id": "9ca088ac-f84e-11ea-86ca-0f96c7565718", - "script": "params.megabytes*1024*1024", - "type": "math", - "variables": [ - { - "field": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "id": "9ca214c4-f84e-11ea-a6d7-0b115dba93eb", - "name": "megabytes" - } - ] - } - ], - "offset_time": "", - "point_size": "4", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_direction": "asc", - "terms_field": "cloudfoundry.envelope.ip", - "terms_include": "", - "terms_order_by": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "timeseries", - "value_template": "" - } - ], - "show_grid": 0, - "show_legend": 0, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Diego cell available memory by cell [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9cac69e2-f84e-11ea-b8d4-4b40313a5eb0", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "WzExNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "GoRouter total routes [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(244,78,59,1)", - "color": null, - "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", - "operator": "gt", - "value": 60000 - } - ], - "bar_color_rules": [ - { - "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"gorouter\"" - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(123,100,255,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"total_routes\"" - }, - "formatter": "number", - "hidden": false, - "hide_in_legend": 0, - "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", - "label": "Total routes (ISO)", - "line_width": "01", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", - "type": "sum" - } - ], - "offset_time": "", - "point_size": "1.5", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", - "label": "" - } - ], - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_field": "cloudfoundry.envelope.index", - "terms_include": "", - "terms_order_by": "_key", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "GoRouter total routes [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9c77cf84-f84e-11ea-a3ff-7f7f73eabd57", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:06.273Z", - "version": "WzExOCwxXQ==" - } - ], - "version": "7.9.0" -} diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-overview.ndjson b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-overview.ndjson new file mode 100644 index 00000000000..df105151b16 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-overview.ndjson @@ -0,0 +1,27 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboards Navigation Overview [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Overview** | [Platform Health](#/dashboard/94364424-f851-11ea-8206-7b08cd60917a)\",\"openLinksInNewTab\":false},\"title\":\"Dashboards Navigation [Metricbeat Cloud Foundry]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"435133e4-f8d2-11ea-a49e-d36460a01dbe","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2MzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Components health title [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"\",\"openLinksInNewTab\":false},\"title\":\"Components health title [Metricbeat Cloud Foundry]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"9ca39c36-f84e-11ea-9b0e-af32e8072a87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2MzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Job Queue [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"cc\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(188,0,19,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"failed_job_count.total\\\" \"},\"formatter\":\"number\",\"hide_in_legend\":1,\"id\":\"9c9054dc-f84e-11ea-920b-1f1a72488310\",\"label\":\"Avg Failed Job Count\",\"line_width\":1,\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c91bfd4-f84e-11ea-a2df-b7ca8c11c9b1\",\"type\":\"avg\"}],\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloudfoundry.envelope.deployment\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name:\\\"job_queue_length.total\\\" \"},\"formatter\":\"number\",\"hide_in_legend\":1,\"id\":\"9c837802-f84e-11ea-8b5e-ef886d2383c6\",\"label\":\"Avg Job Queue Length\",\"line_width\":1,\"metrics\":[{\"id\":\"9c84e098-f84e-11ea-b8dc-ff0b80823e94\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloudfoundry.value.value\",\"terms_order_by\":\"_count\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Job queue [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9ca9737c-f84e-11ea-b8a5-9f245d6f7121","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2MzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell Top CPU user usage [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\",\"operator\":\"lt\",\"value\":65},{\"bar_color\":\"rgba(252,220,0,1)\",\"id\":\"9c87c1f0-f84e-11ea-abf6-9bcf7a4dd500\",\"operator\":\"gte\",\"value\":65},{\"bar_color\":\"rgba(244,78,59,1)\",\"id\":\"9c95f1b2-f84e-11ea-9ca9-53ceca17b640\",\"operator\":\"gt\",\"value\":75}],\"drilldown_url\":\"\",\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"bosh-system-metrics-forwarder\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.cpu.user\\\" \"},\"formatter\":\"number\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Max CPU utilization (Load)\",\"line_width\":\"2\",\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"order\":\"desc\",\"size\":1,\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloudfoundry.envelope.job\",\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top CPU user usage [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c9f12b0-f84e-11ea-bfe0-8f64de3dbbbd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top ephemeral disk usage [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\",\"operator\":\"lt\",\"value\":65},{\"bar_color\":\"rgba(252,220,0,1)\",\"id\":\"9c87c1f0-f84e-11ea-abf6-9bcf7a4dd500\",\"operator\":\"gte\",\"value\":65},{\"bar_color\":\"rgba(244,78,59,1)\",\"id\":\"9c95f1b2-f84e-11ea-9ca9-53ceca17b640\",\"operator\":\"gt\",\"value\":75}],\"drilldown_url\":\"\",\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"bosh-system-metrics-forwarder\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.disk.ephemeral.percent\\\" \"},\"formatter\":\"00.00\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Top Max Ephemeral Disk Usage (%)\",\"line_width\":\"2\",\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"order\":\"desc\",\"size\":1,\"type\":\"max\"}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloudfoundry.envelope.job\",\"terms_include\":\"\",\"terms_order_by\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"timeseries\",\"value_template\":\"{{value}} %\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top ephemeral disk usage [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c5e5c7a-f84e-11ea-9c79-3f5f46484ce3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top persistent disk usage [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\",\"operator\":\"lt\",\"value\":65},{\"bar_color\":\"rgba(252,220,0,1)\",\"id\":\"9c87c1f0-f84e-11ea-abf6-9bcf7a4dd500\",\"operator\":\"gte\",\"value\":65},{\"bar_color\":\"rgba(244,78,59,1)\",\"id\":\"9c95f1b2-f84e-11ea-9ca9-53ceca17b640\",\"operator\":\"gt\",\"value\":75}],\"drilldown_url\":\"\",\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"bosh-system-metrics-forwarder\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.disk.persistent.percent\\\" \"},\"formatter\":\"00.00\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Top Max Ephemeral Disk Usage (%)\",\"line_width\":\"2\",\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"order\":\"desc\",\"size\":1,\"type\":\"max\"}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloudfoundry.envelope.job\",\"terms_include\":\"\",\"terms_order_by\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"timeseries\",\"value_template\":\"{{value}} %\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top persistent disk usage [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c975020-f84e-11ea-9d35-0ba5b289cee7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Doppler health [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gte\",\"value\":1},{\"id\":\"9c6cce9a-f84e-11ea-9fea-039104d18522\",\"operator\":\"lt\",\"value\":1}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"bosh-system-metrics-forwarder\\\" and cloudfoundry.envelope.job :\\\"doppler\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.healthy\\\"\"},\"formatter\":\"percent\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Doppler\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":null,\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Doppler health [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9caafdaa-f84e-11ea-8c78-43aac4b09aa5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Router health [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gte\",\"value\":1},{\"id\":\"9c6cce9a-f84e-11ea-9fea-039104d18522\",\"operator\":\"lt\",\"value\":1}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"bosh-system-metrics-forwarder\\\" and cloudfoundry.envelope.job :\\\"router\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.healthy\\\"\"},\"formatter\":\"percent\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Router\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":null,\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Router health [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c7b602c-f84e-11ea-8762-e7aef60b5522","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Backup-Restore health [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gte\",\"value\":1},{\"id\":\"9c6cce9a-f84e-11ea-9fea-039104d18522\",\"operator\":\"lt\",\"value\":1}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"bosh-system-metrics-forwarder\\\" and cloudfoundry.envelope.job :\\\"backup_restore\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.healthy\\\"\"},\"formatter\":\"percent\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Backup-Restore\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":null,\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Backup-Restore health [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9cb33038-f84e-11ea-8929-07701f2b1c26","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego Brain health [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gte\",\"value\":1},{\"id\":\"9c6cce9a-f84e-11ea-9fea-039104d18522\",\"operator\":\"lt\",\"value\":1}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"bosh-system-metrics-forwarder\\\" and cloudfoundry.envelope.job :\\\"diego_brain\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.healthy\\\"\"},\"formatter\":\"percent\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Diego Brain\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":null,\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego Brain health [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9ca526aa-f84e-11ea-aad5-ef2777854f3d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell health [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":null,\"id\":\"9c6cce9a-f84e-11ea-9fea-039104d18522\",\"operator\":\"lt\",\"value\":1},{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9cb7224c-f84e-11ea-aedc-27587a803e41\",\"operator\":\"lt\",\"value\":0.5}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"bosh-system-metrics-forwarder\\\" and cloudfoundry.envelope.job :\\\"diego_cell\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.healthy\\\"\"},\"formatter\":\"percent\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Diego cell\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":null,\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego cell health [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9caf798e-f84e-11ea-ac4b-4795663aee6b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Outstanding Requests [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"cc\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"requests.outstanding\\\"\"},\"formatter\":\"number\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Avg Oustanding Requests\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":null,\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Outstanding Requests [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9cbb8cd8-f84e-11ea-9a20-af708256c3a9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell time to sync [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"lt\",\"value\":10000000000},{\"background_color\":\"rgba(252,220,0,1)\",\"id\":\"9cb134b8-f84e-11ea-9fd8-cb6a1b33696f\",\"operator\":\"gte\",\"value\":10000000000},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"9cb588d8-f84e-11ea-af5a-c3012766d944\",\"operator\":\"gt\",\"value\":15000000000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"rep\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"RepBulkSyncDuration\\\"\"},\"formatter\":\"ns,s,2\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Max Cell Rep Time to Sync\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"max\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cf.envelope.deployment\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}} s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego cell time to sync [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c69684a-f84e-11ea-bf59-4bba486da283","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell Missing LRPs [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"lt\",\"value\":5},{\"background_color\":\"rgba(252,220,0,1)\",\"id\":\"9cb134b8-f84e-11ea-9fd8-cb6a1b33696f\",\"operator\":\"gte\",\"value\":5},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"9cb588d8-f84e-11ea-af5a-c3012766d944\",\"operator\":\"gt\",\"value\":10}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"bbs\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"LRPsMissing\\\" \"},\"formatter\":\"number\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Max Missing LRPs\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cf.envelope.deployment\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego cell Missing LRPs [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c93270c-f84e-11ea-8b23-c7a1cc31369e","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell fetch state times [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"lt\",\"value\":5000000000},{\"background_color\":\"rgba(252,220,0,1)\",\"id\":\"9cb134b8-f84e-11ea-9fd8-cb6a1b33696f\",\"operator\":\"gte\",\"value\":5000000000},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"9cb588d8-f84e-11ea-af5a-c3012766d944\",\"operator\":\"gt\",\"value\":10000000000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"auctioneer\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"AuctioneerFetchStatesDuration\\\" \"},\"formatter\":\"ns,s,\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Max fetch cell state times\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"max\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cf.envelope.deployment\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego cell fetch state times [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c7328ee-f84e-11ea-9259-772ddb1805fb","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell Apps domain freshness [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gte\",\"value\":0.9},{\"background_color\":\"rgba(252,220,0,1)\",\"id\":\"9cb134b8-f84e-11ea-9fd8-cb6a1b33696f\",\"operator\":\"lte\",\"value\":0.9},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"9cb588d8-f84e-11ea-af5a-c3012766d944\",\"operator\":\"lt\",\"value\":0.8}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"bbs\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Domain.cf-apps\\\" \"},\"formatter\":\"percent\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Avg 'cf-apps' Domain Freshness\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cf.envelope.deployment\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":null,\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego-cell Apps domain freshness [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c99314c-f84e-11ea-92d5-9bcd6abdce0f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell Router emitter sync duration [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"lt\",\"value\":10000000000},{\"background_color\":\"rgba(252,220,0,1)\",\"id\":\"9cb134b8-f84e-11ea-9fd8-cb6a1b33696f\",\"operator\":\"gte\",\"value\":10000000000},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"9cb588d8-f84e-11ea-af5a-c3012766d944\",\"operator\":\"gt\",\"value\":20000000000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"route_emitter\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"RouteEmitterSyncDuration\\\" \"},\"formatter\":\"ns,s,\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Max Router emitter sync duration\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"max\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cf.envelope.deployment\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}} s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego cell Router emitter sync duration [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c635824-f84e-11ea-9b02-735b8407166a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell convergence LRP duration [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"lt\",\"value\":10000000000},{\"background_color\":\"rgba(252,220,0,1)\",\"id\":\"9cb134b8-f84e-11ea-9fd8-cb6a1b33696f\",\"operator\":\"gte\",\"value\":10000000000},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"9cb588d8-f84e-11ea-af5a-c3012766d944\",\"operator\":\"gt\",\"value\":20000000000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"bbs\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"ConvergenceLRPDuration\\\" \"},\"formatter\":\"ns,s,\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Max Convergence LRP Duration\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"max\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cf.envelope.deployment\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}} s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego cell convergence LRP duration [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9caddb24-f84e-11ea-b008-df9bd2aed7cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"GoRouter latency PAS [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"gorouter\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(123,100,255,1)\",\"fill\":\"0.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"latency\\\"\"},\"formatter\":\"number\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"GoRouter latency\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloudfoundry.envelope.deployment\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"GoRouter latency PAS [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c58b248-f84e-11ea-87a9-67d346210280","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell rep time to sync [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"rep\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"RepBulkSyncDuration\\\"\"},\"formatter\":\"ns,ms,2\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Cell Rep Time to Sync\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloudfoundry.envelope.deployment\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Diego cell rep time to sync [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9ca805fa-f84e-11ea-ab90-2b00dd50450c","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell total disk [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"9c8666fc-f84e-11ea-a43e-0f7a3a14396c\"}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"rep\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"CapacityTotalDisk\\\" \"},\"formatter\":\"0,0\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Total Disk\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloudfoundry.envelope.ip\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}} MiB\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego cell total disk [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c89336e-f84e-11ea-bbcd-23e329286ac7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell total memory [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"9c8666fc-f84e-11ea-a43e-0f7a3a14396c\"}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"rep\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"CapacityTotalMemory\\\" \"},\"formatter\":\"bytes\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Total Memory\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"},{\"id\":\"9c9ac4da-f84e-11ea-8efa-7393d43821d0\",\"script\":\"params.megabytes * 1024 * 1024\",\"type\":\"math\",\"variables\":[{\"field\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"id\":\"9c9c36e4-f84e-11ea-bba1-abb4ba65473f\",\"name\":\"megabytes\"}]}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloudfoundry.value.value\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego cell total memory [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c9d9c14-f84e-11ea-a575-a30e017a09e9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell CPU utilization load [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"bosh-system-metrics-forwarder\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.cpu.user\\\" \"},\"formatter\":\"number\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Max CPU utilization Load\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"max\"}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":null,\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Diego cell CPU utilization load [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c8ed8fa-f84e-11ea-b20d-bb82d7a8e05d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell remaining disk [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"9c8666fc-f84e-11ea-a43e-0f7a3a14396c\"}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin : \\\"rep\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"CapacityRemainingDisk\\\" \"},\"formatter\":\"bytes\",\"hidden\":false,\"hide_in_legend\":1,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Remaining Disk\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"},{\"id\":\"9c79728a-f84e-11ea-a0b0-cbbc2af24ed3\",\"script\":\"params.megabytes * 1024 * 1024\",\"type\":\"math\",\"variables\":[{\"field\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"id\":\"9c8030c0-f84e-11ea-acf6-13a6b4ddcd67\",\"name\":\"megabytes\"}]}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloudfoundry.envelope.ip\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Diego cell remaining disk [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c948fb6-f84e-11ea-96f5-dff115716ba4","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell available memory by cell [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"rep\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"CapacityRemainingMemory\\\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Available memory by cell\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"},{\"id\":\"9ca088ac-f84e-11ea-86ca-0f96c7565718\",\"script\":\"params.megabytes*1024*1024\",\"type\":\"math\",\"variables\":[{\"field\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"id\":\"9ca214c4-f84e-11ea-a6d7-0b115dba93eb\",\"name\":\"megabytes\"}]}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_direction\":\"asc\",\"terms_field\":\"cloudfoundry.envelope.ip\",\"terms_include\":\"\",\"terms_order_by\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"timeseries\",\"value_template\":\"\"}],\"show_grid\":0,\"show_legend\":0,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Diego cell available memory by cell [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9cac69e2-f84e-11ea-b8d4-4b40313a5eb0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"GoRouter total routes [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"gorouter\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(123,100,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"total_routes\\\"\"},\"formatter\":\"number\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Total routes (ISO)\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"sum\"}],\"offset_time\":\"\",\"point_size\":\"1.5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloudfoundry.envelope.index\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"GoRouter total routes [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c77cf84-f84e-11ea-a3ff-7f7f73eabd57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NjIsMV0="} +{"attributes":{"description":"Overview of Cloud Foundry","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":2,\"i\":\"614e3c18-7b1d-4510-9308-a7c64077076b\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"614e3c18-7b1d-4510-9308-a7c64077076b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_614e3c18-7b1d-4510-9308-a7c64077076b\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":1,\"i\":\"efc5cc53-f0f5-4d09-850f-36baed6cea70\",\"w\":15,\"x\":0,\"y\":2},\"panelIndex\":\"efc5cc53-f0f5-4d09-850f-36baed6cea70\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Components health\",\"panelRefName\":\"panel_efc5cc53-f0f5-4d09-850f-36baed6cea70\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"77151f90-5dd1-4c52-bbc8-eae071029c74\",\"w\":14,\"x\":15,\"y\":2},\"panelIndex\":\"77151f90-5dd1-4c52-bbc8-eae071029c74\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Job queue length\",\"panelRefName\":\"panel_77151f90-5dd1-4c52-bbc8-eae071029c74\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"e3830a7f-00ba-4133-9be0-5bf881956830\",\"w\":7,\"x\":29,\"y\":2},\"panelIndex\":\"e3830a7f-00ba-4133-9be0-5bf881956830\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top CPU usage\",\"panelRefName\":\"panel_e3830a7f-00ba-4133-9be0-5bf881956830\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"f9d0d4bf-f7b3-45f1-9bde-2ed389ecffe0\",\"w\":6,\"x\":36,\"y\":2},\"panelIndex\":\"f9d0d4bf-f7b3-45f1-9bde-2ed389ecffe0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top ephemeral disk usage\",\"panelRefName\":\"panel_f9d0d4bf-f7b3-45f1-9bde-2ed389ecffe0\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"e00759d3-5853-4e0e-bb74-9c6be0f0cafe\",\"w\":6,\"x\":42,\"y\":2},\"panelIndex\":\"e00759d3-5853-4e0e-bb74-9c6be0f0cafe\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top persistent disk usage\",\"panelRefName\":\"panel_e00759d3-5853-4e0e-bb74-9c6be0f0cafe\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"8ba21983-ee6b-464a-b9e6-083b8f9af911\",\"w\":3,\"x\":0,\"y\":3},\"panelIndex\":\"8ba21983-ee6b-464a-b9e6-083b8f9af911\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_8ba21983-ee6b-464a-b9e6-083b8f9af911\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"ffb54b2e-36b9-477e-a722-96d4c4c6f493\",\"w\":3,\"x\":3,\"y\":3},\"panelIndex\":\"ffb54b2e-36b9-477e-a722-96d4c4c6f493\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ffb54b2e-36b9-477e-a722-96d4c4c6f493\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"1695ac40-80fd-4164-8db3-41b31604c757\",\"w\":3,\"x\":6,\"y\":3},\"panelIndex\":\"1695ac40-80fd-4164-8db3-41b31604c757\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_1695ac40-80fd-4164-8db3-41b31604c757\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"8f111936-e953-45c2-859f-7adc28161741\",\"w\":3,\"x\":9,\"y\":3},\"panelIndex\":\"8f111936-e953-45c2-859f-7adc28161741\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_8f111936-e953-45c2-859f-7adc28161741\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"040843ca-cc51-4b6e-b15f-6cf8684ee63d\",\"w\":3,\"x\":12,\"y\":3},\"panelIndex\":\"040843ca-cc51-4b6e-b15f-6cf8684ee63d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_040843ca-cc51-4b6e-b15f-6cf8684ee63d\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"207fe6aa-ca8e-4931-abae-7c2b0f78cc1d\",\"w\":14,\"x\":15,\"y\":9},\"panelIndex\":\"207fe6aa-ca8e-4931-abae-7c2b0f78cc1d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Outstanding requests\",\"panelRefName\":\"panel_207fe6aa-ca8e-4931-abae-7c2b0f78cc1d\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"c4e3338c-f3d9-4c7d-bac7-e784f706bb57\",\"w\":5,\"x\":0,\"y\":10},\"panelIndex\":\"c4e3338c-f3d9-4c7d-bac7-e784f706bb57\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_c4e3338c-f3d9-4c7d-bac7-e784f706bb57\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"30ed1180-cf4b-41b2-a60a-5332de7f6e46\",\"w\":5,\"x\":5,\"y\":10},\"panelIndex\":\"30ed1180-cf4b-41b2-a60a-5332de7f6e46\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_30ed1180-cf4b-41b2-a60a-5332de7f6e46\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"d77bfe2e-7057-4cfb-829b-c4011640ae2d\",\"w\":5,\"x\":10,\"y\":10},\"panelIndex\":\"d77bfe2e-7057-4cfb-829b-c4011640ae2d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_d77bfe2e-7057-4cfb-829b-c4011640ae2d\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"b1ba0667-de29-4458-95d6-49217a6875cb\",\"w\":5,\"x\":0,\"y\":15},\"panelIndex\":\"b1ba0667-de29-4458-95d6-49217a6875cb\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_b1ba0667-de29-4458-95d6-49217a6875cb\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"ff23d11d-8396-4245-a334-ddafc5cbc198\",\"w\":5,\"x\":5,\"y\":15},\"panelIndex\":\"ff23d11d-8396-4245-a334-ddafc5cbc198\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ff23d11d-8396-4245-a334-ddafc5cbc198\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"ee0d79d3-92f8-4360-b724-e9ebfd73b53e\",\"w\":5,\"x\":10,\"y\":15},\"panelIndex\":\"ee0d79d3-92f8-4360-b724-e9ebfd73b53e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ee0d79d3-92f8-4360-b724-e9ebfd73b53e\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"da31ae1e-e713-4d4f-b225-59824b203797\",\"w\":19,\"x\":29,\"y\":15},\"panelIndex\":\"da31ae1e-e713-4d4f-b225-59824b203797\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"GoRouter latency PAS\",\"panelRefName\":\"panel_da31ae1e-e713-4d4f-b225-59824b203797\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"a7138e23-fa21-42b8-8d09-d124c2640293\",\"w\":14,\"x\":15,\"y\":16},\"panelIndex\":\"a7138e23-fa21-42b8-8d09-d124c2640293\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Diego cell time to sync\",\"panelRefName\":\"panel_a7138e23-fa21-42b8-8d09-d124c2640293\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":3,\"i\":\"2b4f53d8-a91c-447d-a8e4-f94589abe07f\",\"w\":7,\"x\":0,\"y\":20},\"panelIndex\":\"2b4f53d8-a91c-447d-a8e4-f94589abe07f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_2b4f53d8-a91c-447d-a8e4-f94589abe07f\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":3,\"i\":\"fdd1c5d5-bd8f-41db-8d16-9d0b8adcb3a4\",\"w\":8,\"x\":7,\"y\":20},\"panelIndex\":\"fdd1c5d5-bd8f-41db-8d16-9d0b8adcb3a4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_fdd1c5d5-bd8f-41db-8d16-9d0b8adcb3a4\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"e2291bb2-2b6d-452b-8bb0-652ed6b4ea7b\",\"w\":7,\"x\":0,\"y\":23},\"panelIndex\":\"e2291bb2-2b6d-452b-8bb0-652ed6b4ea7b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Maximum CPU utilization\",\"panelRefName\":\"panel_e2291bb2-2b6d-452b-8bb0-652ed6b4ea7b\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"5db37b04-577a-4703-a8ef-07d70299023e\",\"w\":8,\"x\":7,\"y\":23},\"panelIndex\":\"5db37b04-577a-4703-a8ef-07d70299023e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Available disk space\",\"panelRefName\":\"panel_5db37b04-577a-4703-a8ef-07d70299023e\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"dfb10794-82ba-4da3-80b7-5e4aa82dfd5c\",\"w\":14,\"x\":15,\"y\":23},\"panelIndex\":\"dfb10794-82ba-4da3-80b7-5e4aa82dfd5c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Available memory by cell\",\"panelRefName\":\"panel_dfb10794-82ba-4da3-80b7-5e4aa82dfd5c\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"a6c34327-7e71-4bf3-a057-f43de540247c\",\"w\":19,\"x\":29,\"y\":23},\"panelIndex\":\"a6c34327-7e71-4bf3-a057-f43de540247c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total routes in GoRouter\",\"panelRefName\":\"panel_a6c34327-7e71-4bf3-a057-f43de540247c\"}]","refreshInterval":{"pause":true,"value":0},"timeFrom":"now-15m","timeRestore":true,"timeTo":"now","title":"[Metricbeat Cloud Foundry] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"9c81cf34-f84e-11ea-a49d-f3f94f5e4fac","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"435133e4-f8d2-11ea-a49e-d36460a01dbe","name":"614e3c18-7b1d-4510-9308-a7c64077076b:panel_614e3c18-7b1d-4510-9308-a7c64077076b","type":"visualization"},{"id":"9ca39c36-f84e-11ea-9b0e-af32e8072a87","name":"efc5cc53-f0f5-4d09-850f-36baed6cea70:panel_efc5cc53-f0f5-4d09-850f-36baed6cea70","type":"visualization"},{"id":"9ca9737c-f84e-11ea-b8a5-9f245d6f7121","name":"77151f90-5dd1-4c52-bbc8-eae071029c74:panel_77151f90-5dd1-4c52-bbc8-eae071029c74","type":"visualization"},{"id":"9c9f12b0-f84e-11ea-bfe0-8f64de3dbbbd","name":"e3830a7f-00ba-4133-9be0-5bf881956830:panel_e3830a7f-00ba-4133-9be0-5bf881956830","type":"visualization"},{"id":"9c5e5c7a-f84e-11ea-9c79-3f5f46484ce3","name":"f9d0d4bf-f7b3-45f1-9bde-2ed389ecffe0:panel_f9d0d4bf-f7b3-45f1-9bde-2ed389ecffe0","type":"visualization"},{"id":"9c975020-f84e-11ea-9d35-0ba5b289cee7","name":"e00759d3-5853-4e0e-bb74-9c6be0f0cafe:panel_e00759d3-5853-4e0e-bb74-9c6be0f0cafe","type":"visualization"},{"id":"9caafdaa-f84e-11ea-8c78-43aac4b09aa5","name":"8ba21983-ee6b-464a-b9e6-083b8f9af911:panel_8ba21983-ee6b-464a-b9e6-083b8f9af911","type":"visualization"},{"id":"9c7b602c-f84e-11ea-8762-e7aef60b5522","name":"ffb54b2e-36b9-477e-a722-96d4c4c6f493:panel_ffb54b2e-36b9-477e-a722-96d4c4c6f493","type":"visualization"},{"id":"9cb33038-f84e-11ea-8929-07701f2b1c26","name":"1695ac40-80fd-4164-8db3-41b31604c757:panel_1695ac40-80fd-4164-8db3-41b31604c757","type":"visualization"},{"id":"9ca526aa-f84e-11ea-aad5-ef2777854f3d","name":"8f111936-e953-45c2-859f-7adc28161741:panel_8f111936-e953-45c2-859f-7adc28161741","type":"visualization"},{"id":"9caf798e-f84e-11ea-ac4b-4795663aee6b","name":"040843ca-cc51-4b6e-b15f-6cf8684ee63d:panel_040843ca-cc51-4b6e-b15f-6cf8684ee63d","type":"visualization"},{"id":"9cbb8cd8-f84e-11ea-9a20-af708256c3a9","name":"207fe6aa-ca8e-4931-abae-7c2b0f78cc1d:panel_207fe6aa-ca8e-4931-abae-7c2b0f78cc1d","type":"visualization"},{"id":"9c69684a-f84e-11ea-bf59-4bba486da283","name":"c4e3338c-f3d9-4c7d-bac7-e784f706bb57:panel_c4e3338c-f3d9-4c7d-bac7-e784f706bb57","type":"visualization"},{"id":"9c93270c-f84e-11ea-8b23-c7a1cc31369e","name":"30ed1180-cf4b-41b2-a60a-5332de7f6e46:panel_30ed1180-cf4b-41b2-a60a-5332de7f6e46","type":"visualization"},{"id":"9c7328ee-f84e-11ea-9259-772ddb1805fb","name":"d77bfe2e-7057-4cfb-829b-c4011640ae2d:panel_d77bfe2e-7057-4cfb-829b-c4011640ae2d","type":"visualization"},{"id":"9c99314c-f84e-11ea-92d5-9bcd6abdce0f","name":"b1ba0667-de29-4458-95d6-49217a6875cb:panel_b1ba0667-de29-4458-95d6-49217a6875cb","type":"visualization"},{"id":"9c635824-f84e-11ea-9b02-735b8407166a","name":"ff23d11d-8396-4245-a334-ddafc5cbc198:panel_ff23d11d-8396-4245-a334-ddafc5cbc198","type":"visualization"},{"id":"9caddb24-f84e-11ea-b008-df9bd2aed7cc","name":"ee0d79d3-92f8-4360-b724-e9ebfd73b53e:panel_ee0d79d3-92f8-4360-b724-e9ebfd73b53e","type":"visualization"},{"id":"9c58b248-f84e-11ea-87a9-67d346210280","name":"da31ae1e-e713-4d4f-b225-59824b203797:panel_da31ae1e-e713-4d4f-b225-59824b203797","type":"visualization"},{"id":"9ca805fa-f84e-11ea-ab90-2b00dd50450c","name":"a7138e23-fa21-42b8-8d09-d124c2640293:panel_a7138e23-fa21-42b8-8d09-d124c2640293","type":"visualization"},{"id":"9c89336e-f84e-11ea-bbcd-23e329286ac7","name":"2b4f53d8-a91c-447d-a8e4-f94589abe07f:panel_2b4f53d8-a91c-447d-a8e4-f94589abe07f","type":"visualization"},{"id":"9c9d9c14-f84e-11ea-a575-a30e017a09e9","name":"fdd1c5d5-bd8f-41db-8d16-9d0b8adcb3a4:panel_fdd1c5d5-bd8f-41db-8d16-9d0b8adcb3a4","type":"visualization"},{"id":"9c8ed8fa-f84e-11ea-b20d-bb82d7a8e05d","name":"e2291bb2-2b6d-452b-8bb0-652ed6b4ea7b:panel_e2291bb2-2b6d-452b-8bb0-652ed6b4ea7b","type":"visualization"},{"id":"9c948fb6-f84e-11ea-96f5-dff115716ba4","name":"5db37b04-577a-4703-a8ef-07d70299023e:panel_5db37b04-577a-4703-a8ef-07d70299023e","type":"visualization"},{"id":"9cac69e2-f84e-11ea-b8d4-4b40313a5eb0","name":"dfb10794-82ba-4da3-80b7-5e4aa82dfd5c:panel_dfb10794-82ba-4da3-80b7-5e4aa82dfd5c","type":"visualization"},{"id":"9c77cf84-f84e-11ea-a3ff-7f7f73eabd57","name":"a6c34327-7e71-4bf3-a057-f43de540247c:panel_a6c34327-7e71-4bf3-a057-f43de540247c","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2MzYsMV0="} diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-platform-health.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-platform-health.json deleted file mode 100644 index e95d7a62450..00000000000 --- a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-platform-health.json +++ /dev/null @@ -1,4385 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Cloud Foundry platform health", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 8, - "i": "1", - "w": 4, - "x": 15, - "y": 2 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "8", - "w": 5, - "x": 38, - "y": 36 - }, - "panelIndex": "8", - "panelRefName": "panel_1", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "9", - "w": 5, - "x": 33, - "y": 36 - }, - "panelIndex": "9", - "panelRefName": "panel_2", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "11", - "w": 5, - "x": 43, - "y": 36 - }, - "panelIndex": "11", - "panelRefName": "panel_3", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 8, - "i": "13", - "w": 15, - "x": 0, - "y": 2 - }, - "panelIndex": "13", - "panelRefName": "panel_4", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "14", - "w": 7, - "x": 26, - "y": 10 - }, - "panelIndex": "14", - "panelRefName": "panel_5", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "15", - "w": 7, - "x": 19, - "y": 23 - }, - "panelIndex": "15", - "panelRefName": "panel_6", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "16", - "w": 5, - "x": 0, - "y": 27 - }, - "panelIndex": "16", - "panelRefName": "panel_7", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "17", - "w": 5, - "x": 10, - "y": 27 - }, - "panelIndex": "17", - "panelRefName": "panel_8", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "18", - "w": 5, - "x": 5, - "y": 27 - }, - "panelIndex": "18", - "panelRefName": "panel_9", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Applications availability" - }, - "gridData": { - "h": 10, - "i": "19", - "w": 19, - "x": 0, - "y": 17 - }, - "panelIndex": "19", - "panelRefName": "panel_10", - "title": "Applications availability", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 8, - "i": "26", - "w": 14, - "x": 19, - "y": 2 - }, - "panelIndex": "26", - "panelRefName": "panel_11", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Director health check" - }, - "gridData": { - "h": 9, - "i": "28", - "w": 14, - "x": 19, - "y": 36 - }, - "panelIndex": "28", - "panelRefName": "panel_12", - "title": "Director health check", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Test results" - }, - "gridData": { - "h": 12, - "i": "29", - "w": 19, - "x": 0, - "y": 33 - }, - "panelIndex": "29", - "panelRefName": "panel_13", - "title": "Test results", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Top CPU user deployment" - }, - "gridData": { - "h": 16, - "i": "30", - "w": 15, - "x": 33, - "y": 2 - }, - "panelIndex": "30", - "panelRefName": "panel_14", - "title": "Top CPU user deployment", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Top persistent disk deployment" - }, - "gridData": { - "h": 18, - "i": "31", - "w": 15, - "x": 33, - "y": 18 - }, - "panelIndex": "31", - "panelRefName": "panel_15", - "title": "Top persistent disk deployment", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "36", - "w": 7, - "x": 19, - "y": 10 - }, - "panelIndex": "36", - "panelRefName": "panel_16", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "37", - "w": 7, - "x": 26, - "y": 23 - }, - "panelIndex": "37", - "panelRefName": "panel_17", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "38", - "w": 4, - "x": 24, - "y": 17 - }, - "panelIndex": "38", - "panelRefName": "panel_18", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "39", - "w": 4, - "x": 24, - "y": 30 - }, - "panelIndex": "39", - "panelRefName": "panel_19", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "41", - "w": 5, - "x": 19, - "y": 30 - }, - "panelIndex": "41", - "panelRefName": "panel_20", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "42", - "w": 5, - "x": 28, - "y": 30 - }, - "panelIndex": "42", - "panelRefName": "panel_21", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "43", - "w": 5, - "x": 28, - "y": 17 - }, - "panelIndex": "43", - "panelRefName": "panel_22", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "44", - "w": 5, - "x": 19, - "y": 17 - }, - "panelIndex": "44", - "panelRefName": "panel_23", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "46", - "w": 5, - "x": 0, - "y": 10 - }, - "panelIndex": "46", - "panelRefName": "panel_24", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "47", - "w": 5, - "x": 10, - "y": 10 - }, - "panelIndex": "47", - "panelRefName": "panel_25", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "48", - "w": 5, - "x": 5, - "y": 10 - }, - "panelIndex": "48", - "panelRefName": "panel_26", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 2, - "i": "f770c0d9-bc9a-4250-ad73-35a8cae0bcda", - "w": 48, - "x": 0, - "y": 0 - }, - "panelIndex": "f770c0d9-bc9a-4250-ad73-35a8cae0bcda", - "panelRefName": "panel_27", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "8a83ab84-5aa6-4e68-97cc-fd8be2b65eb5", - "w": 4, - "x": 15, - "y": 10 - }, - "panelIndex": "8a83ab84-5aa6-4e68-97cc-fd8be2b65eb5", - "panelRefName": "panel_28", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "fbd35912-3c3a-4ab9-878c-b68b598df8f0", - "w": 4, - "x": 15, - "y": 27 - }, - "panelIndex": "fbd35912-3c3a-4ab9-878c-b68b598df8f0", - "panelRefName": "panel_29", - "version": "7.9.0" - } - ], - "refreshInterval": { - "pause": true, - "value": 0 - }, - "timeFrom": "now-1h", - "timeRestore": true, - "timeTo": "now", - "title": "[Metricbeat Cloud Foundry] Platform Health", - "version": 1 - }, - "id": "94364424-f851-11ea-8206-7b08cd60917a", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "93acc294-f851-11ea-a97a-53f837470423", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "93f27abe-f851-11ea-90c1-670adf08e026", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "93d1bce8-f851-11ea-9e6c-e3a6ffa65309", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "93f86eec-f851-11ea-9ae8-ff70f6c28f02", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "93f59bb8-f851-11ea-ab86-6757c64f8446", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "93d3c40c-f851-11ea-ab6c-2b7686d129ce", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "93edb394-f851-11ea-af40-bbda53487783", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "9398519c-f851-11ea-9d16-0345f5e91a95", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "93c2c184-f851-11ea-93fb-fb88ecfdafdb", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "94200db2-f851-11ea-a8fa-9bfadc17852f", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "93d9d39c-f851-11ea-b957-3f002cacae67", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "939a9380-f851-11ea-9a72-a3f185bef2c4", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "943dcad2-f851-11ea-8923-93b64d3cea46", - "name": "panel_12", - "type": "visualization" - }, - { - "id": "93c03f18-f851-11ea-8da1-eb649369fefa", - "name": "panel_13", - "type": "visualization" - }, - { - "id": "9430406a-f851-11ea-a96e-efef958606c3", - "name": "panel_14", - "type": "visualization" - }, - { - "id": "93fd890e-f851-11ea-96db-8342eb689011", - "name": "panel_15", - "type": "visualization" - }, - { - "id": "93dcb238-f851-11ea-8c49-fb9deba7fc48", - "name": "panel_16", - "type": "visualization" - }, - { - "id": "93e0d7d2-f851-11ea-a8ea-ab5761cc3b1c", - "name": "panel_17", - "type": "visualization" - }, - { - "id": "94402c0a-f851-11ea-b3d4-f3815d5ef910", - "name": "panel_18", - "type": "visualization" - }, - { - "id": "937d5f4a-f851-11ea-9321-07e4098558b1", - "name": "panel_19", - "type": "visualization" - }, - { - "id": "93deea94-f851-11ea-8186-777cfa34f466", - "name": "panel_20", - "type": "visualization" - }, - { - "id": "938e9490-f851-11ea-9fc4-93d53dd1c7c1", - "name": "panel_21", - "type": "visualization" - }, - { - "id": "943b6bf2-f851-11ea-99e0-b300881da4b1", - "name": "panel_22", - "type": "visualization" - }, - { - "id": "9417ef10-f851-11ea-bc5c-cbb3bfb4dc2a", - "name": "panel_23", - "type": "visualization" - }, - { - "id": "9398519c-f851-11ea-9d16-0345f5e91a95", - "name": "panel_24", - "type": "visualization" - }, - { - "id": "93a42468-f851-11ea-8393-7791ef366bdd", - "name": "panel_25", - "type": "visualization" - }, - { - "id": "9379c90c-f851-11ea-8313-f3c659aaac21", - "name": "panel_26", - "type": "visualization" - }, - { - "id": "f771b65c-f8d0-11ea-bf74-8bbda818957f", - "name": "panel_27", - "type": "visualization" - }, - { - "id": "9410e9ea-f851-11ea-b70d-9bda9c286e02", - "name": "panel_28", - "type": "visualization" - }, - { - "id": "93911f12-f851-11ea-9a0a-bb5ff28cf81a", - "name": "panel_29", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-09-17T10:34:14.592Z", - "version": "WzE1MCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Average push time [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(244,78,59,1)", - "color": null, - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 60000 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset : \"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"health.check.cliCommand.pushTime\"" - }, - "formatter": "ms,s,2", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "Avg Push Time", - "line_width": 1, - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "offset_time": "", - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "terms_field": "name.keyword", - "terms_include": "", - "value_template": "{{value}} s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric" - }, - "title": "Average push time [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "93acc294-f851-11ea-a97a-53f837470423", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEyMCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VM ephemeral disk used [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(244,78,59,1)", - "color": "rgba(255,255,255,1)", - "id": "93d69f74-f851-11ea-b007-0bb1f816b4f3", - "operator": "gt", - "value": 70 - }, - { - "background_color": "rgba(252,220,0,1)", - "color": "rgba(255,255,255,1)", - "id": "93a1a36e-f851-11ea-840a-4ff3b85fd2ce", - "operator": "gt", - "value": 50 - }, - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "93ce25ba-f851-11ea-a28d-3339e0be69a9", - "operator": "lte", - "value": 50 - } - ], - "bar_color_rules": [ - { - "id": "93a6b4d0-f851-11ea-9ff5-af33dba0a2b7" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93941cda-f851-11ea-8449-bf49cca008e8", - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "1", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name:\"system.disk.ephemeral.percent\"" - }, - "formatter": "00.00", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "Ephemeral Disk Used", - "line_width": 1, - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9377407e-f851-11ea-a918-ab9d33748fd4" - } - ], - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}} %" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "VM ephemeral disk used [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "93f27abe-f851-11ea-90c1-670adf08e026", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEyMSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VM disk used [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(244,78,59,1)", - "color": "rgba(255,255,255,1)", - "id": "93d69f74-f851-11ea-b007-0bb1f816b4f3", - "operator": "gt", - "value": 70 - }, - { - "background_color": "rgba(252,220,0,1)", - "color": "rgba(255,255,255,1)", - "id": "93a1a36e-f851-11ea-840a-4ff3b85fd2ce", - "operator": "gt", - "value": 50 - }, - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "93ce25ba-f851-11ea-a28d-3339e0be69a9", - "operator": "lte", - "value": 50 - } - ], - "bar_color_rules": [ - { - "id": "93a6b4d0-f851-11ea-9ff5-af33dba0a2b7" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93941cda-f851-11ea-8449-bf49cca008e8", - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "1", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name:\"system.disk.system.percent\"" - }, - "formatter": "00.00", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "VM Disk Used", - "line_width": 1, - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9377407e-f851-11ea-a918-ab9d33748fd4" - } - ], - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}} %" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "VM disk used [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "93d1bce8-f851-11ea-9e6c-e3a6ffa65309", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEyMiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "VM persistent disk used [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(244,78,59,1)", - "color": "rgba(255,255,255,1)", - "id": "93d69f74-f851-11ea-b007-0bb1f816b4f3", - "operator": "gt", - "value": 70 - }, - { - "background_color": "rgba(252,220,0,1)", - "color": "rgba(255,255,255,1)", - "id": "93a1a36e-f851-11ea-840a-4ff3b85fd2ce", - "operator": "gt", - "value": 50 - }, - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "93ce25ba-f851-11ea-a28d-3339e0be69a9", - "operator": "lte", - "value": 50 - } - ], - "bar_color_rules": [ - { - "id": "93a6b4d0-f851-11ea-9ff5-af33dba0a2b7" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93941cda-f851-11ea-8449-bf49cca008e8", - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "1", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name:\"system.disk.persistent.percent\"" - }, - "formatter": "00.00", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "Persistent Disk Used", - "line_width": 1, - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "9377407e-f851-11ea-a918-ab9d33748fd4" - } - ], - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value}} %" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "VM persistent disk used [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "93f86eec-f851-11ea-9ae8-ff70f6c28f02", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEyMywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Average push time line [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(244,78,59,1)", - "color": null, - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 60000 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset : \"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"health.check.cliCommand.pushTime\" " - }, - "formatter": "ms,s,2", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "Avg Push Time", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "type": "timeseries", - "value_template": "{{value}} s" - }, - { - "axis_max": "1", - "axis_min": "-1", - "axis_position": "left", - "chart_type": "line", - "color": "rgba(101,50,148,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"health.check.cliCommand.push\"" - }, - "formatter": "number", - "id": "93e9e1c4-f851-11ea-a721-73ca515dcf70", - "label": "Push Success", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93ebe050-f851-11ea-ba43-0f6c8946c755", - "type": "avg" - } - ], - "point_size": "2", - "separate_axis": 1, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Average push time line [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "93f59bb8-f851-11ea-ab86-6757c64f8446", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEyNCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Total disk 6GB free chunks [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 100 - }, - { - "background_color": "rgba(252,220,0,1)", - "color": "rgba(255,255,255,1)", - "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", - "operator": "lte", - "value": 100 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "93cfeee0-f851-11ea-b302-1f22d9deae5a", - "operator": "lte", - "value": 50 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset : \"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"Diego.AvailableFreeChunksDisk\"" - }, - "formatter": "'0,0'", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "Available 6GB Free Disk Chunks", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "1", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Total disk 6GB disk chunks [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "93d3c40c-f851-11ea-ab6c-2b7686d129ce", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEyNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ISO memory 4GB free chunks [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 20 - }, - { - "background_color": "rgba(252,220,0,1)", - "color": "rgba(255,255,255,1)", - "id": "93e80d0e-f851-11ea-ae0c-6f6e897b08b1", - "operator": "lte", - "value": 20 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "9374752e-f851-11ea-ad9f-cfee9493e6eb", - "operator": "lte", - "value": 15 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"Diego.AvailableFreeChunks\" and cloudfoundry.envelope.deployment: p-isolation-segment*" - }, - "formatter": "'0,0'", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "ISO 4GB Free Memory Chunks", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "min" - } - ], - "offset_time": "", - "point_size": "1", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "last_value", - "type": "metric" - }, - "title": "ISO memory 4GB free chunks [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "93edb394-f851-11ea-af40-bbda53487783", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEyNiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Pushes past hour [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 0.95 - }, - { - "background_color": "rgba(244,78,59,1)", - "color": "rgba(255,255,255,1)", - "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", - "operator": "lte", - "value": 0.95 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"health.check.CanaryApp.available\" " - }, - "formatter": "percent", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "Past Hour", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "offset_time": "1h", - "point_size": "1", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Pushes past hour [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9398519c-f851-11ea-9d16-0345f5e91a95", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEyNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Applications availability past month [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 0.95 - }, - { - "background_color": "rgba(244,78,59,1)", - "color": "rgba(255,255,255,1)", - "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", - "operator": "lte", - "value": 0.95 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"health.check.CanaryApp.available\"" - }, - "formatter": "percent", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "Past Month", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "offset_time": "1M", - "point_size": "1", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Applications availability past month [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "93c2c184-f851-11ea-93fb-fb88ecfdafdb", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEyOCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Applications availability past day [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 0.95 - }, - { - "background_color": "rgba(244,78,59,1)", - "color": "rgba(255,255,255,1)", - "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", - "operator": "lte", - "value": 0.95 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"health.check.CanaryApp.available\"" - }, - "formatter": "percent", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "Past Day", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "offset_time": "1d", - "point_size": "1", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Applications availability past day [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "94200db2-f851-11ea-a8fa-9bfadc17852f", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEyOSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Applications availability line [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_max": "1", - "axis_min": "", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 0.95 - }, - { - "background_color": "rgba(244,78,59,1)", - "color": "rgba(255,255,255,1)", - "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", - "operator": "lte", - "value": 0.95 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"health.check.CanaryApp.available\"" - }, - "formatter": "percent", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "App Availability", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 0, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Applications availability line [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "93d9d39c-f851-11ea-b957-3f002cacae67", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEzMCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "System CPU load [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(244,78,59,1)", - "color": null, - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 60000 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"system.cpu.sys\" " - }, - "formatter": "number", - "hidden": false, - "hide_in_legend": 0, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "System CPU Load", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "type": "timeseries", - "value_template": "" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "System CPU load [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "939a9380-f851-11ea-9a72-a3f185bef2c4", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEzMSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Director health check [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_max": "1", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 0.95 - }, - { - "background_color": "rgba(244,78,59,1)", - "color": "rgba(255,255,255,1)", - "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", - "operator": "lte", - "value": 0.95 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(30,125,77,0.84)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"health.check.bosh.director.probe.available\" " - }, - "formatter": "percent", - "hidden": false, - "hide_in_legend": 0, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "Director Probe Availability", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 0, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Director health check [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "943dcad2-f851-11ea-8923-93b64d3cea46", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEzMiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Test results [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_max": "1", - "axis_min": "", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 0.95 - }, - { - "background_color": "rgba(244,78,59,1)", - "color": "rgba(255,255,255,1)", - "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", - "operator": "lte", - "value": 0.95 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_max": "1", - "axis_min": "-1", - "axis_position": "left", - "chart_type": "line", - "color": "rgba(30,125,77,0.84)", - "fill": "", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"health.check.cliCommand.delete\"" - }, - "formatter": "number", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "Can Delete", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "type": "timeseries", - "value_template": "" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(226,115,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name:\"health.check.cliCommand.login\" " - }, - "formatter": "number", - "id": "942618ec-f851-11ea-b48a-5b9430e2ce44", - "label": "Can Login", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "942c9cc6-f851-11ea-bf29-8bf7fdb78fbd", - "type": "avg" - } - ], - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name:\"health.check.cliCommand.push\" " - }, - "formatter": "number", - "id": "937fd70c-f851-11ea-a061-4fce22c4bd01", - "label": "Can Push", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "9381bac2-f851-11ea-8141-4fa88748817f", - "type": "avg" - } - ], - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(176,0,188,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name:\"health.check.cliCommand.logs\" " - }, - "formatter": "number", - "id": "938694d4-f851-11ea-9158-3fa2819fcf4a", - "label": "Receiving Logs", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93893126-f851-11ea-a544-3bbd4ce64fdd", - "type": "avg" - } - ], - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "" - } - ], - "show_grid": 0, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Test results [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "93c03f18-f851-11ea-8da1-eb649369fefa", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEzMywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top CPU user deployment [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "93965a18-f851-11ea-a8db-cf27e7c12197" - } - ], - "bar_color_rules": [ - { - "bar_color": "rgba(244,78,59,1)", - "id": "93bd39a8-f851-11ea-9b4f-0bee117f7e32", - "operator": "gte", - "value": 70 - }, - { - "bar_color": "rgba(252,220,0,1)", - "id": "93cc3e94-f851-11ea-8e33-6f86d8899090", - "operator": "lt", - "value": 70 - }, - { - "bar_color": "rgba(105,192,111,1)", - "id": "93e2a558-f851-11ea-a583-8ba487ea9a5e", - "operator": "lt", - "value": 50 - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "id": "93e46942-f851-11ea-b627-9f9d893aa443" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name:\"system.cpu.user\" " - }, - "formatter": "number", - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "Top CPU Users by Deployment", - "line_width": 1, - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "cloudfoundry.envelope.deployment", - "terms_order_by": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "top_n" - }, - "title": "Top CPU user deployment [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9430406a-f851-11ea-a96e-efef958606c3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEzNCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Top persistent disk deployment [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "93965a18-f851-11ea-a8db-cf27e7c12197" - } - ], - "bar_color_rules": [ - { - "bar_color": "rgba(244,78,59,1)", - "id": "93bd39a8-f851-11ea-9b4f-0bee117f7e32", - "operator": "gte", - "value": 70 - }, - { - "bar_color": "rgba(252,220,0,1)", - "id": "93cc3e94-f851-11ea-8e33-6f86d8899090", - "operator": "lt", - "value": 70 - }, - { - "bar_color": "rgba(105,192,111,1)", - "id": "93e2a558-f851-11ea-a583-8ba487ea9a5e", - "operator": "lt", - "value": 50 - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " - }, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name:\"system.disk.persistent.percent\"" - }, - "formatter": "number", - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "Top CPU Users by Deployment", - "line_width": 1, - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "cloudfoundry.envelope.deployment", - "terms_order_by": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "value_template": "" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "top_n" - }, - "title": "Top persistent disk deployment [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "93fd890e-f851-11ea-96db-8342eb689011", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEzNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Memory 4GB free chunks [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 20 - }, - { - "background_color": "rgba(252,220,0,1)", - "color": "rgba(255,255,255,1)", - "id": "93e80d0e-f851-11ea-ae0c-6f6e897b08b1", - "operator": "lte", - "value": 20 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "93aa1f08-f851-11ea-8561-cf622005b51f", - "operator": "lte", - "value": 10 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset : \"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"Diego.AvailableFreeChunks\" and cloudfoundry.envelope.deployment: cf*" - }, - "formatter": "'0,0'", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "CF 4GB Free Memory Chunks", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "1", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "metric" - }, - "title": "Memory 4GB free chunks [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "93dcb238-f851-11ea-8c49-fb9deba7fc48", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEzNiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ISO disk 6GB free chunks [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 100 - }, - { - "background_color": "rgba(252,220,0,1)", - "color": "rgba(255,255,255,1)", - "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", - "operator": "lte", - "value": 100 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "938c1710-f851-11ea-aacc-e3f9d23bdead", - "operator": "lte", - "value": 50 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\"" - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"Diego.AvailableFreeChunksDisk\" and cloudfoundry.envelope.deployment: p-isolation-segment*" - }, - "formatter": "'0,0'", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "ISO 6GB Free Disk Chunks", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "min" - } - ], - "offset_time": "", - "point_size": "1", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "last_value", - "type": "metric" - }, - "title": "ISO disk 6GB free chunks [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "93e0d7d2-f851-11ea-a8ea-ab5761cc3b1c", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEzNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Disk capacity [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 0.4 - }, - { - "background_color": "rgba(252,220,0,1)", - "color": "rgba(255,255,255,1)", - "id": "93e80d0e-f851-11ea-ae0c-6f6e897b08b1", - "operator": "lte", - "value": 0.4 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "93c50fb6-f851-11ea-9589-1bd31d6a8c71", - "operator": "lte", - "value": 0.35 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"Diego.TotalPercentageAvailableDiskCapacity.5M\" AND cloudfoundry.envelope.deployment: cf*" - }, - "formatter": "'0.0%'", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "CF Disk Capacity", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "1", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Disk capacity [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "94402c0a-f851-11ea-b3d4-f3815d5ef910", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEzOCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ISO disk capacity [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 0.4 - }, - { - "background_color": "rgba(252,220,0,1)", - "color": "rgba(255,255,255,1)", - "id": "93e80d0e-f851-11ea-ae0c-6f6e897b08b1", - "operator": "lte", - "value": 0.4 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "93c50fb6-f851-11ea-9589-1bd31d6a8c71", - "operator": "lte", - "value": 0.35 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"Diego.TotalPercentageAvailableDiskCapacity.5M\" and cloudfoundry.envelope.deployment: p-isolation-segment*" - }, - "formatter": "'0.0%'", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "ISO Disk Capacity", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "1", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "ISO disk capacity [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "937d5f4a-f851-11ea-9321-07e4098558b1", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzEzOSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ISO memory capacity [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 0.4 - }, - { - "background_color": "rgba(252,220,0,1)", - "color": "rgba(255,255,255,1)", - "id": "93e80d0e-f851-11ea-ae0c-6f6e897b08b1", - "operator": "lte", - "value": 0.4 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "93c50fb6-f851-11ea-9589-1bd31d6a8c71", - "operator": "lte", - "value": 0.35 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"Diego.TotalPercentageAvailableMemoryCapacity.5M\" and cloudfoundry.envelope.deployment: p-isolation-segment*" - }, - "formatter": "'0.0%'", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "ISO Memory Capacity", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "1", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "ISO memory capacity [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "93deea94-f851-11ea-8186-777cfa34f466", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzE0MCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "ISO container capacity [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 0.4 - }, - { - "background_color": "rgba(252,220,0,1)", - "color": "rgba(255,255,255,1)", - "id": "93e80d0e-f851-11ea-ae0c-6f6e897b08b1", - "operator": "lte", - "value": 0.4 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "93c50fb6-f851-11ea-9589-1bd31d6a8c71", - "operator": "lte", - "value": 0.35 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"Diego.TotalPercentageAvailableContainerCapacity.5M\" and cloudfoundry.envelope.deployment: p-isolation-segment*" - }, - "formatter": "'0.0%'", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "ISO Container Capacity", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "1", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "ISO container capacity [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "938e9490-f851-11ea-9fc4-93d53dd1c7c1", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzE0MSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Container capacity [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 0.4 - }, - { - "background_color": "rgba(252,220,0,1)", - "color": "rgba(255,255,255,1)", - "id": "93e80d0e-f851-11ea-ae0c-6f6e897b08b1", - "operator": "lte", - "value": 0.4 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "93c50fb6-f851-11ea-9589-1bd31d6a8c71", - "operator": "lte", - "value": 0.35 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\"" - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"Diego.TotalPercentageAvailableContainerCapacity.5M\" AND cloudfoundry.envelope.deployment: cf*" - }, - "formatter": "'0.0%'", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "CF Container Capacity", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "1", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Container capacity [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "943b6bf2-f851-11ea-99e0-b300881da4b1", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzE0MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Memory capacity [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 0.4 - }, - { - "background_color": "rgba(252,220,0,1)", - "color": "rgba(255,255,255,1)", - "id": "93e80d0e-f851-11ea-ae0c-6f6e897b08b1", - "operator": "lte", - "value": 0.4 - }, - { - "background_color": "rgba(244,78,59,1)", - "id": "93c50fb6-f851-11ea-9589-1bd31d6a8c71", - "operator": "lte", - "value": 0.35 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.envelope.deployment:cf* and cloudfoundry.value.name: \"Diego.TotalPercentageAvailableMemoryCapacity.5M\" " - }, - "formatter": "'0.0%'", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "CF Memory Capacity", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "offset_time": "", - "point_size": "1", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Memory capacity [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9417ef10-f851-11ea-bc5c-cbb3bfb4dc2a", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzE0MywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Pushes past month [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 0.95 - }, - { - "background_color": "rgba(244,78,59,1)", - "color": "rgba(255,255,255,1)", - "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", - "operator": "lte", - "value": 0.95 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset : \"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"health.check.cliCommand.push\" " - }, - "formatter": "percent", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "Past Month", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "offset_time": "1M", - "point_size": "1", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Pushes past month [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "93a42468-f851-11ea-8393-7791ef366bdd", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzE0NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Pushes past day [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "background_color": "rgba(105,192,111,1)", - "color": "rgba(255,255,255,1)", - "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", - "operator": "gt", - "value": 0.95 - }, - { - "background_color": "rgba(244,78,59,1)", - "color": "rgba(255,255,255,1)", - "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", - "operator": "lte", - "value": 0.95 - } - ], - "bar_color_rules": [ - { - "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" - } - ], - "default_index_pattern": "filebeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "event.module: \"cloudfoundry\" and event.dataset : \"cloudfoundry.value\" " - }, - "gauge_color_rules": [ - { - "gauge": null, - "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", - "text": null, - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "300000", - "gauge_style": "half", - "gauge_width": 10, - "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", - "ignore_global_filter": 0, - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "cloudfoundry.value.name: \"health.check.cliCommand.push\" " - }, - "formatter": "percent", - "hidden": false, - "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", - "label": "Past Day", - "line_width": "2", - "metrics": [ - { - "field": "cloudfoundry.value.value", - "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", - "type": "avg" - } - ], - "offset_time": "1d", - "point_size": "1", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "93842b7c-f851-11ea-8281-37e3b8318172", - "label": "" - } - ], - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "name.keyword", - "terms_include": "", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Pushes past day [Metricbeat Cloud Foundry]", - "type": "metrics" - } - }, - "id": "9379c90c-f851-11ea-8313-f3c659aaac21", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzE0NSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboards Navigation Platform Health [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Overview](#/dashboard/9c81cf34-f84e-11ea-a49d-f3f94f5e4fac) | **Platform Health**", - "openLinksInNewTab": false - }, - "title": "Dashboards Navigation [Metricbeat Cloud Foundry]", - "type": "markdown" - } - }, - "id": "f771b65c-f8d0-11ea-bf74-8bbda818957f", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:37:54.081Z", - "version": "WzE4MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Pushes md-2 [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 15, - "markdown": "**CF Push**\n**(99.0%)**", - "openLinksInNewTab": false - }, - "title": "Pushes md-2 [Metricbeat Cloud Foundry]", - "type": "markdown" - } - }, - "id": "9410e9ea-f851-11ea-b70d-9bda9c286e02", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzE0NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Pushes application availability md-2 [Metricbeat Cloud Foundry]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 15, - "markdown": "**App Avail**\n**(99.9%)**", - "openLinksInNewTab": false - }, - "title": "Pushes application availability md-2 [Metricbeat Cloud Foundry]", - "type": "markdown" - } - }, - "id": "93911f12-f851-11ea-9a0a-bb5ff28cf81a", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-17T10:33:07.259Z", - "version": "WzE0NywxXQ==" - } - ], - "version": "7.9.0" -} diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-platform-health.ndjson b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-platform-health.ndjson new file mode 100644 index 00000000000..0f03e45614a --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-platform-health.ndjson @@ -0,0 +1,30 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average push time [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset : \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.cliCommand.pushTime\\\"\"},\"formatter\":\"ms,s,2\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Avg Push Time\",\"line_width\":1,\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}} s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Average push time [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93acc294-f851-11ea-a97a-53f837470423","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM ephemeral disk used [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93d69f74-f851-11ea-b007-0bb1f816b4f3\",\"operator\":\"gt\",\"value\":70},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93a1a36e-f851-11ea-840a-4ff3b85fd2ce\",\"operator\":\"gt\",\"value\":50},{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93ce25ba-f851-11ea-a28d-3339e0be69a9\",\"operator\":\"lte\",\"value\":50}],\"bar_color_rules\":[{\"id\":\"93a6b4d0-f851-11ea-9ff5-af33dba0a2b7\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93941cda-f851-11ea-8449-bf49cca008e8\",\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name:\\\"system.disk.ephemeral.percent\\\"\"},\"formatter\":\"00.00\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Ephemeral Disk Used\",\"line_width\":1,\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9377407e-f851-11ea-a918-ab9d33748fd4\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} %\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"VM ephemeral disk used [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93f27abe-f851-11ea-90c1-670adf08e026","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM disk used [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93d69f74-f851-11ea-b007-0bb1f816b4f3\",\"operator\":\"gt\",\"value\":70},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93a1a36e-f851-11ea-840a-4ff3b85fd2ce\",\"operator\":\"gt\",\"value\":50},{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93ce25ba-f851-11ea-a28d-3339e0be69a9\",\"operator\":\"lte\",\"value\":50}],\"bar_color_rules\":[{\"id\":\"93a6b4d0-f851-11ea-9ff5-af33dba0a2b7\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93941cda-f851-11ea-8449-bf49cca008e8\",\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name:\\\"system.disk.system.percent\\\"\"},\"formatter\":\"00.00\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"VM Disk Used\",\"line_width\":1,\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9377407e-f851-11ea-a918-ab9d33748fd4\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} %\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"VM disk used [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93d1bce8-f851-11ea-9e6c-e3a6ffa65309","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM persistent disk used [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93d69f74-f851-11ea-b007-0bb1f816b4f3\",\"operator\":\"gt\",\"value\":70},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93a1a36e-f851-11ea-840a-4ff3b85fd2ce\",\"operator\":\"gt\",\"value\":50},{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93ce25ba-f851-11ea-a28d-3339e0be69a9\",\"operator\":\"lte\",\"value\":50}],\"bar_color_rules\":[{\"id\":\"93a6b4d0-f851-11ea-9ff5-af33dba0a2b7\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93941cda-f851-11ea-8449-bf49cca008e8\",\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name:\\\"system.disk.persistent.percent\\\"\"},\"formatter\":\"00.00\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Persistent Disk Used\",\"line_width\":1,\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9377407e-f851-11ea-a918-ab9d33748fd4\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} %\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"VM persistent disk used [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93f86eec-f851-11ea-9ae8-ff70f6c28f02","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average push time line [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset : \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.cliCommand.pushTime\\\" \"},\"formatter\":\"ms,s,2\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Avg Push Time\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}} s\"},{\"axis_max\":\"1\",\"axis_min\":\"-1\",\"axis_position\":\"left\",\"chart_type\":\"line\",\"color\":\"rgba(101,50,148,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.cliCommand.push\\\"\"},\"formatter\":\"number\",\"id\":\"93e9e1c4-f851-11ea-a721-73ca515dcf70\",\"label\":\"Push Success\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93ebe050-f851-11ea-ba43-0f6c8946c755\",\"type\":\"avg\"}],\"point_size\":\"2\",\"separate_axis\":1,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Average push time line [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93f59bb8-f851-11ea-ab86-6757c64f8446","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total disk 6GB free chunks [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":100},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":100},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"93cfeee0-f851-11ea-b302-1f22d9deae5a\",\"operator\":\"lte\",\"value\":50}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset : \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Diego.AvailableFreeChunksDisk\\\"\"},\"formatter\":\"'0,0'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Available 6GB Free Disk Chunks\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Total disk 6GB disk chunks [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93d3c40c-f851-11ea-ab6c-2b7686d129ce","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NjksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ISO memory 4GB free chunks [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":20},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93e80d0e-f851-11ea-ae0c-6f6e897b08b1\",\"operator\":\"lte\",\"value\":20},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"9374752e-f851-11ea-ad9f-cfee9493e6eb\",\"operator\":\"lte\",\"value\":15}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Diego.AvailableFreeChunks\\\" and cloudfoundry.envelope.deployment: p-isolation-segment*\"},\"formatter\":\"'0,0'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"ISO 4GB Free Memory Chunks\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"min\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"last_value\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"ISO memory 4GB free chunks [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93edb394-f851-11ea-af40-bbda53487783","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pushes past hour [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.95},{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":0.95}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.CanaryApp.available\\\" \"},\"formatter\":\"percent\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Past Hour\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"1h\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Pushes past hour [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9398519c-f851-11ea-9d16-0345f5e91a95","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Applications availability past month [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.95},{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":0.95}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.CanaryApp.available\\\"\"},\"formatter\":\"percent\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Past Month\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"1M\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Applications availability past month [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93c2c184-f851-11ea-93fb-fb88ecfdafdb","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Applications availability past day [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.95},{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":0.95}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.CanaryApp.available\\\"\"},\"formatter\":\"percent\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Past Day\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"1d\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Applications availability past day [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"94200db2-f851-11ea-a8fa-9bfadc17852f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Applications availability line [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_max\":\"1\",\"axis_min\":\"\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.95},{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":0.95}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.CanaryApp.available\\\"\"},\"formatter\":\"percent\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"App Availability\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":0,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Applications availability line [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93d9d39c-f851-11ea-b957-3f002cacae67","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"System CPU load [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.cpu.sys\\\" \"},\"formatter\":\"number\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"System CPU Load\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"System CPU load [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"939a9380-f851-11ea-9a72-a3f185bef2c4","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Director health check [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_max\":\"1\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.95},{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":0.95}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(30,125,77,0.84)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.bosh.director.probe.available\\\" \"},\"formatter\":\"percent\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Director Probe Availability\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":0,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Director health check [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"943dcad2-f851-11ea-8923-93b64d3cea46","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Test results [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_max\":\"1\",\"axis_min\":\"\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.95},{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":0.95}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_max\":\"1\",\"axis_min\":\"-1\",\"axis_position\":\"left\",\"chart_type\":\"line\",\"color\":\"rgba(30,125,77,0.84)\",\"fill\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.cliCommand.delete\\\"\"},\"formatter\":\"number\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Can Delete\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name:\\\"health.check.cliCommand.login\\\" \"},\"formatter\":\"number\",\"id\":\"942618ec-f851-11ea-b48a-5b9430e2ce44\",\"label\":\"Can Login\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"942c9cc6-f851-11ea-bf29-8bf7fdb78fbd\",\"type\":\"avg\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name:\\\"health.check.cliCommand.push\\\" \"},\"formatter\":\"number\",\"id\":\"937fd70c-f851-11ea-a061-4fce22c4bd01\",\"label\":\"Can Push\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9381bac2-f851-11ea-8141-4fa88748817f\",\"type\":\"avg\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,0,188,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name:\\\"health.check.cliCommand.logs\\\" \"},\"formatter\":\"number\",\"id\":\"938694d4-f851-11ea-9158-3fa2819fcf4a\",\"label\":\"Receiving Logs\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93893126-f851-11ea-a544-3bbd4ce64fdd\",\"type\":\"avg\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"\"}],\"show_grid\":0,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Test results [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93c03f18-f851-11ea-8da1-eb649369fefa","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top CPU user deployment [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"93965a18-f851-11ea-a8db-cf27e7c12197\"}],\"bar_color_rules\":[{\"bar_color\":\"rgba(244,78,59,1)\",\"id\":\"93bd39a8-f851-11ea-9b4f-0bee117f7e32\",\"operator\":\"gte\",\"value\":70},{\"bar_color\":\"rgba(252,220,0,1)\",\"id\":\"93cc3e94-f851-11ea-8e33-6f86d8899090\",\"operator\":\"lt\",\"value\":70},{\"bar_color\":\"rgba(105,192,111,1)\",\"id\":\"93e2a558-f851-11ea-a583-8ba487ea9a5e\",\"operator\":\"lt\",\"value\":50}],\"drilldown_url\":\"\",\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"id\":\"93e46942-f851-11ea-b627-9f9d893aa443\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name:\\\"system.cpu.user\\\" \"},\"formatter\":\"number\",\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Top CPU Users by Deployment\",\"line_width\":1,\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloudfoundry.envelope.deployment\",\"terms_order_by\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top CPU user deployment [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9430406a-f851-11ea-a96e-efef958606c3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top persistent disk deployment [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"93965a18-f851-11ea-a8db-cf27e7c12197\"}],\"bar_color_rules\":[{\"bar_color\":\"rgba(244,78,59,1)\",\"id\":\"93bd39a8-f851-11ea-9b4f-0bee117f7e32\",\"operator\":\"gte\",\"value\":70},{\"bar_color\":\"rgba(252,220,0,1)\",\"id\":\"93cc3e94-f851-11ea-8e33-6f86d8899090\",\"operator\":\"lt\",\"value\":70},{\"bar_color\":\"rgba(105,192,111,1)\",\"id\":\"93e2a558-f851-11ea-a583-8ba487ea9a5e\",\"operator\":\"lt\",\"value\":50}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name:\\\"system.disk.persistent.percent\\\"\"},\"formatter\":\"number\",\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Top CPU Users by Deployment\",\"line_width\":1,\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloudfoundry.envelope.deployment\",\"terms_order_by\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"value_template\":\"\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top persistent disk deployment [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93fd890e-f851-11ea-96db-8342eb689011","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Memory 4GB free chunks [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":20},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93e80d0e-f851-11ea-ae0c-6f6e897b08b1\",\"operator\":\"lte\",\"value\":20},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"93aa1f08-f851-11ea-8561-cf622005b51f\",\"operator\":\"lte\",\"value\":10}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset : \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Diego.AvailableFreeChunks\\\" and cloudfoundry.envelope.deployment: cf*\"},\"formatter\":\"'0,0'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"CF 4GB Free Memory Chunks\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Memory 4GB free chunks [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93dcb238-f851-11ea-8c49-fb9deba7fc48","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ISO disk 6GB free chunks [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":100},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":100},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"938c1710-f851-11ea-aacc-e3f9d23bdead\",\"operator\":\"lte\",\"value\":50}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Diego.AvailableFreeChunksDisk\\\" and cloudfoundry.envelope.deployment: p-isolation-segment*\"},\"formatter\":\"'0,0'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"ISO 6GB Free Disk Chunks\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"min\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"last_value\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"ISO disk 6GB free chunks [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93e0d7d2-f851-11ea-a8ea-ab5761cc3b1c","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Disk capacity [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.4},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93e80d0e-f851-11ea-ae0c-6f6e897b08b1\",\"operator\":\"lte\",\"value\":0.4},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"93c50fb6-f851-11ea-9589-1bd31d6a8c71\",\"operator\":\"lte\",\"value\":0.35}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Diego.TotalPercentageAvailableDiskCapacity.5M\\\" AND cloudfoundry.envelope.deployment: cf*\"},\"formatter\":\"'0.0%'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"CF Disk Capacity\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Disk capacity [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"94402c0a-f851-11ea-b3d4-f3815d5ef910","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ISO disk capacity [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.4},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93e80d0e-f851-11ea-ae0c-6f6e897b08b1\",\"operator\":\"lte\",\"value\":0.4},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"93c50fb6-f851-11ea-9589-1bd31d6a8c71\",\"operator\":\"lte\",\"value\":0.35}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Diego.TotalPercentageAvailableDiskCapacity.5M\\\" and cloudfoundry.envelope.deployment: p-isolation-segment*\"},\"formatter\":\"'0.0%'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"ISO Disk Capacity\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"ISO disk capacity [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"937d5f4a-f851-11ea-9321-07e4098558b1","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ISO memory capacity [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.4},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93e80d0e-f851-11ea-ae0c-6f6e897b08b1\",\"operator\":\"lte\",\"value\":0.4},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"93c50fb6-f851-11ea-9589-1bd31d6a8c71\",\"operator\":\"lte\",\"value\":0.35}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Diego.TotalPercentageAvailableMemoryCapacity.5M\\\" and cloudfoundry.envelope.deployment: p-isolation-segment*\"},\"formatter\":\"'0.0%'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"ISO Memory Capacity\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"ISO memory capacity [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93deea94-f851-11ea-8186-777cfa34f466","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ISO container capacity [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.4},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93e80d0e-f851-11ea-ae0c-6f6e897b08b1\",\"operator\":\"lte\",\"value\":0.4},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"93c50fb6-f851-11ea-9589-1bd31d6a8c71\",\"operator\":\"lte\",\"value\":0.35}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Diego.TotalPercentageAvailableContainerCapacity.5M\\\" and cloudfoundry.envelope.deployment: p-isolation-segment*\"},\"formatter\":\"'0.0%'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"ISO Container Capacity\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"ISO container capacity [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"938e9490-f851-11ea-9fc4-93d53dd1c7c1","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container capacity [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.4},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93e80d0e-f851-11ea-ae0c-6f6e897b08b1\",\"operator\":\"lte\",\"value\":0.4},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"93c50fb6-f851-11ea-9589-1bd31d6a8c71\",\"operator\":\"lte\",\"value\":0.35}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Diego.TotalPercentageAvailableContainerCapacity.5M\\\" AND cloudfoundry.envelope.deployment: cf*\"},\"formatter\":\"'0.0%'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"CF Container Capacity\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Container capacity [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"943b6bf2-f851-11ea-99e0-b300881da4b1","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Memory capacity [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.4},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93e80d0e-f851-11ea-ae0c-6f6e897b08b1\",\"operator\":\"lte\",\"value\":0.4},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"93c50fb6-f851-11ea-9589-1bd31d6a8c71\",\"operator\":\"lte\",\"value\":0.35}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.envelope.deployment:cf* and cloudfoundry.value.name: \\\"Diego.TotalPercentageAvailableMemoryCapacity.5M\\\" \"},\"formatter\":\"'0.0%'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"CF Memory Capacity\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Memory capacity [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9417ef10-f851-11ea-bc5c-cbb3bfb4dc2a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pushes past month [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.95},{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":0.95}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset : \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.cliCommand.push\\\" \"},\"formatter\":\"percent\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Past Month\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"1M\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Pushes past month [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93a42468-f851-11ea-8393-7791ef366bdd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pushes past day [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.95},{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":0.95}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset : \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.cliCommand.push\\\" \"},\"formatter\":\"percent\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Past Day\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"1d\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Pushes past day [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9379c90c-f851-11ea-8313-f3c659aaac21","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboards Navigation Platform Health [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Overview](#/dashboard/9c81cf34-f84e-11ea-a49d-f3f94f5e4fac) | **Platform Health**\",\"openLinksInNewTab\":false},\"title\":\"Dashboards Navigation [Metricbeat Cloud Foundry]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"f771b65c-f8d0-11ea-bf74-8bbda818957f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2OTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Pushes md-2 [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":15,\"markdown\":\"**CF Push**\\n**(99.0%)**\",\"openLinksInNewTab\":false},\"title\":\"Pushes md-2 [Metricbeat Cloud Foundry]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"9410e9ea-f851-11ea-b70d-9bda9c286e02","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2OTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Pushes application availability md-2 [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":15,\"markdown\":\"**App Avail**\\n**(99.9%)**\",\"openLinksInNewTab\":false},\"title\":\"Pushes application availability md-2 [Metricbeat Cloud Foundry]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"93911f12-f851-11ea-9a0a-bb5ff28cf81a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2OTIsMV0="} +{"attributes":{"description":"Cloud Foundry platform health","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"1\",\"w\":4,\"x\":15,\"y\":2},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"8\",\"w\":5,\"x\":38,\"y\":36},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"9\",\"w\":5,\"x\":33,\"y\":36},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_9\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"11\",\"w\":5,\"x\":43,\"y\":36},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_11\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"13\",\"w\":15,\"x\":0,\"y\":2},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_13\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"14\",\"w\":7,\"x\":26,\"y\":10},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_14\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"15\",\"w\":7,\"x\":19,\"y\":23},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_15\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"16\",\"w\":5,\"x\":0,\"y\":27},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_16\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"17\",\"w\":5,\"x\":10,\"y\":27},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_17\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"18\",\"w\":5,\"x\":5,\"y\":27},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_18\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"19\",\"w\":19,\"x\":0,\"y\":17},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Applications availability\",\"panelRefName\":\"panel_19\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"26\",\"w\":14,\"x\":19,\"y\":2},\"panelIndex\":\"26\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_26\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"28\",\"w\":14,\"x\":19,\"y\":36},\"panelIndex\":\"28\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Director health check\",\"panelRefName\":\"panel_28\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"29\",\"w\":19,\"x\":0,\"y\":33},\"panelIndex\":\"29\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Test results\",\"panelRefName\":\"panel_29\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"30\",\"w\":15,\"x\":33,\"y\":2},\"panelIndex\":\"30\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top CPU user deployment\",\"panelRefName\":\"panel_30\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"31\",\"w\":15,\"x\":33,\"y\":18},\"panelIndex\":\"31\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top persistent disk deployment\",\"panelRefName\":\"panel_31\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"36\",\"w\":7,\"x\":19,\"y\":10},\"panelIndex\":\"36\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_36\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"37\",\"w\":7,\"x\":26,\"y\":23},\"panelIndex\":\"37\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_37\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"38\",\"w\":4,\"x\":24,\"y\":17},\"panelIndex\":\"38\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_38\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"39\",\"w\":4,\"x\":24,\"y\":30},\"panelIndex\":\"39\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_39\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"41\",\"w\":5,\"x\":19,\"y\":30},\"panelIndex\":\"41\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_41\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"42\",\"w\":5,\"x\":28,\"y\":30},\"panelIndex\":\"42\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_42\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"43\",\"w\":5,\"x\":28,\"y\":17},\"panelIndex\":\"43\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_43\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"44\",\"w\":5,\"x\":19,\"y\":17},\"panelIndex\":\"44\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_44\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"46\",\"w\":5,\"x\":0,\"y\":10},\"panelIndex\":\"46\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_46\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"47\",\"w\":5,\"x\":10,\"y\":10},\"panelIndex\":\"47\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_47\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"48\",\"w\":5,\"x\":5,\"y\":10},\"panelIndex\":\"48\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_48\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":2,\"i\":\"f770c0d9-bc9a-4250-ad73-35a8cae0bcda\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"f770c0d9-bc9a-4250-ad73-35a8cae0bcda\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_f770c0d9-bc9a-4250-ad73-35a8cae0bcda\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"8a83ab84-5aa6-4e68-97cc-fd8be2b65eb5\",\"w\":4,\"x\":15,\"y\":10},\"panelIndex\":\"8a83ab84-5aa6-4e68-97cc-fd8be2b65eb5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_8a83ab84-5aa6-4e68-97cc-fd8be2b65eb5\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"fbd35912-3c3a-4ab9-878c-b68b598df8f0\",\"w\":4,\"x\":15,\"y\":27},\"panelIndex\":\"fbd35912-3c3a-4ab9-878c-b68b598df8f0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_fbd35912-3c3a-4ab9-878c-b68b598df8f0\"}]","refreshInterval":{"pause":true,"value":0},"timeFrom":"now-1h","timeRestore":true,"timeTo":"now","title":"[Metricbeat Cloud Foundry] Platform Health","version":1},"coreMigrationVersion":"8.0.0","id":"94364424-f851-11ea-8206-7b08cd60917a","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"93acc294-f851-11ea-a97a-53f837470423","name":"1:panel_1","type":"visualization"},{"id":"93f27abe-f851-11ea-90c1-670adf08e026","name":"8:panel_8","type":"visualization"},{"id":"93d1bce8-f851-11ea-9e6c-e3a6ffa65309","name":"9:panel_9","type":"visualization"},{"id":"93f86eec-f851-11ea-9ae8-ff70f6c28f02","name":"11:panel_11","type":"visualization"},{"id":"93f59bb8-f851-11ea-ab86-6757c64f8446","name":"13:panel_13","type":"visualization"},{"id":"93d3c40c-f851-11ea-ab6c-2b7686d129ce","name":"14:panel_14","type":"visualization"},{"id":"93edb394-f851-11ea-af40-bbda53487783","name":"15:panel_15","type":"visualization"},{"id":"9398519c-f851-11ea-9d16-0345f5e91a95","name":"16:panel_16","type":"visualization"},{"id":"93c2c184-f851-11ea-93fb-fb88ecfdafdb","name":"17:panel_17","type":"visualization"},{"id":"94200db2-f851-11ea-a8fa-9bfadc17852f","name":"18:panel_18","type":"visualization"},{"id":"93d9d39c-f851-11ea-b957-3f002cacae67","name":"19:panel_19","type":"visualization"},{"id":"939a9380-f851-11ea-9a72-a3f185bef2c4","name":"26:panel_26","type":"visualization"},{"id":"943dcad2-f851-11ea-8923-93b64d3cea46","name":"28:panel_28","type":"visualization"},{"id":"93c03f18-f851-11ea-8da1-eb649369fefa","name":"29:panel_29","type":"visualization"},{"id":"9430406a-f851-11ea-a96e-efef958606c3","name":"30:panel_30","type":"visualization"},{"id":"93fd890e-f851-11ea-96db-8342eb689011","name":"31:panel_31","type":"visualization"},{"id":"93dcb238-f851-11ea-8c49-fb9deba7fc48","name":"36:panel_36","type":"visualization"},{"id":"93e0d7d2-f851-11ea-a8ea-ab5761cc3b1c","name":"37:panel_37","type":"visualization"},{"id":"94402c0a-f851-11ea-b3d4-f3815d5ef910","name":"38:panel_38","type":"visualization"},{"id":"937d5f4a-f851-11ea-9321-07e4098558b1","name":"39:panel_39","type":"visualization"},{"id":"93deea94-f851-11ea-8186-777cfa34f466","name":"41:panel_41","type":"visualization"},{"id":"938e9490-f851-11ea-9fc4-93d53dd1c7c1","name":"42:panel_42","type":"visualization"},{"id":"943b6bf2-f851-11ea-99e0-b300881da4b1","name":"43:panel_43","type":"visualization"},{"id":"9417ef10-f851-11ea-bc5c-cbb3bfb4dc2a","name":"44:panel_44","type":"visualization"},{"id":"9398519c-f851-11ea-9d16-0345f5e91a95","name":"46:panel_46","type":"visualization"},{"id":"93a42468-f851-11ea-8393-7791ef366bdd","name":"47:panel_47","type":"visualization"},{"id":"9379c90c-f851-11ea-8313-f3c659aaac21","name":"48:panel_48","type":"visualization"},{"id":"f771b65c-f8d0-11ea-bf74-8bbda818957f","name":"f770c0d9-bc9a-4250-ad73-35a8cae0bcda:panel_f770c0d9-bc9a-4250-ad73-35a8cae0bcda","type":"visualization"},{"id":"9410e9ea-f851-11ea-b70d-9bda9c286e02","name":"8a83ab84-5aa6-4e68-97cc-fd8be2b65eb5:panel_8a83ab84-5aa6-4e68-97cc-fd8be2b65eb5","type":"visualization"},{"id":"93911f12-f851-11ea-9a0a-bb5ff28cf81a","name":"fbd35912-3c3a-4ab9-878c-b68b598df8f0:panel_fbd35912-3c3a-4ab9-878c-b68b598df8f0","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NjMsMV0="} diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-overview.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-overview.json deleted file mode 100644 index 4ce513d7b41..00000000000 --- a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-overview.json +++ /dev/null @@ -1,1648 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of the CockroachDB server status", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 11, - "i": "1", - "w": 19, - "x": 5, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "Number of SQL connections", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 11, - "i": "2", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "SQL queries", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 9, - "i": "3", - "w": 16, - "x": 16, - "y": 11 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "Replicas per Store", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 9, - "i": "4", - "w": 16, - "x": 32, - "y": 11 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "title": "Replica leaseholders", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 9, - "i": "5", - "w": 16, - "x": 0, - "y": 11 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "title": "Ranges", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 10, - "i": "6", - "w": 24, - "x": 0, - "y": 20 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "title": "Average log commit latency", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 10, - "i": "7", - "w": 24, - "x": 24, - "y": 20 - }, - "panelIndex": "7", - "panelRefName": "panel_6", - "title": "Average command commit latency", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 11, - "i": "b9cf2afd-ae8b-409b-93f2-b69ba1e1f064", - "w": 5, - "x": 0, - "y": 0 - }, - "panelIndex": "b9cf2afd-ae8b-409b-93f2-b69ba1e1f064", - "panelRefName": "panel_7", - "title": "Dashboards Navigation", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 10, - "i": "3b2a916c-213c-4179-93f6-067224d1f741", - "w": 24, - "x": 0, - "y": 30 - }, - "panelIndex": "3b2a916c-213c-4179-93f6-067224d1f741", - "panelRefName": "panel_8", - "title": "Live Nodes", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 10, - "i": "725c9437-5d36-48bd-9328-e08637e42ac7", - "w": 24, - "x": 24, - "y": 30 - }, - "panelIndex": "725c9437-5d36-48bd-9328-e08637e42ac7", - "panelRefName": "panel_9", - "title": "Process Uptime", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 10, - "i": "7d37508a-3614-4c51-b8e1-84d9101a233b", - "w": 24, - "x": 0, - "y": 40 - }, - "panelIndex": "7d37508a-3614-4c51-b8e1-84d9101a233b", - "panelRefName": "panel_10", - "title": "Capacity Usage", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 10, - "i": "3b319d88-1798-433b-9ab8-783c53d24423", - "w": 24, - "x": 24, - "y": 40 - }, - "panelIndex": "3b319d88-1798-433b-9ab8-783c53d24423", - "panelRefName": "panel_11", - "title": "Disk Metrics", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 10, - "i": "7cf99937-570d-4132-ab15-204a547bd986", - "w": 24, - "x": 0, - "y": 50 - }, - "panelIndex": "7cf99937-570d-4132-ab15-204a547bd986", - "panelRefName": "panel_12", - "title": "Node Clock Offset", - "version": "7.11.1" - } - ], - "timeRestore": false, - "title": "[Metricbeat CockroachDB] Overview", - "version": 1 - }, - "id": "04b595b0-c1fc-11ea-8a94-61b423d19ae7", - "migrationVersion": { - "dashboard": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "79691920-9766-11e9-9eea-6f554992ec1f", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "5073ed20-9760-11e9-9eea-6f554992ec1f", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "bad285b0-9769-11e9-9eea-6f554992ec1f", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "8add0960-976a-11e9-9eea-6f554992ec1f", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "2af19b90-976c-11e9-9eea-6f554992ec1f", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "74cf44b0-9771-11e9-9eea-6f554992ec1f", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "b5ab45b0-9771-11e9-9eea-6f554992ec1f", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "d4177d60-75e2-11eb-b955-29bfd5c9e2dd", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "643353f0-c202-11ea-8a94-61b423d19ae7", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "bbd18b20-ccf4-11ea-8a94-61b423d19ae7", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "57939a70-ec63-11ea-b088-6f3c0066a551", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "020f6a20-ec68-11ea-b088-6f3c0066a551", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "f2d065e0-ee11-11ea-b088-6f3c0066a551", - "name": "panel_12", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2021-02-23T18:01:10.249Z", - "version": "WzQwNzIsMl0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Number of SQL connections [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Number of connections", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.sql_conns", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "stacked", - "terms_direction": "desc", - "terms_field": "service.address", - "terms_order_by": "_count" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Number of SQL connections [Metricbeat CockroachDB]", - "type": "metrics" - } - }, - "id": "79691920-9766-11e9-9eea-6f554992ec1f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-23T13:34:56.700Z", - "version": "WzEzOTQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "SQL queries [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [], - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=10s", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "88d6bda0-9760-11e9-b3d5-07b0ab7d6354", - "label": "Selects", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.sql_select_count", - "id": "88d70bc0-9760-11e9-b3d5-07b0ab7d6354", - "type": "sum" - }, - { - "field": "88d70bc0-9760-11e9-b3d5-07b0ab7d6354", - "id": "658d2990-9762-11e9-b3d5-07b0ab7d6354", - "type": "derivative", - "unit": "1s" - }, - { - "field": "658d2990-9762-11e9-b3d5-07b0ab7d6354", - "function": "sum", - "id": "ec698bc0-9762-11e9-b3d5-07b0ab7d6354", - "sigma": "", - "type": "positive_only" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "stacked", - "terms_field": "service.address", - "terms_order_by": "88d70bc0-9760-11e9-b3d5-07b0ab7d6354", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": 0.5, - "formatter": "number", - "hidden": false, - "id": "02d89100-9761-11e9-b3d5-07b0ab7d6354", - "label": "Inserts", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.sql_insert_count", - "id": "02d89101-9761-11e9-b3d5-07b0ab7d6354", - "type": "sum" - }, - { - "field": "02d89101-9761-11e9-b3d5-07b0ab7d6354", - "id": "74eba420-9762-11e9-b3d5-07b0ab7d6354", - "type": "derivative", - "unit": "1s" - }, - { - "field": "74eba420-9762-11e9-b3d5-07b0ab7d6354", - "id": "54cb8aa0-9764-11e9-b3d5-07b0ab7d6354", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "stacked", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": 0.5, - "formatter": "number", - "hidden": false, - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Updates", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.sql_update_count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "9aa7ace0-9762-11e9-b3d5-07b0ab7d6354", - "type": "derivative", - "unit": "1s" - }, - { - "field": "9aa7ace0-9762-11e9-b3d5-07b0ab7d6354", - "id": "939af2c0-9764-11e9-b3d5-07b0ab7d6354", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "stacked", - "terms_field": "service.address", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": 0.5, - "formatter": "number", - "hidden": false, - "id": "03f6d240-9761-11e9-b3d5-07b0ab7d6354", - "label": "Deletes", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.sql_delete_count", - "id": "03f6d241-9761-11e9-b3d5-07b0ab7d6354", - "type": "sum" - }, - { - "field": "03f6d241-9761-11e9-b3d5-07b0ab7d6354", - "id": "a3ed7c30-9762-11e9-b3d5-07b0ab7d6354", - "type": "derivative", - "unit": "1s" - }, - { - "field": "a3ed7c30-9762-11e9-b3d5-07b0ab7d6354", - "id": "a13994e0-9764-11e9-b3d5-07b0ab7d6354", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "stacked", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "SQL queries [Metricbeat CockroachDB]", - "type": "metrics" - } - }, - "id": "5073ed20-9760-11e9-9eea-6f554992ec1f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-23T13:36:58.294Z", - "version": "WzE5MjQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Replicas per Store [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=10s", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Replicas per store", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.replicas", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "stacked", - "terms_direction": "desc", - "terms_field": "service.address", - "terms_order_by": "_count" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Replicas per Store [Metricbeat CockroachDB]", - "type": "metrics" - } - }, - "id": "bad285b0-9769-11e9-9eea-6f554992ec1f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-23T13:36:58.294Z", - "version": "WzE5MjYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Replica leaseholders [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=10s", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Replica leaseholders per store", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.replicas_leaseholders", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "stacked", - "terms_field": "service.address" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Replica leaseholders [Metricbeat CockroachDB]", - "type": "metrics" - } - }, - "id": "8add0960-976a-11e9-9eea-6f554992ec1f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-23T13:36:58.294Z", - "version": "WzE5MjcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Ranges [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=10s", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(254,146,0,1)", - "fill": "0", - "formatter": "number", - "id": "e4489e50-976b-11e9-b3d5-07b0ab7d6354", - "label": "Underreplicated", - "line_width": "2", - "metrics": [ - { - "field": "prometheus.metrics.ranges_underreplicated", - "id": "e4489e51-976b-11e9-b3d5-07b0ab7d6354", - "type": "max" - } - ], - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": null - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": "0", - "formatter": "number", - "id": "c938f9c0-976b-11e9-b3d5-07b0ab7d6354", - "label": "Overreplicated", - "line_width": "2", - "metrics": [ - { - "field": "prometheus.metrics.ranges_overreplicated", - "id": "c938f9c1-976b-11e9-b3d5-07b0ab7d6354", - "type": "max" - } - ], - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": null - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": "0", - "formatter": "number", - "id": "0ed1bf80-976c-11e9-b3d5-07b0ab7d6354", - "label": "Unavailable", - "line_width": "2", - "metrics": [ - { - "field": "prometheus.metrics.ranges_unavailable", - "id": "0ed1bf81-976c-11e9-b3d5-07b0ab7d6354", - "type": "max" - } - ], - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": null - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(204,204,204,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Total", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ranges", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": null - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Ranges [Metricbeat CockroachDB]", - "type": "metrics" - } - }, - "id": "2af19b90-976c-11e9-9eea-6f554992ec1f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-23T13:36:58.294Z", - "version": "WzE5MjgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Log commit latency [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=10s", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": 0.5, - "filter": "", - "formatter": "ns,ms,2", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Average log commit latency", - "line_width": 1, - "metrics": [ - { - "agg_with": "avg", - "field": "prometheus.metrics.raft_process_logcommit_latency_count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "order": "desc", - "size": 1, - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "4346d3b0-976f-11e9-b3d5-07b0ab7d6354", - "type": "derivative", - "unit": "" - }, - { - "field": "prometheus.metrics.raft_process_logcommit_latency_sum", - "id": "4a430120-976f-11e9-b3d5-07b0ab7d6354", - "type": "max", - "unit": "" - }, - { - "field": "4a430120-976f-11e9-b3d5-07b0ab7d6354", - "id": "581519e0-9770-11e9-b3d5-07b0ab7d6354", - "type": "derivative", - "unit": "" - }, - { - "id": "6574b730-9770-11e9-b3d5-07b0ab7d6354", - "script": "params.sum / params.count", - "type": "calculation", - "variables": [ - { - "field": "581519e0-9770-11e9-b3d5-07b0ab7d6354", - "id": "6fbb54b0-9770-11e9-b3d5-07b0ab7d6354", - "name": "sum" - }, - { - "field": "4346d3b0-976f-11e9-b3d5-07b0ab7d6354", - "id": "76cc90c0-9770-11e9-b3d5-07b0ab7d6354", - "name": "count" - } - ] - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "service.address", - "value_template": "{{value}}ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Log commit latency [Metricbeat CockroachDB]", - "type": "metrics" - } - }, - "id": "74cf44b0-9771-11e9-9eea-6f554992ec1f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-23T13:36:58.294Z", - "version": "WzE5MjksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Command commit latency [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=10s", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": 0.5, - "filter": "", - "formatter": "ns,ms,2", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Average command commit latency", - "line_width": 1, - "metrics": [ - { - "agg_with": "avg", - "field": "prometheus.metrics.raft_process_commandcommit_latency_count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "order": "desc", - "size": 1, - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "4346d3b0-976f-11e9-b3d5-07b0ab7d6354", - "type": "derivative", - "unit": "" - }, - { - "field": "prometheus.metrics.raft_process_commandcommit_latency_sum", - "id": "4a430120-976f-11e9-b3d5-07b0ab7d6354", - "type": "max", - "unit": "" - }, - { - "field": "4a430120-976f-11e9-b3d5-07b0ab7d6354", - "id": "581519e0-9770-11e9-b3d5-07b0ab7d6354", - "type": "derivative", - "unit": "" - }, - { - "id": "6574b730-9770-11e9-b3d5-07b0ab7d6354", - "script": "params.sum / params.count", - "type": "calculation", - "variables": [ - { - "field": "581519e0-9770-11e9-b3d5-07b0ab7d6354", - "id": "6fbb54b0-9770-11e9-b3d5-07b0ab7d6354", - "name": "sum" - }, - { - "field": "4346d3b0-976f-11e9-b3d5-07b0ab7d6354", - "id": "76cc90c0-9770-11e9-b3d5-07b0ab7d6354", - "name": "count" - } - ] - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "service.address", - "value_template": "{{value}}ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Command commit latency [Metricbeat CockroachDB]", - "type": "metrics" - } - }, - "id": "b5ab45b0-9771-11e9-9eea-6f554992ec1f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-23T13:36:58.294Z", - "version": "WzE5MzAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Overview](#/dashboard/04b595b0-c1fc-11ea-8a94-61b423d19ae7) | [SQL](#/dashboard/3975ad70-c761-11ea-8a94-61b423d19ae7)\n", - "openLinksInNewTab": false - }, - "title": "Navigation [Metricbeat CockroachDB]", - "type": "markdown" - } - }, - "id": "d4177d60-75e2-11eb-b955-29bfd5c9e2dd", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-24T14:44:24.373Z", - "version": "WzQyMTUsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Live Nodes [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "4e4d6390-c1fe-11ea-bd96-b595ac63d5e9" - } - ], - "bar_color_rules": [ - { - "id": "59bbdf40-c1fe-11ea-bd96-b595ac63d5e9" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "f1642eb0-c1fe-11ea-bd96-b595ac63d5e9" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=10s", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0.5", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Live Nodes", - "line_width": 1, - "metrics": [ - { - "field": null, - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "everything", - "stacked": "none", - "terms_field": "prometheus.metrics.node_id", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Live Nodes [Metricbeat CockroachDB]", - "type": "metrics" - } - }, - "id": "643353f0-c202-11ea-8a94-61b423d19ae7", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-23T13:53:25.710Z", - "version": "WzIwMjYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Process Uptime [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=10s", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "s,h,2", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Cockroach Process Uptime", - "line_width": 1, - "metrics": [ - { - "field": null, - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "type": "timeseries", - "value_template": "{{value}} h" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Process Uptime [Metricbeat CockroachDB]", - "type": "metrics" - } - }, - "id": "bbd18b20-ccf4-11ea-8a94-61b423d19ae7", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-23T13:54:51.798Z", - "version": "WzIxMDYsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Capacity Usage [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "68be3790-ec65-11ea-8a63-93b9b48262dc" - } - ], - "bar_color_rules": [ - { - "id": "6eabb420-ec65-11ea-8a63-93b9b48262dc" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "71a5ba40-ec65-11ea-8a63-93b9b48262dc" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=10s", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "hidden": false, - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Total Capacity", - "line_width": 1, - "metrics": [ - { - "field": null, - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_filters": [ - { - "color": "#68BC00", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "0464ddc0-ec66-11ea-8a63-93b9b48262dc" - } - ], - "split_mode": "everything", - "stacked": "none", - "terms_direction": "desc", - "terms_field": "service.address", - "terms_order_by": "_count", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "775782d0-ec64-11ea-8a63-93b9b48262dc", - "label": "Capacity Available", - "line_width": 1, - "metrics": [ - { - "field": null, - "id": "775782d1-ec64-11ea-8a63-93b9b48262dc", - "type": "sum" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "everything", - "stacked": "none", - "terms_direction": "desc", - "terms_field": "service.address", - "terms_order_by": "_count", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(254,146,0,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "78322b60-ec64-11ea-8a63-93b9b48262dc", - "label": "Capacity Used", - "line_width": 1, - "metrics": [ - { - "field": null, - "id": "78322b61-ec64-11ea-8a63-93b9b48262dc", - "type": "sum" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "everything", - "stacked": "none", - "terms_direction": "desc", - "terms_field": "service.address", - "terms_order_by": "_count", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Capacity Usage [Metricbeat CockroachDB]", - "type": "metrics" - } - }, - "id": "57939a70-ec63-11ea-b088-6f3c0066a551", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-23T13:53:40.881Z", - "version": "WzIwNDcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Disk Metrics [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=10s", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(254,146,0,1)", - "fill": "0", - "formatter": "number", - "id": "e4489e50-976b-11e9-b3d5-07b0ab7d6354", - "label": "Disk IOPS in Progress", - "line_width": "2", - "metrics": [ - { - "field": null, - "id": "e4489e51-976b-11e9-b3d5-07b0ab7d6354", - "type": "max", - "unit": "1s" - } - ], - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "host.name", - "terms_size": "100", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": "0", - "formatter": "number", - "id": "c938f9c0-976b-11e9-b3d5-07b0ab7d6354", - "label": "Disk Read Ops", - "line_width": "2", - "metrics": [ - { - "field": null, - "id": "c938f9c1-976b-11e9-b3d5-07b0ab7d6354", - "type": "positive_rate", - "unit": "1s" - }, - { - "function": "sum", - "id": "b5a57e90-ec67-11ea-8a63-93b9b48262dc", - "type": "series_agg" - } - ], - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "terms_size": "100", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": "0", - "formatter": "number", - "id": "0ed1bf80-976c-11e9-b3d5-07b0ab7d6354", - "label": "Disk Write Ops", - "line_width": "2", - "metrics": [ - { - "field": null, - "id": "0ed1bf81-976c-11e9-b3d5-07b0ab7d6354", - "type": "positive_rate", - "unit": "1s" - }, - { - "function": "sum", - "id": "d6fb6e10-ec67-11ea-8a63-93b9b48262dc", - "type": "series_agg" - } - ], - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "terms_order_by": "_key", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Disk Metrics [Metricbeat CockroachDB]", - "type": "metrics" - } - }, - "id": "020f6a20-ec68-11ea-b088-6f3c0066a551", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-23T13:53:59.248Z", - "version": "WzIwNjIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Clock Offset [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [], - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=10s", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(84,179,153,1)", - "fill": 0.5, - "formatter": "ns,ms,3", - "id": "88d6bda0-9760-11e9-b3d5-07b0ab7d6354", - "label": "Clock Offsets", - "line_width": 1, - "metrics": [ - { - "field": null, - "id": "88d70bc0-9760-11e9-b3d5-07b0ab7d6354", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "stacked", - "terms_field": null, - "terms_order_by": "88d70bc0-9760-11e9-b3d5-07b0ab7d6354", - "type": "timeseries", - "value_template": "{{value}} ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Clock Offset [Metricbeat CockroachDB]", - "type": "metrics" - } - }, - "id": "f2d065e0-ee11-11ea-b088-6f3c0066a551", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-23T13:54:14.540Z", - "version": "WzIwNzYsMV0=" - } - ], - "version": "7.11.1" -} diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-overview.ndjson b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-overview.ndjson new file mode 100644 index 00000000000..315c0607ed1 --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-overview.ndjson @@ -0,0 +1,14 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of SQL connections [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Number of connections\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_conns\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_direction\":\"desc\",\"terms_field\":\"service.address\",\"terms_order_by\":\"_count\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Number of SQL connections [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"79691920-9766-11e9-9eea-6f554992ec1f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQL queries [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"88d6bda0-9760-11e9-b3d5-07b0ab7d6354\",\"label\":\"Selects\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_select_count\",\"id\":\"88d70bc0-9760-11e9-b3d5-07b0ab7d6354\",\"type\":\"sum\"},{\"field\":\"88d70bc0-9760-11e9-b3d5-07b0ab7d6354\",\"id\":\"658d2990-9762-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"658d2990-9762-11e9-b3d5-07b0ab7d6354\",\"function\":\"sum\",\"id\":\"ec698bc0-9762-11e9-b3d5-07b0ab7d6354\",\"sigma\":\"\",\"type\":\"positive_only\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"terms_field\":\"service.address\",\"terms_order_by\":\"88d70bc0-9760-11e9-b3d5-07b0ab7d6354\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"02d89100-9761-11e9-b3d5-07b0ab7d6354\",\"label\":\"Inserts\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_insert_count\",\"id\":\"02d89101-9761-11e9-b3d5-07b0ab7d6354\",\"type\":\"sum\"},{\"field\":\"02d89101-9761-11e9-b3d5-07b0ab7d6354\",\"id\":\"74eba420-9762-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"74eba420-9762-11e9-b3d5-07b0ab7d6354\",\"id\":\"54cb8aa0-9764-11e9-b3d5-07b0ab7d6354\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Updates\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_update_count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"9aa7ace0-9762-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"9aa7ace0-9762-11e9-b3d5-07b0ab7d6354\",\"id\":\"939af2c0-9764-11e9-b3d5-07b0ab7d6354\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"terms_field\":\"service.address\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"03f6d240-9761-11e9-b3d5-07b0ab7d6354\",\"label\":\"Deletes\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_delete_count\",\"id\":\"03f6d241-9761-11e9-b3d5-07b0ab7d6354\",\"type\":\"sum\"},{\"field\":\"03f6d241-9761-11e9-b3d5-07b0ab7d6354\",\"id\":\"a3ed7c30-9762-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"a3ed7c30-9762-11e9-b3d5-07b0ab7d6354\",\"id\":\"a13994e0-9764-11e9-b3d5-07b0ab7d6354\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQL queries [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5073ed20-9760-11e9-9eea-6f554992ec1f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Replicas per Store [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Replicas per store\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.replicas\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_direction\":\"desc\",\"terms_field\":\"service.address\",\"terms_order_by\":\"_count\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Replicas per Store [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bad285b0-9769-11e9-9eea-6f554992ec1f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM2OTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Replica leaseholders [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Replica leaseholders per store\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.replicas_leaseholders\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"service.address\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Replica leaseholders [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8add0960-976a-11e9-9eea-6f554992ec1f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM2OTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ranges [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"e4489e50-976b-11e9-b3d5-07b0ab7d6354\",\"label\":\"Underreplicated\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"prometheus.metrics.ranges_underreplicated\",\"id\":\"e4489e51-976b-11e9-b3d5-07b0ab7d6354\",\"type\":\"max\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c938f9c0-976b-11e9-b3d5-07b0ab7d6354\",\"label\":\"Overreplicated\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"prometheus.metrics.ranges_overreplicated\",\"id\":\"c938f9c1-976b-11e9-b3d5-07b0ab7d6354\",\"type\":\"max\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"0ed1bf80-976c-11e9-b3d5-07b0ab7d6354\",\"label\":\"Unavailable\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"prometheus.metrics.ranges_unavailable\",\"id\":\"0ed1bf81-976c-11e9-b3d5-07b0ab7d6354\",\"type\":\"max\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(204,204,204,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ranges\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Ranges [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2af19b90-976c-11e9-9eea-6f554992ec1f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM2OTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Log commit latency [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"filter\":\"\",\"formatter\":\"ns,ms,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average log commit latency\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"prometheus.metrics.raft_process_logcommit_latency_count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"order\":\"desc\",\"size\":1,\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4346d3b0-976f-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"prometheus.metrics.raft_process_logcommit_latency_sum\",\"id\":\"4a430120-976f-11e9-b3d5-07b0ab7d6354\",\"type\":\"max\",\"unit\":\"\"},{\"field\":\"4a430120-976f-11e9-b3d5-07b0ab7d6354\",\"id\":\"581519e0-9770-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"\"},{\"id\":\"6574b730-9770-11e9-b3d5-07b0ab7d6354\",\"script\":\"params.sum / params.count\",\"type\":\"calculation\",\"variables\":[{\"field\":\"581519e0-9770-11e9-b3d5-07b0ab7d6354\",\"id\":\"6fbb54b0-9770-11e9-b3d5-07b0ab7d6354\",\"name\":\"sum\"},{\"field\":\"4346d3b0-976f-11e9-b3d5-07b0ab7d6354\",\"id\":\"76cc90c0-9770-11e9-b3d5-07b0ab7d6354\",\"name\":\"count\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"service.address\",\"value_template\":\"{{value}}ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Log commit latency [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"74cf44b0-9771-11e9-9eea-6f554992ec1f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM2OTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Command commit latency [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"filter\":\"\",\"formatter\":\"ns,ms,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average command commit latency\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"prometheus.metrics.raft_process_commandcommit_latency_count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"order\":\"desc\",\"size\":1,\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4346d3b0-976f-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"prometheus.metrics.raft_process_commandcommit_latency_sum\",\"id\":\"4a430120-976f-11e9-b3d5-07b0ab7d6354\",\"type\":\"max\",\"unit\":\"\"},{\"field\":\"4a430120-976f-11e9-b3d5-07b0ab7d6354\",\"id\":\"581519e0-9770-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"\"},{\"id\":\"6574b730-9770-11e9-b3d5-07b0ab7d6354\",\"script\":\"params.sum / params.count\",\"type\":\"calculation\",\"variables\":[{\"field\":\"581519e0-9770-11e9-b3d5-07b0ab7d6354\",\"id\":\"6fbb54b0-9770-11e9-b3d5-07b0ab7d6354\",\"name\":\"sum\"},{\"field\":\"4346d3b0-976f-11e9-b3d5-07b0ab7d6354\",\"id\":\"76cc90c0-9770-11e9-b3d5-07b0ab7d6354\",\"name\":\"count\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"service.address\",\"value_template\":\"{{value}}ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Command commit latency [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b5ab45b0-9771-11e9-9eea-6f554992ec1f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM3MDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Overview](#/dashboard/04b595b0-c1fc-11ea-8a94-61b423d19ae7) | [SQL](#/dashboard/3975ad70-c761-11ea-8a94-61b423d19ae7)\\n\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Metricbeat CockroachDB]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4177d60-75e2-11eb-b955-29bfd5c9e2dd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Live Nodes [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4e4d6390-c1fe-11ea-bd96-b595ac63d5e9\"}],\"bar_color_rules\":[{\"id\":\"59bbdf40-c1fe-11ea-bd96-b595ac63d5e9\"}],\"gauge_color_rules\":[{\"id\":\"f1642eb0-c1fe-11ea-bd96-b595ac63d5e9\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Live Nodes\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"prometheus.metrics.node_id\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Live Nodes [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"643353f0-c202-11ea-8a94-61b423d19ae7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM3MDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Process Uptime [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"s,h,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Cockroach Process Uptime\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}} h\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Process Uptime [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bbd18b20-ccf4-11ea-8a94-61b423d19ae7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM3MDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Capacity Usage [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"68be3790-ec65-11ea-8a63-93b9b48262dc\"}],\"bar_color_rules\":[{\"id\":\"6eabb420-ec65-11ea-8a63-93b9b48262dc\"}],\"gauge_color_rules\":[{\"id\":\"71a5ba40-ec65-11ea-8a63-93b9b48262dc\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total Capacity\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"0464ddc0-ec66-11ea-8a63-93b9b48262dc\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_direction\":\"desc\",\"terms_field\":\"service.address\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"775782d0-ec64-11ea-8a63-93b9b48262dc\",\"label\":\"Capacity Available\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"775782d1-ec64-11ea-8a63-93b9b48262dc\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_direction\":\"desc\",\"terms_field\":\"service.address\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"78322b60-ec64-11ea-8a63-93b9b48262dc\",\"label\":\"Capacity Used\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"78322b61-ec64-11ea-8a63-93b9b48262dc\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_direction\":\"desc\",\"terms_field\":\"service.address\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Capacity Usage [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"57939a70-ec63-11ea-b088-6f3c0066a551","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM3MDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Disk Metrics [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"e4489e50-976b-11e9-b3d5-07b0ab7d6354\",\"label\":\"Disk IOPS in Progress\",\"line_width\":\"2\",\"metrics\":[{\"field\":null,\"id\":\"e4489e51-976b-11e9-b3d5-07b0ab7d6354\",\"type\":\"max\",\"unit\":\"1s\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"host.name\",\"terms_size\":\"100\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c938f9c0-976b-11e9-b3d5-07b0ab7d6354\",\"label\":\"Disk Read Ops\",\"line_width\":\"2\",\"metrics\":[{\"field\":null,\"id\":\"c938f9c1-976b-11e9-b3d5-07b0ab7d6354\",\"type\":\"positive_rate\",\"unit\":\"1s\"},{\"function\":\"sum\",\"id\":\"b5a57e90-ec67-11ea-8a63-93b9b48262dc\",\"type\":\"series_agg\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_size\":\"100\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"0ed1bf80-976c-11e9-b3d5-07b0ab7d6354\",\"label\":\"Disk Write Ops\",\"line_width\":\"2\",\"metrics\":[{\"field\":null,\"id\":\"0ed1bf81-976c-11e9-b3d5-07b0ab7d6354\",\"type\":\"positive_rate\",\"unit\":\"1s\"},{\"function\":\"sum\",\"id\":\"d6fb6e10-ec67-11ea-8a63-93b9b48262dc\",\"type\":\"series_agg\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"_key\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Disk Metrics [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"020f6a20-ec68-11ea-b088-6f3c0066a551","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM3MDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Clock Offset [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(84,179,153,1)\",\"fill\":0.5,\"formatter\":\"ns,ms,3\",\"id\":\"88d6bda0-9760-11e9-b3d5-07b0ab7d6354\",\"label\":\"Clock Offsets\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"88d70bc0-9760-11e9-b3d5-07b0ab7d6354\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":null,\"terms_order_by\":\"88d70bc0-9760-11e9-b3d5-07b0ab7d6354\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Clock Offset [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f2d065e0-ee11-11ea-b088-6f3c0066a551","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM3MDYsMV0="} +{"attributes":{"description":"Overview of the CockroachDB server status","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":11,\"i\":\"1\",\"w\":19,\"x\":5,\"y\":0},\"panelIndex\":\"1\",\"panelRefName\":\"panel_0\",\"title\":\"Number of SQL connections\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":11,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"2\",\"panelRefName\":\"panel_1\",\"title\":\"SQL queries\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":9,\"i\":\"3\",\"w\":16,\"x\":16,\"y\":11},\"panelIndex\":\"3\",\"panelRefName\":\"panel_2\",\"title\":\"Replicas per Store\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":9,\"i\":\"4\",\"w\":16,\"x\":32,\"y\":11},\"panelIndex\":\"4\",\"panelRefName\":\"panel_3\",\"title\":\"Replica leaseholders\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":9,\"i\":\"5\",\"w\":16,\"x\":0,\"y\":11},\"panelIndex\":\"5\",\"panelRefName\":\"panel_4\",\"title\":\"Ranges\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":10,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":20},\"panelIndex\":\"6\",\"panelRefName\":\"panel_5\",\"title\":\"Average log commit latency\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":10,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":20},\"panelIndex\":\"7\",\"panelRefName\":\"panel_6\",\"title\":\"Average command commit latency\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":11,\"i\":\"b9cf2afd-ae8b-409b-93f2-b69ba1e1f064\",\"w\":5,\"x\":0,\"y\":0},\"panelIndex\":\"b9cf2afd-ae8b-409b-93f2-b69ba1e1f064\",\"panelRefName\":\"panel_7\",\"title\":\"Dashboards Navigation\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":10,\"i\":\"3b2a916c-213c-4179-93f6-067224d1f741\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"3b2a916c-213c-4179-93f6-067224d1f741\",\"panelRefName\":\"panel_8\",\"title\":\"Live Nodes\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":10,\"i\":\"725c9437-5d36-48bd-9328-e08637e42ac7\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"725c9437-5d36-48bd-9328-e08637e42ac7\",\"panelRefName\":\"panel_9\",\"title\":\"Process Uptime\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":10,\"i\":\"7d37508a-3614-4c51-b8e1-84d9101a233b\",\"w\":24,\"x\":0,\"y\":40},\"panelIndex\":\"7d37508a-3614-4c51-b8e1-84d9101a233b\",\"panelRefName\":\"panel_10\",\"title\":\"Capacity Usage\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":10,\"i\":\"3b319d88-1798-433b-9ab8-783c53d24423\",\"w\":24,\"x\":24,\"y\":40},\"panelIndex\":\"3b319d88-1798-433b-9ab8-783c53d24423\",\"panelRefName\":\"panel_11\",\"title\":\"Disk Metrics\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":10,\"i\":\"7cf99937-570d-4132-ab15-204a547bd986\",\"w\":24,\"x\":0,\"y\":50},\"panelIndex\":\"7cf99937-570d-4132-ab15-204a547bd986\",\"panelRefName\":\"panel_12\",\"title\":\"Node Clock Offset\",\"version\":\"7.11.1\"}]","timeRestore":false,"title":"[Metricbeat CockroachDB] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"04b595b0-c1fc-11ea-8a94-61b423d19ae7","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"79691920-9766-11e9-9eea-6f554992ec1f","name":"panel_0","type":"visualization"},{"id":"5073ed20-9760-11e9-9eea-6f554992ec1f","name":"panel_1","type":"visualization"},{"id":"bad285b0-9769-11e9-9eea-6f554992ec1f","name":"panel_2","type":"visualization"},{"id":"8add0960-976a-11e9-9eea-6f554992ec1f","name":"panel_3","type":"visualization"},{"id":"2af19b90-976c-11e9-9eea-6f554992ec1f","name":"panel_4","type":"visualization"},{"id":"74cf44b0-9771-11e9-9eea-6f554992ec1f","name":"panel_5","type":"visualization"},{"id":"b5ab45b0-9771-11e9-9eea-6f554992ec1f","name":"panel_6","type":"visualization"},{"id":"d4177d60-75e2-11eb-b955-29bfd5c9e2dd","name":"panel_7","type":"visualization"},{"id":"643353f0-c202-11ea-8a94-61b423d19ae7","name":"panel_8","type":"visualization"},{"id":"bbd18b20-ccf4-11ea-8a94-61b423d19ae7","name":"panel_9","type":"visualization"},{"id":"57939a70-ec63-11ea-b088-6f3c0066a551","name":"panel_10","type":"visualization"},{"id":"020f6a20-ec68-11ea-b088-6f3c0066a551","name":"panel_11","type":"visualization"},{"id":"f2d065e0-ee11-11ea-b088-6f3c0066a551","name":"panel_12","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM2OTMsMV0="} diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-sql.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-sql.json deleted file mode 100644 index 9d526983b3c..00000000000 --- a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-sql.json +++ /dev/null @@ -1,981 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "CockroachDB SQL Performance", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "enhancements": {} - }, - "gridData": { - "h": 11, - "i": "1", - "w": 19, - "x": 5, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "Number of SQL connections", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 11, - "i": "2f29ec8c-d61d-4b27-94e7-7c9437e5abda", - "w": 5, - "x": 0, - "y": 0 - }, - "panelIndex": "2f29ec8c-d61d-4b27-94e7-7c9437e5abda", - "panelRefName": "panel_1", - "title": "Dashboard Navigation", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 11, - "i": "d5e26270-2ebe-45c2-9697-f7e24dcd8492", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "d5e26270-2ebe-45c2-9697-f7e24dcd8492", - "panelRefName": "panel_2", - "title": "SQL queries", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 15, - "i": "a63ed7f8-f4ea-411a-98d5-14427bf3237e", - "w": 24, - "x": 0, - "y": 11 - }, - "panelIndex": "a63ed7f8-f4ea-411a-98d5-14427bf3237e", - "panelRefName": "panel_3", - "title": "Average Exec latency", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 15, - "i": "6660f8f4-c3af-4b56-9ecf-fffd8210a302", - "w": 24, - "x": 24, - "y": 11 - }, - "panelIndex": "6660f8f4-c3af-4b56-9ecf-fffd8210a302", - "panelRefName": "panel_4", - "title": "Transactions", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 15, - "i": "98d6be7f-9aba-4181-a1a1-2152be085550", - "w": 24, - "x": 0, - "y": 26 - }, - "panelIndex": "98d6be7f-9aba-4181-a1a1-2152be085550", - "panelRefName": "panel_5", - "title": "SQL Bytes", - "version": "7.11.1" - }, - { - "embeddableConfig": { - "enhancements": {}, - "hidePanelTitles": false - }, - "gridData": { - "h": 15, - "i": "f4c38787-07a3-431a-8b1e-df12214c5bec", - "w": 24, - "x": 24, - "y": 26 - }, - "panelIndex": "f4c38787-07a3-431a-8b1e-df12214c5bec", - "panelRefName": "panel_6", - "title": "Schema Changes", - "version": "7.11.1" - } - ], - "timeRestore": false, - "title": "[Metricbeat CockroachDB] SQL", - "version": 1 - }, - "id": "3975ad70-c761-11ea-8a94-61b423d19ae7", - "migrationVersion": { - "dashboard": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "79691920-9766-11e9-9eea-6f554992ec1f", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "d4177d60-75e2-11eb-b955-29bfd5c9e2dd", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "5073ed20-9760-11e9-9eea-6f554992ec1f", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "89e96120-fe7a-11ea-a589-8d7d9f58c8fd", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "61999c30-c766-11ea-8a94-61b423d19ae7", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "7d13f0d0-c763-11ea-8a94-61b423d19ae7", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "6fdbdbe0-c767-11ea-8a94-61b423d19ae7", - "name": "panel_6", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2021-02-23T18:06:08.236Z", - "version": "WzQyMDIsMl0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Number of SQL connections [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Number of connections", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.sql_conns", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "stacked", - "terms_direction": "desc", - "terms_field": "service.address", - "terms_order_by": "_count" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Number of SQL connections [Metricbeat CockroachDB]", - "type": "metrics" - } - }, - "id": "79691920-9766-11e9-9eea-6f554992ec1f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-23T13:34:56.700Z", - "version": "WzEzOTQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Overview](#/dashboard/04b595b0-c1fc-11ea-8a94-61b423d19ae7) | [SQL](#/dashboard/3975ad70-c761-11ea-8a94-61b423d19ae7)\n", - "openLinksInNewTab": false - }, - "title": "Navigation [Metricbeat CockroachDB]", - "type": "markdown" - } - }, - "id": "d4177d60-75e2-11eb-b955-29bfd5c9e2dd", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-24T14:44:24.373Z", - "version": "WzQyMTUsM10=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "SQL queries [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [], - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=10s", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "88d6bda0-9760-11e9-b3d5-07b0ab7d6354", - "label": "Selects", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.sql_select_count", - "id": "88d70bc0-9760-11e9-b3d5-07b0ab7d6354", - "type": "sum" - }, - { - "field": "88d70bc0-9760-11e9-b3d5-07b0ab7d6354", - "id": "658d2990-9762-11e9-b3d5-07b0ab7d6354", - "type": "derivative", - "unit": "1s" - }, - { - "field": "658d2990-9762-11e9-b3d5-07b0ab7d6354", - "function": "sum", - "id": "ec698bc0-9762-11e9-b3d5-07b0ab7d6354", - "sigma": "", - "type": "positive_only" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "stacked", - "terms_field": "service.address", - "terms_order_by": "88d70bc0-9760-11e9-b3d5-07b0ab7d6354", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": 0.5, - "formatter": "number", - "hidden": false, - "id": "02d89100-9761-11e9-b3d5-07b0ab7d6354", - "label": "Inserts", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.sql_insert_count", - "id": "02d89101-9761-11e9-b3d5-07b0ab7d6354", - "type": "sum" - }, - { - "field": "02d89101-9761-11e9-b3d5-07b0ab7d6354", - "id": "74eba420-9762-11e9-b3d5-07b0ab7d6354", - "type": "derivative", - "unit": "1s" - }, - { - "field": "74eba420-9762-11e9-b3d5-07b0ab7d6354", - "id": "54cb8aa0-9764-11e9-b3d5-07b0ab7d6354", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "stacked", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": 0.5, - "formatter": "number", - "hidden": false, - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Updates", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.sql_update_count", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "9aa7ace0-9762-11e9-b3d5-07b0ab7d6354", - "type": "derivative", - "unit": "1s" - }, - { - "field": "9aa7ace0-9762-11e9-b3d5-07b0ab7d6354", - "id": "939af2c0-9764-11e9-b3d5-07b0ab7d6354", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "stacked", - "terms_field": "service.address", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": 0.5, - "formatter": "number", - "hidden": false, - "id": "03f6d240-9761-11e9-b3d5-07b0ab7d6354", - "label": "Deletes", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.sql_delete_count", - "id": "03f6d241-9761-11e9-b3d5-07b0ab7d6354", - "type": "sum" - }, - { - "field": "03f6d241-9761-11e9-b3d5-07b0ab7d6354", - "id": "a3ed7c30-9762-11e9-b3d5-07b0ab7d6354", - "type": "derivative", - "unit": "1s" - }, - { - "field": "a3ed7c30-9762-11e9-b3d5-07b0ab7d6354", - "id": "a13994e0-9764-11e9-b3d5-07b0ab7d6354", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "stacked", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "SQL queries [Metricbeat CockroachDB]", - "type": "metrics" - } - }, - "id": "5073ed20-9760-11e9-9eea-6f554992ec1f", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-23T13:36:58.294Z", - "version": "WzE5MjQsMV0=" - }, - { - "attributes": { - "description": "Average SQL execution latency", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Average Exec latency [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=10s", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": 0.5, - "filter": "", - "formatter": "ns,ms,2", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Average log commit latency", - "line_width": 1, - "metrics": [ - { - "agg_with": "avg", - "field": null, - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "order": "desc", - "size": 1, - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "4346d3b0-976f-11e9-b3d5-07b0ab7d6354", - "type": "derivative", - "unit": "" - }, - { - "field": null, - "id": "4a430120-976f-11e9-b3d5-07b0ab7d6354", - "type": "max", - "unit": "" - }, - { - "field": "4a430120-976f-11e9-b3d5-07b0ab7d6354", - "id": "581519e0-9770-11e9-b3d5-07b0ab7d6354", - "type": "derivative", - "unit": "" - }, - { - "id": "6574b730-9770-11e9-b3d5-07b0ab7d6354", - "script": "params.sum / params.count", - "type": "calculation", - "variables": [ - { - "field": "581519e0-9770-11e9-b3d5-07b0ab7d6354", - "id": "6fbb54b0-9770-11e9-b3d5-07b0ab7d6354", - "name": "sum" - }, - { - "field": "4346d3b0-976f-11e9-b3d5-07b0ab7d6354", - "id": "76cc90c0-9770-11e9-b3d5-07b0ab7d6354", - "name": "count" - } - ] - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "type": "timeseries", - "value_template": "{{value}}ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Average Exec latency [Metricbeat CockroachDB]", - "type": "metrics" - } - }, - "id": "89e96120-fe7a-11ea-a589-8d7d9f58c8fd", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-23T13:54:28.905Z", - "version": "WzIwOTEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Transactions [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=10s", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Transactions Begins", - "line_width": 1, - "metrics": [ - { - "field": null, - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "positive_rate", - "unit": "1s" - }, - { - "function": "sum", - "id": "6db52340-2067-11eb-96da-17d67bb2d46d", - "type": "series_agg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "terms_size": "50", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(164,221,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "1c074fc0-ccf0-11ea-8da4-c95c019bd9d5", - "label": "Transaction Commits", - "line_width": 1, - "metrics": [ - { - "field": null, - "id": "1c074fc1-ccf0-11ea-8da4-c95c019bd9d5", - "type": "positive_rate", - "unit": "1s" - }, - { - "function": "sum", - "id": "9241d3c0-2067-11eb-96da-17d67bb2d46d", - "type": "series_agg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "terms_size": "50", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "84ac4080-ccf0-11ea-8da4-c95c019bd9d5", - "label": "Transaction Rollbacks", - "line_width": 1, - "metrics": [ - { - "field": null, - "id": "84ac4081-ccf0-11ea-8da4-c95c019bd9d5", - "type": "positive_rate", - "unit": "1s" - }, - { - "function": "sum", - "id": "a9b7afc0-2067-11eb-96da-17d67bb2d46d", - "type": "series_agg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "terms_size": "50", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": 0.5, - "formatter": "number", - "id": "9701db00-ccf0-11ea-8da4-c95c019bd9d5", - "label": "Transaction Aborts", - "line_width": 1, - "metrics": [ - { - "field": null, - "id": "9701db01-ccf0-11ea-8da4-c95c019bd9d5", - "type": "positive_rate", - "unit": "1s" - }, - { - "function": "sum", - "id": "bc1fc0d0-2067-11eb-96da-17d67bb2d46d", - "type": "series_agg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "terms_size": "50", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Transactions [Metricbeat CockroachDB]", - "type": "metrics" - } - }, - "id": "61999c30-c766-11ea-8a94-61b423d19ae7", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-23T13:58:36.680Z", - "version": "WzIzNzQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "SQL Bytes [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=10s", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(84,179,153,1)", - "fill": "0.5", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Bytes In", - "line_width": 1, - "metrics": [ - { - "field": null, - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "positive_rate", - "unit": "1s" - }, - { - "function": "sum", - "id": "e37c46b0-cd03-11ea-90ab-5112cd60bde7", - "type": "series_agg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "terms_size": "50", - "type": "timeseries", - "value_template": "{{value}}/s" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(96,146,192,1)", - "fill": "0.5", - "formatter": "bytes", - "id": "15553390-cd04-11ea-90ab-5112cd60bde7", - "label": "Bytes Out", - "line_width": 1, - "metrics": [ - { - "field": null, - "id": "15553391-cd04-11ea-90ab-5112cd60bde7", - "type": "positive_rate", - "unit": "1s" - }, - { - "function": "sum", - "id": "6bc01490-2068-11eb-96da-17d67bb2d46d", - "type": "series_agg" - }, - { - "id": "789ffa90-2068-11eb-96da-17d67bb2d46d", - "script": "params.rate != null \u0026\u0026 params.rate \u003e 0 ? params.rate * -1 : null", - "type": "calculation", - "variables": [ - { - "field": "15553391-cd04-11ea-90ab-5112cd60bde7", - "id": "7ff173f0-2068-11eb-96da-17d67bb2d46d", - "name": "rate" - } - ] - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "terms", - "stacked": "none", - "terms_field": null, - "terms_size": "100", - "type": "timeseries", - "value_template": "{{value}}/s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "SQL Bytes [Metricbeat CockroachDB]", - "type": "metrics" - } - }, - "id": "7d13f0d0-c763-11ea-8a94-61b423d19ae7", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-23T13:58:59.377Z", - "version": "WzIzOTMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Schema Changes [Metricbeat CockroachDB]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=10s", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Schema Changes", - "line_width": 1, - "metrics": [ - { - "field": null, - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "positive_rate", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Schema Changes [Metricbeat CockroachDB]", - "type": "metrics" - } - }, - "id": "6fdbdbe0-c767-11ea-8a94-61b423d19ae7", - "migrationVersion": { - "visualization": "7.11.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2021-02-23T13:58:47.503Z", - "version": "WzIzODMsMV0=" - } - ], - "version": "7.11.1" -} diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-sql.ndjson b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-sql.ndjson new file mode 100644 index 00000000000..40ab852a03e --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-sql.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of SQL connections [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Number of connections\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_conns\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_direction\":\"desc\",\"terms_field\":\"service.address\",\"terms_order_by\":\"_count\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Number of SQL connections [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"79691920-9766-11e9-9eea-6f554992ec1f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Overview](#/dashboard/04b595b0-c1fc-11ea-8a94-61b423d19ae7) | [SQL](#/dashboard/3975ad70-c761-11ea-8a94-61b423d19ae7)\\n\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Metricbeat CockroachDB]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4177d60-75e2-11eb-b955-29bfd5c9e2dd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQL queries [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"88d6bda0-9760-11e9-b3d5-07b0ab7d6354\",\"label\":\"Selects\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_select_count\",\"id\":\"88d70bc0-9760-11e9-b3d5-07b0ab7d6354\",\"type\":\"sum\"},{\"field\":\"88d70bc0-9760-11e9-b3d5-07b0ab7d6354\",\"id\":\"658d2990-9762-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"658d2990-9762-11e9-b3d5-07b0ab7d6354\",\"function\":\"sum\",\"id\":\"ec698bc0-9762-11e9-b3d5-07b0ab7d6354\",\"sigma\":\"\",\"type\":\"positive_only\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"terms_field\":\"service.address\",\"terms_order_by\":\"88d70bc0-9760-11e9-b3d5-07b0ab7d6354\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"02d89100-9761-11e9-b3d5-07b0ab7d6354\",\"label\":\"Inserts\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_insert_count\",\"id\":\"02d89101-9761-11e9-b3d5-07b0ab7d6354\",\"type\":\"sum\"},{\"field\":\"02d89101-9761-11e9-b3d5-07b0ab7d6354\",\"id\":\"74eba420-9762-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"74eba420-9762-11e9-b3d5-07b0ab7d6354\",\"id\":\"54cb8aa0-9764-11e9-b3d5-07b0ab7d6354\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Updates\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_update_count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"9aa7ace0-9762-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"9aa7ace0-9762-11e9-b3d5-07b0ab7d6354\",\"id\":\"939af2c0-9764-11e9-b3d5-07b0ab7d6354\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"terms_field\":\"service.address\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"03f6d240-9761-11e9-b3d5-07b0ab7d6354\",\"label\":\"Deletes\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_delete_count\",\"id\":\"03f6d241-9761-11e9-b3d5-07b0ab7d6354\",\"type\":\"sum\"},{\"field\":\"03f6d241-9761-11e9-b3d5-07b0ab7d6354\",\"id\":\"a3ed7c30-9762-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"a3ed7c30-9762-11e9-b3d5-07b0ab7d6354\",\"id\":\"a13994e0-9764-11e9-b3d5-07b0ab7d6354\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQL queries [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5073ed20-9760-11e9-9eea-6f554992ec1f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MTAsMV0="} +{"attributes":{"description":"Average SQL execution latency","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Average Exec latency [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"filter\":\"\",\"formatter\":\"ns,ms,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average log commit latency\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"avg\",\"field\":null,\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"order\":\"desc\",\"size\":1,\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4346d3b0-976f-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":null,\"id\":\"4a430120-976f-11e9-b3d5-07b0ab7d6354\",\"type\":\"max\",\"unit\":\"\"},{\"field\":\"4a430120-976f-11e9-b3d5-07b0ab7d6354\",\"id\":\"581519e0-9770-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"\"},{\"id\":\"6574b730-9770-11e9-b3d5-07b0ab7d6354\",\"script\":\"params.sum / params.count\",\"type\":\"calculation\",\"variables\":[{\"field\":\"581519e0-9770-11e9-b3d5-07b0ab7d6354\",\"id\":\"6fbb54b0-9770-11e9-b3d5-07b0ab7d6354\",\"name\":\"sum\"},{\"field\":\"4346d3b0-976f-11e9-b3d5-07b0ab7d6354\",\"id\":\"76cc90c0-9770-11e9-b3d5-07b0ab7d6354\",\"name\":\"count\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}}ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Average Exec latency [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"89e96120-fe7a-11ea-a589-8d7d9f58c8fd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Transactions [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Transactions Begins\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"positive_rate\",\"unit\":\"1s\"},{\"function\":\"sum\",\"id\":\"6db52340-2067-11eb-96da-17d67bb2d46d\",\"type\":\"series_agg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_size\":\"50\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"1c074fc0-ccf0-11ea-8da4-c95c019bd9d5\",\"label\":\"Transaction Commits\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"1c074fc1-ccf0-11ea-8da4-c95c019bd9d5\",\"type\":\"positive_rate\",\"unit\":\"1s\"},{\"function\":\"sum\",\"id\":\"9241d3c0-2067-11eb-96da-17d67bb2d46d\",\"type\":\"series_agg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_size\":\"50\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"84ac4080-ccf0-11ea-8da4-c95c019bd9d5\",\"label\":\"Transaction Rollbacks\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"84ac4081-ccf0-11ea-8da4-c95c019bd9d5\",\"type\":\"positive_rate\",\"unit\":\"1s\"},{\"function\":\"sum\",\"id\":\"a9b7afc0-2067-11eb-96da-17d67bb2d46d\",\"type\":\"series_agg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_size\":\"50\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"9701db00-ccf0-11ea-8da4-c95c019bd9d5\",\"label\":\"Transaction Aborts\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"9701db01-ccf0-11ea-8da4-c95c019bd9d5\",\"type\":\"positive_rate\",\"unit\":\"1s\"},{\"function\":\"sum\",\"id\":\"bc1fc0d0-2067-11eb-96da-17d67bb2d46d\",\"type\":\"series_agg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_size\":\"50\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transactions [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"61999c30-c766-11ea-8a94-61b423d19ae7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"SQL Bytes [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(84,179,153,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Bytes In\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"positive_rate\",\"unit\":\"1s\"},{\"function\":\"sum\",\"id\":\"e37c46b0-cd03-11ea-90ab-5112cd60bde7\",\"type\":\"series_agg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_size\":\"50\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(96,146,192,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"15553390-cd04-11ea-90ab-5112cd60bde7\",\"label\":\"Bytes Out\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"15553391-cd04-11ea-90ab-5112cd60bde7\",\"type\":\"positive_rate\",\"unit\":\"1s\"},{\"function\":\"sum\",\"id\":\"6bc01490-2068-11eb-96da-17d67bb2d46d\",\"type\":\"series_agg\"},{\"id\":\"789ffa90-2068-11eb-96da-17d67bb2d46d\",\"script\":\"params.rate != null && params.rate > 0 ? params.rate * -1 : null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"15553391-cd04-11ea-90ab-5112cd60bde7\",\"id\":\"7ff173f0-2068-11eb-96da-17d67bb2d46d\",\"name\":\"rate\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_size\":\"100\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQL Bytes [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7d13f0d0-c763-11ea-8a94-61b423d19ae7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Schema Changes [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Schema Changes\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"positive_rate\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Schema Changes [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6fdbdbe0-c767-11ea-8a94-61b423d19ae7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MTQsMV0="} +{"attributes":{"description":"CockroachDB SQL Performance","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":11,\"i\":\"1\",\"w\":19,\"x\":5,\"y\":0},\"panelIndex\":\"1\",\"panelRefName\":\"panel_0\",\"title\":\"Number of SQL connections\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":11,\"i\":\"2f29ec8c-d61d-4b27-94e7-7c9437e5abda\",\"w\":5,\"x\":0,\"y\":0},\"panelIndex\":\"2f29ec8c-d61d-4b27-94e7-7c9437e5abda\",\"panelRefName\":\"panel_1\",\"title\":\"Dashboard Navigation\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":11,\"i\":\"d5e26270-2ebe-45c2-9697-f7e24dcd8492\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"d5e26270-2ebe-45c2-9697-f7e24dcd8492\",\"panelRefName\":\"panel_2\",\"title\":\"SQL queries\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"a63ed7f8-f4ea-411a-98d5-14427bf3237e\",\"w\":24,\"x\":0,\"y\":11},\"panelIndex\":\"a63ed7f8-f4ea-411a-98d5-14427bf3237e\",\"panelRefName\":\"panel_3\",\"title\":\"Average Exec latency\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"6660f8f4-c3af-4b56-9ecf-fffd8210a302\",\"w\":24,\"x\":24,\"y\":11},\"panelIndex\":\"6660f8f4-c3af-4b56-9ecf-fffd8210a302\",\"panelRefName\":\"panel_4\",\"title\":\"Transactions\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"98d6be7f-9aba-4181-a1a1-2152be085550\",\"w\":24,\"x\":0,\"y\":26},\"panelIndex\":\"98d6be7f-9aba-4181-a1a1-2152be085550\",\"panelRefName\":\"panel_5\",\"title\":\"SQL Bytes\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"f4c38787-07a3-431a-8b1e-df12214c5bec\",\"w\":24,\"x\":24,\"y\":26},\"panelIndex\":\"f4c38787-07a3-431a-8b1e-df12214c5bec\",\"panelRefName\":\"panel_6\",\"title\":\"Schema Changes\",\"version\":\"7.11.1\"}]","timeRestore":false,"title":"[Metricbeat CockroachDB] SQL","version":1},"coreMigrationVersion":"8.0.0","id":"3975ad70-c761-11ea-8a94-61b423d19ae7","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"79691920-9766-11e9-9eea-6f554992ec1f","name":"panel_0","type":"visualization"},{"id":"d4177d60-75e2-11eb-b955-29bfd5c9e2dd","name":"panel_1","type":"visualization"},{"id":"5073ed20-9760-11e9-9eea-6f554992ec1f","name":"panel_2","type":"visualization"},{"id":"89e96120-fe7a-11ea-a589-8d7d9f58c8fd","name":"panel_3","type":"visualization"},{"id":"61999c30-c766-11ea-8a94-61b423d19ae7","name":"panel_4","type":"visualization"},{"id":"7d13f0d0-c763-11ea-8a94-61b423d19ae7","name":"panel_5","type":"visualization"},{"id":"6fdbdbe0-c767-11ea-8a94-61b423d19ae7","name":"panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MDcsMV0="} diff --git a/x-pack/metricbeat/module/coredns/_meta/kibana/7/dashboard/Metricbeat-coredns-overview.json b/x-pack/metricbeat/module/coredns/_meta/kibana/7/dashboard/Metricbeat-coredns-overview.json deleted file mode 100644 index 6fd7edaf857..00000000000 --- a/x-pack/metricbeat/module/coredns/_meta/kibana/7/dashboard/Metricbeat-coredns-overview.json +++ /dev/null @@ -1,1371 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of CoreDNS server metrics.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "1", - "w": 10, - "x": 0, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "6.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "2", - "w": 14, - "x": 10, - "y": 0 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "version": "6.7.0" - }, - { - "embeddableConfig": { - "vis": { - "colors": { - "NXDOMAIN": "#99440A" - } - } - }, - "gridData": { - "h": 15, - "i": "3", - "w": 19, - "x": 24, - "y": 25 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "version": "6.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "10", - "w": 24, - "x": 0, - "y": 40 - }, - "panelIndex": "10", - "panelRefName": "panel_3", - "version": "6.7.0" - }, - { - "embeddableConfig": { - "vis": { - "colors": { - "tcp - 1": "#B7DBAB", - "udp - 1": "#5195CE" - }, - "legendOpen": true - } - }, - "gridData": { - "h": 10, - "i": "11", - "w": 19, - "x": 24, - "y": 0 - }, - "panelIndex": "11", - "panelRefName": "panel_4", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "12", - "w": 19, - "x": 24, - "y": 10 - }, - "panelIndex": "12", - "panelRefName": "panel_5", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "15", - "w": 24, - "x": 0, - "y": 10 - }, - "panelIndex": "15", - "panelRefName": "panel_6", - "version": "7.0.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "16", - "w": 24, - "x": 0, - "y": 25 - }, - "panelIndex": "16", - "panelRefName": "panel_7", - "version": "7.0.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat CoreDNS] Overview ECS", - "version": 1 - }, - "id": "Metricbeat-CoreDNS-Dashboard-ecs", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "36e08510-53c4-11e9-b466-9be470bbd327-ecs", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "a19df590-53c4-11e9-b466-9be470bbd327-ecs", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "27da53f0-53d5-11e9-b466-9be470bbd327-ecs", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "277fc650-67a9-11e9-a534-715561d0bf42", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "86177430-728d-11e9-b0d0-414c3011ddbb", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "a58345f0-7298-11e9-b0d0-414c3011ddbb", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "57c74300-7308-11e9-b0d0-414c3011ddbb", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "4804eaa0-7315-11e9-b0d0-414c3011ddbb", - "name": "panel_7", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-05-10T11:25:44.629Z", - "version": "WzE3MzcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "coredns.stats.panic.count" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "coredns.stats.panic.count", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Panic Count [Metricbeat CoreDNS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "coredns.stats.panic.count", - "percents": [ - 100 - ] - }, - "schema": "metric", - "type": "percentiles" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": false - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Panic Count [Metricbeat CoreDNS] ECS", - "type": "metric" - } - }, - "id": "36e08510-53c4-11e9-b466-9be470bbd327-ecs", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-05-10T07:46:22.258Z", - "version": "WzE1MjcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "exists": { - "field": "coredns.stats.dns.request.do.count" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "coredns.stats.dns.request.do.count", - "negate": false, - "type": "exists", - "value": "exists" - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "DO Count [Metricbeat CoreDNS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "DO Count", - "field": "coredns.stats.dns.request.do.count", - "percents": [ - 100 - ] - }, - "schema": "metric", - "type": "percentiles" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": false - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "DO Count [Metricbeat CoreDNS] ECS", - "type": "metric" - } - }, - "id": "a19df590-53c4-11e9-b466-9be470bbd327-ecs", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-05-10T07:46:22.258Z", - "version": "WzE1MjgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Responses by Rcode [Metricbeat CoreDNS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Response per rcode", - "field": "coredns.stats.dns.response.rcode.count" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "server", - "field": "coredns.stats.server", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "row": true, - "size": 5 - }, - "schema": "split", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "timeRange": { - "from": "now-15m", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "4", - "params": { - "field": "coredns.stats.rcode", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - }, - { - "enabled": true, - "id": "6", - "params": { - "field": "coredns.stats.zone", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Response per rcode" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "lineWidth": 1, - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Response per rcode" - }, - "type": "value" - } - ] - }, - "title": "Responses by Rcode [Metricbeat CoreDNS] ECS", - "type": "line" - } - }, - "id": "27da53f0-53d5-11e9-b466-9be470bbd327-ecs", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-05-10T07:46:22.258Z", - "version": "WzE1MjksMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": " Cache Hits, Misses [Metricbeat CoreDNS] ECS", - "uiStateJSON": { - "vis": { - "colors": { - "Average coredns.stats.dns.cache.misses.count": "#E24D42", - "Hits": "#9AC48A", - "Misses": "#EA6460" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Hits", - "field": "coredns.stats.dns.cache.hits.count" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 0, - "timeRange": { - "from": "now-30m", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Misses", - "field": "coredns.stats.dns.cache.misses.count" - }, - "schema": "metric", - "type": "max" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "server", - "field": "coredns.stats.server", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "row": true, - "size": 5 - }, - "schema": "split", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "style": { - "color": "#eee" - } - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Hits" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - }, - { - "data": { - "id": "3", - "label": "Misses" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-2" - } - ], - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Hits" - }, - "type": "value" - }, - { - "id": "ValueAxis-2", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "RightAxis-1", - "position": "right", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Misses" - }, - "type": "value" - } - ] - }, - "title": " Cache Hits, Misses [Metricbeat CoreDNS] ECS", - "type": "line" - } - }, - "id": "277fc650-67a9-11e9-a534-715561d0bf42", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-05-10T07:46:22.258Z", - "version": "WzE1MzAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Requests by Zone [Metricbeat CoreDNS] ECS", - "uiStateJSON": { - "vis": { - "legendOpen": true - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "aggregate": "max", - "customLabel": "Request count", - "field": "coredns.stats.dns.request.count", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "server", - "field": "coredns.stats.server", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "row": true, - "size": 5 - }, - "schema": "split", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "zone", - "field": "coredns.stats.zone", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "protocol", - "field": "coredns.stats.proto", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "family", - "field": "coredns.stats.family", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "rotate": 0, - "show": true, - "truncate": 200 - }, - "position": "left", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false - }, - "legendPosition": "right", - "orderBucketsBySum": false, - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Request count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": true, - "rotate": 75, - "show": true, - "truncate": 100 - }, - "name": "BottomAxis-1", - "position": "bottom", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Request count" - }, - "type": "value" - } - ] - }, - "title": "Requests by Zone [Metricbeat CoreDNS] ECS", - "type": "horizontal_bar" - } - }, - "id": "86177430-728d-11e9-b0d0-414c3011ddbb", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-05-10T07:46:22.258Z", - "version": "WzE1MzEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Requests by Type [Metricbeat CoreDNS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "aggregate": "max", - "customLabel": "Requests", - "field": "coredns.stats.dns.request.type.count", - "size": 1, - "sortField": "@timestamp", - "sortOrder": "desc" - }, - "schema": "metric", - "type": "top_hits" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "server", - "field": "coredns.stats.server", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "row": true, - "size": 5 - }, - "schema": "split", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "timeRange": { - "from": "now-15m", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "4", - "params": { - "field": "coredns.stats.zone", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "field": "coredns.stats.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "_key", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Requests" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Requests" - }, - "type": "value" - } - ] - }, - "title": "Requests by Type [Metricbeat CoreDNS] ECS", - "type": "line" - } - }, - "id": "a58345f0-7298-11e9-b0d0-414c3011ddbb", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-05-10T07:46:22.258Z", - "version": "WzE1MzIsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Avg Request Duration (cumulative) [Metricbeat CoreDNS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0.1", - "filter": "", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Avg Request Duration (ms)", - "line_width": 1, - "metrics": [ - { - "agg_with": "max", - "field": "coredns.stats.dns.request.duration.ns.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "sum" - }, - { - "agg_with": "max", - "field": "coredns.stats.dns.request.duration.ns.count", - "id": "f6c82d30-7307-11e9-aba0-4f43d70788c6", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "sum" - }, - { - "id": "1d9de350-7308-11e9-aba0-4f43d70788c6", - "script": "params.sum / params.count / 1e6", - "type": "calculation", - "variables": [ - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "20eee310-7308-11e9-aba0-4f43d70788c6", - "name": "sum" - }, - { - "field": "f6c82d30-7307-11e9-aba0-4f43d70788c6", - "id": "2e4139f0-7308-11e9-aba0-4f43d70788c6", - "name": "count" - } - ] - } - ], - "point_size": 1, - "separate_axis": 0, - "split_filters": [ - { - "color": "#68BC00", - "filter": "", - "id": "505e0670-7309-11e9-aba0-4f43d70788c6", - "label": "" - } - ], - "split_mode": "terms", - "stacked": "none", - "steps": 0, - "terms_field": "coredns.stats.zone", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "value_template": "{{value}} ms" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Avg Request Duration (cumulative) [Metricbeat CoreDNS] ECS", - "type": "metrics" - } - }, - "id": "57c74300-7308-11e9-b0d0-414c3011ddbb", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-05-10T11:07:14.131Z", - "version": "WzE3MzQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Avg Request Size (cumulative) [Metricbeat CoreDNS] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(228,155,238,1)", - "fill": "0.1", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Avg Request Size (bytes)", - "line_width": 1, - "metrics": [ - { - "field": "coredns.stats.dns.request.size.bytes.sum", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "sum" - }, - { - "field": "coredns.stats.dns.request.size.bytes.count", - "id": "98fe65e0-7314-11e9-8e06-d9a616f1e6f2", - "type": "sum" - }, - { - "id": "ab81ee30-7314-11e9-8e06-d9a616f1e6f2", - "script": "params.sum / params.count", - "type": "calculation", - "variables": [ - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "aeed53c0-7314-11e9-8e06-d9a616f1e6f2", - "name": "sum" - }, - { - "field": "98fe65e0-7314-11e9-8e06-d9a616f1e6f2", - "id": "b84dd700-7314-11e9-8e06-d9a616f1e6f2", - "name": "count" - } - ] - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "coredns.stats.zone", - "value_template": "{{value}} bytes" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Avg Request Size (cumulative) [Metricbeat CoreDNS] ECS", - "type": "metrics" - } - }, - "id": "4804eaa0-7315-11e9-b0d0-414c3011ddbb", - "migrationVersion": { - "visualization": "7.0.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-05-10T11:18:05.129Z", - "version": "WzE3MzUsMV0=" - } - ], - "version": "7.0.0" -} diff --git a/x-pack/metricbeat/module/coredns/_meta/kibana/7/dashboard/Metricbeat-coredns-overview.ndjson b/x-pack/metricbeat/module/coredns/_meta/kibana/7/dashboard/Metricbeat-coredns-overview.ndjson new file mode 100644 index 00000000000..ee4ceafcb9d --- /dev/null +++ b/x-pack/metricbeat/module/coredns/_meta/kibana/7/dashboard/Metricbeat-coredns-overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"coredns.stats.panic.count\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"coredns.stats.panic.count\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Panic Count [Metricbeat CoreDNS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"coredns.stats.panic.count\",\"percents\":[100]},\"schema\":\"metric\",\"type\":\"percentiles\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":false},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Panic Count [Metricbeat CoreDNS] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"36e08510-53c4-11e9-b466-9be470bbd327-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:04.459Z","version":"WzM3MzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"coredns.stats.dns.request.do.count\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"coredns.stats.dns.request.do.count\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"DO Count [Metricbeat CoreDNS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"DO Count\",\"field\":\"coredns.stats.dns.request.do.count\",\"percents\":[100]},\"schema\":\"metric\",\"type\":\"percentiles\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":false},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"DO Count [Metricbeat CoreDNS] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"a19df590-53c4-11e9-b466-9be470bbd327-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:04.459Z","version":"WzM3MzEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Responses by Rcode [Metricbeat CoreDNS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Response per rcode\",\"field\":\"coredns.stats.dns.response.rcode.count\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"server\",\"field\":\"coredns.stats.server\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"coredns.stats.rcode\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"field\":\"coredns.stats.zone\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Response per rcode\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":1,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Response per rcode\"},\"type\":\"value\"}],\"row\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Responses by Rcode [Metricbeat CoreDNS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"27da53f0-53d5-11e9-b466-9be470bbd327-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:04.459Z","version":"WzM3MzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":" Cache Hits, Misses [Metricbeat CoreDNS] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Average coredns.stats.dns.cache.misses.count\": \"#E24D42\", \"Hits\": \"#9AC48A\", \"Misses\": \"#EA6460\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Hits\",\"field\":\"coredns.stats.dns.cache.hits.count\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":0,\"timeRange\":{\"from\":\"now-30m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Misses\",\"field\":\"coredns.stats.dns.cache.misses.count\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"server\",\"field\":\"coredns.stats.server\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Hits\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Misses\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-2\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Hits\"},\"type\":\"value\"},{\"id\":\"ValueAxis-2\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"RightAxis-1\",\"position\":\"right\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Misses\"},\"type\":\"value\"}],\"row\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\" Cache Hits, Misses [Metricbeat CoreDNS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"277fc650-67a9-11e9-a534-715561d0bf42","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:04.459Z","version":"WzM3MzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Requests by Zone [Metricbeat CoreDNS] ECS","uiStateJSON":"{\"vis\": {\"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"aggregate\":\"max\",\"customLabel\":\"Request count\",\"field\":\"coredns.stats.dns.request.count\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"server\",\"field\":\"coredns.stats.server\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"zone\",\"field\":\"coredns.stats.zone\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"protocol\",\"field\":\"coredns.stats.proto\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"family\",\"field\":\"coredns.stats.family\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"orderBucketsBySum\":false,\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Request count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"BottomAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Request count\"},\"type\":\"value\"}],\"row\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Requests by Zone [Metricbeat CoreDNS] ECS\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"86177430-728d-11e9-b0d0-414c3011ddbb","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:04.459Z","version":"WzM3MzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Requests by Type [Metricbeat CoreDNS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"aggregate\":\"max\",\"customLabel\":\"Requests\",\"field\":\"coredns.stats.dns.request.type.count\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"server\",\"field\":\"coredns.stats.server\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"coredns.stats.zone\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"field\":\"coredns.stats.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Requests\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Requests\"},\"type\":\"value\"}],\"row\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Requests by Type [Metricbeat CoreDNS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"a58345f0-7298-11e9-b0d0-414c3011ddbb","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:04.459Z","version":"WzM3MzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Avg Request Duration (cumulative) [Metricbeat CoreDNS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Avg Request Duration (ms)\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"max\",\"field\":\"coredns.stats.dns.request.duration.ns.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"sum\"},{\"agg_with\":\"max\",\"field\":\"coredns.stats.dns.request.duration.ns.count\",\"id\":\"f6c82d30-7307-11e9-aba0-4f43d70788c6\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"sum\"},{\"id\":\"1d9de350-7308-11e9-aba0-4f43d70788c6\",\"script\":\"params.sum / params.count / 1e6\",\"type\":\"calculation\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"20eee310-7308-11e9-aba0-4f43d70788c6\",\"name\":\"sum\"},{\"field\":\"f6c82d30-7307-11e9-aba0-4f43d70788c6\",\"id\":\"2e4139f0-7308-11e9-aba0-4f43d70788c6\",\"name\":\"count\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"query\":\"\",\"language\":\"lucene\"},\"id\":\"505e0670-7309-11e9-aba0-4f43d70788c6\",\"label\":\"\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"coredns.stats.zone\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"value_template\":\"{{value}} ms\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Avg Request Duration (cumulative) [Metricbeat CoreDNS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"57c74300-7308-11e9-b0d0-414c3011ddbb","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:04.459Z","version":"WzM3MzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Avg Request Size (cumulative) [Metricbeat CoreDNS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(228,155,238,1)\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Avg Request Size (bytes)\",\"line_width\":1,\"metrics\":[{\"field\":\"coredns.stats.dns.request.size.bytes.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"coredns.stats.dns.request.size.bytes.count\",\"id\":\"98fe65e0-7314-11e9-8e06-d9a616f1e6f2\",\"type\":\"sum\"},{\"id\":\"ab81ee30-7314-11e9-8e06-d9a616f1e6f2\",\"script\":\"params.sum / params.count\",\"type\":\"calculation\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"aeed53c0-7314-11e9-8e06-d9a616f1e6f2\",\"name\":\"sum\"},{\"field\":\"98fe65e0-7314-11e9-8e06-d9a616f1e6f2\",\"id\":\"b84dd700-7314-11e9-8e06-d9a616f1e6f2\",\"name\":\"count\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"coredns.stats.zone\",\"value_template\":\"{{value}} bytes\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Avg Request Size (cumulative) [Metricbeat CoreDNS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4804eaa0-7315-11e9-b0d0-414c3011ddbb","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:04.459Z","version":"WzM3MzcsMV0="} +{"attributes":{"description":"Overview of CoreDNS server metrics.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"lucene\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"2\",\"w\":14,\"x\":10,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":19,\"x\":24,\"y\":25},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"NXDOMAIN\":\"#99440A\"}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"10\",\"w\":24,\"x\":0,\"y\":40},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"11\",\"w\":19,\"x\":24,\"y\":0},\"panelIndex\":\"11\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"tcp - 1\":\"#B7DBAB\",\"udp - 1\":\"#5195CE\"},\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"12\",\"w\":19,\"x\":24,\"y\":10},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"15\",\"w\":24,\"x\":0,\"y\":10},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"16\",\"w\":24,\"x\":0,\"y\":25},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_16\"}]","timeRestore":false,"title":"[Metricbeat CoreDNS] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Metricbeat-CoreDNS-Dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"36e08510-53c4-11e9-b466-9be470bbd327-ecs","name":"1:panel_1","type":"visualization"},{"id":"a19df590-53c4-11e9-b466-9be470bbd327-ecs","name":"2:panel_2","type":"visualization"},{"id":"27da53f0-53d5-11e9-b466-9be470bbd327-ecs","name":"3:panel_3","type":"visualization"},{"id":"277fc650-67a9-11e9-a534-715561d0bf42","name":"10:panel_10","type":"visualization"},{"id":"86177430-728d-11e9-b0d0-414c3011ddbb","name":"11:panel_11","type":"visualization"},{"id":"a58345f0-7298-11e9-b0d0-414c3011ddbb","name":"12:panel_12","type":"visualization"},{"id":"57c74300-7308-11e9-b0d0-414c3011ddbb","name":"15:panel_15","type":"visualization"},{"id":"4804eaa0-7315-11e9-b0d0-414c3011ddbb","name":"16:panel_16","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:04.459Z","version":"WzM3MjksMV0="} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-billing-overview.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-billing-overview.json deleted file mode 100644 index 2b17b9a0f65..00000000000 --- a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-billing-overview.json +++ /dev/null @@ -1,773 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of Google Cloud Billing Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Filters" - }, - "gridData": { - "h": 14, - "i": "2552123b-6ad6-4d63-89c3-0672ab428580", - "w": 8, - "x": 0, - "y": 0 - }, - "panelIndex": "2552123b-6ad6-4d63-89c3-0672ab428580", - "panelRefName": "panel_0", - "title": "Filters", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Cost Per Month" - }, - "gridData": { - "h": 20, - "i": "2d3d3b79-0656-45c2-b051-4489484b625c", - "w": 10, - "x": 8, - "y": 0 - }, - "panelIndex": "2d3d3b79-0656-45c2-b051-4489484b625c", - "panelRefName": "panel_1", - "title": "Cost Per Month", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Cost Per Project ID" - }, - "gridData": { - "h": 20, - "i": "b737e597-cc4d-4437-859c-6d491679599d", - "w": 30, - "x": 18, - "y": 0 - }, - "panelIndex": "b737e597-cc4d-4437-859c-6d491679599d", - "panelRefName": "panel_2", - "title": "Cost Per Project ID", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Total Number Of Projects" - }, - "gridData": { - "h": 6, - "i": "9eedb0c7-2089-4e0f-af98-721034203aad", - "w": 8, - "x": 0, - "y": 14 - }, - "panelIndex": "9eedb0c7-2089-4e0f-af98-721034203aad", - "panelRefName": "panel_3", - "title": "Total Number Of Projects", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Cost Per Invoice Month" - }, - "gridData": { - "h": 15, - "i": "f4d0ebcb-ac15-4c31-ab57-7f22e0c3e02a", - "w": 48, - "x": 0, - "y": 20 - }, - "panelIndex": "f4d0ebcb-ac15-4c31-ab57-7f22e0c3e02a", - "panelRefName": "panel_4", - "title": "Cost Per Invoice Month", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Total Billing Cost" - }, - "gridData": { - "h": 15, - "i": "991e60a8-68eb-4c2b-ac9a-b553e90dd49d", - "w": 48, - "x": 0, - "y": 35 - }, - "panelIndex": "991e60a8-68eb-4c2b-ac9a-b553e90dd49d", - "panelRefName": "panel_5", - "title": "Total Billing Cost", - "version": "7.9.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat GCP] Billing Overview", - "version": 1 - }, - "id": "76c9e920-e890-11ea-bf8c-d13ebf358a78", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "5d2f9160-e88e-11ea-bf8c-d13ebf358a78", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "520c6f10-ec8a-11ea-a0ed-7fe6b565d158", - "name": "panel_1", - "type": "lens" - }, - { - "id": "057de170-e88d-11ea-bf8c-d13ebf358a78", - "name": "panel_2", - "type": "lens" - }, - { - "id": "dd835300-e88f-11ea-bf8c-d13ebf358a78", - "name": "panel_3", - "type": "lens" - }, - { - "id": "e6933020-e88d-11ea-bf8c-d13ebf358a78", - "name": "panel_4", - "type": "lens" - }, - { - "id": "73346db0-e88d-11ea-bf8c-d13ebf358a78", - "name": "panel_5", - "type": "lens" - } - ], - "type": "dashboard", - "updated_at": "2020-09-01T19:41:37.582Z", - "version": "WzYwNDMsOF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Account ID Filter [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.provider", - "id": "1598550838945", - "indexPatternRefName": "control_0_index_pattern", - "label": "Cloud Provider ", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "cloud.account.id", - "id": "1598893530938", - "indexPatternRefName": "control_1_index_pattern", - "label": "Account ID", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "1598550838945", - "type": "list" - }, - { - "fieldName": "gcp.billing.invoice_month", - "id": "1598988595566", - "indexPatternRefName": "control_2_index_pattern", - "label": "Invoice Month", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": false, - "useTimeFilter": false - }, - "title": "Account ID Filter [Metricbeat GCP]", - "type": "input_control_vis" - } - }, - "id": "5d2f9160-e88e-11ea-bf8c-d13ebf358a78", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-09-01T19:30:18.073Z", - "version": "WzU3NDMsOF0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"e12171da-25a4-41ea-86d3-8fd71205c263\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true aggConfigs=\"[{\\\"id\\\":\\\"6011e524-4646-410b-8d1c-06c281e8f7ed\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.billing.invoice_month\\\",\\\"orderBy\\\":\\\"f8ab301c-f139-4573-b233-ed8a3f717e24\\\",\\\"order\\\":\\\"desc\\\",\\\"size\\\":12,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"f8ab301c-f139-4573-b233-ed8a3f717e24\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"sum\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.billing.total\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-6011e524-4646-410b-8d1c-06c281e8f7ed\\\":{\\\"label\\\":\\\"Invoice Month\\\",\\\"dataType\\\":\\\"string\\\",\\\"operationType\\\":\\\"terms\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"gcp.billing.invoice_month\\\",\\\"isBucketed\\\":true,\\\"params\\\":{\\\"size\\\":12,\\\"orderBy\\\":{\\\"type\\\":\\\"column\\\",\\\"columnId\\\":\\\"f8ab301c-f139-4573-b233-ed8a3f717e24\\\"},\\\"orderDirection\\\":\\\"desc\\\"},\\\"customLabel\\\":true,\\\"id\\\":\\\"6011e524-4646-410b-8d1c-06c281e8f7ed\\\"},\\\"col-1-f8ab301c-f139-4573-b233-ed8a3f717e24\\\":{\\\"label\\\":\\\"Total Billing Cost\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"sum\\\",\\\"sourceField\\\":\\\"gcp.billing.total\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"f8ab301c-f139-4573-b233-ed8a3f717e24\\\"}}\"}\n| lens_datatable \n columns={lens_datatable_columns columnIds=\"6011e524-4646-410b-8d1c-06c281e8f7ed\" columnIds=\"f8ab301c-f139-4573-b233-ed8a3f717e24\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "e12171da-25a4-41ea-86d3-8fd71205c263": { - "columnOrder": [ - "6011e524-4646-410b-8d1c-06c281e8f7ed", - "f8ab301c-f139-4573-b233-ed8a3f717e24" - ], - "columns": { - "6011e524-4646-410b-8d1c-06c281e8f7ed": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Invoice Month", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "f8ab301c-f139-4573-b233-ed8a3f717e24", - "type": "column" - }, - "orderDirection": "desc", - "size": 12 - }, - "scale": "ordinal", - "sourceField": "gcp.billing.invoice_month" - }, - "f8ab301c-f139-4573-b233-ed8a3f717e24": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Total Billing Cost", - "operationType": "sum", - "scale": "ratio", - "sourceField": "gcp.billing.total" - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "layers": [ - { - "columns": [ - "6011e524-4646-410b-8d1c-06c281e8f7ed", - "f8ab301c-f139-4573-b233-ed8a3f717e24" - ], - "layerId": "e12171da-25a4-41ea-86d3-8fd71205c263" - } - ] - } - }, - "title": "Total Cost Table [Metricbeat GCP]", - "visualizationType": "lnsDatatable" - }, - "id": "520c6f10-ec8a-11ea-a0ed-7fe6b565d158", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-09-01T19:35:41.441Z", - "version": "WzU5MDEsOF0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"4ca843af-63d7-46b9-a719-51a81eebf1f7\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true aggConfigs=\"[{\\\"id\\\":\\\"2477291e-9021-4eb2-9fce-8da1ee792c49\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.billing.project_id\\\",\\\"orderBy\\\":\\\"10b91492-efef-490d-bc7a-c2074b2eae84\\\",\\\"order\\\":\\\"desc\\\",\\\"size\\\":20,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"10b91492-efef-490d-bc7a-c2074b2eae84\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"max\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.billing.total\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-2477291e-9021-4eb2-9fce-8da1ee792c49\\\":{\\\"label\\\":\\\"Cost Per Project ID\\\",\\\"dataType\\\":\\\"string\\\",\\\"operationType\\\":\\\"terms\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"gcp.billing.project_id\\\",\\\"isBucketed\\\":true,\\\"params\\\":{\\\"size\\\":20,\\\"orderBy\\\":{\\\"type\\\":\\\"column\\\",\\\"columnId\\\":\\\"10b91492-efef-490d-bc7a-c2074b2eae84\\\"},\\\"orderDirection\\\":\\\"desc\\\"},\\\"customLabel\\\":true,\\\"id\\\":\\\"2477291e-9021-4eb2-9fce-8da1ee792c49\\\"},\\\"col-1-10b91492-efef-490d-bc7a-c2074b2eae84\\\":{\\\"label\\\":\\\"Maximum of gcp.billing.total\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"max\\\",\\\"sourceField\\\":\\\"gcp.billing.total\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"id\\\":\\\"10b91492-efef-490d-bc7a-c2074b2eae84\\\"}}\"}\n| lens_pie shape=\"pie\" hideLabels=false groups=\"2477291e-9021-4eb2-9fce-8da1ee792c49\" metric=\"10b91492-efef-490d-bc7a-c2074b2eae84\" numberDisplay=\"percent\" categoryDisplay=\"default\" legendDisplay=\"default\" percentDecimals=3 nestedLegend=false", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "4ca843af-63d7-46b9-a719-51a81eebf1f7": { - "columnOrder": [ - "2477291e-9021-4eb2-9fce-8da1ee792c49", - "10b91492-efef-490d-bc7a-c2074b2eae84" - ], - "columns": { - "10b91492-efef-490d-bc7a-c2074b2eae84": { - "dataType": "number", - "isBucketed": false, - "label": "Maximum of gcp.billing.total", - "operationType": "max", - "scale": "ratio", - "sourceField": "gcp.billing.total" - }, - "2477291e-9021-4eb2-9fce-8da1ee792c49": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Cost Per Project ID", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "10b91492-efef-490d-bc7a-c2074b2eae84", - "type": "column" - }, - "orderDirection": "desc", - "size": 20 - }, - "scale": "ordinal", - "sourceField": "gcp.billing.project_id" - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "layers": [ - { - "categoryDisplay": "default", - "groups": [ - "2477291e-9021-4eb2-9fce-8da1ee792c49" - ], - "layerId": "4ca843af-63d7-46b9-a719-51a81eebf1f7", - "legendDisplay": "default", - "metric": "10b91492-efef-490d-bc7a-c2074b2eae84", - "nestedLegend": false, - "numberDisplay": "percent" - } - ], - "shape": "pie" - } - }, - "title": "Cost Per Project ID [Metricbeat GCP]", - "visualizationType": "lnsPie" - }, - "id": "057de170-e88d-11ea-bf8c-d13ebf358a78", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-08-31T02:45:59.906Z", - "version": "WzUxODksOF0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"4cb00ce3-c62e-46f3-90ce-b69c876b9605\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true aggConfigs=\"[{\\\"id\\\":\\\"2f66b924-5392-4e5e-93fe-5b23a87068c1\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"cardinality\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.billing.project_id\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-2f66b924-5392-4e5e-93fe-5b23a87068c1\\\":{\\\"label\\\":\\\"\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"cardinality\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"sourceField\\\":\\\"gcp.billing.project_id\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"2f66b924-5392-4e5e-93fe-5b23a87068c1\\\"}}\"}\n| lens_metric_chart title=\"\" accessor=\"2f66b924-5392-4e5e-93fe-5b23a87068c1\" mode=\"full\"", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "4cb00ce3-c62e-46f3-90ce-b69c876b9605": { - "columnOrder": [ - "2f66b924-5392-4e5e-93fe-5b23a87068c1" - ], - "columns": { - "2f66b924-5392-4e5e-93fe-5b23a87068c1": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "", - "operationType": "cardinality", - "scale": "ratio", - "sourceField": "gcp.billing.project_id" - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "accessor": "2f66b924-5392-4e5e-93fe-5b23a87068c1", - "layerId": "4cb00ce3-c62e-46f3-90ce-b69c876b9605" - } - }, - "title": "Total Number Of Projects [Metricbeat GCP]", - "visualizationType": "lnsMetric" - }, - "id": "dd835300-e88f-11ea-bf8c-d13ebf358a78", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-08-31T02:50:27.115Z", - "version": "WzUzMTgsOF0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"4ca843af-63d7-46b9-a719-51a81eebf1f7\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true aggConfigs=\"[{\\\"id\\\":\\\"e25f49de-f161-4be8-a8fc-519188a7776c\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.billing.project_id\\\",\\\"orderBy\\\":\\\"af747bf6-66e9-4760-bbd8-3dae9c97159d\\\",\\\"order\\\":\\\"desc\\\",\\\"size\\\":10,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"b92edf5e-58bc-4382-9cd5-19db2c332c93\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.billing.invoice_month\\\",\\\"orderBy\\\":\\\"_key\\\",\\\"order\\\":\\\"asc\\\",\\\"size\\\":5,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"af747bf6-66e9-4760-bbd8-3dae9c97159d\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"max\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.billing.total\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-e25f49de-f161-4be8-a8fc-519188a7776c\\\":{\\\"label\\\":\\\"Monthly Cost\\\",\\\"dataType\\\":\\\"string\\\",\\\"operationType\\\":\\\"terms\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"gcp.billing.project_id\\\",\\\"isBucketed\\\":true,\\\"params\\\":{\\\"size\\\":10,\\\"orderBy\\\":{\\\"type\\\":\\\"column\\\",\\\"columnId\\\":\\\"af747bf6-66e9-4760-bbd8-3dae9c97159d\\\"},\\\"orderDirection\\\":\\\"desc\\\"},\\\"customLabel\\\":true,\\\"id\\\":\\\"e25f49de-f161-4be8-a8fc-519188a7776c\\\"},\\\"col-2-b92edf5e-58bc-4382-9cd5-19db2c332c93\\\":{\\\"label\\\":\\\"Invoice Month\\\",\\\"dataType\\\":\\\"string\\\",\\\"operationType\\\":\\\"terms\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"gcp.billing.invoice_month\\\",\\\"isBucketed\\\":true,\\\"params\\\":{\\\"size\\\":5,\\\"orderBy\\\":{\\\"type\\\":\\\"alphabetical\\\"},\\\"orderDirection\\\":\\\"asc\\\"},\\\"customLabel\\\":true,\\\"id\\\":\\\"b92edf5e-58bc-4382-9cd5-19db2c332c93\\\"},\\\"col-3-af747bf6-66e9-4760-bbd8-3dae9c97159d\\\":{\\\"label\\\":\\\"Total Billing Cost\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"max\\\",\\\"sourceField\\\":\\\"gcp.billing.total\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"af747bf6-66e9-4760-bbd8-3dae9c97159d\\\"}}\"}\n| lens_xy_chart xTitle=\"Monthly Cost\" yTitle=\"Total Billing Cost\" legend={lens_xy_legendConfig isVisible=true position=\"right\"} fittingFunction=\"None\" \n layers={lens_xy_layer layerId=\"4ca843af-63d7-46b9-a719-51a81eebf1f7\" hide=false xAccessor=\"e25f49de-f161-4be8-a8fc-519188a7776c\" yScaleType=\"linear\" xScaleType=\"ordinal\" isHistogram=false splitAccessor=\"b92edf5e-58bc-4382-9cd5-19db2c332c93\" seriesType=\"bar_stacked\" accessors=\"af747bf6-66e9-4760-bbd8-3dae9c97159d\" columnToLabel=\"{\\\"af747bf6-66e9-4760-bbd8-3dae9c97159d\\\":\\\"Total Billing Cost\\\",\\\"b92edf5e-58bc-4382-9cd5-19db2c332c93\\\":\\\"Invoice Month\\\"}\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "4ca843af-63d7-46b9-a719-51a81eebf1f7": { - "columnOrder": [ - "e25f49de-f161-4be8-a8fc-519188a7776c", - "b92edf5e-58bc-4382-9cd5-19db2c332c93", - "af747bf6-66e9-4760-bbd8-3dae9c97159d" - ], - "columns": { - "af747bf6-66e9-4760-bbd8-3dae9c97159d": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Total Billing Cost", - "operationType": "max", - "scale": "ratio", - "sourceField": "gcp.billing.total" - }, - "b92edf5e-58bc-4382-9cd5-19db2c332c93": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Invoice Month", - "operationType": "terms", - "params": { - "orderBy": { - "type": "alphabetical" - }, - "orderDirection": "asc", - "size": 5 - }, - "scale": "ordinal", - "sourceField": "gcp.billing.invoice_month" - }, - "e25f49de-f161-4be8-a8fc-519188a7776c": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Monthly Cost", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "af747bf6-66e9-4760-bbd8-3dae9c97159d", - "type": "column" - }, - "orderDirection": "desc", - "size": 10 - }, - "scale": "ordinal", - "sourceField": "gcp.billing.project_id" - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "af747bf6-66e9-4760-bbd8-3dae9c97159d" - ], - "layerId": "4ca843af-63d7-46b9-a719-51a81eebf1f7", - "seriesType": "bar_stacked", - "splitAccessor": "b92edf5e-58bc-4382-9cd5-19db2c332c93", - "xAccessor": "e25f49de-f161-4be8-a8fc-519188a7776c" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "bar_stacked" - } - }, - "title": "Monthly Cost Per Project [Metricbeat GCP]", - "visualizationType": "lnsXY" - }, - "id": "e6933020-e88d-11ea-bf8c-d13ebf358a78", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-08-31T17:12:47.088Z", - "version": "WzU1NjksOF0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"4ca843af-63d7-46b9-a719-51a81eebf1f7\"\n layerIds=\"325e60ce-0fbd-42b0-82f6-b10df31fef6c\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true timeFields=\"@timestamp\" aggConfigs=\"[{\\\"id\\\":\\\"1164563d-d2b3-4067-bc7b-d694179182ed\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"date_histogram\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"@timestamp\\\",\\\"useNormalizedEsInterval\\\":true,\\\"interval\\\":\\\"1d\\\",\\\"drop_partials\\\":false,\\\"min_doc_count\\\":0,\\\"extended_bounds\\\":{}}},{\\\"id\\\":\\\"10b91492-efef-490d-bc7a-c2074b2eae84\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"sum\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.billing.total\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-1164563d-d2b3-4067-bc7b-d694179182ed\\\":{\\\"label\\\":\\\"@timestamp\\\",\\\"dataType\\\":\\\"date\\\",\\\"operationType\\\":\\\"date_histogram\\\",\\\"sourceField\\\":\\\"@timestamp\\\",\\\"isBucketed\\\":true,\\\"scale\\\":\\\"interval\\\",\\\"params\\\":{\\\"interval\\\":\\\"1d\\\"},\\\"id\\\":\\\"1164563d-d2b3-4067-bc7b-d694179182ed\\\"},\\\"col-1-10b91492-efef-490d-bc7a-c2074b2eae84\\\":{\\\"label\\\":\\\"Total Billing Cost\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"sum\\\",\\\"sourceField\\\":\\\"gcp.billing.total\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"10b91492-efef-490d-bc7a-c2074b2eae84\\\"}}\"}\n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true timeFields=\"@timestamp\" aggConfigs=\"[{\\\"id\\\":\\\"faaaaf23-f362-4a00-be9e-8a155208a39e\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.billing.project_id\\\",\\\"orderBy\\\":\\\"3041fc1b-ceb8-4188-b55d-d354819f267e\\\",\\\"order\\\":\\\"desc\\\",\\\"size\\\":10,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"c4bc659c-3e7c-41f2-bc38-32d9edee95e8\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"date_histogram\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"@timestamp\\\",\\\"useNormalizedEsInterval\\\":true,\\\"interval\\\":\\\"1d\\\",\\\"drop_partials\\\":false,\\\"min_doc_count\\\":0,\\\"extended_bounds\\\":{}}},{\\\"id\\\":\\\"3041fc1b-ceb8-4188-b55d-d354819f267e\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"max\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.billing.total\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-faaaaf23-f362-4a00-be9e-8a155208a39e\\\":{\\\"sourceField\\\":\\\"gcp.billing.project_id\\\",\\\"isBucketed\\\":true,\\\"dataType\\\":\\\"string\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"operationType\\\":\\\"terms\\\",\\\"label\\\":\\\"Project ID\\\",\\\"customLabel\\\":true,\\\"params\\\":{\\\"size\\\":10,\\\"orderBy\\\":{\\\"columnId\\\":\\\"3041fc1b-ceb8-4188-b55d-d354819f267e\\\",\\\"type\\\":\\\"column\\\"},\\\"orderDirection\\\":\\\"desc\\\"},\\\"id\\\":\\\"faaaaf23-f362-4a00-be9e-8a155208a39e\\\"},\\\"col-2-c4bc659c-3e7c-41f2-bc38-32d9edee95e8\\\":{\\\"sourceField\\\":\\\"@timestamp\\\",\\\"isBucketed\\\":true,\\\"dataType\\\":\\\"date\\\",\\\"scale\\\":\\\"interval\\\",\\\"operationType\\\":\\\"date_histogram\\\",\\\"label\\\":\\\"@timestamp\\\",\\\"params\\\":{\\\"interval\\\":\\\"1d\\\"},\\\"id\\\":\\\"c4bc659c-3e7c-41f2-bc38-32d9edee95e8\\\"},\\\"col-3-3041fc1b-ceb8-4188-b55d-d354819f267e\\\":{\\\"sourceField\\\":\\\"gcp.billing.total\\\",\\\"isBucketed\\\":false,\\\"dataType\\\":\\\"number\\\",\\\"scale\\\":\\\"ratio\\\",\\\"operationType\\\":\\\"max\\\",\\\"label\\\":\\\"Total Billing\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"3041fc1b-ceb8-4188-b55d-d354819f267e\\\"}}\"}\n| lens_xy_chart xTitle=\"@timestamp [1]\" yTitle=\"Total Billing\" legend={lens_xy_legendConfig isVisible=true position=\"right\"} fittingFunction=\"None\" \n layers={lens_xy_layer layerId=\"325e60ce-0fbd-42b0-82f6-b10df31fef6c\" hide=false xAccessor=\"c4bc659c-3e7c-41f2-bc38-32d9edee95e8\" yScaleType=\"linear\" xScaleType=\"time\" isHistogram=true splitAccessor=\"faaaaf23-f362-4a00-be9e-8a155208a39e\" seriesType=\"bar_stacked\" accessors=\"3041fc1b-ceb8-4188-b55d-d354819f267e\" columnToLabel=\"{\\\"3041fc1b-ceb8-4188-b55d-d354819f267e\\\":\\\"Total Billing\\\",\\\"faaaaf23-f362-4a00-be9e-8a155208a39e\\\":\\\"Project ID\\\"}\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "325e60ce-0fbd-42b0-82f6-b10df31fef6c": { - "columnOrder": [ - "faaaaf23-f362-4a00-be9e-8a155208a39e", - "c4bc659c-3e7c-41f2-bc38-32d9edee95e8", - "3041fc1b-ceb8-4188-b55d-d354819f267e" - ], - "columns": { - "3041fc1b-ceb8-4188-b55d-d354819f267e": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Total Billing", - "operationType": "max", - "scale": "ratio", - "sourceField": "gcp.billing.total" - }, - "c4bc659c-3e7c-41f2-bc38-32d9edee95e8": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "1d" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "faaaaf23-f362-4a00-be9e-8a155208a39e": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Project ID", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "3041fc1b-ceb8-4188-b55d-d354819f267e", - "type": "column" - }, - "orderDirection": "desc", - "size": 10 - }, - "scale": "ordinal", - "sourceField": "gcp.billing.project_id" - } - }, - "indexPatternId": "metricbeat-*" - }, - "4ca843af-63d7-46b9-a719-51a81eebf1f7": { - "columnOrder": [ - "1164563d-d2b3-4067-bc7b-d694179182ed", - "10b91492-efef-490d-bc7a-c2074b2eae84" - ], - "columns": { - "10b91492-efef-490d-bc7a-c2074b2eae84": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Total Billing Cost", - "operationType": "sum", - "scale": "ratio", - "sourceField": "gcp.billing.total" - }, - "1164563d-d2b3-4067-bc7b-d694179182ed": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "1d" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "e25f49de-f161-4be8-a8fc-519188a7776c": { - "customLabel": true, - "dataType": "string", - "isBucketed": true, - "label": "Cost", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "10b91492-efef-490d-bc7a-c2074b2eae84", - "type": "column" - }, - "orderDirection": "desc", - "size": 15 - }, - "scale": "ordinal", - "sourceField": "gcp.billing.project_id" - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "3041fc1b-ceb8-4188-b55d-d354819f267e" - ], - "layerId": "325e60ce-0fbd-42b0-82f6-b10df31fef6c", - "seriesType": "bar_stacked", - "splitAccessor": "faaaaf23-f362-4a00-be9e-8a155208a39e", - "xAccessor": "c4bc659c-3e7c-41f2-bc38-32d9edee95e8" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "bar_stacked" - } - }, - "title": "Total Cost Bar Chart [Metricbeat GCP]", - "visualizationType": "lnsXY" - }, - "id": "73346db0-e88d-11ea-bf8c-d13ebf358a78", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-09-01T19:36:43.994Z", - "version": "WzU5MzgsOF0=" - } - ], - "version": "7.9.0" -} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-billing-overview.ndjson b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-billing-overview.ndjson new file mode 100644 index 00000000000..a10b4a0d53c --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-billing-overview.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Account ID Filter [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.provider\",\"id\":\"1598550838945\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Cloud Provider \",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"cloud.account.id\",\"id\":\"1598893530938\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Account ID\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"1598550838945\",\"type\":\"list\"},{\"fieldName\":\"gcp.billing.invoice_month\",\"id\":\"1598988595566\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Invoice Month\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Account ID Filter [Metricbeat GCP]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"5d2f9160-e88e-11ea-bf8c-d13ebf358a78","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:08.618Z","version":"WzM3NjgsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"e12171da-25a4-41ea-86d3-8fd71205c263":{"columnOrder":["6011e524-4646-410b-8d1c-06c281e8f7ed","f8ab301c-f139-4573-b233-ed8a3f717e24"],"columns":{"6011e524-4646-410b-8d1c-06c281e8f7ed":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Invoice Month","operationType":"terms","params":{"orderBy":{"columnId":"f8ab301c-f139-4573-b233-ed8a3f717e24","type":"column"},"orderDirection":"desc","size":12},"scale":"ordinal","sourceField":"gcp.billing.invoice_month"},"f8ab301c-f139-4573-b233-ed8a3f717e24":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total Billing Cost","operationType":"sum","scale":"ratio","sourceField":"gcp.billing.total"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"columns":[{"columnId":"6011e524-4646-410b-8d1c-06c281e8f7ed"},{"columnId":"f8ab301c-f139-4573-b233-ed8a3f717e24"}],"layerId":"e12171da-25a4-41ea-86d3-8fd71205c263"}},"title":"Total Cost Table [Metricbeat GCP]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"520c6f10-ec8a-11ea-a0ed-7fe6b565d158","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-e12171da-25a4-41ea-86d3-8fd71205c263","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:08.618Z","version":"WzM3NjksMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"4ca843af-63d7-46b9-a719-51a81eebf1f7":{"columnOrder":["2477291e-9021-4eb2-9fce-8da1ee792c49","10b91492-efef-490d-bc7a-c2074b2eae84"],"columns":{"10b91492-efef-490d-bc7a-c2074b2eae84":{"dataType":"number","isBucketed":false,"label":"Maximum of gcp.billing.total","operationType":"max","scale":"ratio","sourceField":"gcp.billing.total"},"2477291e-9021-4eb2-9fce-8da1ee792c49":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Cost Per Project ID","operationType":"terms","params":{"orderBy":{"columnId":"10b91492-efef-490d-bc7a-c2074b2eae84","type":"column"},"orderDirection":"desc","size":20},"scale":"ordinal","sourceField":"gcp.billing.project_id"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"layers":[{"categoryDisplay":"default","groups":["2477291e-9021-4eb2-9fce-8da1ee792c49"],"layerId":"4ca843af-63d7-46b9-a719-51a81eebf1f7","legendDisplay":"default","metric":"10b91492-efef-490d-bc7a-c2074b2eae84","nestedLegend":false,"numberDisplay":"percent"}],"shape":"pie"}},"title":"Cost Per Project ID [Metricbeat GCP]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"057de170-e88d-11ea-bf8c-d13ebf358a78","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-4ca843af-63d7-46b9-a719-51a81eebf1f7","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:08.618Z","version":"WzM3NzAsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"4cb00ce3-c62e-46f3-90ce-b69c876b9605":{"columnOrder":["2f66b924-5392-4e5e-93fe-5b23a87068c1"],"columns":{"2f66b924-5392-4e5e-93fe-5b23a87068c1":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"","operationType":"unique_count","scale":"ratio","sourceField":"gcp.billing.project_id"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"accessor":"2f66b924-5392-4e5e-93fe-5b23a87068c1","layerId":"4cb00ce3-c62e-46f3-90ce-b69c876b9605"}},"title":"Total Number Of Projects [Metricbeat GCP]","visualizationType":"lnsMetric"},"coreMigrationVersion":"8.0.0","id":"dd835300-e88f-11ea-bf8c-d13ebf358a78","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-4cb00ce3-c62e-46f3-90ce-b69c876b9605","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:08.618Z","version":"WzM3NzEsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"4ca843af-63d7-46b9-a719-51a81eebf1f7":{"columnOrder":["e25f49de-f161-4be8-a8fc-519188a7776c","b92edf5e-58bc-4382-9cd5-19db2c332c93","af747bf6-66e9-4760-bbd8-3dae9c97159d"],"columns":{"af747bf6-66e9-4760-bbd8-3dae9c97159d":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total Billing Cost","operationType":"max","scale":"ratio","sourceField":"gcp.billing.total"},"b92edf5e-58bc-4382-9cd5-19db2c332c93":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Invoice Month","operationType":"terms","params":{"orderBy":{"type":"alphabetical"},"orderDirection":"asc","size":5},"scale":"ordinal","sourceField":"gcp.billing.invoice_month"},"e25f49de-f161-4be8-a8fc-519188a7776c":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Monthly Cost","operationType":"terms","params":{"orderBy":{"columnId":"af747bf6-66e9-4760-bbd8-3dae9c97159d","type":"column"},"orderDirection":"desc","size":10},"scale":"ordinal","sourceField":"gcp.billing.project_id"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["af747bf6-66e9-4760-bbd8-3dae9c97159d"],"layerId":"4ca843af-63d7-46b9-a719-51a81eebf1f7","seriesType":"bar_stacked","splitAccessor":"b92edf5e-58bc-4382-9cd5-19db2c332c93","xAccessor":"e25f49de-f161-4be8-a8fc-519188a7776c"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar_stacked"}},"title":"Monthly Cost Per Project [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"e6933020-e88d-11ea-bf8c-d13ebf358a78","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-4ca843af-63d7-46b9-a719-51a81eebf1f7","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:08.618Z","version":"WzM3NzIsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"325e60ce-0fbd-42b0-82f6-b10df31fef6c":{"columnOrder":["faaaaf23-f362-4a00-be9e-8a155208a39e","c4bc659c-3e7c-41f2-bc38-32d9edee95e8","3041fc1b-ceb8-4188-b55d-d354819f267e"],"columns":{"3041fc1b-ceb8-4188-b55d-d354819f267e":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total Billing","operationType":"max","scale":"ratio","sourceField":"gcp.billing.total"},"c4bc659c-3e7c-41f2-bc38-32d9edee95e8":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"1d"},"scale":"interval","sourceField":"@timestamp"},"faaaaf23-f362-4a00-be9e-8a155208a39e":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Project ID","operationType":"terms","params":{"orderBy":{"columnId":"3041fc1b-ceb8-4188-b55d-d354819f267e","type":"column"},"orderDirection":"desc","size":10},"scale":"ordinal","sourceField":"gcp.billing.project_id"}}},"4ca843af-63d7-46b9-a719-51a81eebf1f7":{"columnOrder":["1164563d-d2b3-4067-bc7b-d694179182ed","10b91492-efef-490d-bc7a-c2074b2eae84"],"columns":{"10b91492-efef-490d-bc7a-c2074b2eae84":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total Billing Cost","operationType":"sum","scale":"ratio","sourceField":"gcp.billing.total"},"1164563d-d2b3-4067-bc7b-d694179182ed":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"1d"},"scale":"interval","sourceField":"@timestamp"},"e25f49de-f161-4be8-a8fc-519188a7776c":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Cost","operationType":"terms","params":{"orderBy":{"columnId":"10b91492-efef-490d-bc7a-c2074b2eae84","type":"column"},"orderDirection":"desc","size":15},"scale":"ordinal","sourceField":"gcp.billing.project_id"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["3041fc1b-ceb8-4188-b55d-d354819f267e"],"layerId":"325e60ce-0fbd-42b0-82f6-b10df31fef6c","seriesType":"bar_stacked","splitAccessor":"faaaaf23-f362-4a00-be9e-8a155208a39e","xAccessor":"c4bc659c-3e7c-41f2-bc38-32d9edee95e8"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar_stacked"}},"title":"Total Cost Bar Chart [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"73346db0-e88d-11ea-bf8c-d13ebf358a78","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-325e60ce-0fbd-42b0-82f6-b10df31fef6c","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-4ca843af-63d7-46b9-a719-51a81eebf1f7","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:08.618Z","version":"WzM3NzMsMV0="} +{"attributes":{"description":"Overview of Google Cloud Billing Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"2552123b-6ad6-4d63-89c3-0672ab428580\",\"w\":8,\"x\":0,\"y\":0},\"panelIndex\":\"2552123b-6ad6-4d63-89c3-0672ab428580\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_2552123b-6ad6-4d63-89c3-0672ab428580\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":20,\"i\":\"2d3d3b79-0656-45c2-b051-4489484b625c\",\"w\":10,\"x\":8,\"y\":0},\"panelIndex\":\"2d3d3b79-0656-45c2-b051-4489484b625c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cost Per Month\",\"panelRefName\":\"panel_2d3d3b79-0656-45c2-b051-4489484b625c\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":20,\"i\":\"b737e597-cc4d-4437-859c-6d491679599d\",\"w\":30,\"x\":18,\"y\":0},\"panelIndex\":\"b737e597-cc4d-4437-859c-6d491679599d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cost Per Project ID\",\"panelRefName\":\"panel_b737e597-cc4d-4437-859c-6d491679599d\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":6,\"i\":\"9eedb0c7-2089-4e0f-af98-721034203aad\",\"w\":8,\"x\":0,\"y\":14},\"panelIndex\":\"9eedb0c7-2089-4e0f-af98-721034203aad\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Number Of Projects\",\"panelRefName\":\"panel_9eedb0c7-2089-4e0f-af98-721034203aad\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"f4d0ebcb-ac15-4c31-ab57-7f22e0c3e02a\",\"w\":48,\"x\":0,\"y\":20},\"panelIndex\":\"f4d0ebcb-ac15-4c31-ab57-7f22e0c3e02a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cost Per Invoice Month\",\"panelRefName\":\"panel_f4d0ebcb-ac15-4c31-ab57-7f22e0c3e02a\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"991e60a8-68eb-4c2b-ac9a-b553e90dd49d\",\"w\":48,\"x\":0,\"y\":35},\"panelIndex\":\"991e60a8-68eb-4c2b-ac9a-b553e90dd49d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Billing Cost\",\"panelRefName\":\"panel_991e60a8-68eb-4c2b-ac9a-b553e90dd49d\"}]","timeRestore":false,"title":"[Metricbeat GCP] Billing Overview","version":1},"coreMigrationVersion":"8.0.0","id":"76c9e920-e890-11ea-bf8c-d13ebf358a78","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"5d2f9160-e88e-11ea-bf8c-d13ebf358a78","name":"2552123b-6ad6-4d63-89c3-0672ab428580:panel_2552123b-6ad6-4d63-89c3-0672ab428580","type":"visualization"},{"id":"520c6f10-ec8a-11ea-a0ed-7fe6b565d158","name":"2d3d3b79-0656-45c2-b051-4489484b625c:panel_2d3d3b79-0656-45c2-b051-4489484b625c","type":"lens"},{"id":"057de170-e88d-11ea-bf8c-d13ebf358a78","name":"b737e597-cc4d-4437-859c-6d491679599d:panel_b737e597-cc4d-4437-859c-6d491679599d","type":"lens"},{"id":"dd835300-e88f-11ea-bf8c-d13ebf358a78","name":"9eedb0c7-2089-4e0f-af98-721034203aad:panel_9eedb0c7-2089-4e0f-af98-721034203aad","type":"lens"},{"id":"e6933020-e88d-11ea-bf8c-d13ebf358a78","name":"f4d0ebcb-ac15-4c31-ab57-7f22e0c3e02a:panel_f4d0ebcb-ac15-4c31-ab57-7f22e0c3e02a","type":"lens"},{"id":"73346db0-e88d-11ea-bf8c-d13ebf358a78","name":"991e60a8-68eb-4c2b-ac9a-b553e90dd49d:panel_991e60a8-68eb-4c2b-ac9a-b553e90dd49d","type":"lens"}],"type":"dashboard","updated_at":"2021-08-04T16:31:08.618Z","version":"WzM3NjcsMV0="} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-compute-overview.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-compute-overview.json deleted file mode 100644 index c7fd124ddbb..00000000000 --- a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-compute-overview.json +++ /dev/null @@ -1,978 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of GCP Compute Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Filters" - }, - "gridData": { - "h": 17, - "i": "28706ab2-1142-401d-9143-f4176a034c10", - "w": 7, - "x": 0, - "y": 0 - }, - "panelIndex": "28706ab2-1142-401d-9143-f4176a034c10", - "panelRefName": "panel_0", - "title": "Filters", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "Instance Uptime" - }, - "gridData": { - "h": 17, - "i": "2034fcc8-5cd7-4ee8-8c8f-99054f025b05", - "w": 10, - "x": 7, - "y": 0 - }, - "panelIndex": "2034fcc8-5cd7-4ee8-8c8f-99054f025b05", - "panelRefName": "panel_1", - "title": "Instance Uptime", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "CPU Utilization" - }, - "gridData": { - "h": 17, - "i": "5f6f2ecd-dcaf-4455-967c-ede6b38f431f", - "w": 31, - "x": 17, - "y": 0 - }, - "panelIndex": "5f6f2ecd-dcaf-4455-967c-ede6b38f431f", - "panelRefName": "panel_2", - "title": "CPU Utilization", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "Read I/O" - }, - "gridData": { - "h": 15, - "i": "9c6f36f5-c2b2-40f5-8ee3-af6131168842", - "w": 24, - "x": 0, - "y": 17 - }, - "panelIndex": "9c6f36f5-c2b2-40f5-8ee3-af6131168842", - "panelRefName": "panel_3", - "title": "Read I/O", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "Write I/O" - }, - "gridData": { - "h": 15, - "i": "93906f63-42c9-4f30-9b2c-05041a9e1efe", - "w": 24, - "x": 24, - "y": 17 - }, - "panelIndex": "93906f63-42c9-4f30-9b2c-05041a9e1efe", - "panelRefName": "panel_4", - "title": "Write I/O", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "Network Sent Bytes" - }, - "gridData": { - "h": 15, - "i": "e1a4e862-dd00-409f-8746-8a8e4bc82807", - "w": 24, - "x": 0, - "y": 32 - }, - "panelIndex": "e1a4e862-dd00-409f-8746-8a8e4bc82807", - "panelRefName": "panel_5", - "title": "Network Sent Bytes", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "Network Received Bytes" - }, - "gridData": { - "h": 15, - "i": "6f47ff85-3ec1-4f6f-a63b-1a56f0cfc9ce", - "w": 24, - "x": 24, - "y": 32 - }, - "panelIndex": "6f47ff85-3ec1-4f6f-a63b-1a56f0cfc9ce", - "panelRefName": "panel_6", - "title": "Network Received Bytes", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "Firewall Dropped Bytes" - }, - "gridData": { - "h": 15, - "i": "00689e12-4cb3-49ad-ac33-dbe4279f446e", - "w": 24, - "x": 0, - "y": 47 - }, - "panelIndex": "00689e12-4cb3-49ad-ac33-dbe4279f446e", - "panelRefName": "panel_7", - "title": "Firewall Dropped Bytes", - "version": "7.9.1" - }, - { - "embeddableConfig": { - "title": "Firewall Dropped Packets" - }, - "gridData": { - "h": 15, - "i": "901e7bf5-35f5-4c1a-9627-27f6c20d2514", - "w": 24, - "x": 24, - "y": 47 - }, - "panelIndex": "901e7bf5-35f5-4c1a-9627-27f6c20d2514", - "panelRefName": "panel_8", - "title": "Firewall Dropped Packets", - "version": "7.9.1" - } - ], - "timeRestore": false, - "title": "[Metricbeat GCP] Compute Overview", - "version": 1 - }, - "id": "f40ee870-5e4a-11ea-a4f6-717338406083", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "3aa96470-5fc4-11ea-a4f6-717338406083", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "da5bc460-63e1-11ea-b0ac-95d4ecb1fecd", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "3f472ea0-5e47-11ea-a4f6-717338406083", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "89513bc0-5e48-11ea-a4f6-717338406083", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "95e1f050-5e48-11ea-a4f6-717338406083", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "6f795e70-5e49-11ea-a4f6-717338406083", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "43f45ba0-5e4a-11ea-a4f6-717338406083", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "9d919d00-5e4d-11ea-a4f6-717338406083", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "ef1508c0-5e4c-11ea-a4f6-717338406083", - "name": "panel_8", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-09-15T16:22:48.674Z", - "version": "Wzk1NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "az-instance-account Filter [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "cloud.availability_zone", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "availability zone", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "cloud.instance.name", - "id": "1583510592540", - "indexPatternRefName": "control_1_index_pattern", - "label": "instance name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "cloud.account.id", - "id": "1583510650472", - "indexPatternRefName": "control_2_index_pattern", - "label": "account id", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "az-instance-account Filter [Metricbeat GCP]", - "type": "input_control_vis" - } - }, - "id": "3aa96470-5fc4-11ea-a4f6-717338406083", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-09-15T16:22:42.806Z", - "version": "Wzk1MSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Compute Instance Uptime Gauge [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "74a18260-63df-11ea-9543-55b68a4bcad3" - } - ], - "bar_color_rules": [ - { - "id": "77a54c80-63df-11ea-9543-55b68a4bcad3" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "777371a0-63e0-11ea-9543-55b68a4bcad3", - "value": 0 - } - ], - "gauge_inner_width": 10, - "gauge_max": "", - "gauge_style": "circle", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#68BC00", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "percent", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Average Uptime", - "line_width": 1, - "metrics": [ - { - "denominator": "60", - "field": "gcp.compute.instance.uptime.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "numerator": "gcp.compute.instance.uptime.value", - "type": "avg", - "values": [ - "60" - ] - }, - { - "id": "81dc6000-63e7-11ea-994d-3b2599babc53", - "script": "params.uptime / 60\n", - "type": "math", - "variables": [ - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "85f3bd00-63e7-11ea-994d-3b2599babc53", - "name": "uptime" - } - ] - } - ], - "override_index_pattern": 0, - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "tooltip_mode": "show_all", - "type": "gauge" - }, - "title": "Compute Instance Uptime Gauge [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "da5bc460-63e1-11ea-b0ac-95d4ecb1fecd", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:01:39.831Z", - "version": "WzQzNCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Compute CPU Utilization [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "percent", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.compute.instance.cpu.utilization.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Compute CPU Utilization [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "3f472ea0-5e47-11ea-a4f6-717338406083", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:01:39.831Z", - "version": "WzQzNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Compute Read I/O [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.compute.instance.disk.read_ops_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "cloud.instance.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Compute Read I/O [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "89513bc0-5e48-11ea-a4f6-717338406083", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:01:39.831Z", - "version": "WzQzNiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Compute Write I/O [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.compute.instance.disk.write_ops_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "cloud.instance.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Compute Write I/O [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "95e1f050-5e48-11ea-a4f6-717338406083", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:01:39.831Z", - "version": "WzQzNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Compute Network Sent Bytes [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.compute.instance.network.sent_bytes_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "cloud.instance.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Compute Network Sent Bytes [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "6f795e70-5e49-11ea-a4f6-717338406083", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:01:39.831Z", - "version": "WzQzOCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Compute Network Received Bytes [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.compute.instance.network.received_bytes_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "cloud.instance.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Compute Network Received Bytes [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "43f45ba0-5e4a-11ea-a4f6-717338406083", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:01:39.831Z", - "version": "WzQzOSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Compute Firewall Dropped Bytes [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "3ece14c0-5e4c-11ea-9061-37f24ca5b01f" - } - ], - "bar_color_rules": [ - { - "id": "3b9c35c0-5e4c-11ea-9061-37f24ca5b01f" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "gauge_color_rules": [ - { - "id": "3b27a200-5e4c-11ea-9061-37f24ca5b01f" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.compute.firewall.dropped_bytes_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Compute Firewall Dropped Bytes [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "9d919d00-5e4d-11ea-a4f6-717338406083", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:01:39.831Z", - "version": "WzQ0MCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Compute Firewall Dropped Packets [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "3ece14c0-5e4c-11ea-9061-37f24ca5b01f" - } - ], - "bar_color_rules": [ - { - "id": "3b9c35c0-5e4c-11ea-9061-37f24ca5b01f" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "gauge_color_rules": [ - { - "id": "3b27a200-5e4c-11ea-9061-37f24ca5b01f" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "3", - "metrics": [ - { - "field": "gcp.compute.firewall.dropped_packets_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "2", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "time_range_mode": "entire_time_range", - "type": "top_n" - }, - "title": "Compute Firewall Dropped Packets [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "ef1508c0-5e4c-11ea-a4f6-717338406083", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-09-15T16:01:39.831Z", - "version": "WzQ0MSwxXQ==" - } - ], - "version": "7.9.1" -} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-compute-overview.ndjson b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-compute-overview.ndjson new file mode 100644 index 00000000000..9eef5be3359 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-compute-overview.ndjson @@ -0,0 +1,10 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"az-instance-account Filter [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.availability_zone\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"availability zone\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"cloud.instance.name\",\"id\":\"1583510592540\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"instance name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"cloud.account.id\",\"id\":\"1583510650472\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"account id\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"az-instance-account Filter [Metricbeat GCP]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"3aa96470-5fc4-11ea-a4f6-717338406083","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3NzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Compute Instance Uptime Gauge [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"74a18260-63df-11ea-9543-55b68a4bcad3\"}],\"bar_color_rules\":[{\"id\":\"77a54c80-63df-11ea-9543-55b68a4bcad3\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"777371a0-63e0-11ea-9543-55b68a4bcad3\",\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"\",\"gauge_style\":\"circle\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average Uptime\",\"line_width\":1,\"metrics\":[{\"denominator\":\"60\",\"field\":\"gcp.compute.instance.uptime.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"numerator\":\"gcp.compute.instance.uptime.value\",\"type\":\"avg\",\"values\":[\"60\"]},{\"id\":\"81dc6000-63e7-11ea-994d-3b2599babc53\",\"script\":\"params.uptime / 60\\n\",\"type\":\"math\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"85f3bd00-63e7-11ea-994d-3b2599babc53\",\"name\":\"uptime\"}]}],\"override_index_pattern\":0,\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Compute Instance Uptime Gauge [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"da5bc460-63e1-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3NzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Compute CPU Utilization [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.compute.instance.cpu.utilization.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Compute CPU Utilization [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3f472ea0-5e47-11ea-a4f6-717338406083","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3NzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Compute Read I/O [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.compute.instance.disk.read_ops_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Compute Read I/O [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"89513bc0-5e48-11ea-a4f6-717338406083","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3NzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Compute Write I/O [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.compute.instance.disk.write_ops_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Compute Write I/O [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"95e1f050-5e48-11ea-a4f6-717338406083","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3NzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Compute Network Sent Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.compute.instance.network.sent_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Compute Network Sent Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6f795e70-5e49-11ea-a4f6-717338406083","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3ODAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Compute Network Received Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.compute.instance.network.received_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Compute Network Received Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"43f45ba0-5e4a-11ea-a4f6-717338406083","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3ODEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Compute Firewall Dropped Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"3ece14c0-5e4c-11ea-9061-37f24ca5b01f\"}],\"bar_color_rules\":[{\"id\":\"3b9c35c0-5e4c-11ea-9061-37f24ca5b01f\"}],\"drop_last_bucket\":0,\"gauge_color_rules\":[{\"id\":\"3b27a200-5e4c-11ea-9061-37f24ca5b01f\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.compute.firewall.dropped_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Compute Firewall Dropped Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9d919d00-5e4d-11ea-a4f6-717338406083","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3ODIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Compute Firewall Dropped Packets [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"3ece14c0-5e4c-11ea-9061-37f24ca5b01f\"}],\"bar_color_rules\":[{\"id\":\"3b9c35c0-5e4c-11ea-9061-37f24ca5b01f\"}],\"drop_last_bucket\":0,\"gauge_color_rules\":[{\"id\":\"3b27a200-5e4c-11ea-9061-37f24ca5b01f\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"3\",\"metrics\":[{\"field\":\"gcp.compute.firewall.dropped_packets_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Compute Firewall Dropped Packets [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ef1508c0-5e4c-11ea-a4f6-717338406083","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3ODMsMV0="} +{"attributes":{"description":"Overview of GCP Compute Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":17,\"i\":\"28706ab2-1142-401d-9143-f4176a034c10\",\"w\":7,\"x\":0,\"y\":0},\"panelIndex\":\"28706ab2-1142-401d-9143-f4176a034c10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_28706ab2-1142-401d-9143-f4176a034c10\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":17,\"i\":\"2034fcc8-5cd7-4ee8-8c8f-99054f025b05\",\"w\":10,\"x\":7,\"y\":0},\"panelIndex\":\"2034fcc8-5cd7-4ee8-8c8f-99054f025b05\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Instance Uptime\",\"panelRefName\":\"panel_2034fcc8-5cd7-4ee8-8c8f-99054f025b05\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":17,\"i\":\"5f6f2ecd-dcaf-4455-967c-ede6b38f431f\",\"w\":31,\"x\":17,\"y\":0},\"panelIndex\":\"5f6f2ecd-dcaf-4455-967c-ede6b38f431f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"CPU Utilization\",\"panelRefName\":\"panel_5f6f2ecd-dcaf-4455-967c-ede6b38f431f\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"9c6f36f5-c2b2-40f5-8ee3-af6131168842\",\"w\":24,\"x\":0,\"y\":17},\"panelIndex\":\"9c6f36f5-c2b2-40f5-8ee3-af6131168842\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Read I/O\",\"panelRefName\":\"panel_9c6f36f5-c2b2-40f5-8ee3-af6131168842\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"93906f63-42c9-4f30-9b2c-05041a9e1efe\",\"w\":24,\"x\":24,\"y\":17},\"panelIndex\":\"93906f63-42c9-4f30-9b2c-05041a9e1efe\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Write I/O\",\"panelRefName\":\"panel_93906f63-42c9-4f30-9b2c-05041a9e1efe\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"e1a4e862-dd00-409f-8746-8a8e4bc82807\",\"w\":24,\"x\":0,\"y\":32},\"panelIndex\":\"e1a4e862-dd00-409f-8746-8a8e4bc82807\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Network Sent Bytes\",\"panelRefName\":\"panel_e1a4e862-dd00-409f-8746-8a8e4bc82807\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"6f47ff85-3ec1-4f6f-a63b-1a56f0cfc9ce\",\"w\":24,\"x\":24,\"y\":32},\"panelIndex\":\"6f47ff85-3ec1-4f6f-a63b-1a56f0cfc9ce\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Network Received Bytes\",\"panelRefName\":\"panel_6f47ff85-3ec1-4f6f-a63b-1a56f0cfc9ce\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"00689e12-4cb3-49ad-ac33-dbe4279f446e\",\"w\":24,\"x\":0,\"y\":47},\"panelIndex\":\"00689e12-4cb3-49ad-ac33-dbe4279f446e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Firewall Dropped Bytes\",\"panelRefName\":\"panel_00689e12-4cb3-49ad-ac33-dbe4279f446e\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"901e7bf5-35f5-4c1a-9627-27f6c20d2514\",\"w\":24,\"x\":24,\"y\":47},\"panelIndex\":\"901e7bf5-35f5-4c1a-9627-27f6c20d2514\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Firewall Dropped Packets\",\"panelRefName\":\"panel_901e7bf5-35f5-4c1a-9627-27f6c20d2514\"}]","timeRestore":false,"title":"[Metricbeat GCP] Compute Overview","version":1},"coreMigrationVersion":"8.0.0","id":"f40ee870-5e4a-11ea-a4f6-717338406083","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"3aa96470-5fc4-11ea-a4f6-717338406083","name":"28706ab2-1142-401d-9143-f4176a034c10:panel_28706ab2-1142-401d-9143-f4176a034c10","type":"visualization"},{"id":"da5bc460-63e1-11ea-b0ac-95d4ecb1fecd","name":"2034fcc8-5cd7-4ee8-8c8f-99054f025b05:panel_2034fcc8-5cd7-4ee8-8c8f-99054f025b05","type":"visualization"},{"id":"3f472ea0-5e47-11ea-a4f6-717338406083","name":"5f6f2ecd-dcaf-4455-967c-ede6b38f431f:panel_5f6f2ecd-dcaf-4455-967c-ede6b38f431f","type":"visualization"},{"id":"89513bc0-5e48-11ea-a4f6-717338406083","name":"9c6f36f5-c2b2-40f5-8ee3-af6131168842:panel_9c6f36f5-c2b2-40f5-8ee3-af6131168842","type":"visualization"},{"id":"95e1f050-5e48-11ea-a4f6-717338406083","name":"93906f63-42c9-4f30-9b2c-05041a9e1efe:panel_93906f63-42c9-4f30-9b2c-05041a9e1efe","type":"visualization"},{"id":"6f795e70-5e49-11ea-a4f6-717338406083","name":"e1a4e862-dd00-409f-8746-8a8e4bc82807:panel_e1a4e862-dd00-409f-8746-8a8e4bc82807","type":"visualization"},{"id":"43f45ba0-5e4a-11ea-a4f6-717338406083","name":"6f47ff85-3ec1-4f6f-a63b-1a56f0cfc9ce:panel_6f47ff85-3ec1-4f6f-a63b-1a56f0cfc9ce","type":"visualization"},{"id":"9d919d00-5e4d-11ea-a4f6-717338406083","name":"00689e12-4cb3-49ad-ac33-dbe4279f446e:panel_00689e12-4cb3-49ad-ac33-dbe4279f446e","type":"visualization"},{"id":"ef1508c0-5e4c-11ea-a4f6-717338406083","name":"901e7bf5-35f5-4c1a-9627-27f6c20d2514:panel_901e7bf5-35f5-4c1a-9627-27f6c20d2514","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3NzQsMV0="} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-load-balancing-https-overview.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-load-balancing-https-overview.json deleted file mode 100644 index 1b7e007a2ea..00000000000 --- a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-load-balancing-https-overview.json +++ /dev/null @@ -1,699 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of GCP Load Balancing HTTPS Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Filters" - }, - "gridData": { - "h": 6, - "i": "f89112f9-0f3a-4712-a317-23230cd66213", - "w": 48, - "x": 0, - "y": 0 - }, - "panelIndex": "f89112f9-0f3a-4712-a317-23230cd66213", - "panelRefName": "panel_0", - "title": "Filters", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Backend Request Count" - }, - "gridData": { - "h": 15, - "i": "8f4baaa9-6f4d-40fa-a77f-9f68f83a379c", - "w": 24, - "x": 24, - "y": 6 - }, - "panelIndex": "8f4baaa9-6f4d-40fa-a77f-9f68f83a379c", - "panelRefName": "panel_1", - "title": "Backend Request Count", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Request Count" - }, - "gridData": { - "h": 15, - "i": "10490530-a766-4f87-824a-3fc18bf2e85b", - "w": 24, - "x": 0, - "y": 6 - }, - "panelIndex": "10490530-a766-4f87-824a-3fc18bf2e85b", - "panelRefName": "panel_2", - "title": "Request Count", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Backend Request Bytes" - }, - "gridData": { - "h": 15, - "i": "e737b020-eb94-4eb1-b53d-50fa551df648", - "w": 24, - "x": 24, - "y": 21 - }, - "panelIndex": "e737b020-eb94-4eb1-b53d-50fa551df648", - "panelRefName": "panel_3", - "title": "Backend Request Bytes", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Request Bytes" - }, - "gridData": { - "h": 15, - "i": "b90db52e-982e-4360-b5ed-71147ba79246", - "w": 24, - "x": 0, - "y": 21 - }, - "panelIndex": "b90db52e-982e-4360-b5ed-71147ba79246", - "panelRefName": "panel_4", - "title": "Request Bytes", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Backend Response Bytes" - }, - "gridData": { - "h": 15, - "i": "a2a5c845-d426-425f-b2e6-e8df6038fd9d", - "w": 24, - "x": 24, - "y": 36 - }, - "panelIndex": "a2a5c845-d426-425f-b2e6-e8df6038fd9d", - "panelRefName": "panel_5", - "title": "Backend Response Bytes", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Response Bytes" - }, - "gridData": { - "h": 15, - "i": "2bf5bf09-e743-4c6d-8251-d12c9c70f273", - "w": 24, - "x": 0, - "y": 36 - }, - "panelIndex": "2bf5bf09-e743-4c6d-8251-d12c9c70f273", - "panelRefName": "panel_6", - "title": "Response Bytes", - "version": "7.6.2" - } - ], - "timeRestore": false, - "title": "[Metricbeat GCP] Load Balancing HTTPS Overview", - "version": 1 - }, - "id": "aa5b8bd0-9157-11ea-8180-7b0dacd9df87", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "d5418f80-9156-11ea-8180-7b0dacd9df87", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "dff87070-9155-11ea-8180-7b0dacd9df87", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "6f933ef0-9155-11ea-8180-7b0dacd9df87", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "eb891a20-9155-11ea-8180-7b0dacd9df87", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "8d4ddf40-9155-11ea-8180-7b0dacd9df87", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "0bd0a6e0-9156-11ea-8180-7b0dacd9df87", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "d63465e0-9154-11ea-8180-7b0dacd9df87", - "name": "panel_6", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-05-08T18:31:49.177Z", - "version": "WzQ3NTgsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Load Balancing HTTPS Filters [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "gcp.labels.resource.url_map_name", - "id": "1588961027791", - "indexPatternRefName": "control_0_index_pattern", - "label": "URL Map Name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "gcp.labels.resource.region", - "id": "1588961077426", - "indexPatternRefName": "control_1_index_pattern", - "label": "Region", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "gcp.labels.metrics.client_country", - "id": "1588961157559", - "indexPatternRefName": "control_2_index_pattern", - "label": "Client Country", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": false, - "useTimeFilter": false - }, - "title": "Load Balancing HTTPS Filters [Metricbeat GCP]", - "type": "input_control_vis" - } - }, - "id": "d5418f80-9156-11ea-8180-7b0dacd9df87", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-08T18:24:56.731Z", - "version": "WzQ3NTUsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Load Balancing HTTPS Backend Request Count [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "gcp.loadbalancing.https.backend_request_count.value : * " - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.loadbalancing.https.backend_request_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.url_map_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": null, - "type": "timeseries" - }, - "title": "Load Balancing HTTPS Backend Request Count [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "dff87070-9155-11ea-8180-7b0dacd9df87", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-08T18:20:05.237Z", - "version": "WzQ3NTIsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Load Balancing HTTPS Request Count [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "gcp.loadbalancing.https.request_count.value : * " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "gcp.loadbalancing.https.request_count.value : * " - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.loadbalancing.https.request_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.url_map_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": null, - "type": "timeseries" - }, - "title": "Load Balancing HTTPS Request Count [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "6f933ef0-9155-11ea-8180-7b0dacd9df87", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-08T18:18:06.538Z", - "version": "WzQ3NDksNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Load Balancing HTTPS Backend Request Bytes [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "gcp.loadbalancing.https.backend_request_bytes_count.value : * " - }, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.loadbalancing.https.backend_request_bytes_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.url_map_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": null, - "type": "timeseries" - }, - "title": "Load Balancing HTTPS Backend Request Bytes [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "eb891a20-9155-11ea-8180-7b0dacd9df87", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-08T18:17:31.778Z", - "version": "WzQ3NDgsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Load Balancing HTTPS Request Bytes [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "gcp.loadbalancing.https.request_bytes_count.value : * " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.loadbalancing.https.request_bytes_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.url_map_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": null, - "type": "timeseries" - }, - "title": "Load Balancing HTTPS Request Bytes [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "8d4ddf40-9155-11ea-8180-7b0dacd9df87", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-08T18:16:10.886Z", - "version": "WzQ3NDQsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Load Balancing HTTPS Backend Response Bytes [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "gcp.loadbalancing.https.backend_response_bytes_count.value : * " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.loadbalancing.https.backend_response_bytes_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.url_map_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": null, - "type": "timeseries" - }, - "title": "Load Balancing HTTPS Backend Response Bytes [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "0bd0a6e0-9156-11ea-8180-7b0dacd9df87", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-08T18:17:07.251Z", - "version": "WzQ3NDcsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Load Balancing HTTPS Response Bytes [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "gcp.loadbalancing.https.response_bytes_count.value : * " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "gcp.loadbalancing.https.response_bytes_count.value : * " - }, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.loadbalancing.https.response_bytes_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.url_map_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": null, - "type": "timeseries" - }, - "title": "Load Balancing HTTPS Response Bytes [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "d63465e0-9154-11ea-8180-7b0dacd9df87", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-08T18:19:42.432Z", - "version": "WzQ3NTEsNV0=" - } - ], - "version": "7.6.2" -} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-load-balancing-https-overview.ndjson b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-load-balancing-https-overview.ndjson new file mode 100644 index 00000000000..f579b050663 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-load-balancing-https-overview.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing HTTPS Filters [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"gcp.labels.resource.url_map_name\",\"id\":\"1588961027791\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"URL Map Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.resource.region\",\"id\":\"1588961077426\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.metrics.client_country\",\"id\":\"1588961157559\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Client Country\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Load Balancing HTTPS Filters [Metricbeat GCP]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"d5418f80-9156-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:10.632Z","version":"WzM3ODUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing HTTPS Backend Request Count [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.https.backend_request_count.value : * \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.https.backend_request_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.url_map_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":null,\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing HTTPS Backend Request Count [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"dff87070-9155-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:10.632Z","version":"WzM3ODYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing HTTPS Request Count [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.https.request_count.value : * \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.https.request_count.value : * \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.https.request_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.url_map_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":null,\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing HTTPS Request Count [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6f933ef0-9155-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:10.632Z","version":"WzM3ODcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing HTTPS Backend Request Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.https.backend_request_bytes_count.value : * \"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.https.backend_request_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.url_map_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":null,\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing HTTPS Backend Request Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"eb891a20-9155-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:10.632Z","version":"WzM3ODgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing HTTPS Request Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.https.request_bytes_count.value : * \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.https.request_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.url_map_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":null,\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing HTTPS Request Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8d4ddf40-9155-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:10.632Z","version":"WzM3ODksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing HTTPS Backend Response Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.https.backend_response_bytes_count.value : * \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.https.backend_response_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.url_map_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":null,\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing HTTPS Backend Response Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0bd0a6e0-9156-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:10.632Z","version":"WzM3OTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing HTTPS Response Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.https.response_bytes_count.value : * \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.https.response_bytes_count.value : * \"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.https.response_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.url_map_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":null,\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing HTTPS Response Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d63465e0-9154-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:10.632Z","version":"WzM3OTEsMV0="} +{"attributes":{"description":"Overview of GCP Load Balancing HTTPS Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"f89112f9-0f3a-4712-a317-23230cd66213\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"f89112f9-0f3a-4712-a317-23230cd66213\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_f89112f9-0f3a-4712-a317-23230cd66213\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"8f4baaa9-6f4d-40fa-a77f-9f68f83a379c\",\"w\":24,\"x\":24,\"y\":6},\"panelIndex\":\"8f4baaa9-6f4d-40fa-a77f-9f68f83a379c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Backend Request Count\",\"panelRefName\":\"panel_8f4baaa9-6f4d-40fa-a77f-9f68f83a379c\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"10490530-a766-4f87-824a-3fc18bf2e85b\",\"w\":24,\"x\":0,\"y\":6},\"panelIndex\":\"10490530-a766-4f87-824a-3fc18bf2e85b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Request Count\",\"panelRefName\":\"panel_10490530-a766-4f87-824a-3fc18bf2e85b\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"e737b020-eb94-4eb1-b53d-50fa551df648\",\"w\":24,\"x\":24,\"y\":21},\"panelIndex\":\"e737b020-eb94-4eb1-b53d-50fa551df648\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Backend Request Bytes\",\"panelRefName\":\"panel_e737b020-eb94-4eb1-b53d-50fa551df648\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"b90db52e-982e-4360-b5ed-71147ba79246\",\"w\":24,\"x\":0,\"y\":21},\"panelIndex\":\"b90db52e-982e-4360-b5ed-71147ba79246\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Request Bytes\",\"panelRefName\":\"panel_b90db52e-982e-4360-b5ed-71147ba79246\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"a2a5c845-d426-425f-b2e6-e8df6038fd9d\",\"w\":24,\"x\":24,\"y\":36},\"panelIndex\":\"a2a5c845-d426-425f-b2e6-e8df6038fd9d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Backend Response Bytes\",\"panelRefName\":\"panel_a2a5c845-d426-425f-b2e6-e8df6038fd9d\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2bf5bf09-e743-4c6d-8251-d12c9c70f273\",\"w\":24,\"x\":0,\"y\":36},\"panelIndex\":\"2bf5bf09-e743-4c6d-8251-d12c9c70f273\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Response Bytes\",\"panelRefName\":\"panel_2bf5bf09-e743-4c6d-8251-d12c9c70f273\"}]","timeRestore":false,"title":"[Metricbeat GCP] Load Balancing HTTPS Overview","version":1},"coreMigrationVersion":"8.0.0","id":"aa5b8bd0-9157-11ea-8180-7b0dacd9df87","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"d5418f80-9156-11ea-8180-7b0dacd9df87","name":"f89112f9-0f3a-4712-a317-23230cd66213:panel_f89112f9-0f3a-4712-a317-23230cd66213","type":"visualization"},{"id":"dff87070-9155-11ea-8180-7b0dacd9df87","name":"8f4baaa9-6f4d-40fa-a77f-9f68f83a379c:panel_8f4baaa9-6f4d-40fa-a77f-9f68f83a379c","type":"visualization"},{"id":"6f933ef0-9155-11ea-8180-7b0dacd9df87","name":"10490530-a766-4f87-824a-3fc18bf2e85b:panel_10490530-a766-4f87-824a-3fc18bf2e85b","type":"visualization"},{"id":"eb891a20-9155-11ea-8180-7b0dacd9df87","name":"e737b020-eb94-4eb1-b53d-50fa551df648:panel_e737b020-eb94-4eb1-b53d-50fa551df648","type":"visualization"},{"id":"8d4ddf40-9155-11ea-8180-7b0dacd9df87","name":"b90db52e-982e-4360-b5ed-71147ba79246:panel_b90db52e-982e-4360-b5ed-71147ba79246","type":"visualization"},{"id":"0bd0a6e0-9156-11ea-8180-7b0dacd9df87","name":"a2a5c845-d426-425f-b2e6-e8df6038fd9d:panel_a2a5c845-d426-425f-b2e6-e8df6038fd9d","type":"visualization"},{"id":"d63465e0-9154-11ea-8180-7b0dacd9df87","name":"2bf5bf09-e743-4c6d-8251-d12c9c70f273:panel_2bf5bf09-e743-4c6d-8251-d12c9c70f273","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:10.632Z","version":"WzM3ODQsMV0="} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-l3-overview.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-l3-overview.json deleted file mode 100644 index 629be2ae16f..00000000000 --- a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-l3-overview.json +++ /dev/null @@ -1,539 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of GCP Load Balancing L3 Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Filters" - }, - "gridData": { - "h": 6, - "i": "8b86e712-4709-458a-b8e9-40e79305b1aa", - "w": 48, - "x": 0, - "y": 0 - }, - "panelIndex": "8b86e712-4709-458a-b8e9-40e79305b1aa", - "panelRefName": "panel_0", - "title": "Filters", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Egress Packets" - }, - "gridData": { - "h": 15, - "i": "44d18a84-d060-4149-825d-eacc61f946f3", - "w": 24, - "x": 24, - "y": 6 - }, - "panelIndex": "44d18a84-d060-4149-825d-eacc61f946f3", - "panelRefName": "panel_1", - "title": "Egress Packets", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Egress Bytes" - }, - "gridData": { - "h": 15, - "i": "c38aeaae-69a7-4a6c-a35a-4bf5c8f70e86", - "w": 24, - "x": 0, - "y": 6 - }, - "panelIndex": "c38aeaae-69a7-4a6c-a35a-4bf5c8f70e86", - "panelRefName": "panel_2", - "title": "Egress Bytes", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Ingress Packets" - }, - "gridData": { - "h": 15, - "i": "c5782327-dc55-466d-97d8-b79618f0b47a", - "w": 24, - "x": 24, - "y": 21 - }, - "panelIndex": "c5782327-dc55-466d-97d8-b79618f0b47a", - "panelRefName": "panel_3", - "title": "Ingress Packets", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Ingress Bytes" - }, - "gridData": { - "h": 15, - "i": "beaf5f45-5217-4aed-b663-69e5e9ca35c3", - "w": 24, - "x": 0, - "y": 21 - }, - "panelIndex": "beaf5f45-5217-4aed-b663-69e5e9ca35c3", - "panelRefName": "panel_4", - "title": "Ingress Bytes", - "version": "7.6.2" - } - ], - "timeRestore": false, - "title": "[Metricbeat GCP] Load Balancing L3 Overview", - "version": 1 - }, - "id": "8f9c6cc0-909d-11ea-8180-7b0dacd9df87", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "3f4e9040-909d-11ea-8180-7b0dacd9df87", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "2f6b6740-909b-11ea-8180-7b0dacd9df87", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "e562eb50-909a-11ea-8180-7b0dacd9df87", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "543dac40-909b-11ea-8180-7b0dacd9df87", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "434f69f0-909b-11ea-8180-7b0dacd9df87", - "name": "panel_4", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-05-07T20:21:35.954Z", - "version": "WzQ2OTUsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Load Balancing L3 Filters [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "gcp.labels.resource.backend_name", - "id": "1588881306802", - "indexPatternRefName": "control_0_index_pattern", - "label": "Backend Name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "gcp.labels.metrics.client_zone", - "id": "1588881320708", - "indexPatternRefName": "control_1_index_pattern", - "label": "Client Zone", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "gcp.labels.metrics.client_network", - "id": "1588881383318", - "indexPatternRefName": "control_2_index_pattern", - "label": "Client Network", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "gcp.labels.metrics.client_subnetwork", - "id": "1588881498842", - "indexPatternRefName": "control_3_index_pattern", - "label": "Client Sub-network", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": false, - "useTimeFilter": false - }, - "title": "Load Balancing L3 Filters [Metricbeat GCP]", - "type": "input_control_vis" - } - }, - "id": "3f4e9040-909d-11ea-8180-7b0dacd9df87", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_3_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-07T20:01:49.530Z", - "version": "WzQ2ODcsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Load Balancing L3 Egress Packets [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "gcp.loadbalancing.l3.internal.egress_packets_count.value : * " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.loadbalancing.l3.internal.egress_packets_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.backend_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Load Balancing L3 Egress Packets [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "2f6b6740-909b-11ea-8180-7b0dacd9df87", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-07T20:04:34.525Z", - "version": "WzQ2OTIsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Load Balancing L3 Egress Bytes [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "gcp.loadbalancing.l3.internal.egress_bytes_count.value : * " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.loadbalancing.l3.internal.egress_bytes_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.backend_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Load Balancing L3 Egress Bytes [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "e562eb50-909a-11ea-8180-7b0dacd9df87", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-07T20:04:29.165Z", - "version": "WzQ2OTEsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Load Balancing L3 Ingress Packets [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "gcp.loadbalancing.l3.internal.ingress_packets_count.value : * " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.loadbalancing.l3.internal.ingress_packets_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.backend_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Load Balancing L3 Ingress Packets [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "543dac40-909b-11ea-8180-7b0dacd9df87", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-07T20:02:40.535Z", - "version": "WzQ2ODksNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Load Balancing L3 Ingress Bytes [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "filter": { - "language": "kuery", - "query": "gcp.loadbalancing.l3.internal.ingress_bytes_count.value : * " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.loadbalancing.l3.internal.ingress_bytes_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.backend_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Load Balancing L3 Ingress Bytes [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "434f69f0-909b-11ea-8180-7b0dacd9df87", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-07T20:02:58.735Z", - "version": "WzQ2OTAsNV0=" - } - ], - "version": "7.6.2" -} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-l3-overview.ndjson b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-l3-overview.ndjson new file mode 100644 index 00000000000..7de83b061f6 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-l3-overview.ndjson @@ -0,0 +1,6 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing L3 Filters [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"gcp.labels.resource.backend_name\",\"id\":\"1588881306802\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Backend Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.metrics.client_zone\",\"id\":\"1588881320708\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Client Zone\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.metrics.client_network\",\"id\":\"1588881383318\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Client Network\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.metrics.client_subnetwork\",\"id\":\"1588881498842\",\"indexPatternRefName\":\"control_3_index_pattern\",\"label\":\"Client Sub-network\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Load Balancing L3 Filters [Metricbeat GCP]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"3f4e9040-909d-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_3_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:11.683Z","version":"WzM3OTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing L3 Egress Packets [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.l3.internal.egress_packets_count.value : * \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.l3.internal.egress_packets_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.backend_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing L3 Egress Packets [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2f6b6740-909b-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:11.683Z","version":"WzM3OTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing L3 Egress Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.l3.internal.egress_bytes_count.value : * \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.l3.internal.egress_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.backend_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing L3 Egress Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e562eb50-909a-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:11.683Z","version":"WzM3OTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing L3 Ingress Packets [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.l3.internal.ingress_packets_count.value : * \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.l3.internal.ingress_packets_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.backend_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing L3 Ingress Packets [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"543dac40-909b-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:11.683Z","version":"WzM3OTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing L3 Ingress Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.l3.internal.ingress_bytes_count.value : * \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.l3.internal.ingress_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.backend_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing L3 Ingress Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"434f69f0-909b-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:11.683Z","version":"WzM3OTcsMV0="} +{"attributes":{"description":"Overview of GCP Load Balancing L3 Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"8b86e712-4709-458a-b8e9-40e79305b1aa\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"8b86e712-4709-458a-b8e9-40e79305b1aa\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_8b86e712-4709-458a-b8e9-40e79305b1aa\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"44d18a84-d060-4149-825d-eacc61f946f3\",\"w\":24,\"x\":24,\"y\":6},\"panelIndex\":\"44d18a84-d060-4149-825d-eacc61f946f3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Egress Packets\",\"panelRefName\":\"panel_44d18a84-d060-4149-825d-eacc61f946f3\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"c38aeaae-69a7-4a6c-a35a-4bf5c8f70e86\",\"w\":24,\"x\":0,\"y\":6},\"panelIndex\":\"c38aeaae-69a7-4a6c-a35a-4bf5c8f70e86\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Egress Bytes\",\"panelRefName\":\"panel_c38aeaae-69a7-4a6c-a35a-4bf5c8f70e86\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"c5782327-dc55-466d-97d8-b79618f0b47a\",\"w\":24,\"x\":24,\"y\":21},\"panelIndex\":\"c5782327-dc55-466d-97d8-b79618f0b47a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ingress Packets\",\"panelRefName\":\"panel_c5782327-dc55-466d-97d8-b79618f0b47a\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"beaf5f45-5217-4aed-b663-69e5e9ca35c3\",\"w\":24,\"x\":0,\"y\":21},\"panelIndex\":\"beaf5f45-5217-4aed-b663-69e5e9ca35c3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ingress Bytes\",\"panelRefName\":\"panel_beaf5f45-5217-4aed-b663-69e5e9ca35c3\"}]","timeRestore":false,"title":"[Metricbeat GCP] Load Balancing L3 Overview","version":1},"coreMigrationVersion":"8.0.0","id":"8f9c6cc0-909d-11ea-8180-7b0dacd9df87","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"3f4e9040-909d-11ea-8180-7b0dacd9df87","name":"8b86e712-4709-458a-b8e9-40e79305b1aa:panel_8b86e712-4709-458a-b8e9-40e79305b1aa","type":"visualization"},{"id":"2f6b6740-909b-11ea-8180-7b0dacd9df87","name":"44d18a84-d060-4149-825d-eacc61f946f3:panel_44d18a84-d060-4149-825d-eacc61f946f3","type":"visualization"},{"id":"e562eb50-909a-11ea-8180-7b0dacd9df87","name":"c38aeaae-69a7-4a6c-a35a-4bf5c8f70e86:panel_c38aeaae-69a7-4a6c-a35a-4bf5c8f70e86","type":"visualization"},{"id":"543dac40-909b-11ea-8180-7b0dacd9df87","name":"c5782327-dc55-466d-97d8-b79618f0b47a:panel_c5782327-dc55-466d-97d8-b79618f0b47a","type":"visualization"},{"id":"434f69f0-909b-11ea-8180-7b0dacd9df87","name":"beaf5f45-5217-4aed-b663-69e5e9ca35c3:panel_beaf5f45-5217-4aed-b663-69e5e9ca35c3","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:11.683Z","version":"WzM3OTIsMV0="} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-tcp-ssl-proxy-overview.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-tcp-ssl-proxy-overview.json deleted file mode 100644 index 178cf1de4d9..00000000000 --- a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-tcp-ssl-proxy-overview.json +++ /dev/null @@ -1,672 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of Google Cloud Load Balancing TCP SSL Proxy Metrics\n\n", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Filters" - }, - "gridData": { - "h": 16, - "i": "02422b42-6d8c-4924-acc1-0d7f4fb9a1b1", - "w": 10, - "x": 0, - "y": 0 - }, - "panelIndex": "02422b42-6d8c-4924-acc1-0d7f4fb9a1b1", - "panelRefName": "panel_0", - "title": "Filters", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Open Connections" - }, - "gridData": { - "h": 16, - "i": "da16e443-8524-47ea-83e1-6a16250ed61c", - "w": 13, - "x": 10, - "y": 0 - }, - "panelIndex": "da16e443-8524-47ea-83e1-6a16250ed61c", - "panelRefName": "panel_1", - "title": "Open Connections", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Closed Connections" - }, - "gridData": { - "h": 16, - "i": "305f8fc3-e763-4b2c-8998-9e0e057ce713", - "w": 13, - "x": 23, - "y": 0 - }, - "panelIndex": "305f8fc3-e763-4b2c-8998-9e0e057ce713", - "panelRefName": "panel_2", - "title": "Closed Connections", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "New Connections" - }, - "gridData": { - "h": 16, - "i": "e4fe30c7-906a-4878-bec7-7a78a06d98d0", - "w": 12, - "x": 36, - "y": 0 - }, - "panelIndex": "e4fe30c7-906a-4878-bec7-7a78a06d98d0", - "panelRefName": "panel_3", - "title": "New Connections", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Egress Bytes" - }, - "gridData": { - "h": 16, - "i": "c2bec6ee-96e8-440c-bfa4-6e0def7b0095", - "w": 23, - "x": 0, - "y": 16 - }, - "panelIndex": "c2bec6ee-96e8-440c-bfa4-6e0def7b0095", - "panelRefName": "panel_4", - "title": "Egress Bytes", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Ingress Bytes" - }, - "gridData": { - "h": 16, - "i": "fbaeaa8f-262d-41b1-a621-d6dbff52ff59", - "w": 25, - "x": 23, - "y": 16 - }, - "panelIndex": "fbaeaa8f-262d-41b1-a621-d6dbff52ff59", - "panelRefName": "panel_5", - "title": "Ingress Bytes", - "version": "7.6.2" - } - ], - "timeRestore": false, - "title": "[Metricbeat GCP] Load Balancing TCP SSL Proxy Overview", - "version": 1 - }, - "id": "6041d970-a6ae-11ea-950e-d57608e3aa51", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "6958ed10-a6ad-11ea-950e-d57608e3aa51", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "f86c26f0-a6aa-11ea-950e-d57608e3aa51", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "c4e1e090-a6aa-11ea-950e-d57608e3aa51", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "eed05d80-a6ac-11ea-950e-d57608e3aa51", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "afeb98a0-a6ac-11ea-950e-d57608e3aa51", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "be27b340-a6ac-11ea-950e-d57608e3aa51", - "name": "panel_5", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-06-04T21:57:25.767Z", - "version": "WzM2MjEsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Load Balancing TCP SSL Proxy Filters [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "gcp.labels.resource.backend_name", - "id": "1588881306802", - "indexPatternRefName": "control_0_index_pattern", - "label": "Backend Name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "gcp.labels.metrics.client_country", - "id": "1588881320708", - "indexPatternRefName": "control_1_index_pattern", - "label": "Client Country", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "gcp.labels.metrics.proxy_continent", - "id": "1588881383318", - "indexPatternRefName": "control_2_index_pattern", - "label": "Proxy Continent", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": false, - "useTimeFilter": false - }, - "title": "Load Balancing TCP SSL Proxy Filters [Metricbeat GCP]", - "type": "input_control_vis" - } - }, - "id": "6958ed10-a6ad-11ea-950e-d57608e3aa51", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T21:50:31.520Z", - "version": "WzM1OTksNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Load Balancing TCP SSL Proxy Open Connections [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "cd2ddc00-a6a9-11ea-9765-5f34a0c2e541" - } - ], - "bar_color_rules": [ - { - "id": "d26268d0-a6a9-11ea-9765-5f34a0c2e541" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=15m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "gcp.loadbalancing.tcp_ssl_proxy.open_connections.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.backend_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "top_n" - }, - "title": "Load Balancing TCP SSL Proxy Open Connections [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "f86c26f0-a6aa-11ea-950e-d57608e3aa51", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T21:33:03.071Z", - "version": "WzM1NTcsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Load Balancing TCP SSL Proxy Closed Connections [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "cd2ddc00-a6a9-11ea-9765-5f34a0c2e541" - } - ], - "bar_color_rules": [ - { - "id": "d26268d0-a6a9-11ea-9765-5f34a0c2e541" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "gcp.loadbalancing.tcp_ssl_proxy.closed_connections.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.backend_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "top_n" - }, - "title": "Load Balancing TCP SSL Proxy Closed Connections [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "c4e1e090-a6aa-11ea-950e-d57608e3aa51", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T21:31:36.600Z", - "version": "WzM1NTQsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Load Balancing TCP SSL Proxy New Connections [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "cd2ddc00-a6a9-11ea-9765-5f34a0c2e541" - } - ], - "bar_color_rules": [ - { - "id": "d26268d0-a6a9-11ea-9765-5f34a0c2e541" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=15m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.loadbalancing.tcp_ssl_proxy.new_connections.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.backend_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "top_n" - }, - "title": "Load Balancing TCP SSL Proxy New Connections [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "eed05d80-a6ac-11ea-950e-d57608e3aa51", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T21:47:05.944Z", - "version": "WzM1OTMsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Load Balancing TCP SSL Proxy Egress Bytes [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "cd2ddc00-a6a9-11ea-9765-5f34a0c2e541" - } - ], - "bar_color_rules": [ - { - "id": "d26268d0-a6a9-11ea-9765-5f34a0c2e541" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.loadbalancing.tcp_ssl_proxy.egress_bytes_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.backend_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Load Balancing TCP SSL Proxy Egress Bytes [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "afeb98a0-a6ac-11ea-950e-d57608e3aa51", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T21:45:20.426Z", - "version": "WzM1ODUsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Load Balancing TCP SSL Proxy Ingress Bytes [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "cd2ddc00-a6a9-11ea-9765-5f34a0c2e541" - } - ], - "bar_color_rules": [ - { - "id": "d26268d0-a6a9-11ea-9765-5f34a0c2e541" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=1m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.loadbalancing.tcp_ssl_proxy.ingress_bytes_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_color_mode": "kibana", - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.backend_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Load Balancing TCP SSL Proxy Ingress Bytes [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "be27b340-a6ac-11ea-950e-d57608e3aa51", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T21:45:44.308Z", - "version": "WzM1ODcsNV0=" - } - ], - "version": "7.6.2" -} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-tcp-ssl-proxy-overview.ndjson b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-tcp-ssl-proxy-overview.ndjson new file mode 100644 index 00000000000..73eb68bba50 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-tcp-ssl-proxy-overview.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Load Balancing TCP SSL Proxy Filters [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"gcp.labels.resource.backend_name\",\"id\":\"1588881306802\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Backend Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.metrics.client_country\",\"id\":\"1588881320708\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Client Country\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.metrics.proxy_continent\",\"id\":\"1588881383318\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Proxy Continent\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Load Balancing TCP SSL Proxy Filters [Metricbeat GCP]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"6958ed10-a6ad-11ea-950e-d57608e3aa51","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:12.649Z","version":"WzM3OTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing TCP SSL Proxy Open Connections [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cd2ddc00-a6a9-11ea-9765-5f34a0c2e541\"}],\"bar_color_rules\":[{\"id\":\"d26268d0-a6a9-11ea-9765-5f34a0c2e541\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=15m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"gcp.loadbalancing.tcp_ssl_proxy.open_connections.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.backend_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Load Balancing TCP SSL Proxy Open Connections [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f86c26f0-a6aa-11ea-950e-d57608e3aa51","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:12.649Z","version":"WzM4MDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing TCP SSL Proxy Closed Connections [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cd2ddc00-a6a9-11ea-9765-5f34a0c2e541\"}],\"bar_color_rules\":[{\"id\":\"d26268d0-a6a9-11ea-9765-5f34a0c2e541\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"gcp.loadbalancing.tcp_ssl_proxy.closed_connections.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.backend_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Load Balancing TCP SSL Proxy Closed Connections [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c4e1e090-a6aa-11ea-950e-d57608e3aa51","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:12.649Z","version":"WzM4MDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing TCP SSL Proxy New Connections [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cd2ddc00-a6a9-11ea-9765-5f34a0c2e541\"}],\"bar_color_rules\":[{\"id\":\"d26268d0-a6a9-11ea-9765-5f34a0c2e541\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=15m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.tcp_ssl_proxy.new_connections.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.backend_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Load Balancing TCP SSL Proxy New Connections [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"eed05d80-a6ac-11ea-950e-d57608e3aa51","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:12.649Z","version":"WzM4MDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing TCP SSL Proxy Egress Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cd2ddc00-a6a9-11ea-9765-5f34a0c2e541\"}],\"bar_color_rules\":[{\"id\":\"d26268d0-a6a9-11ea-9765-5f34a0c2e541\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.tcp_ssl_proxy.egress_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.backend_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing TCP SSL Proxy Egress Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"afeb98a0-a6ac-11ea-950e-d57608e3aa51","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:12.649Z","version":"WzM4MDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing TCP SSL Proxy Ingress Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cd2ddc00-a6a9-11ea-9765-5f34a0c2e541\"}],\"bar_color_rules\":[{\"id\":\"d26268d0-a6a9-11ea-9765-5f34a0c2e541\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.tcp_ssl_proxy.ingress_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.backend_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing TCP SSL Proxy Ingress Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"be27b340-a6ac-11ea-950e-d57608e3aa51","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:12.649Z","version":"WzM4MDQsMV0="} +{"attributes":{"description":"Overview of Google Cloud Load Balancing TCP SSL Proxy Metrics\n\n","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"02422b42-6d8c-4924-acc1-0d7f4fb9a1b1\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"02422b42-6d8c-4924-acc1-0d7f4fb9a1b1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_02422b42-6d8c-4924-acc1-0d7f4fb9a1b1\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"da16e443-8524-47ea-83e1-6a16250ed61c\",\"w\":13,\"x\":10,\"y\":0},\"panelIndex\":\"da16e443-8524-47ea-83e1-6a16250ed61c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Open Connections\",\"panelRefName\":\"panel_da16e443-8524-47ea-83e1-6a16250ed61c\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"305f8fc3-e763-4b2c-8998-9e0e057ce713\",\"w\":13,\"x\":23,\"y\":0},\"panelIndex\":\"305f8fc3-e763-4b2c-8998-9e0e057ce713\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Closed Connections\",\"panelRefName\":\"panel_305f8fc3-e763-4b2c-8998-9e0e057ce713\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"e4fe30c7-906a-4878-bec7-7a78a06d98d0\",\"w\":12,\"x\":36,\"y\":0},\"panelIndex\":\"e4fe30c7-906a-4878-bec7-7a78a06d98d0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"New Connections\",\"panelRefName\":\"panel_e4fe30c7-906a-4878-bec7-7a78a06d98d0\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"c2bec6ee-96e8-440c-bfa4-6e0def7b0095\",\"w\":23,\"x\":0,\"y\":16},\"panelIndex\":\"c2bec6ee-96e8-440c-bfa4-6e0def7b0095\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Egress Bytes\",\"panelRefName\":\"panel_c2bec6ee-96e8-440c-bfa4-6e0def7b0095\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"fbaeaa8f-262d-41b1-a621-d6dbff52ff59\",\"w\":25,\"x\":23,\"y\":16},\"panelIndex\":\"fbaeaa8f-262d-41b1-a621-d6dbff52ff59\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ingress Bytes\",\"panelRefName\":\"panel_fbaeaa8f-262d-41b1-a621-d6dbff52ff59\"}]","timeRestore":false,"title":"[Metricbeat GCP] Load Balancing TCP SSL Proxy Overview","version":1},"coreMigrationVersion":"8.0.0","id":"6041d970-a6ae-11ea-950e-d57608e3aa51","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"6958ed10-a6ad-11ea-950e-d57608e3aa51","name":"02422b42-6d8c-4924-acc1-0d7f4fb9a1b1:panel_02422b42-6d8c-4924-acc1-0d7f4fb9a1b1","type":"visualization"},{"id":"f86c26f0-a6aa-11ea-950e-d57608e3aa51","name":"da16e443-8524-47ea-83e1-6a16250ed61c:panel_da16e443-8524-47ea-83e1-6a16250ed61c","type":"visualization"},{"id":"c4e1e090-a6aa-11ea-950e-d57608e3aa51","name":"305f8fc3-e763-4b2c-8998-9e0e057ce713:panel_305f8fc3-e763-4b2c-8998-9e0e057ce713","type":"visualization"},{"id":"eed05d80-a6ac-11ea-950e-d57608e3aa51","name":"e4fe30c7-906a-4878-bec7-7a78a06d98d0:panel_e4fe30c7-906a-4878-bec7-7a78a06d98d0","type":"visualization"},{"id":"afeb98a0-a6ac-11ea-950e-d57608e3aa51","name":"c2bec6ee-96e8-440c-bfa4-6e0def7b0095:panel_c2bec6ee-96e8-440c-bfa4-6e0def7b0095","type":"visualization"},{"id":"be27b340-a6ac-11ea-950e-d57608e3aa51","name":"fbaeaa8f-262d-41b1-a621-d6dbff52ff59:panel_fbaeaa8f-262d-41b1-a621-d6dbff52ff59","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:12.649Z","version":"WzM3OTgsMV0="} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-pubsub-overview.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-pubsub-overview.json deleted file mode 100644 index 89c5ef41109..00000000000 --- a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-pubsub-overview.json +++ /dev/null @@ -1,1388 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of GCP PubSub Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Filters" - }, - "gridData": { - "h": 6, - "i": "3674673e-83e6-42df-8392-5284960a12ea", - "w": 48, - "x": 0, - "y": 0 - }, - "panelIndex": "3674673e-83e6-42df-8392-5284960a12ea", - "panelRefName": "panel_0", - "title": "Filters", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Topic Send Request" - }, - "gridData": { - "h": 13, - "i": "c1d89f36-43ed-42e6-98a0-8820b28f7953", - "w": 16, - "x": 0, - "y": 6 - }, - "panelIndex": "c1d89f36-43ed-42e6-98a0-8820b28f7953", - "panelRefName": "panel_1", - "title": "Topic Send Request", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Topic Oldest Retained Acked Message Age" - }, - "gridData": { - "h": 13, - "i": "b26a6238-b982-4082-9e4e-3e3d9361a865", - "w": 16, - "x": 16, - "y": 6 - }, - "panelIndex": "b26a6238-b982-4082-9e4e-3e3d9361a865", - "panelRefName": "panel_2", - "title": "Topic Oldest Retained Acked Message Age", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Topic Oldest Unacked Message Age" - }, - "gridData": { - "h": 13, - "i": "c7bbeabc-b158-4bdd-9ba3-9d45264d250b", - "w": 16, - "x": 32, - "y": 6 - }, - "panelIndex": "c7bbeabc-b158-4bdd-9ba3-9d45264d250b", - "panelRefName": "panel_3", - "title": "Topic Oldest Unacked Message Age", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Subsciption Oldest Unacked Message" - }, - "gridData": { - "h": 13, - "i": "b822a795-7086-4559-b7c0-176dfcc7380e", - "w": 16, - "x": 0, - "y": 19 - }, - "panelIndex": "b822a795-7086-4559-b7c0-176dfcc7380e", - "panelRefName": "panel_4", - "title": "Subsciption Oldest Unacked Message", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Subscription Number of Undelivered Messages" - }, - "gridData": { - "h": 13, - "i": "9c99d7bb-88f0-415c-abc1-c12ec1295236", - "w": 16, - "x": 16, - "y": 19 - }, - "panelIndex": "9c99d7bb-88f0-415c-abc1-c12ec1295236", - "panelRefName": "panel_5", - "title": "Subscription Number of Undelivered Messages", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Snapshot Oldest Message" - }, - "gridData": { - "h": 13, - "i": "8cc0ccbd-5798-4d68-a519-07ef1d9693fd", - "w": 16, - "x": 32, - "y": 32 - }, - "panelIndex": "8cc0ccbd-5798-4d68-a519-07ef1d9693fd", - "panelRefName": "panel_6", - "title": "Snapshot Oldest Message", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Snapshot Number of Messages" - }, - "gridData": { - "h": 13, - "i": "f9e45ec1-72e5-4f49-82cf-2132162d642c", - "w": 16, - "x": 0, - "y": 32 - }, - "panelIndex": "f9e45ec1-72e5-4f49-82cf-2132162d642c", - "panelRefName": "panel_7", - "title": "Snapshot Number of Messages", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Snapshot Backlog Bytes" - }, - "gridData": { - "h": 13, - "i": "d8876e62-daf0-4654-8618-8746d5da43e0", - "w": 16, - "x": 16, - "y": 32 - }, - "panelIndex": "d8876e62-daf0-4654-8618-8746d5da43e0", - "panelRefName": "panel_8", - "title": "Snapshot Backlog Bytes", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Subscription Backlog Bytes" - }, - "gridData": { - "h": 13, - "i": "6079e9ed-da9f-4457-bb3a-7ed20f98605e", - "w": 16, - "x": 32, - "y": 19 - }, - "panelIndex": "6079e9ed-da9f-4457-bb3a-7ed20f98605e", - "panelRefName": "panel_9", - "title": "Subscription Backlog Bytes", - "version": "7.9.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat GCP] PubSub Overview", - "version": 1 - }, - "id": "2b0fd7b0-feac-11ea-b032-d59f894a5072", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "f6e33a00-feaf-11ea-b032-d59f894a5072", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "bd399790-01a2-11eb-b032-d59f894a5072", - "name": "panel_1", - "type": "lens" - }, - { - "id": "25b76dc0-01a2-11eb-b032-d59f894a5072", - "name": "panel_2", - "type": "lens" - }, - { - "id": "5f97d300-01a1-11eb-b032-d59f894a5072", - "name": "panel_3", - "type": "lens" - }, - { - "id": "403d81e0-01a0-11eb-b032-d59f894a5072", - "name": "panel_4", - "type": "lens" - }, - { - "id": "11d06fc0-01a0-11eb-b032-d59f894a5072", - "name": "panel_5", - "type": "lens" - }, - { - "id": "f3e92c10-019d-11eb-b032-d59f894a5072", - "name": "panel_6", - "type": "lens" - }, - { - "id": "6de1f430-019d-11eb-b032-d59f894a5072", - "name": "panel_7", - "type": "lens" - }, - { - "id": "0776dbf0-019f-11eb-b032-d59f894a5072", - "name": "panel_8", - "type": "lens" - }, - { - "id": "79d80f10-01a0-11eb-b032-d59f894a5072", - "name": "panel_9", - "type": "lens" - } - ], - "type": "dashboard", - "updated_at": "2020-09-28T16:57:22.839Z", - "version": "WzY5MDQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "PubSub Filter [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "gcp.labels.resource.subscription_id", - "id": "1600984143264", - "indexPatternRefName": "control_0_index_pattern", - "label": "Subscription ID", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "gcp.labels.resource.topic_id", - "id": "1600984164459", - "indexPatternRefName": "control_1_index_pattern", - "label": "Topic ID", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "gcp.labels.resource.snapshot_id", - "id": "1601305675297", - "indexPatternRefName": "control_2_index_pattern", - "label": "Snapshot ID", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "gcp.labels.metrics.region", - "id": "1601307561260", - "indexPatternRefName": "control_3_index_pattern", - "label": "Region", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": false, - "useTimeFilter": false - }, - "title": "PubSub Filter [Metricbeat GCP]", - "type": "input_control_vis" - } - }, - "id": "f6e33a00-feaf-11ea-b032-d59f894a5072", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_3_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-09-28T16:24:38.594Z", - "version": "WzYzNjcsMV0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"91e62734-6524-424c-b2b5-3974c835dd6c\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true timeFields=\"@timestamp\" aggConfigs=\"[{\\\"id\\\":\\\"4f8dae5f-b49c-4a10-8f94-a29039f93919\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.labels.resource.topic_id\\\",\\\"orderBy\\\":\\\"27a71166-d245-471d-b550-ee0b1899ea88\\\",\\\"order\\\":\\\"desc\\\",\\\"size\\\":3,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"f0d11f8d-e2f9-408a-9114-a0b9b18142d4\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"date_histogram\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"@timestamp\\\",\\\"useNormalizedEsInterval\\\":true,\\\"interval\\\":\\\"1m\\\",\\\"drop_partials\\\":false,\\\"min_doc_count\\\":0,\\\"extended_bounds\\\":{}}},{\\\"id\\\":\\\"27a71166-d245-471d-b550-ee0b1899ea88\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.pubsub.topic.send_request_count.value\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-4f8dae5f-b49c-4a10-8f94-a29039f93919\\\":{\\\"label\\\":\\\"Top values of gcp.labels.resource.topic_id\\\",\\\"dataType\\\":\\\"string\\\",\\\"operationType\\\":\\\"terms\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"gcp.labels.resource.topic_id\\\",\\\"isBucketed\\\":true,\\\"params\\\":{\\\"size\\\":3,\\\"orderBy\\\":{\\\"type\\\":\\\"column\\\",\\\"columnId\\\":\\\"27a71166-d245-471d-b550-ee0b1899ea88\\\"},\\\"orderDirection\\\":\\\"desc\\\"},\\\"id\\\":\\\"4f8dae5f-b49c-4a10-8f94-a29039f93919\\\"},\\\"col-2-f0d11f8d-e2f9-408a-9114-a0b9b18142d4\\\":{\\\"label\\\":\\\"@timestamp\\\",\\\"dataType\\\":\\\"date\\\",\\\"operationType\\\":\\\"date_histogram\\\",\\\"sourceField\\\":\\\"@timestamp\\\",\\\"isBucketed\\\":true,\\\"scale\\\":\\\"interval\\\",\\\"params\\\":{\\\"interval\\\":\\\"1m\\\"},\\\"id\\\":\\\"f0d11f8d-e2f9-408a-9114-a0b9b18142d4\\\"},\\\"col-3-27a71166-d245-471d-b550-ee0b1899ea88\\\":{\\\"label\\\":\\\"Topic Send Request Count\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"suggestedPriority\\\":0,\\\"sourceField\\\":\\\"gcp.pubsub.topic.send_request_count.value\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"27a71166-d245-471d-b550-ee0b1899ea88\\\"}}\"}\n| lens_xy_chart xTitle=\"@timestamp\" yTitle=\"Topic Send Request Count\" legend={lens_xy_legendConfig isVisible=true position=\"right\"} fittingFunction=\"None\" \n layers={lens_xy_layer layerId=\"91e62734-6524-424c-b2b5-3974c835dd6c\" hide=false xAccessor=\"f0d11f8d-e2f9-408a-9114-a0b9b18142d4\" yScaleType=\"linear\" xScaleType=\"time\" isHistogram=true splitAccessor=\"4f8dae5f-b49c-4a10-8f94-a29039f93919\" seriesType=\"line\" accessors=\"27a71166-d245-471d-b550-ee0b1899ea88\" columnToLabel=\"{\\\"27a71166-d245-471d-b550-ee0b1899ea88\\\":\\\"Topic Send Request Count\\\",\\\"4f8dae5f-b49c-4a10-8f94-a29039f93919\\\":\\\"Top values of gcp.labels.resource.topic_id\\\"}\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "91e62734-6524-424c-b2b5-3974c835dd6c": { - "columnOrder": [ - "4f8dae5f-b49c-4a10-8f94-a29039f93919", - "f0d11f8d-e2f9-408a-9114-a0b9b18142d4", - "27a71166-d245-471d-b550-ee0b1899ea88" - ], - "columns": { - "27a71166-d245-471d-b550-ee0b1899ea88": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Topic Send Request Count", - "operationType": "avg", - "scale": "ratio", - "sourceField": "gcp.pubsub.topic.send_request_count.value", - "suggestedPriority": 0 - }, - "4f8dae5f-b49c-4a10-8f94-a29039f93919": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of gcp.labels.resource.topic_id", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "27a71166-d245-471d-b550-ee0b1899ea88", - "type": "column" - }, - "orderDirection": "desc", - "size": 3 - }, - "scale": "ordinal", - "sourceField": "gcp.labels.resource.topic_id" - }, - "f0d11f8d-e2f9-408a-9114-a0b9b18142d4": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "1m" - }, - "scale": "interval", - "sourceField": "@timestamp" - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "27a71166-d245-471d-b550-ee0b1899ea88" - ], - "layerId": "91e62734-6524-424c-b2b5-3974c835dd6c", - "seriesType": "line", - "splitAccessor": "4f8dae5f-b49c-4a10-8f94-a29039f93919", - "xAccessor": "f0d11f8d-e2f9-408a-9114-a0b9b18142d4" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line" - } - }, - "title": "Topic Send Request [Metricbeat GCP]", - "visualizationType": "lnsXY" - }, - "id": "bd399790-01a2-11eb-b032-d59f894a5072", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-09-28T16:24:38.594Z", - "version": "WzYzNjgsMV0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"91e62734-6524-424c-b2b5-3974c835dd6c\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true timeFields=\"@timestamp\" aggConfigs=\"[{\\\"id\\\":\\\"f0d11f8d-e2f9-408a-9114-a0b9b18142d4\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"date_histogram\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"@timestamp\\\",\\\"useNormalizedEsInterval\\\":true,\\\"interval\\\":\\\"1m\\\",\\\"drop_partials\\\":false,\\\"min_doc_count\\\":0,\\\"extended_bounds\\\":{}}},{\\\"id\\\":\\\"89c8d41d-6896-470d-8318-c0a691fa638e\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.labels.metrics.region\\\",\\\"orderBy\\\":\\\"27a71166-d245-471d-b550-ee0b1899ea88\\\",\\\"order\\\":\\\"desc\\\",\\\"size\\\":3,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"27a71166-d245-471d-b550-ee0b1899ea88\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.pubsub.topic.oldest_retained_acked_message_age_by_region.value\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-f0d11f8d-e2f9-408a-9114-a0b9b18142d4\\\":{\\\"label\\\":\\\"@timestamp\\\",\\\"dataType\\\":\\\"date\\\",\\\"operationType\\\":\\\"date_histogram\\\",\\\"sourceField\\\":\\\"@timestamp\\\",\\\"isBucketed\\\":true,\\\"scale\\\":\\\"interval\\\",\\\"params\\\":{\\\"interval\\\":\\\"1m\\\"},\\\"id\\\":\\\"f0d11f8d-e2f9-408a-9114-a0b9b18142d4\\\"},\\\"col-2-89c8d41d-6896-470d-8318-c0a691fa638e\\\":{\\\"label\\\":\\\"Top values of gcp.labels.metrics.region\\\",\\\"dataType\\\":\\\"string\\\",\\\"operationType\\\":\\\"terms\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"gcp.labels.metrics.region\\\",\\\"isBucketed\\\":true,\\\"params\\\":{\\\"size\\\":3,\\\"orderBy\\\":{\\\"type\\\":\\\"column\\\",\\\"columnId\\\":\\\"27a71166-d245-471d-b550-ee0b1899ea88\\\"},\\\"orderDirection\\\":\\\"desc\\\"},\\\"id\\\":\\\"89c8d41d-6896-470d-8318-c0a691fa638e\\\"},\\\"col-3-27a71166-d245-471d-b550-ee0b1899ea88\\\":{\\\"label\\\":\\\"Topic Oldest Retained Acked Message Age By Region\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"suggestedPriority\\\":0,\\\"sourceField\\\":\\\"gcp.pubsub.topic.oldest_retained_acked_message_age_by_region.value\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"27a71166-d245-471d-b550-ee0b1899ea88\\\"}}\"}\n| lens_xy_chart xTitle=\"@timestamp\" yTitle=\"Topic Oldest Retained Acked Message Age By Region\" legend={lens_xy_legendConfig isVisible=true position=\"right\"} fittingFunction=\"None\" \n layers={lens_xy_layer layerId=\"91e62734-6524-424c-b2b5-3974c835dd6c\" hide=false xAccessor=\"f0d11f8d-e2f9-408a-9114-a0b9b18142d4\" yScaleType=\"linear\" xScaleType=\"time\" isHistogram=true splitAccessor=\"89c8d41d-6896-470d-8318-c0a691fa638e\" seriesType=\"line\" accessors=\"27a71166-d245-471d-b550-ee0b1899ea88\" columnToLabel=\"{\\\"27a71166-d245-471d-b550-ee0b1899ea88\\\":\\\"Topic Oldest Retained Acked Message Age By Region\\\",\\\"89c8d41d-6896-470d-8318-c0a691fa638e\\\":\\\"Top values of gcp.labels.metrics.region\\\"}\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "91e62734-6524-424c-b2b5-3974c835dd6c": { - "columnOrder": [ - "f0d11f8d-e2f9-408a-9114-a0b9b18142d4", - "89c8d41d-6896-470d-8318-c0a691fa638e", - "27a71166-d245-471d-b550-ee0b1899ea88" - ], - "columns": { - "27a71166-d245-471d-b550-ee0b1899ea88": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Topic Oldest Retained Acked Message Age By Region", - "operationType": "avg", - "scale": "ratio", - "sourceField": "gcp.pubsub.topic.oldest_retained_acked_message_age_by_region.value", - "suggestedPriority": 0 - }, - "89c8d41d-6896-470d-8318-c0a691fa638e": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of gcp.labels.metrics.region", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "27a71166-d245-471d-b550-ee0b1899ea88", - "type": "column" - }, - "orderDirection": "desc", - "size": 3 - }, - "scale": "ordinal", - "sourceField": "gcp.labels.metrics.region" - }, - "f0d11f8d-e2f9-408a-9114-a0b9b18142d4": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "1m" - }, - "scale": "interval", - "sourceField": "@timestamp" - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "27a71166-d245-471d-b550-ee0b1899ea88" - ], - "layerId": "91e62734-6524-424c-b2b5-3974c835dd6c", - "seriesType": "line", - "splitAccessor": "89c8d41d-6896-470d-8318-c0a691fa638e", - "xAccessor": "f0d11f8d-e2f9-408a-9114-a0b9b18142d4" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line" - } - }, - "title": "Topic Oldest Retained Acked Message Age By Region [Metricbeat GCP]", - "visualizationType": "lnsXY" - }, - "id": "25b76dc0-01a2-11eb-b032-d59f894a5072", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-09-28T16:24:38.594Z", - "version": "WzYzNjksMV0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"91e62734-6524-424c-b2b5-3974c835dd6c\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true timeFields=\"@timestamp\" aggConfigs=\"[{\\\"id\\\":\\\"ed36f31e-ed2a-460a-a881-18e191f75d04\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.labels.metrics.region\\\",\\\"orderBy\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\",\\\"order\\\":\\\"desc\\\",\\\"size\\\":3,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"6be62612-437b-448d-9631-c6cc0938225d\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"date_histogram\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"@timestamp\\\",\\\"useNormalizedEsInterval\\\":true,\\\"interval\\\":\\\"1m\\\",\\\"drop_partials\\\":false,\\\"min_doc_count\\\":0,\\\"extended_bounds\\\":{}}},{\\\"id\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.pubsub.topic.oldest_unacked_message_age_by_region.value\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-ed36f31e-ed2a-460a-a881-18e191f75d04\\\":{\\\"label\\\":\\\"Top values of gcp.labels.metrics.region\\\",\\\"dataType\\\":\\\"string\\\",\\\"operationType\\\":\\\"terms\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"gcp.labels.metrics.region\\\",\\\"isBucketed\\\":true,\\\"params\\\":{\\\"size\\\":3,\\\"orderBy\\\":{\\\"type\\\":\\\"column\\\",\\\"columnId\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\"},\\\"orderDirection\\\":\\\"desc\\\"},\\\"id\\\":\\\"ed36f31e-ed2a-460a-a881-18e191f75d04\\\"},\\\"col-2-6be62612-437b-448d-9631-c6cc0938225d\\\":{\\\"label\\\":\\\"@timestamp\\\",\\\"dataType\\\":\\\"date\\\",\\\"operationType\\\":\\\"date_histogram\\\",\\\"sourceField\\\":\\\"@timestamp\\\",\\\"isBucketed\\\":true,\\\"scale\\\":\\\"interval\\\",\\\"params\\\":{\\\"interval\\\":\\\"1m\\\"},\\\"id\\\":\\\"6be62612-437b-448d-9631-c6cc0938225d\\\"},\\\"col-3-5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\":{\\\"label\\\":\\\"Topic Oldest Unacked Message Age By Region\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"suggestedPriority\\\":0,\\\"sourceField\\\":\\\"gcp.pubsub.topic.oldest_unacked_message_age_by_region.value\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\"}}\"}\n| lens_xy_chart xTitle=\"@timestamp\" yTitle=\"Topic Oldest Unacked Message Age By Region\" legend={lens_xy_legendConfig isVisible=true position=\"right\"} fittingFunction=\"None\" \n layers={lens_xy_layer layerId=\"91e62734-6524-424c-b2b5-3974c835dd6c\" hide=false xAccessor=\"6be62612-437b-448d-9631-c6cc0938225d\" yScaleType=\"linear\" xScaleType=\"time\" isHistogram=true splitAccessor=\"ed36f31e-ed2a-460a-a881-18e191f75d04\" seriesType=\"line\" accessors=\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\" columnToLabel=\"{\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\":\\\"Topic Oldest Unacked Message Age By Region\\\",\\\"ed36f31e-ed2a-460a-a881-18e191f75d04\\\":\\\"Top values of gcp.labels.metrics.region\\\"}\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "91e62734-6524-424c-b2b5-3974c835dd6c": { - "columnOrder": [ - "ed36f31e-ed2a-460a-a881-18e191f75d04", - "6be62612-437b-448d-9631-c6cc0938225d", - "5424865c-c988-4e26-b00b-b3cf90e1e4cf" - ], - "columns": { - "0888bf93-1ecf-467a-b0b5-9e0deee6545c": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of gcp.labels.resource.topic_id", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "5424865c-c988-4e26-b00b-b3cf90e1e4cf", - "type": "column" - }, - "orderDirection": "desc", - "size": 3 - }, - "scale": "ordinal", - "sourceField": "gcp.labels.resource.topic_id" - }, - "5424865c-c988-4e26-b00b-b3cf90e1e4cf": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Topic Oldest Unacked Message Age By Region", - "operationType": "avg", - "scale": "ratio", - "sourceField": "gcp.pubsub.topic.oldest_unacked_message_age_by_region.value", - "suggestedPriority": 0 - }, - "6be62612-437b-448d-9631-c6cc0938225d": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "1m" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "ed36f31e-ed2a-460a-a881-18e191f75d04": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of gcp.labels.metrics.region", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "5424865c-c988-4e26-b00b-b3cf90e1e4cf", - "type": "column" - }, - "orderDirection": "desc", - "size": 3 - }, - "scale": "ordinal", - "sourceField": "gcp.labels.metrics.region" - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "5424865c-c988-4e26-b00b-b3cf90e1e4cf" - ], - "layerId": "91e62734-6524-424c-b2b5-3974c835dd6c", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "ed36f31e-ed2a-460a-a881-18e191f75d04", - "xAccessor": "6be62612-437b-448d-9631-c6cc0938225d" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line" - } - }, - "title": "Topic Oldest Unacked Message Age By Region [Metricbeat GCP]", - "visualizationType": "lnsXY" - }, - "id": "5f97d300-01a1-11eb-b032-d59f894a5072", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-09-28T16:24:38.594Z", - "version": "WzYzNzAsMV0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"91e62734-6524-424c-b2b5-3974c835dd6c\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true timeFields=\"@timestamp\" aggConfigs=\"[{\\\"id\\\":\\\"6be62612-437b-448d-9631-c6cc0938225d\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"date_histogram\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"@timestamp\\\",\\\"useNormalizedEsInterval\\\":true,\\\"interval\\\":\\\"1m\\\",\\\"drop_partials\\\":false,\\\"min_doc_count\\\":0,\\\"extended_bounds\\\":{}}},{\\\"id\\\":\\\"2251f8b6-6091-4386-890b-4d0d33e79a96\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.labels.resource.subscription_id\\\",\\\"orderBy\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\",\\\"order\\\":\\\"desc\\\",\\\"size\\\":3,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.pubsub.subscription.oldest_unacked_message_age.value\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-6be62612-437b-448d-9631-c6cc0938225d\\\":{\\\"dataType\\\":\\\"date\\\",\\\"isBucketed\\\":true,\\\"label\\\":\\\"@timestamp\\\",\\\"operationType\\\":\\\"date_histogram\\\",\\\"params\\\":{\\\"interval\\\":\\\"1m\\\"},\\\"scale\\\":\\\"interval\\\",\\\"sourceField\\\":\\\"@timestamp\\\",\\\"id\\\":\\\"6be62612-437b-448d-9631-c6cc0938225d\\\"},\\\"col-2-2251f8b6-6091-4386-890b-4d0d33e79a96\\\":{\\\"dataType\\\":\\\"string\\\",\\\"isBucketed\\\":true,\\\"label\\\":\\\"Top values of gcp.labels.resource.subscription_id\\\",\\\"operationType\\\":\\\"terms\\\",\\\"params\\\":{\\\"orderBy\\\":{\\\"columnId\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\",\\\"type\\\":\\\"column\\\"},\\\"orderDirection\\\":\\\"desc\\\",\\\"size\\\":3},\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"gcp.labels.resource.subscription_id\\\",\\\"id\\\":\\\"2251f8b6-6091-4386-890b-4d0d33e79a96\\\"},\\\"col-3-5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\":{\\\"customLabel\\\":true,\\\"dataType\\\":\\\"number\\\",\\\"isBucketed\\\":false,\\\"label\\\":\\\"Subscription Oldest Unacked Message Age\\\",\\\"operationType\\\":\\\"avg\\\",\\\"scale\\\":\\\"ratio\\\",\\\"sourceField\\\":\\\"gcp.pubsub.subscription.oldest_unacked_message_age.value\\\",\\\"suggestedPriority\\\":0,\\\"id\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\"}}\"}\n| lens_xy_chart xTitle=\"@timestamp\" yTitle=\"Subscription Oldest Unacked Message Age\" legend={lens_xy_legendConfig isVisible=true position=\"right\"} fittingFunction=\"None\" \n layers={lens_xy_layer layerId=\"91e62734-6524-424c-b2b5-3974c835dd6c\" hide=false xAccessor=\"6be62612-437b-448d-9631-c6cc0938225d\" yScaleType=\"linear\" xScaleType=\"time\" isHistogram=true splitAccessor=\"2251f8b6-6091-4386-890b-4d0d33e79a96\" seriesType=\"line\" accessors=\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\" columnToLabel=\"{\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\":\\\"Subscription Oldest Unacked Message Age\\\",\\\"2251f8b6-6091-4386-890b-4d0d33e79a96\\\":\\\"Top values of gcp.labels.resource.subscription_id\\\"}\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "91e62734-6524-424c-b2b5-3974c835dd6c": { - "columnOrder": [ - "6be62612-437b-448d-9631-c6cc0938225d", - "2251f8b6-6091-4386-890b-4d0d33e79a96", - "5424865c-c988-4e26-b00b-b3cf90e1e4cf" - ], - "columns": { - "2251f8b6-6091-4386-890b-4d0d33e79a96": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of gcp.labels.resource.subscription_id", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "5424865c-c988-4e26-b00b-b3cf90e1e4cf", - "type": "column" - }, - "orderDirection": "desc", - "size": 3 - }, - "scale": "ordinal", - "sourceField": "gcp.labels.resource.subscription_id" - }, - "5424865c-c988-4e26-b00b-b3cf90e1e4cf": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Subscription Oldest Unacked Message Age", - "operationType": "avg", - "scale": "ratio", - "sourceField": "gcp.pubsub.subscription.oldest_unacked_message_age.value", - "suggestedPriority": 0 - }, - "6be62612-437b-448d-9631-c6cc0938225d": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "1m" - }, - "scale": "interval", - "sourceField": "@timestamp" - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "5424865c-c988-4e26-b00b-b3cf90e1e4cf" - ], - "layerId": "91e62734-6524-424c-b2b5-3974c835dd6c", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "2251f8b6-6091-4386-890b-4d0d33e79a96", - "xAccessor": "6be62612-437b-448d-9631-c6cc0938225d" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line" - } - }, - "title": "Subscription Oldest Unacked Message [Metricbeat GCP]", - "visualizationType": "lnsXY" - }, - "id": "403d81e0-01a0-11eb-b032-d59f894a5072", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-09-28T16:53:54.651Z", - "version": "WzY4NDIsMV0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"91e62734-6524-424c-b2b5-3974c835dd6c\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true timeFields=\"@timestamp\" aggConfigs=\"[{\\\"id\\\":\\\"6be62612-437b-448d-9631-c6cc0938225d\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"date_histogram\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"@timestamp\\\",\\\"useNormalizedEsInterval\\\":true,\\\"interval\\\":\\\"1m\\\",\\\"drop_partials\\\":false,\\\"min_doc_count\\\":0,\\\"extended_bounds\\\":{}}},{\\\"id\\\":\\\"2251f8b6-6091-4386-890b-4d0d33e79a96\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.labels.resource.subscription_id\\\",\\\"orderBy\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\",\\\"order\\\":\\\"desc\\\",\\\"size\\\":3,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.pubsub.subscription.num_undelivered_messages.value\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-6be62612-437b-448d-9631-c6cc0938225d\\\":{\\\"dataType\\\":\\\"date\\\",\\\"isBucketed\\\":true,\\\"label\\\":\\\"@timestamp\\\",\\\"operationType\\\":\\\"date_histogram\\\",\\\"params\\\":{\\\"interval\\\":\\\"1m\\\"},\\\"scale\\\":\\\"interval\\\",\\\"sourceField\\\":\\\"@timestamp\\\",\\\"id\\\":\\\"6be62612-437b-448d-9631-c6cc0938225d\\\"},\\\"col-2-2251f8b6-6091-4386-890b-4d0d33e79a96\\\":{\\\"dataType\\\":\\\"string\\\",\\\"isBucketed\\\":true,\\\"label\\\":\\\"Top values of gcp.labels.resource.subscription_id\\\",\\\"operationType\\\":\\\"terms\\\",\\\"params\\\":{\\\"orderBy\\\":{\\\"columnId\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\",\\\"type\\\":\\\"column\\\"},\\\"orderDirection\\\":\\\"desc\\\",\\\"size\\\":3},\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"gcp.labels.resource.subscription_id\\\",\\\"id\\\":\\\"2251f8b6-6091-4386-890b-4d0d33e79a96\\\"},\\\"col-3-5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\":{\\\"customLabel\\\":true,\\\"dataType\\\":\\\"number\\\",\\\"isBucketed\\\":false,\\\"label\\\":\\\"Subscription Number of Undelivered Messages\\\",\\\"operationType\\\":\\\"avg\\\",\\\"params\\\":{\\\"format\\\":{\\\"id\\\":\\\"bytes\\\",\\\"params\\\":{\\\"decimals\\\":0}}},\\\"scale\\\":\\\"ratio\\\",\\\"sourceField\\\":\\\"gcp.pubsub.subscription.num_undelivered_messages.value\\\",\\\"suggestedPriority\\\":0,\\\"id\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\"}}\" | lens_format_column format=\"bytes\" columnId=\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\" decimals=0}\n| lens_xy_chart xTitle=\"@timestamp\" yTitle=\"Subscription Number of Undelivered Messages\" legend={lens_xy_legendConfig isVisible=true position=\"right\"} fittingFunction=\"None\" \n layers={lens_xy_layer layerId=\"91e62734-6524-424c-b2b5-3974c835dd6c\" hide=false xAccessor=\"6be62612-437b-448d-9631-c6cc0938225d\" yScaleType=\"linear\" xScaleType=\"time\" isHistogram=true splitAccessor=\"2251f8b6-6091-4386-890b-4d0d33e79a96\" seriesType=\"line\" accessors=\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\" columnToLabel=\"{\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\":\\\"Subscription Number of Undelivered Messages\\\",\\\"2251f8b6-6091-4386-890b-4d0d33e79a96\\\":\\\"Top values of gcp.labels.resource.subscription_id\\\"}\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "91e62734-6524-424c-b2b5-3974c835dd6c": { - "columnOrder": [ - "6be62612-437b-448d-9631-c6cc0938225d", - "2251f8b6-6091-4386-890b-4d0d33e79a96", - "5424865c-c988-4e26-b00b-b3cf90e1e4cf" - ], - "columns": { - "2251f8b6-6091-4386-890b-4d0d33e79a96": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of gcp.labels.resource.subscription_id", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "5424865c-c988-4e26-b00b-b3cf90e1e4cf", - "type": "column" - }, - "orderDirection": "desc", - "size": 3 - }, - "scale": "ordinal", - "sourceField": "gcp.labels.resource.subscription_id" - }, - "5424865c-c988-4e26-b00b-b3cf90e1e4cf": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Subscription Number of Undelivered Messages", - "operationType": "avg", - "params": { - "format": { - "id": "bytes", - "params": { - "decimals": 0 - } - } - }, - "scale": "ratio", - "sourceField": "gcp.pubsub.subscription.num_undelivered_messages.value", - "suggestedPriority": 0 - }, - "6be62612-437b-448d-9631-c6cc0938225d": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "1m" - }, - "scale": "interval", - "sourceField": "@timestamp" - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "5424865c-c988-4e26-b00b-b3cf90e1e4cf" - ], - "layerId": "91e62734-6524-424c-b2b5-3974c835dd6c", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "2251f8b6-6091-4386-890b-4d0d33e79a96", - "xAccessor": "6be62612-437b-448d-9631-c6cc0938225d" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line" - } - }, - "title": "Subscription Number of Undelivered Messages [Metricbeat GCP]", - "visualizationType": "lnsXY" - }, - "id": "11d06fc0-01a0-11eb-b032-d59f894a5072", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-09-28T16:55:54.581Z", - "version": "WzY4NzYsMV0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"91e62734-6524-424c-b2b5-3974c835dd6c\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true timeFields=\"@timestamp\" aggConfigs=\"[{\\\"id\\\":\\\"6be62612-437b-448d-9631-c6cc0938225d\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"date_histogram\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"@timestamp\\\",\\\"useNormalizedEsInterval\\\":true,\\\"interval\\\":\\\"auto\\\",\\\"drop_partials\\\":false,\\\"min_doc_count\\\":0,\\\"extended_bounds\\\":{}}},{\\\"id\\\":\\\"921ee447-0c37-4e9d-9f42-a491f412baef\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.labels.resource.snapshot_id\\\",\\\"orderBy\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\",\\\"order\\\":\\\"desc\\\",\\\"size\\\":3,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.pubsub.snapshot.oldest_message_age.value\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-6be62612-437b-448d-9631-c6cc0938225d\\\":{\\\"label\\\":\\\"@timestamp\\\",\\\"dataType\\\":\\\"date\\\",\\\"operationType\\\":\\\"date_histogram\\\",\\\"sourceField\\\":\\\"@timestamp\\\",\\\"isBucketed\\\":true,\\\"scale\\\":\\\"interval\\\",\\\"params\\\":{\\\"interval\\\":\\\"auto\\\"},\\\"id\\\":\\\"6be62612-437b-448d-9631-c6cc0938225d\\\"},\\\"col-2-921ee447-0c37-4e9d-9f42-a491f412baef\\\":{\\\"label\\\":\\\"Top values of gcp.labels.resource.snapshot_id\\\",\\\"dataType\\\":\\\"string\\\",\\\"operationType\\\":\\\"terms\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"gcp.labels.resource.snapshot_id\\\",\\\"isBucketed\\\":true,\\\"params\\\":{\\\"size\\\":3,\\\"orderBy\\\":{\\\"type\\\":\\\"column\\\",\\\"columnId\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\"},\\\"orderDirection\\\":\\\"desc\\\"},\\\"id\\\":\\\"921ee447-0c37-4e9d-9f42-a491f412baef\\\"},\\\"col-3-5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\":{\\\"label\\\":\\\"Snapshot Oldest Message\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"suggestedPriority\\\":0,\\\"sourceField\\\":\\\"gcp.pubsub.snapshot.oldest_message_age.value\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\"}}\"}\n| lens_xy_chart xTitle=\"@timestamp\" yTitle=\"Snapshot Oldest Message\" legend={lens_xy_legendConfig isVisible=true position=\"right\"} fittingFunction=\"None\" \n layers={lens_xy_layer layerId=\"91e62734-6524-424c-b2b5-3974c835dd6c\" hide=false xAccessor=\"6be62612-437b-448d-9631-c6cc0938225d\" yScaleType=\"linear\" xScaleType=\"time\" isHistogram=true splitAccessor=\"921ee447-0c37-4e9d-9f42-a491f412baef\" seriesType=\"line\" accessors=\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\" columnToLabel=\"{\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\":\\\"Snapshot Oldest Message\\\",\\\"921ee447-0c37-4e9d-9f42-a491f412baef\\\":\\\"Top values of gcp.labels.resource.snapshot_id\\\"}\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "91e62734-6524-424c-b2b5-3974c835dd6c": { - "columnOrder": [ - "6be62612-437b-448d-9631-c6cc0938225d", - "921ee447-0c37-4e9d-9f42-a491f412baef", - "5424865c-c988-4e26-b00b-b3cf90e1e4cf" - ], - "columns": { - "5424865c-c988-4e26-b00b-b3cf90e1e4cf": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Snapshot Oldest Message", - "operationType": "avg", - "scale": "ratio", - "sourceField": "gcp.pubsub.snapshot.oldest_message_age.value", - "suggestedPriority": 0 - }, - "6be62612-437b-448d-9631-c6cc0938225d": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "921ee447-0c37-4e9d-9f42-a491f412baef": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of gcp.labels.resource.snapshot_id", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "5424865c-c988-4e26-b00b-b3cf90e1e4cf", - "type": "column" - }, - "orderDirection": "desc", - "size": 3 - }, - "scale": "ordinal", - "sourceField": "gcp.labels.resource.snapshot_id" - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "5424865c-c988-4e26-b00b-b3cf90e1e4cf" - ], - "layerId": "91e62734-6524-424c-b2b5-3974c835dd6c", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "921ee447-0c37-4e9d-9f42-a491f412baef", - "xAccessor": "6be62612-437b-448d-9631-c6cc0938225d" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line" - } - }, - "title": "Snapshot Oldest Message [Metricbeat GCP]", - "visualizationType": "lnsXY" - }, - "id": "f3e92c10-019d-11eb-b032-d59f894a5072", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-09-28T16:24:38.594Z", - "version": "WzYzNzMsMV0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"91e62734-6524-424c-b2b5-3974c835dd6c\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true timeFields=\"@timestamp\" aggConfigs=\"[{\\\"id\\\":\\\"6be62612-437b-448d-9631-c6cc0938225d\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"date_histogram\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"@timestamp\\\",\\\"useNormalizedEsInterval\\\":true,\\\"interval\\\":\\\"auto\\\",\\\"drop_partials\\\":false,\\\"min_doc_count\\\":0,\\\"extended_bounds\\\":{}}},{\\\"id\\\":\\\"ef2fc668-040b-4c82-9f65-5d3fb25c9536\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.labels.resource.snapshot_id\\\",\\\"orderBy\\\":\\\"_key\\\",\\\"order\\\":\\\"asc\\\",\\\"size\\\":3,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.pubsub.snapshot.num_messages.value\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-6be62612-437b-448d-9631-c6cc0938225d\\\":{\\\"label\\\":\\\"@timestamp\\\",\\\"dataType\\\":\\\"date\\\",\\\"operationType\\\":\\\"date_histogram\\\",\\\"sourceField\\\":\\\"@timestamp\\\",\\\"isBucketed\\\":true,\\\"scale\\\":\\\"interval\\\",\\\"params\\\":{\\\"interval\\\":\\\"auto\\\"},\\\"id\\\":\\\"6be62612-437b-448d-9631-c6cc0938225d\\\"},\\\"col-2-ef2fc668-040b-4c82-9f65-5d3fb25c9536\\\":{\\\"label\\\":\\\"Top values of gcp.labels.resource.snapshot_id\\\",\\\"dataType\\\":\\\"string\\\",\\\"operationType\\\":\\\"terms\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"gcp.labels.resource.snapshot_id\\\",\\\"isBucketed\\\":true,\\\"params\\\":{\\\"size\\\":3,\\\"orderBy\\\":{\\\"type\\\":\\\"alphabetical\\\"},\\\"orderDirection\\\":\\\"asc\\\"},\\\"id\\\":\\\"ef2fc668-040b-4c82-9f65-5d3fb25c9536\\\"},\\\"col-3-5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\":{\\\"label\\\":\\\"Snapshot Number of Messages\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"suggestedPriority\\\":0,\\\"sourceField\\\":\\\"gcp.pubsub.snapshot.num_messages.value\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"customLabel\\\":true,\\\"id\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\"}}\"}\n| lens_xy_chart xTitle=\"@timestamp\" yTitle=\"Snapshot Number of Messages\" legend={lens_xy_legendConfig isVisible=true position=\"right\"} fittingFunction=\"None\" \n layers={lens_xy_layer layerId=\"91e62734-6524-424c-b2b5-3974c835dd6c\" hide=false xAccessor=\"6be62612-437b-448d-9631-c6cc0938225d\" yScaleType=\"linear\" xScaleType=\"time\" isHistogram=true splitAccessor=\"ef2fc668-040b-4c82-9f65-5d3fb25c9536\" seriesType=\"line\" accessors=\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\" columnToLabel=\"{\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\":\\\"Snapshot Number of Messages\\\",\\\"ef2fc668-040b-4c82-9f65-5d3fb25c9536\\\":\\\"Top values of gcp.labels.resource.snapshot_id\\\"}\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "91e62734-6524-424c-b2b5-3974c835dd6c": { - "columnOrder": [ - "6be62612-437b-448d-9631-c6cc0938225d", - "ef2fc668-040b-4c82-9f65-5d3fb25c9536", - "5424865c-c988-4e26-b00b-b3cf90e1e4cf" - ], - "columns": { - "5424865c-c988-4e26-b00b-b3cf90e1e4cf": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Snapshot Number of Messages", - "operationType": "avg", - "scale": "ratio", - "sourceField": "gcp.pubsub.snapshot.num_messages.value", - "suggestedPriority": 0 - }, - "6be62612-437b-448d-9631-c6cc0938225d": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "ef2fc668-040b-4c82-9f65-5d3fb25c9536": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of gcp.labels.resource.snapshot_id", - "operationType": "terms", - "params": { - "orderBy": { - "type": "alphabetical" - }, - "orderDirection": "asc", - "size": 3 - }, - "scale": "ordinal", - "sourceField": "gcp.labels.resource.snapshot_id" - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "5424865c-c988-4e26-b00b-b3cf90e1e4cf" - ], - "layerId": "91e62734-6524-424c-b2b5-3974c835dd6c", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "ef2fc668-040b-4c82-9f65-5d3fb25c9536", - "xAccessor": "6be62612-437b-448d-9631-c6cc0938225d" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line" - } - }, - "title": "Snapshot Number of Messages [Metricbeat GCP]", - "visualizationType": "lnsXY" - }, - "id": "6de1f430-019d-11eb-b032-d59f894a5072", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-09-28T16:24:38.594Z", - "version": "WzYzNzQsMV0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"91e62734-6524-424c-b2b5-3974c835dd6c\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true timeFields=\"@timestamp\" aggConfigs=\"[{\\\"id\\\":\\\"6be62612-437b-448d-9631-c6cc0938225d\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"date_histogram\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"@timestamp\\\",\\\"useNormalizedEsInterval\\\":true,\\\"interval\\\":\\\"auto\\\",\\\"drop_partials\\\":false,\\\"min_doc_count\\\":0,\\\"extended_bounds\\\":{}}},{\\\"id\\\":\\\"921ee447-0c37-4e9d-9f42-a491f412baef\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.labels.resource.snapshot_id\\\",\\\"orderBy\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\",\\\"order\\\":\\\"desc\\\",\\\"size\\\":3,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.pubsub.snapshot.backlog_bytes.value\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-6be62612-437b-448d-9631-c6cc0938225d\\\":{\\\"label\\\":\\\"@timestamp\\\",\\\"dataType\\\":\\\"date\\\",\\\"operationType\\\":\\\"date_histogram\\\",\\\"sourceField\\\":\\\"@timestamp\\\",\\\"isBucketed\\\":true,\\\"scale\\\":\\\"interval\\\",\\\"params\\\":{\\\"interval\\\":\\\"auto\\\"},\\\"id\\\":\\\"6be62612-437b-448d-9631-c6cc0938225d\\\"},\\\"col-2-921ee447-0c37-4e9d-9f42-a491f412baef\\\":{\\\"label\\\":\\\"Top values of gcp.labels.resource.snapshot_id\\\",\\\"dataType\\\":\\\"string\\\",\\\"operationType\\\":\\\"terms\\\",\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"gcp.labels.resource.snapshot_id\\\",\\\"isBucketed\\\":true,\\\"params\\\":{\\\"size\\\":3,\\\"orderBy\\\":{\\\"type\\\":\\\"column\\\",\\\"columnId\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\"},\\\"orderDirection\\\":\\\"desc\\\"},\\\"id\\\":\\\"921ee447-0c37-4e9d-9f42-a491f412baef\\\"},\\\"col-3-5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\":{\\\"label\\\":\\\"Snapshot Backlog Bytes\\\",\\\"dataType\\\":\\\"number\\\",\\\"operationType\\\":\\\"avg\\\",\\\"suggestedPriority\\\":0,\\\"sourceField\\\":\\\"gcp.pubsub.snapshot.backlog_bytes.value\\\",\\\"isBucketed\\\":false,\\\"scale\\\":\\\"ratio\\\",\\\"params\\\":{\\\"format\\\":{\\\"id\\\":\\\"bytes\\\",\\\"params\\\":{\\\"decimals\\\":0}}},\\\"customLabel\\\":true,\\\"id\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\"}}\" | lens_format_column format=\"bytes\" columnId=\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\" decimals=0}\n| lens_xy_chart xTitle=\"@timestamp\" yTitle=\"Snapshot Backlog Bytes\" legend={lens_xy_legendConfig isVisible=true position=\"right\"} fittingFunction=\"None\" \n layers={lens_xy_layer layerId=\"91e62734-6524-424c-b2b5-3974c835dd6c\" hide=false xAccessor=\"6be62612-437b-448d-9631-c6cc0938225d\" yScaleType=\"linear\" xScaleType=\"time\" isHistogram=true splitAccessor=\"921ee447-0c37-4e9d-9f42-a491f412baef\" seriesType=\"line\" accessors=\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\" columnToLabel=\"{\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\":\\\"Snapshot Backlog Bytes\\\",\\\"921ee447-0c37-4e9d-9f42-a491f412baef\\\":\\\"Top values of gcp.labels.resource.snapshot_id\\\"}\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "91e62734-6524-424c-b2b5-3974c835dd6c": { - "columnOrder": [ - "6be62612-437b-448d-9631-c6cc0938225d", - "921ee447-0c37-4e9d-9f42-a491f412baef", - "5424865c-c988-4e26-b00b-b3cf90e1e4cf" - ], - "columns": { - "5424865c-c988-4e26-b00b-b3cf90e1e4cf": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Snapshot Backlog Bytes", - "operationType": "avg", - "params": { - "format": { - "id": "bytes", - "params": { - "decimals": 0 - } - } - }, - "scale": "ratio", - "sourceField": "gcp.pubsub.snapshot.backlog_bytes.value", - "suggestedPriority": 0 - }, - "6be62612-437b-448d-9631-c6cc0938225d": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "auto" - }, - "scale": "interval", - "sourceField": "@timestamp" - }, - "921ee447-0c37-4e9d-9f42-a491f412baef": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of gcp.labels.resource.snapshot_id", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "5424865c-c988-4e26-b00b-b3cf90e1e4cf", - "type": "column" - }, - "orderDirection": "desc", - "size": 3 - }, - "scale": "ordinal", - "sourceField": "gcp.labels.resource.snapshot_id" - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "5424865c-c988-4e26-b00b-b3cf90e1e4cf" - ], - "layerId": "91e62734-6524-424c-b2b5-3974c835dd6c", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "921ee447-0c37-4e9d-9f42-a491f412baef", - "xAccessor": "6be62612-437b-448d-9631-c6cc0938225d" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line" - } - }, - "title": "Snapshot Backlog Bytes [Metricbeat GCP]", - "visualizationType": "lnsXY" - }, - "id": "0776dbf0-019f-11eb-b032-d59f894a5072", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-09-28T16:24:38.594Z", - "version": "WzYzNzUsMV0=" - }, - { - "attributes": { - "description": "", - "expression": "kibana\n| kibana_context query=\"{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"}\" filters=\"[]\"\n| lens_merge_tables layerIds=\"91e62734-6524-424c-b2b5-3974c835dd6c\" \n tables={esaggs index=\"metricbeat-*\" metricsAtAllLevels=true partialRows=true includeFormatHints=true timeFields=\"@timestamp\" aggConfigs=\"[{\\\"id\\\":\\\"6be62612-437b-448d-9631-c6cc0938225d\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"date_histogram\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"@timestamp\\\",\\\"useNormalizedEsInterval\\\":true,\\\"interval\\\":\\\"1m\\\",\\\"drop_partials\\\":false,\\\"min_doc_count\\\":0,\\\"extended_bounds\\\":{}}},{\\\"id\\\":\\\"2251f8b6-6091-4386-890b-4d0d33e79a96\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"terms\\\",\\\"schema\\\":\\\"segment\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.labels.resource.subscription_id\\\",\\\"orderBy\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\",\\\"order\\\":\\\"desc\\\",\\\"size\\\":3,\\\"otherBucket\\\":false,\\\"otherBucketLabel\\\":\\\"Other\\\",\\\"missingBucket\\\":false,\\\"missingBucketLabel\\\":\\\"Missing\\\"}},{\\\"id\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\",\\\"enabled\\\":true,\\\"type\\\":\\\"avg\\\",\\\"schema\\\":\\\"metric\\\",\\\"params\\\":{\\\"field\\\":\\\"gcp.pubsub.subscription.backlog_bytes.value\\\",\\\"missing\\\":0}}]\" | lens_rename_columns idMap=\"{\\\"col-0-6be62612-437b-448d-9631-c6cc0938225d\\\":{\\\"dataType\\\":\\\"date\\\",\\\"isBucketed\\\":true,\\\"label\\\":\\\"@timestamp\\\",\\\"operationType\\\":\\\"date_histogram\\\",\\\"params\\\":{\\\"interval\\\":\\\"1m\\\"},\\\"scale\\\":\\\"interval\\\",\\\"sourceField\\\":\\\"@timestamp\\\",\\\"id\\\":\\\"6be62612-437b-448d-9631-c6cc0938225d\\\"},\\\"col-2-2251f8b6-6091-4386-890b-4d0d33e79a96\\\":{\\\"dataType\\\":\\\"string\\\",\\\"isBucketed\\\":true,\\\"label\\\":\\\"Top values of gcp.labels.resource.subscription_id\\\",\\\"operationType\\\":\\\"terms\\\",\\\"params\\\":{\\\"orderBy\\\":{\\\"columnId\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\",\\\"type\\\":\\\"column\\\"},\\\"orderDirection\\\":\\\"desc\\\",\\\"size\\\":3},\\\"scale\\\":\\\"ordinal\\\",\\\"sourceField\\\":\\\"gcp.labels.resource.subscription_id\\\",\\\"id\\\":\\\"2251f8b6-6091-4386-890b-4d0d33e79a96\\\"},\\\"col-3-5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\":{\\\"customLabel\\\":true,\\\"dataType\\\":\\\"number\\\",\\\"isBucketed\\\":false,\\\"label\\\":\\\"Subscription Backlog Bytes\\\",\\\"operationType\\\":\\\"avg\\\",\\\"params\\\":{\\\"format\\\":{\\\"id\\\":\\\"bytes\\\",\\\"params\\\":{\\\"decimals\\\":0}}},\\\"scale\\\":\\\"ratio\\\",\\\"sourceField\\\":\\\"gcp.pubsub.subscription.backlog_bytes.value\\\",\\\"suggestedPriority\\\":0,\\\"id\\\":\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\"}}\" | lens_format_column format=\"bytes\" columnId=\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\" decimals=0}\n| lens_xy_chart xTitle=\"@timestamp\" yTitle=\"Subscription Backlog Bytes\" legend={lens_xy_legendConfig isVisible=true position=\"right\"} fittingFunction=\"None\" \n layers={lens_xy_layer layerId=\"91e62734-6524-424c-b2b5-3974c835dd6c\" hide=false xAccessor=\"6be62612-437b-448d-9631-c6cc0938225d\" yScaleType=\"linear\" xScaleType=\"time\" isHistogram=true splitAccessor=\"2251f8b6-6091-4386-890b-4d0d33e79a96\" seriesType=\"line\" accessors=\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\" columnToLabel=\"{\\\"5424865c-c988-4e26-b00b-b3cf90e1e4cf\\\":\\\"Subscription Backlog Bytes\\\",\\\"2251f8b6-6091-4386-890b-4d0d33e79a96\\\":\\\"Top values of gcp.labels.resource.subscription_id\\\"}\"}", - "state": { - "datasourceMetaData": { - "filterableIndexPatterns": [ - { - "id": "metricbeat-*", - "title": "metricbeat-*" - } - ] - }, - "datasourceStates": { - "indexpattern": { - "currentIndexPatternId": "metricbeat-*", - "layers": { - "91e62734-6524-424c-b2b5-3974c835dd6c": { - "columnOrder": [ - "6be62612-437b-448d-9631-c6cc0938225d", - "2251f8b6-6091-4386-890b-4d0d33e79a96", - "5424865c-c988-4e26-b00b-b3cf90e1e4cf" - ], - "columns": { - "2251f8b6-6091-4386-890b-4d0d33e79a96": { - "dataType": "string", - "isBucketed": true, - "label": "Top values of gcp.labels.resource.subscription_id", - "operationType": "terms", - "params": { - "orderBy": { - "columnId": "5424865c-c988-4e26-b00b-b3cf90e1e4cf", - "type": "column" - }, - "orderDirection": "desc", - "size": 3 - }, - "scale": "ordinal", - "sourceField": "gcp.labels.resource.subscription_id" - }, - "5424865c-c988-4e26-b00b-b3cf90e1e4cf": { - "customLabel": true, - "dataType": "number", - "isBucketed": false, - "label": "Subscription Backlog Bytes", - "operationType": "avg", - "params": { - "format": { - "id": "bytes", - "params": { - "decimals": 0 - } - } - }, - "scale": "ratio", - "sourceField": "gcp.pubsub.subscription.backlog_bytes.value", - "suggestedPriority": 0 - }, - "6be62612-437b-448d-9631-c6cc0938225d": { - "dataType": "date", - "isBucketed": true, - "label": "@timestamp", - "operationType": "date_histogram", - "params": { - "interval": "1m" - }, - "scale": "interval", - "sourceField": "@timestamp" - } - }, - "indexPatternId": "metricbeat-*" - } - } - } - }, - "filters": [], - "query": { - "language": "kuery", - "query": "" - }, - "visualization": { - "fittingFunction": "None", - "layers": [ - { - "accessors": [ - "5424865c-c988-4e26-b00b-b3cf90e1e4cf" - ], - "layerId": "91e62734-6524-424c-b2b5-3974c835dd6c", - "position": "top", - "seriesType": "line", - "showGridlines": false, - "splitAccessor": "2251f8b6-6091-4386-890b-4d0d33e79a96", - "xAccessor": "6be62612-437b-448d-9631-c6cc0938225d" - } - ], - "legend": { - "isVisible": true, - "position": "right" - }, - "preferredSeriesType": "line" - } - }, - "title": "Subscription Backlog [Metricbeat GCP]", - "visualizationType": "lnsXY" - }, - "id": "79d80f10-01a0-11eb-b032-d59f894a5072", - "migrationVersion": { - "lens": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "lens", - "updated_at": "2020-09-28T16:56:57.481Z", - "version": "WzY4OTYsMV0=" - } - ], - "version": "7.9.0" -} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-pubsub-overview.ndjson b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-pubsub-overview.ndjson new file mode 100644 index 00000000000..60d80c729ee --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-pubsub-overview.ndjson @@ -0,0 +1,11 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"PubSub Filter [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"gcp.labels.resource.subscription_id\",\"id\":\"1600984143264\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription ID\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.resource.topic_id\",\"id\":\"1600984164459\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Topic ID\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.resource.snapshot_id\",\"id\":\"1601305675297\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Snapshot ID\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.metrics.region\",\"id\":\"1601307561260\",\"indexPatternRefName\":\"control_3_index_pattern\",\"label\":\"Region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"PubSub Filter [Metricbeat GCP]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"f6e33a00-feaf-11ea-b032-d59f894a5072","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_3_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MDYsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"91e62734-6524-424c-b2b5-3974c835dd6c":{"columnOrder":["4f8dae5f-b49c-4a10-8f94-a29039f93919","f0d11f8d-e2f9-408a-9114-a0b9b18142d4","27a71166-d245-471d-b550-ee0b1899ea88"],"columns":{"27a71166-d245-471d-b550-ee0b1899ea88":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Topic Send Request Count","operationType":"average","scale":"ratio","sourceField":"gcp.pubsub.topic.send_request_count.value"},"4f8dae5f-b49c-4a10-8f94-a29039f93919":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.resource.topic_id","operationType":"terms","params":{"orderBy":{"columnId":"27a71166-d245-471d-b550-ee0b1899ea88","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"gcp.labels.resource.topic_id"},"f0d11f8d-e2f9-408a-9114-a0b9b18142d4":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"1m"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["27a71166-d245-471d-b550-ee0b1899ea88"],"layerId":"91e62734-6524-424c-b2b5-3974c835dd6c","seriesType":"line","splitAccessor":"4f8dae5f-b49c-4a10-8f94-a29039f93919","xAccessor":"f0d11f8d-e2f9-408a-9114-a0b9b18142d4"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Topic Send Request [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"bd399790-01a2-11eb-b032-d59f894a5072","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MDcsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"91e62734-6524-424c-b2b5-3974c835dd6c":{"columnOrder":["f0d11f8d-e2f9-408a-9114-a0b9b18142d4","89c8d41d-6896-470d-8318-c0a691fa638e","27a71166-d245-471d-b550-ee0b1899ea88"],"columns":{"27a71166-d245-471d-b550-ee0b1899ea88":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Topic Oldest Retained Acked Message Age By Region","operationType":"average","scale":"ratio","sourceField":"gcp.pubsub.topic.oldest_retained_acked_message_age_by_region.value"},"89c8d41d-6896-470d-8318-c0a691fa638e":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.metrics.region","operationType":"terms","params":{"orderBy":{"columnId":"27a71166-d245-471d-b550-ee0b1899ea88","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"gcp.labels.metrics.region"},"f0d11f8d-e2f9-408a-9114-a0b9b18142d4":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"1m"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["27a71166-d245-471d-b550-ee0b1899ea88"],"layerId":"91e62734-6524-424c-b2b5-3974c835dd6c","seriesType":"line","splitAccessor":"89c8d41d-6896-470d-8318-c0a691fa638e","xAccessor":"f0d11f8d-e2f9-408a-9114-a0b9b18142d4"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Topic Oldest Retained Acked Message Age By Region [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"25b76dc0-01a2-11eb-b032-d59f894a5072","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MDgsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"91e62734-6524-424c-b2b5-3974c835dd6c":{"columnOrder":["ed36f31e-ed2a-460a-a881-18e191f75d04","6be62612-437b-448d-9631-c6cc0938225d","5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"columns":{"0888bf93-1ecf-467a-b0b5-9e0deee6545c":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.resource.topic_id","operationType":"terms","params":{"orderBy":{"columnId":"5424865c-c988-4e26-b00b-b3cf90e1e4cf","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"gcp.labels.resource.topic_id"},"5424865c-c988-4e26-b00b-b3cf90e1e4cf":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Topic Oldest Unacked Message Age By Region","operationType":"average","scale":"ratio","sourceField":"gcp.pubsub.topic.oldest_unacked_message_age_by_region.value"},"6be62612-437b-448d-9631-c6cc0938225d":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"1m"},"scale":"interval","sourceField":"@timestamp"},"ed36f31e-ed2a-460a-a881-18e191f75d04":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.metrics.region","operationType":"terms","params":{"orderBy":{"columnId":"5424865c-c988-4e26-b00b-b3cf90e1e4cf","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"gcp.labels.metrics.region"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"layerId":"91e62734-6524-424c-b2b5-3974c835dd6c","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"ed36f31e-ed2a-460a-a881-18e191f75d04","xAccessor":"6be62612-437b-448d-9631-c6cc0938225d"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Topic Oldest Unacked Message Age By Region [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"5f97d300-01a1-11eb-b032-d59f894a5072","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MDksMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"91e62734-6524-424c-b2b5-3974c835dd6c":{"columnOrder":["6be62612-437b-448d-9631-c6cc0938225d","2251f8b6-6091-4386-890b-4d0d33e79a96","5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"columns":{"2251f8b6-6091-4386-890b-4d0d33e79a96":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.resource.subscription_id","operationType":"terms","params":{"orderBy":{"columnId":"5424865c-c988-4e26-b00b-b3cf90e1e4cf","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"gcp.labels.resource.subscription_id"},"5424865c-c988-4e26-b00b-b3cf90e1e4cf":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Subscription Oldest Unacked Message Age","operationType":"average","scale":"ratio","sourceField":"gcp.pubsub.subscription.oldest_unacked_message_age.value"},"6be62612-437b-448d-9631-c6cc0938225d":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"1m"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"layerId":"91e62734-6524-424c-b2b5-3974c835dd6c","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"2251f8b6-6091-4386-890b-4d0d33e79a96","xAccessor":"6be62612-437b-448d-9631-c6cc0938225d"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Subscription Oldest Unacked Message [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"403d81e0-01a0-11eb-b032-d59f894a5072","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MTAsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"91e62734-6524-424c-b2b5-3974c835dd6c":{"columnOrder":["6be62612-437b-448d-9631-c6cc0938225d","2251f8b6-6091-4386-890b-4d0d33e79a96","5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"columns":{"2251f8b6-6091-4386-890b-4d0d33e79a96":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.resource.subscription_id","operationType":"terms","params":{"orderBy":{"columnId":"5424865c-c988-4e26-b00b-b3cf90e1e4cf","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"gcp.labels.resource.subscription_id"},"5424865c-c988-4e26-b00b-b3cf90e1e4cf":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Subscription Number of Undelivered Messages","operationType":"average","params":{"format":{"id":"bytes","params":{"decimals":0}}},"scale":"ratio","sourceField":"gcp.pubsub.subscription.num_undelivered_messages.value"},"6be62612-437b-448d-9631-c6cc0938225d":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"1m"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"layerId":"91e62734-6524-424c-b2b5-3974c835dd6c","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"2251f8b6-6091-4386-890b-4d0d33e79a96","xAccessor":"6be62612-437b-448d-9631-c6cc0938225d"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Subscription Number of Undelivered Messages [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"11d06fc0-01a0-11eb-b032-d59f894a5072","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MTEsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"91e62734-6524-424c-b2b5-3974c835dd6c":{"columnOrder":["6be62612-437b-448d-9631-c6cc0938225d","921ee447-0c37-4e9d-9f42-a491f412baef","5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"columns":{"5424865c-c988-4e26-b00b-b3cf90e1e4cf":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Snapshot Oldest Message","operationType":"average","scale":"ratio","sourceField":"gcp.pubsub.snapshot.oldest_message_age.value"},"6be62612-437b-448d-9631-c6cc0938225d":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"921ee447-0c37-4e9d-9f42-a491f412baef":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.resource.snapshot_id","operationType":"terms","params":{"orderBy":{"columnId":"5424865c-c988-4e26-b00b-b3cf90e1e4cf","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"gcp.labels.resource.snapshot_id"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"layerId":"91e62734-6524-424c-b2b5-3974c835dd6c","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"921ee447-0c37-4e9d-9f42-a491f412baef","xAccessor":"6be62612-437b-448d-9631-c6cc0938225d"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Snapshot Oldest Message [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"f3e92c10-019d-11eb-b032-d59f894a5072","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MTIsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"91e62734-6524-424c-b2b5-3974c835dd6c":{"columnOrder":["6be62612-437b-448d-9631-c6cc0938225d","ef2fc668-040b-4c82-9f65-5d3fb25c9536","5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"columns":{"5424865c-c988-4e26-b00b-b3cf90e1e4cf":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Snapshot Number of Messages","operationType":"average","scale":"ratio","sourceField":"gcp.pubsub.snapshot.num_messages.value"},"6be62612-437b-448d-9631-c6cc0938225d":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"ef2fc668-040b-4c82-9f65-5d3fb25c9536":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.resource.snapshot_id","operationType":"terms","params":{"orderBy":{"type":"alphabetical"},"orderDirection":"asc","size":3},"scale":"ordinal","sourceField":"gcp.labels.resource.snapshot_id"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"layerId":"91e62734-6524-424c-b2b5-3974c835dd6c","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"ef2fc668-040b-4c82-9f65-5d3fb25c9536","xAccessor":"6be62612-437b-448d-9631-c6cc0938225d"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Snapshot Number of Messages [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"6de1f430-019d-11eb-b032-d59f894a5072","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MTMsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"91e62734-6524-424c-b2b5-3974c835dd6c":{"columnOrder":["6be62612-437b-448d-9631-c6cc0938225d","921ee447-0c37-4e9d-9f42-a491f412baef","5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"columns":{"5424865c-c988-4e26-b00b-b3cf90e1e4cf":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Snapshot Backlog Bytes","operationType":"average","params":{"format":{"id":"bytes","params":{"decimals":0}}},"scale":"ratio","sourceField":"gcp.pubsub.snapshot.backlog_bytes.value"},"6be62612-437b-448d-9631-c6cc0938225d":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"921ee447-0c37-4e9d-9f42-a491f412baef":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.resource.snapshot_id","operationType":"terms","params":{"orderBy":{"columnId":"5424865c-c988-4e26-b00b-b3cf90e1e4cf","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"gcp.labels.resource.snapshot_id"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"layerId":"91e62734-6524-424c-b2b5-3974c835dd6c","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"921ee447-0c37-4e9d-9f42-a491f412baef","xAccessor":"6be62612-437b-448d-9631-c6cc0938225d"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Snapshot Backlog Bytes [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"0776dbf0-019f-11eb-b032-d59f894a5072","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MTQsMV0="} +{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"91e62734-6524-424c-b2b5-3974c835dd6c":{"columnOrder":["6be62612-437b-448d-9631-c6cc0938225d","2251f8b6-6091-4386-890b-4d0d33e79a96","5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"columns":{"2251f8b6-6091-4386-890b-4d0d33e79a96":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.resource.subscription_id","operationType":"terms","params":{"orderBy":{"columnId":"5424865c-c988-4e26-b00b-b3cf90e1e4cf","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"gcp.labels.resource.subscription_id"},"5424865c-c988-4e26-b00b-b3cf90e1e4cf":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Subscription Backlog Bytes","operationType":"average","params":{"format":{"id":"bytes","params":{"decimals":0}}},"scale":"ratio","sourceField":"gcp.pubsub.subscription.backlog_bytes.value"},"6be62612-437b-448d-9631-c6cc0938225d":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"1m"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"layerId":"91e62734-6524-424c-b2b5-3974c835dd6c","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"2251f8b6-6091-4386-890b-4d0d33e79a96","xAccessor":"6be62612-437b-448d-9631-c6cc0938225d"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Subscription Backlog [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"79d80f10-01a0-11eb-b032-d59f894a5072","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MTUsMV0="} +{"attributes":{"description":"Overview of GCP PubSub Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"3674673e-83e6-42df-8392-5284960a12ea\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"3674673e-83e6-42df-8392-5284960a12ea\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_3674673e-83e6-42df-8392-5284960a12ea\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"c1d89f36-43ed-42e6-98a0-8820b28f7953\",\"w\":16,\"x\":0,\"y\":6},\"panelIndex\":\"c1d89f36-43ed-42e6-98a0-8820b28f7953\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Topic Send Request\",\"panelRefName\":\"panel_c1d89f36-43ed-42e6-98a0-8820b28f7953\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"b26a6238-b982-4082-9e4e-3e3d9361a865\",\"w\":16,\"x\":16,\"y\":6},\"panelIndex\":\"b26a6238-b982-4082-9e4e-3e3d9361a865\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Topic Oldest Retained Acked Message Age\",\"panelRefName\":\"panel_b26a6238-b982-4082-9e4e-3e3d9361a865\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"c7bbeabc-b158-4bdd-9ba3-9d45264d250b\",\"w\":16,\"x\":32,\"y\":6},\"panelIndex\":\"c7bbeabc-b158-4bdd-9ba3-9d45264d250b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Topic Oldest Unacked Message Age\",\"panelRefName\":\"panel_c7bbeabc-b158-4bdd-9ba3-9d45264d250b\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"b822a795-7086-4559-b7c0-176dfcc7380e\",\"w\":16,\"x\":0,\"y\":19},\"panelIndex\":\"b822a795-7086-4559-b7c0-176dfcc7380e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Subsciption Oldest Unacked Message\",\"panelRefName\":\"panel_b822a795-7086-4559-b7c0-176dfcc7380e\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"9c99d7bb-88f0-415c-abc1-c12ec1295236\",\"w\":16,\"x\":16,\"y\":19},\"panelIndex\":\"9c99d7bb-88f0-415c-abc1-c12ec1295236\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Subscription Number of Undelivered Messages\",\"panelRefName\":\"panel_9c99d7bb-88f0-415c-abc1-c12ec1295236\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"8cc0ccbd-5798-4d68-a519-07ef1d9693fd\",\"w\":16,\"x\":32,\"y\":32},\"panelIndex\":\"8cc0ccbd-5798-4d68-a519-07ef1d9693fd\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Snapshot Oldest Message\",\"panelRefName\":\"panel_8cc0ccbd-5798-4d68-a519-07ef1d9693fd\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"f9e45ec1-72e5-4f49-82cf-2132162d642c\",\"w\":16,\"x\":0,\"y\":32},\"panelIndex\":\"f9e45ec1-72e5-4f49-82cf-2132162d642c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Snapshot Number of Messages\",\"panelRefName\":\"panel_f9e45ec1-72e5-4f49-82cf-2132162d642c\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"d8876e62-daf0-4654-8618-8746d5da43e0\",\"w\":16,\"x\":16,\"y\":32},\"panelIndex\":\"d8876e62-daf0-4654-8618-8746d5da43e0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Snapshot Backlog Bytes\",\"panelRefName\":\"panel_d8876e62-daf0-4654-8618-8746d5da43e0\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"6079e9ed-da9f-4457-bb3a-7ed20f98605e\",\"w\":16,\"x\":32,\"y\":19},\"panelIndex\":\"6079e9ed-da9f-4457-bb3a-7ed20f98605e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Subscription Backlog Bytes\",\"panelRefName\":\"panel_6079e9ed-da9f-4457-bb3a-7ed20f98605e\"}]","timeRestore":false,"title":"[Metricbeat GCP] PubSub Overview","version":1},"coreMigrationVersion":"8.0.0","id":"2b0fd7b0-feac-11ea-b032-d59f894a5072","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"f6e33a00-feaf-11ea-b032-d59f894a5072","name":"3674673e-83e6-42df-8392-5284960a12ea:panel_3674673e-83e6-42df-8392-5284960a12ea","type":"visualization"},{"id":"bd399790-01a2-11eb-b032-d59f894a5072","name":"c1d89f36-43ed-42e6-98a0-8820b28f7953:panel_c1d89f36-43ed-42e6-98a0-8820b28f7953","type":"lens"},{"id":"25b76dc0-01a2-11eb-b032-d59f894a5072","name":"b26a6238-b982-4082-9e4e-3e3d9361a865:panel_b26a6238-b982-4082-9e4e-3e3d9361a865","type":"lens"},{"id":"5f97d300-01a1-11eb-b032-d59f894a5072","name":"c7bbeabc-b158-4bdd-9ba3-9d45264d250b:panel_c7bbeabc-b158-4bdd-9ba3-9d45264d250b","type":"lens"},{"id":"403d81e0-01a0-11eb-b032-d59f894a5072","name":"b822a795-7086-4559-b7c0-176dfcc7380e:panel_b822a795-7086-4559-b7c0-176dfcc7380e","type":"lens"},{"id":"11d06fc0-01a0-11eb-b032-d59f894a5072","name":"9c99d7bb-88f0-415c-abc1-c12ec1295236:panel_9c99d7bb-88f0-415c-abc1-c12ec1295236","type":"lens"},{"id":"f3e92c10-019d-11eb-b032-d59f894a5072","name":"8cc0ccbd-5798-4d68-a519-07ef1d9693fd:panel_8cc0ccbd-5798-4d68-a519-07ef1d9693fd","type":"lens"},{"id":"6de1f430-019d-11eb-b032-d59f894a5072","name":"f9e45ec1-72e5-4f49-82cf-2132162d642c:panel_f9e45ec1-72e5-4f49-82cf-2132162d642c","type":"lens"},{"id":"0776dbf0-019f-11eb-b032-d59f894a5072","name":"d8876e62-daf0-4654-8618-8746d5da43e0:panel_d8876e62-daf0-4654-8618-8746d5da43e0","type":"lens"},{"id":"79d80f10-01a0-11eb-b032-d59f894a5072","name":"6079e9ed-da9f-4457-bb3a-7ed20f98605e:panel_6079e9ed-da9f-4457-bb3a-7ed20f98605e","type":"lens"}],"type":"dashboard","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MDUsMV0="} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-storage-overview.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-storage-overview.json deleted file mode 100644 index f14e2752632..00000000000 --- a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-storage-overview.json +++ /dev/null @@ -1,620 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of GCP Storage Metrics", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Filters" - }, - "gridData": { - "h": 15, - "i": "8d4e63d8-5747-4ebc-aeae-02d20e304526", - "w": 10, - "x": 0, - "y": 0 - }, - "panelIndex": "8d4e63d8-5747-4ebc-aeae-02d20e304526", - "panelRefName": "panel_0", - "title": "Filters", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Total Size of Objects" - }, - "gridData": { - "h": 15, - "i": "70c46ee3-be59-4fb1-a437-c8e92a1d0b2a", - "w": 38, - "x": 10, - "y": 0 - }, - "panelIndex": "70c46ee3-be59-4fb1-a437-c8e92a1d0b2a", - "panelRefName": "panel_1", - "title": "Total Size of Objects", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Total Number of Objects" - }, - "gridData": { - "h": 15, - "i": "ba356b1b-ec2b-4a05-8a70-19a43b3dc3a8", - "w": 24, - "x": 0, - "y": 15 - }, - "panelIndex": "ba356b1b-ec2b-4a05-8a70-19a43b3dc3a8", - "panelRefName": "panel_2", - "title": "Total Number of Objects", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "API Request Count" - }, - "gridData": { - "h": 15, - "i": "77f185ba-74ad-4102-bca7-08587cd1bf6c", - "w": 24, - "x": 24, - "y": 15 - }, - "panelIndex": "77f185ba-74ad-4102-bca7-08587cd1bf6c", - "panelRefName": "panel_3", - "title": "API Request Count", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Number of Bytes Received Over Network" - }, - "gridData": { - "h": 15, - "i": "f2ab3410-44b0-4b01-bb93-1394d6a64257", - "w": 24, - "x": 0, - "y": 30 - }, - "panelIndex": "f2ab3410-44b0-4b01-bb93-1394d6a64257", - "panelRefName": "panel_4", - "title": "Number of Bytes Received Over Network", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Number of Bytes Sent Over Network" - }, - "gridData": { - "h": 15, - "i": "75d342a5-f67b-4c61-b31d-b0b2db2ab50a", - "w": 24, - "x": 24, - "y": 30 - }, - "panelIndex": "75d342a5-f67b-4c61-b31d-b0b2db2ab50a", - "panelRefName": "panel_5", - "title": "Number of Bytes Sent Over Network", - "version": "7.6.2" - } - ], - "timeRestore": false, - "title": "[Metricbeat GCP] Storage Overview", - "version": 1 - }, - "id": "ca401040-8e52-11ea-9fa6-4d675d5290dc", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "4b44b2b0-8e51-11ea-9fa6-4d675d5290dc", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "239e2290-8e52-11ea-9fa6-4d675d5290dc", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "02b3c620-8e52-11ea-9fa6-4d675d5290dc", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "91eb8d10-8e51-11ea-9fa6-4d675d5290dc", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "d4cc5ec0-8e51-11ea-9fa6-4d675d5290dc", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "e9e44d90-8e51-11ea-9fa6-4d675d5290dc", - "name": "panel_5", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-05-12T22:08:40.264Z", - "version": "Wzg5OCwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Storage Filters [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "gcp.labels.resource.bucket_name", - "id": "1588628954328", - "indexPatternRefName": "control_0_index_pattern", - "label": "Bucket Name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "gcp.labels.resource.location", - "id": "1588628981768", - "indexPatternRefName": "control_1_index_pattern", - "label": "Location", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "gcp.labels.metrics.storage_class", - "id": "1588629001851", - "indexPatternRefName": "control_2_index_pattern", - "label": "Storage Class", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": false, - "useTimeFilter": false - }, - "title": "Storage Filters [Metricbeat GCP]", - "type": "input_control_vis" - } - }, - "id": "4b44b2b0-8e51-11ea-9fa6-4d675d5290dc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_2_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-12T20:42:02.393Z", - "version": "WzQ2NiwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Storage Total Bytes [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "8ec10ba0-8e52-11ea-8164-1ddf506ac7af" - } - ], - "bar_color_rules": [ - { - "id": "8fdd7820-8e52-11ea-8164-1ddf506ac7af" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 1, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=15m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "gcp.storage.storage.total_bytes.value : * " - }, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.storage.storage.total_bytes.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.bucket_name", - "terms_include": "", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "time_range_mode": "last_value", - "type": "top_n" - }, - "title": "Storage Total Bytes [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "239e2290-8e52-11ea-9fa6-4d675d5290dc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-12T22:08:00.766Z", - "version": "Wzg5NSwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Storage Object Count [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "23042750-8e64-11ea-9fba-216938b39761" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "2268f8c0-8e64-11ea-9fba-216938b39761" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=15m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "gcp.storage.storage.object_count.value : * " - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.storage.storage.object_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.bucket_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "top_n" - }, - "title": "Storage Object Count [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "02b3c620-8e52-11ea-9fa6-4d675d5290dc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-12T22:08:13.670Z", - "version": "Wzg5NiwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Storage API Request Count [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.storage.api.request_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.bucket_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Storage API Request Count [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "91eb8d10-8e51-11ea-9fa6-4d675d5290dc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-12T22:08:30.520Z", - "version": "Wzg5NywyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Storage Network Received Bytes [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.storage.network.received_bytes_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.bucket_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Storage Network Received Bytes [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "d4cc5ec0-8e51-11ea-9fa6-4d675d5290dc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-12T22:07:26.735Z", - "version": "Wzg5NCwyXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Storage Network Sent Bytes [Metricbeat GCP]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "\u003e=5m", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": "2", - "metrics": [ - { - "field": "gcp.storage.network.sent_bytes_count.value", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "3", - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "gcp.labels.resource.bucket_name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Storage Network Sent Bytes [Metricbeat GCP]", - "type": "metrics" - } - }, - "id": "e9e44d90-8e51-11ea-9fa6-4d675d5290dc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-12T22:06:26.974Z", - "version": "Wzg3NywyXQ==" - } - ], - "version": "7.6.2" -} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-storage-overview.ndjson b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-storage-overview.ndjson new file mode 100644 index 00000000000..194a7e33cc0 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-storage-overview.ndjson @@ -0,0 +1,7 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Filters [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"gcp.labels.resource.bucket_name\",\"id\":\"1588628954328\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Bucket Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.resource.location\",\"id\":\"1588628981768\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Location\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.metrics.storage_class\",\"id\":\"1588629001851\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Storage Class\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Storage Filters [Metricbeat GCP]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"4b44b2b0-8e51-11ea-9fa6-4d675d5290dc","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:14.792Z","version":"WzM4MTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Total Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"8ec10ba0-8e52-11ea-8164-1ddf506ac7af\"}],\"bar_color_rules\":[{\"id\":\"8fdd7820-8e52-11ea-8164-1ddf506ac7af\"}],\"drop_last_bucket\":1,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=15m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.storage.storage.total_bytes.value : * \"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.storage.storage.total_bytes.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.bucket_name\",\"terms_include\":\"\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Total Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"239e2290-8e52-11ea-9fa6-4d675d5290dc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:14.792Z","version":"WzM4MTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Object Count [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"23042750-8e64-11ea-9fba-216938b39761\"}],\"gauge_color_rules\":[{\"id\":\"2268f8c0-8e64-11ea-9fba-216938b39761\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=15m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.storage.storage.object_count.value : * \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.storage.storage.object_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.bucket_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Object Count [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"02b3c620-8e52-11ea-9fa6-4d675d5290dc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:14.792Z","version":"WzM4MTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage API Request Count [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.storage.api.request_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.bucket_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage API Request Count [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"91eb8d10-8e51-11ea-9fa6-4d675d5290dc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:14.792Z","version":"WzM4MjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Network Received Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.storage.network.received_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.bucket_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Network Received Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d4cc5ec0-8e51-11ea-9fa6-4d675d5290dc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:14.792Z","version":"WzM4MjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Network Sent Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.storage.network.sent_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.bucket_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Network Sent Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e9e44d90-8e51-11ea-9fa6-4d675d5290dc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:14.792Z","version":"WzM4MjIsMV0="} +{"attributes":{"description":"Overview of GCP Storage Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"8d4e63d8-5747-4ebc-aeae-02d20e304526\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"8d4e63d8-5747-4ebc-aeae-02d20e304526\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_8d4e63d8-5747-4ebc-aeae-02d20e304526\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"70c46ee3-be59-4fb1-a437-c8e92a1d0b2a\",\"w\":38,\"x\":10,\"y\":0},\"panelIndex\":\"70c46ee3-be59-4fb1-a437-c8e92a1d0b2a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Size of Objects\",\"panelRefName\":\"panel_70c46ee3-be59-4fb1-a437-c8e92a1d0b2a\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"ba356b1b-ec2b-4a05-8a70-19a43b3dc3a8\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"ba356b1b-ec2b-4a05-8a70-19a43b3dc3a8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Number of Objects\",\"panelRefName\":\"panel_ba356b1b-ec2b-4a05-8a70-19a43b3dc3a8\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"77f185ba-74ad-4102-bca7-08587cd1bf6c\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"77f185ba-74ad-4102-bca7-08587cd1bf6c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"API Request Count\",\"panelRefName\":\"panel_77f185ba-74ad-4102-bca7-08587cd1bf6c\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"f2ab3410-44b0-4b01-bb93-1394d6a64257\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"f2ab3410-44b0-4b01-bb93-1394d6a64257\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Number of Bytes Received Over Network\",\"panelRefName\":\"panel_f2ab3410-44b0-4b01-bb93-1394d6a64257\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"75d342a5-f67b-4c61-b31d-b0b2db2ab50a\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"75d342a5-f67b-4c61-b31d-b0b2db2ab50a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Number of Bytes Sent Over Network\",\"panelRefName\":\"panel_75d342a5-f67b-4c61-b31d-b0b2db2ab50a\"}]","timeRestore":false,"title":"[Metricbeat GCP] Storage Overview","version":1},"coreMigrationVersion":"8.0.0","id":"ca401040-8e52-11ea-9fa6-4d675d5290dc","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"4b44b2b0-8e51-11ea-9fa6-4d675d5290dc","name":"8d4e63d8-5747-4ebc-aeae-02d20e304526:panel_8d4e63d8-5747-4ebc-aeae-02d20e304526","type":"visualization"},{"id":"239e2290-8e52-11ea-9fa6-4d675d5290dc","name":"70c46ee3-be59-4fb1-a437-c8e92a1d0b2a:panel_70c46ee3-be59-4fb1-a437-c8e92a1d0b2a","type":"visualization"},{"id":"02b3c620-8e52-11ea-9fa6-4d675d5290dc","name":"ba356b1b-ec2b-4a05-8a70-19a43b3dc3a8:panel_ba356b1b-ec2b-4a05-8a70-19a43b3dc3a8","type":"visualization"},{"id":"91eb8d10-8e51-11ea-9fa6-4d675d5290dc","name":"77f185ba-74ad-4102-bca7-08587cd1bf6c:panel_77f185ba-74ad-4102-bca7-08587cd1bf6c","type":"visualization"},{"id":"d4cc5ec0-8e51-11ea-9fa6-4d675d5290dc","name":"f2ab3410-44b0-4b01-bb93-1394d6a64257:panel_f2ab3410-44b0-4b01-bb93-1394d6a64257","type":"visualization"},{"id":"e9e44d90-8e51-11ea-9fa6-4d675d5290dc","name":"75d342a5-f67b-4c61-b31d-b0b2db2ab50a:panel_75d342a5-f67b-4c61-b31d-b0b2db2ab50a","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:14.792Z","version":"WzM4MTYsMV0="} diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-calls-overview.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-calls-overview.json deleted file mode 100644 index b4c5e3107fc..00000000000 --- a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-calls-overview.json +++ /dev/null @@ -1,1219 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "The dashboard presents metric data describing IBM MQ calls, collected by a queue manager.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "68140594-23bf-4e1e-a062-19b21e557e1a", - "w": 16, - "x": 0, - "y": 0 - }, - "panelIndex": "68140594-23bf-4e1e-a062-19b21e557e1a", - "panelRefName": "panel_0", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "2bb94f86-2fa8-4e3e-b91d-9838a29b9674", - "w": 16, - "x": 16, - "y": 0 - }, - "panelIndex": "2bb94f86-2fa8-4e3e-b91d-9838a29b9674", - "panelRefName": "panel_1", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "0b68733f-6f86-4686-9580-1354f5d6bc4d", - "w": 16, - "x": 32, - "y": 0 - }, - "panelIndex": "0b68733f-6f86-4686-9580-1354f5d6bc4d", - "panelRefName": "panel_2", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "0423a3f2-8f1f-4402-842b-9423008ac5c1", - "w": 16, - "x": 0, - "y": 12 - }, - "panelIndex": "0423a3f2-8f1f-4402-842b-9423008ac5c1", - "panelRefName": "panel_3", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "6936c053-8168-4eb9-9964-fc0e892b9130", - "w": 16, - "x": 16, - "y": 12 - }, - "panelIndex": "6936c053-8168-4eb9-9964-fc0e892b9130", - "panelRefName": "panel_4", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "084602cd-6b17-4f8f-97a8-c33ac2bafb14", - "w": 16, - "x": 32, - "y": 12 - }, - "panelIndex": "084602cd-6b17-4f8f-97a8-c33ac2bafb14", - "panelRefName": "panel_5", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "50a75e9d-e345-45c7-93fb-54e29d0863f2", - "w": 16, - "x": 0, - "y": 24 - }, - "panelIndex": "50a75e9d-e345-45c7-93fb-54e29d0863f2", - "panelRefName": "panel_6", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "9cae147d-66d9-4bff-b916-f3b82adc07be", - "w": 16, - "x": 16, - "y": 24 - }, - "panelIndex": "9cae147d-66d9-4bff-b916-f3b82adc07be", - "panelRefName": "panel_7", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "fc84cd97-80a9-406d-ab2b-c1d9ce5dca72", - "w": 16, - "x": 32, - "y": 24 - }, - "panelIndex": "fc84cd97-80a9-406d-ab2b-c1d9ce5dca72", - "panelRefName": "panel_8", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "d8c19a6d-a25b-4950-9ef4-6a15a894f725", - "w": 16, - "x": 0, - "y": 36 - }, - "panelIndex": "d8c19a6d-a25b-4950-9ef4-6a15a894f725", - "panelRefName": "panel_9", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "d76eb9f9-2198-475b-a058-7204244d5597", - "w": 16, - "x": 16, - "y": 36 - }, - "panelIndex": "d76eb9f9-2198-475b-a058-7204244d5597", - "panelRefName": "panel_10", - "version": "7.4.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat IBM MQ] Calls Overview", - "version": 1 - }, - "id": "fc5512c0-36d1-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "07262080-36d3-11ea-9f7a-097fe7ab3ddd", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "1dba2700-36de-11ea-9f7a-097fe7ab3ddd", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "2fcbdab0-36de-11ea-9f7a-097fe7ab3ddd", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "d781db00-36df-11ea-9f7a-097fe7ab3ddd", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "fd0e16a0-36de-11ea-9f7a-097fe7ab3ddd", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "aa90ec20-36e0-11ea-9f7a-097fe7ab3ddd", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "fd0e16a0-36de-11ea-9f7a-097fe7ab3ddd", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "56b63f60-36e0-11ea-9f7a-097fe7ab3ddd", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "74874de0-36e0-11ea-9f7a-097fe7ab3ddd", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "92bf3480-36e0-11ea-9f7a-097fe7ab3ddd", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "c4be1ff0-36e0-11ea-9f7a-097fe7ab3ddd", - "name": "panel_10", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-01-14T18:46:51.094Z", - "version": "WzYyLDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "MQCB calls succeeded/failed [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_mqcb_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": 0.5, - "formatter": "number", - "id": "a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_failed_mqcb_total", - "id": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "max" - }, - { - "field": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", - "id": "bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "MQCB calls succeeded/failed [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "07262080-36d3-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T13:37:37.416Z", - "version": "WzI1LDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "MQCLOSE calls succeeded/failed [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_mqclose_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": 0.5, - "formatter": "number", - "id": "a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_failed_mqclose_total", - "id": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "max" - }, - { - "field": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", - "id": "bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "MQCLOSE calls succeeded/failed [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "1dba2700-36de-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T14:56:59.760Z", - "version": "WzI2LDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "MQCONN/MQCONNX calls succeeded/failed [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_mqconn_mqconnx_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": 0.5, - "formatter": "number", - "id": "a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_mqconn_mqconnx_total", - "id": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "max" - }, - { - "field": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", - "id": "bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "MQCONN/MQCONNX calls succeeded/failed [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "2fcbdab0-36de-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T14:57:30.075Z", - "version": "WzI3LDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "MQDISC calls succeeded [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_mqdisc_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "MQDISC calls succeeded [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "d781db00-36df-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T15:09:20.944Z", - "version": "WzI5LDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "MQCTL calls succeeded [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_mqctl_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "MQCTL calls succeeded [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "fd0e16a0-36de-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T15:03:14.442Z", - "version": "WzI4LDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "MQSTAT calls succeeded [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_mqstat_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "MQSTAT calls succeeded [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "aa90ec20-36e0-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T18:46:20.735Z", - "version": "WzYxLDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "MQOPEN calls succeeded/failed [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_mqopen_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": 0.5, - "formatter": "number", - "id": "a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_failed_mqopen_total", - "id": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "max" - }, - { - "field": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", - "id": "bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "MQOPEN calls succeeded/failed [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "56b63f60-36e0-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T15:13:24.521Z", - "version": "WzMxLDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "MQINQ calls succeeded/failed [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_mqinq_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": 0.5, - "formatter": "number", - "id": "a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_failed_mqinq_total", - "id": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "max" - }, - { - "field": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", - "id": "bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "MQINQ calls succeeded/failed [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "74874de0-36e0-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T15:14:01.330Z", - "version": "WzMzLDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "MQSET calls succeeded/failed [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_mqset_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": 0.5, - "formatter": "number", - "id": "a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_failed_mqset_total", - "id": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "max" - }, - { - "field": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", - "id": "bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "MQSET calls succeeded/failed [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "92bf3480-36e0-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T15:14:35.080Z", - "version": "WzM0LDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "MQSUBRQ calls succeeded/failed [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_mqsubrq_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": 0.5, - "formatter": "number", - "id": "a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_failed_mqsubrq_total", - "id": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "max" - }, - { - "field": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", - "id": "bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "MQSUBRQ calls succeeded/failed [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "c4be1ff0-36e0-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T15:15:58.959Z", - "version": "WzM2LDJd" - } - ], - "version": "7.4.0" -} diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-calls-overview.ndjson b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-calls-overview.ndjson new file mode 100644 index 00000000000..02559efd238 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-calls-overview.ndjson @@ -0,0 +1,11 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQCB calls succeeded/failed [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqcb_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_failed_mqcb_total\",\"id\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"max\"},{\"field\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"id\":\"bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQCB calls succeeded/failed [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"07262080-36d3-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4NzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQCLOSE calls succeeded/failed [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqclose_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_failed_mqclose_total\",\"id\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"max\"},{\"field\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"id\":\"bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQCLOSE calls succeeded/failed [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1dba2700-36de-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4NzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQCONN/MQCONNX calls succeeded/failed [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqconn_mqconnx_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqconn_mqconnx_total\",\"id\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"max\"},{\"field\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"id\":\"bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQCONN/MQCONNX calls succeeded/failed [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2fcbdab0-36de-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4NzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQDISC calls succeeded [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqdisc_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQDISC calls succeeded [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d781db00-36df-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4NzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQCTL calls succeeded [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqctl_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQCTL calls succeeded [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fd0e16a0-36de-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4ODAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQSTAT calls succeeded [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqstat_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQSTAT calls succeeded [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"aa90ec20-36e0-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4ODEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQOPEN calls succeeded/failed [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqopen_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_failed_mqopen_total\",\"id\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"max\"},{\"field\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"id\":\"bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQOPEN calls succeeded/failed [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"56b63f60-36e0-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4ODIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQINQ calls succeeded/failed [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqinq_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_failed_mqinq_total\",\"id\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"max\"},{\"field\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"id\":\"bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQINQ calls succeeded/failed [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"74874de0-36e0-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4ODMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQSET calls succeeded/failed [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqset_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_failed_mqset_total\",\"id\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"max\"},{\"field\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"id\":\"bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQSET calls succeeded/failed [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"92bf3480-36e0-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4ODQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQSUBRQ calls succeeded/failed [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqsubrq_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_failed_mqsubrq_total\",\"id\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"max\"},{\"field\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"id\":\"bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQSUBRQ calls succeeded/failed [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c4be1ff0-36e0-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4ODUsMV0="} +{"attributes":{"description":"The dashboard presents metric data describing IBM MQ calls, collected by a queue manager.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"68140594-23bf-4e1e-a062-19b21e557e1a\",\"w\":16,\"x\":0,\"y\":0},\"panelIndex\":\"68140594-23bf-4e1e-a062-19b21e557e1a\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_68140594-23bf-4e1e-a062-19b21e557e1a\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"2bb94f86-2fa8-4e3e-b91d-9838a29b9674\",\"w\":16,\"x\":16,\"y\":0},\"panelIndex\":\"2bb94f86-2fa8-4e3e-b91d-9838a29b9674\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2bb94f86-2fa8-4e3e-b91d-9838a29b9674\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"0b68733f-6f86-4686-9580-1354f5d6bc4d\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"0b68733f-6f86-4686-9580-1354f5d6bc4d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0b68733f-6f86-4686-9580-1354f5d6bc4d\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"0423a3f2-8f1f-4402-842b-9423008ac5c1\",\"w\":16,\"x\":0,\"y\":12},\"panelIndex\":\"0423a3f2-8f1f-4402-842b-9423008ac5c1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0423a3f2-8f1f-4402-842b-9423008ac5c1\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6936c053-8168-4eb9-9964-fc0e892b9130\",\"w\":16,\"x\":16,\"y\":12},\"panelIndex\":\"6936c053-8168-4eb9-9964-fc0e892b9130\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6936c053-8168-4eb9-9964-fc0e892b9130\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"084602cd-6b17-4f8f-97a8-c33ac2bafb14\",\"w\":16,\"x\":32,\"y\":12},\"panelIndex\":\"084602cd-6b17-4f8f-97a8-c33ac2bafb14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_084602cd-6b17-4f8f-97a8-c33ac2bafb14\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"50a75e9d-e345-45c7-93fb-54e29d0863f2\",\"w\":16,\"x\":0,\"y\":24},\"panelIndex\":\"50a75e9d-e345-45c7-93fb-54e29d0863f2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_50a75e9d-e345-45c7-93fb-54e29d0863f2\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"9cae147d-66d9-4bff-b916-f3b82adc07be\",\"w\":16,\"x\":16,\"y\":24},\"panelIndex\":\"9cae147d-66d9-4bff-b916-f3b82adc07be\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9cae147d-66d9-4bff-b916-f3b82adc07be\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"fc84cd97-80a9-406d-ab2b-c1d9ce5dca72\",\"w\":16,\"x\":32,\"y\":24},\"panelIndex\":\"fc84cd97-80a9-406d-ab2b-c1d9ce5dca72\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_fc84cd97-80a9-406d-ab2b-c1d9ce5dca72\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"d8c19a6d-a25b-4950-9ef4-6a15a894f725\",\"w\":16,\"x\":0,\"y\":36},\"panelIndex\":\"d8c19a6d-a25b-4950-9ef4-6a15a894f725\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_d8c19a6d-a25b-4950-9ef4-6a15a894f725\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"d76eb9f9-2198-475b-a058-7204244d5597\",\"w\":16,\"x\":16,\"y\":36},\"panelIndex\":\"d76eb9f9-2198-475b-a058-7204244d5597\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_d76eb9f9-2198-475b-a058-7204244d5597\"}]","timeRestore":false,"title":"[Metricbeat IBM MQ] Calls Overview","version":1},"coreMigrationVersion":"8.0.0","id":"fc5512c0-36d1-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"07262080-36d3-11ea-9f7a-097fe7ab3ddd","name":"68140594-23bf-4e1e-a062-19b21e557e1a:panel_68140594-23bf-4e1e-a062-19b21e557e1a","type":"visualization"},{"id":"1dba2700-36de-11ea-9f7a-097fe7ab3ddd","name":"2bb94f86-2fa8-4e3e-b91d-9838a29b9674:panel_2bb94f86-2fa8-4e3e-b91d-9838a29b9674","type":"visualization"},{"id":"2fcbdab0-36de-11ea-9f7a-097fe7ab3ddd","name":"0b68733f-6f86-4686-9580-1354f5d6bc4d:panel_0b68733f-6f86-4686-9580-1354f5d6bc4d","type":"visualization"},{"id":"d781db00-36df-11ea-9f7a-097fe7ab3ddd","name":"0423a3f2-8f1f-4402-842b-9423008ac5c1:panel_0423a3f2-8f1f-4402-842b-9423008ac5c1","type":"visualization"},{"id":"fd0e16a0-36de-11ea-9f7a-097fe7ab3ddd","name":"6936c053-8168-4eb9-9964-fc0e892b9130:panel_6936c053-8168-4eb9-9964-fc0e892b9130","type":"visualization"},{"id":"aa90ec20-36e0-11ea-9f7a-097fe7ab3ddd","name":"084602cd-6b17-4f8f-97a8-c33ac2bafb14:panel_084602cd-6b17-4f8f-97a8-c33ac2bafb14","type":"visualization"},{"id":"fd0e16a0-36de-11ea-9f7a-097fe7ab3ddd","name":"50a75e9d-e345-45c7-93fb-54e29d0863f2:panel_50a75e9d-e345-45c7-93fb-54e29d0863f2","type":"visualization"},{"id":"56b63f60-36e0-11ea-9f7a-097fe7ab3ddd","name":"9cae147d-66d9-4bff-b916-f3b82adc07be:panel_9cae147d-66d9-4bff-b916-f3b82adc07be","type":"visualization"},{"id":"74874de0-36e0-11ea-9f7a-097fe7ab3ddd","name":"fc84cd97-80a9-406d-ab2b-c1d9ce5dca72:panel_fc84cd97-80a9-406d-ab2b-c1d9ce5dca72","type":"visualization"},{"id":"92bf3480-36e0-11ea-9f7a-097fe7ab3ddd","name":"d8c19a6d-a25b-4950-9ef4-6a15a894f725:panel_d8c19a6d-a25b-4950-9ef4-6a15a894f725","type":"visualization"},{"id":"c4be1ff0-36e0-11ea-9f7a-097fe7ab3ddd","name":"d76eb9f9-2198-475b-a058-7204244d5597:panel_d76eb9f9-2198-475b-a058-7204244d5597","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4NzUsMV0="} diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-messages-overview.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-messages-overview.json deleted file mode 100644 index b51ca24d722..00000000000 --- a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-messages-overview.json +++ /dev/null @@ -1,1250 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "The dashboard presents metric data describing IBM MQ persistent and non-persistent messages. Metric data are collected by a queue manager.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "31635dc4-663e-4ad1-adae-eb96687c7810", - "w": 16, - "x": 0, - "y": 0 - }, - "panelIndex": "31635dc4-663e-4ad1-adae-eb96687c7810", - "panelRefName": "panel_0", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "5452998b-5149-4ac6-93df-b3fccab74f58", - "w": 16, - "x": 16, - "y": 0 - }, - "panelIndex": "5452998b-5149-4ac6-93df-b3fccab74f58", - "panelRefName": "panel_1", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "0e58849b-8742-4ed4-aae2-33ca19553ac2", - "w": 16, - "x": 32, - "y": 0 - }, - "panelIndex": "0e58849b-8742-4ed4-aae2-33ca19553ac2", - "panelRefName": "panel_2", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "45cd1f23-ef32-4785-b8c0-dcd4cf4c0c1f", - "w": 16, - "x": 0, - "y": 12 - }, - "panelIndex": "45cd1f23-ef32-4785-b8c0-dcd4cf4c0c1f", - "panelRefName": "panel_3", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "2fbdb686-f624-4b2d-a26d-4e7f70e8d902", - "w": 16, - "x": 16, - "y": 12 - }, - "panelIndex": "2fbdb686-f624-4b2d-a26d-4e7f70e8d902", - "panelRefName": "panel_4", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "355b12f6-56cb-4b8c-8498-b379d3e7d8b0", - "w": 16, - "x": 32, - "y": 12 - }, - "panelIndex": "355b12f6-56cb-4b8c-8498-b379d3e7d8b0", - "panelRefName": "panel_5", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "c1eed75c-610c-4741-b384-de866f30b79b", - "w": 16, - "x": 0, - "y": 24 - }, - "panelIndex": "c1eed75c-610c-4741-b384-de866f30b79b", - "panelRefName": "panel_6", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "78bd7680-0f3f-4d3f-994b-eeb58ef0a340", - "w": 16, - "x": 16, - "y": 24 - }, - "panelIndex": "78bd7680-0f3f-4d3f-994b-eeb58ef0a340", - "panelRefName": "panel_7", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "6edef0c3-4c5f-4d0a-8e58-076cb5249ca2", - "w": 16, - "x": 32, - "y": 24 - }, - "panelIndex": "6edef0c3-4c5f-4d0a-8e58-076cb5249ca2", - "panelRefName": "panel_8", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "0ecb7983-d4f9-453d-ade4-d02dfa6b6c72", - "w": 16, - "x": 0, - "y": 36 - }, - "panelIndex": "0ecb7983-d4f9-453d-ade4-d02dfa6b6c72", - "panelRefName": "panel_9", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "1c8071e7-c89a-45b1-aae6-31471939b73c", - "w": 16, - "x": 32, - "y": 36 - }, - "panelIndex": "1c8071e7-c89a-45b1-aae6-31471939b73c", - "panelRefName": "panel_10", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "e27955d6-ce96-48b9-b9d0-04f4d61a757f", - "w": 16, - "x": 16, - "y": 36 - }, - "panelIndex": "e27955d6-ce96-48b9-b9d0-04f4d61a757f", - "panelRefName": "panel_11", - "version": "7.4.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat IBM MQ] Messages Overview", - "version": 1 - }, - "id": "d2112e90-36ea-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "49abed00-36eb-11ea-9f7a-097fe7ab3ddd", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "0abb72e0-36ec-11ea-9f7a-097fe7ab3ddd", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "195b5860-36ec-11ea-9f7a-097fe7ab3ddd", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "60b5a440-36ec-11ea-9f7a-097fe7ab3ddd", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "e98d7660-36ee-11ea-9f7a-097fe7ab3ddd", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "d82919b0-36ee-11ea-9f7a-097fe7ab3ddd", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "23c5f140-36ef-11ea-9f7a-097fe7ab3ddd", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "3ed28890-36ef-11ea-9f7a-097fe7ab3ddd", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "58abd000-36ef-11ea-9f7a-097fe7ab3ddd", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "67eeac40-36ef-11ea-9f7a-097fe7ab3ddd", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "96d27500-36ef-11ea-9f7a-097fe7ab3ddd", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "855debb0-36ef-11ea-9f7a-097fe7ab3ddd", - "name": "panel_11", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-01-14T17:09:00.139Z", - "version": "WzYwLDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Message commits [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_commit_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Message commits [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "49abed00-36eb-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T16:36:10.861Z", - "version": "WzQwLDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Expired messages [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_expired_message_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Expired messages [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "0abb72e0-36ec-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T16:36:40.846Z", - "version": "WzQxLDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Purged queue [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_purged_queue_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Purged queue [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "195b5860-36ec-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T16:37:05.382Z", - "version": "WzQyLDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Failed browse count [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_failed_browse_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Failed browse count [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "60b5a440-36ec-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T17:02:57.717Z", - "version": "WzU5LDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Non-persistent message MQPUT1 [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_non_persistent_message_mqput1_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Non-persistent message MQPUT1 [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "e98d7660-36ee-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T16:58:23.452Z", - "version": "WzQ5LDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Non-persistent message MQPUT [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_non_persistent_message_mqput_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Non-persistent message MQPUT [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "d82919b0-36ee-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T16:57:47.695Z", - "version": "WzQ3LDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Non-persistent message browse count [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_non_persistent_message_browse_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Non-persistent message browse count [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "23c5f140-36ef-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T16:58:51.348Z", - "version": "WzUwLDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Non-persistent message destructive get count [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_non_persistent_message_destructive_get_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Non-persistent message destructive get count [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "3ed28890-36ef-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T16:59:36.729Z", - "version": "WzUxLDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Persistent message MQPUT count [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_persistent_message_mqput_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Persistent message MQPUT count [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "58abd000-36ef-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T17:01:06.699Z", - "version": "WzU1LDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Persistent message MQPUT1 count [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_persistent_message_mqput1_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Persistent message MQPUT1 count [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "67eeac40-36ef-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T17:00:53.118Z", - "version": "WzU0LDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Persistent message destructive get count [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_persistent_message_destructive_get_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Persistent message destructive get count [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "96d27500-36ef-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T17:02:14.424Z", - "version": "WzU4LDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Persistent message browse count [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_persistent_message_browse_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Persistent message browse count [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "855debb0-36ef-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T17:01:35.083Z", - "version": "WzU2LDJd" - } - ], - "version": "7.4.0" -} diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-messages-overview.ndjson b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-messages-overview.ndjson new file mode 100644 index 00000000000..cacfa86ee95 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-messages-overview.ndjson @@ -0,0 +1,13 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Message commits [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_commit_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Message commits [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"49abed00-36eb-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4ODcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Expired messages [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_expired_message_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Expired messages [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0abb72e0-36ec-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4ODgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Purged queue [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_purged_queue_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Purged queue [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"195b5860-36ec-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4ODksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Failed browse count [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_failed_browse_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Failed browse count [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"60b5a440-36ec-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4OTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Non-persistent message MQPUT1 [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_non_persistent_message_mqput1_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Non-persistent message MQPUT1 [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e98d7660-36ee-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4OTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Non-persistent message MQPUT [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_non_persistent_message_mqput_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Non-persistent message MQPUT [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d82919b0-36ee-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4OTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Non-persistent message browse count [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_non_persistent_message_browse_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Non-persistent message browse count [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"23c5f140-36ef-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4OTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Non-persistent message destructive get count [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_non_persistent_message_destructive_get_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Non-persistent message destructive get count [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3ed28890-36ef-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4OTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Persistent message MQPUT count [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_persistent_message_mqput_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Persistent message MQPUT count [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"58abd000-36ef-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4OTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Persistent message MQPUT1 count [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_persistent_message_mqput1_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Persistent message MQPUT1 count [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"67eeac40-36ef-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4OTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Persistent message destructive get count [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_persistent_message_destructive_get_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Persistent message destructive get count [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"96d27500-36ef-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4OTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Persistent message browse count [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_persistent_message_browse_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Persistent message browse count [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"855debb0-36ef-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4OTgsMV0="} +{"attributes":{"description":"The dashboard presents metric data describing IBM MQ persistent and non-persistent messages. Metric data are collected by a queue manager.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"31635dc4-663e-4ad1-adae-eb96687c7810\",\"w\":16,\"x\":0,\"y\":0},\"panelIndex\":\"31635dc4-663e-4ad1-adae-eb96687c7810\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_31635dc4-663e-4ad1-adae-eb96687c7810\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"5452998b-5149-4ac6-93df-b3fccab74f58\",\"w\":16,\"x\":16,\"y\":0},\"panelIndex\":\"5452998b-5149-4ac6-93df-b3fccab74f58\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5452998b-5149-4ac6-93df-b3fccab74f58\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"0e58849b-8742-4ed4-aae2-33ca19553ac2\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"0e58849b-8742-4ed4-aae2-33ca19553ac2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0e58849b-8742-4ed4-aae2-33ca19553ac2\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"45cd1f23-ef32-4785-b8c0-dcd4cf4c0c1f\",\"w\":16,\"x\":0,\"y\":12},\"panelIndex\":\"45cd1f23-ef32-4785-b8c0-dcd4cf4c0c1f\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_45cd1f23-ef32-4785-b8c0-dcd4cf4c0c1f\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"2fbdb686-f624-4b2d-a26d-4e7f70e8d902\",\"w\":16,\"x\":16,\"y\":12},\"panelIndex\":\"2fbdb686-f624-4b2d-a26d-4e7f70e8d902\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2fbdb686-f624-4b2d-a26d-4e7f70e8d902\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"355b12f6-56cb-4b8c-8498-b379d3e7d8b0\",\"w\":16,\"x\":32,\"y\":12},\"panelIndex\":\"355b12f6-56cb-4b8c-8498-b379d3e7d8b0\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_355b12f6-56cb-4b8c-8498-b379d3e7d8b0\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"c1eed75c-610c-4741-b384-de866f30b79b\",\"w\":16,\"x\":0,\"y\":24},\"panelIndex\":\"c1eed75c-610c-4741-b384-de866f30b79b\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_c1eed75c-610c-4741-b384-de866f30b79b\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"78bd7680-0f3f-4d3f-994b-eeb58ef0a340\",\"w\":16,\"x\":16,\"y\":24},\"panelIndex\":\"78bd7680-0f3f-4d3f-994b-eeb58ef0a340\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_78bd7680-0f3f-4d3f-994b-eeb58ef0a340\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6edef0c3-4c5f-4d0a-8e58-076cb5249ca2\",\"w\":16,\"x\":32,\"y\":24},\"panelIndex\":\"6edef0c3-4c5f-4d0a-8e58-076cb5249ca2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6edef0c3-4c5f-4d0a-8e58-076cb5249ca2\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"0ecb7983-d4f9-453d-ade4-d02dfa6b6c72\",\"w\":16,\"x\":0,\"y\":36},\"panelIndex\":\"0ecb7983-d4f9-453d-ade4-d02dfa6b6c72\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0ecb7983-d4f9-453d-ade4-d02dfa6b6c72\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"1c8071e7-c89a-45b1-aae6-31471939b73c\",\"w\":16,\"x\":32,\"y\":36},\"panelIndex\":\"1c8071e7-c89a-45b1-aae6-31471939b73c\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1c8071e7-c89a-45b1-aae6-31471939b73c\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"e27955d6-ce96-48b9-b9d0-04f4d61a757f\",\"w\":16,\"x\":16,\"y\":36},\"panelIndex\":\"e27955d6-ce96-48b9-b9d0-04f4d61a757f\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_e27955d6-ce96-48b9-b9d0-04f4d61a757f\"}]","timeRestore":false,"title":"[Metricbeat IBM MQ] Messages Overview","version":1},"coreMigrationVersion":"8.0.0","id":"d2112e90-36ea-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"49abed00-36eb-11ea-9f7a-097fe7ab3ddd","name":"31635dc4-663e-4ad1-adae-eb96687c7810:panel_31635dc4-663e-4ad1-adae-eb96687c7810","type":"visualization"},{"id":"0abb72e0-36ec-11ea-9f7a-097fe7ab3ddd","name":"5452998b-5149-4ac6-93df-b3fccab74f58:panel_5452998b-5149-4ac6-93df-b3fccab74f58","type":"visualization"},{"id":"195b5860-36ec-11ea-9f7a-097fe7ab3ddd","name":"0e58849b-8742-4ed4-aae2-33ca19553ac2:panel_0e58849b-8742-4ed4-aae2-33ca19553ac2","type":"visualization"},{"id":"60b5a440-36ec-11ea-9f7a-097fe7ab3ddd","name":"45cd1f23-ef32-4785-b8c0-dcd4cf4c0c1f:panel_45cd1f23-ef32-4785-b8c0-dcd4cf4c0c1f","type":"visualization"},{"id":"e98d7660-36ee-11ea-9f7a-097fe7ab3ddd","name":"2fbdb686-f624-4b2d-a26d-4e7f70e8d902:panel_2fbdb686-f624-4b2d-a26d-4e7f70e8d902","type":"visualization"},{"id":"d82919b0-36ee-11ea-9f7a-097fe7ab3ddd","name":"355b12f6-56cb-4b8c-8498-b379d3e7d8b0:panel_355b12f6-56cb-4b8c-8498-b379d3e7d8b0","type":"visualization"},{"id":"23c5f140-36ef-11ea-9f7a-097fe7ab3ddd","name":"c1eed75c-610c-4741-b384-de866f30b79b:panel_c1eed75c-610c-4741-b384-de866f30b79b","type":"visualization"},{"id":"3ed28890-36ef-11ea-9f7a-097fe7ab3ddd","name":"78bd7680-0f3f-4d3f-994b-eeb58ef0a340:panel_78bd7680-0f3f-4d3f-994b-eeb58ef0a340","type":"visualization"},{"id":"58abd000-36ef-11ea-9f7a-097fe7ab3ddd","name":"6edef0c3-4c5f-4d0a-8e58-076cb5249ca2:panel_6edef0c3-4c5f-4d0a-8e58-076cb5249ca2","type":"visualization"},{"id":"67eeac40-36ef-11ea-9f7a-097fe7ab3ddd","name":"0ecb7983-d4f9-453d-ade4-d02dfa6b6c72:panel_0ecb7983-d4f9-453d-ade4-d02dfa6b6c72","type":"visualization"},{"id":"96d27500-36ef-11ea-9f7a-097fe7ab3ddd","name":"1c8071e7-c89a-45b1-aae6-31471939b73c:panel_1c8071e7-c89a-45b1-aae6-31471939b73c","type":"visualization"},{"id":"855debb0-36ef-11ea-9f7a-097fe7ab3ddd","name":"e27955d6-ce96-48b9-b9d0-04f4d61a757f:panel_e27955d6-ce96-48b9-b9d0-04f4d61a757f","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4ODYsMV0="} diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-subscriptions-overview.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-subscriptions-overview.json deleted file mode 100644 index bbcd88a8d33..00000000000 --- a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-subscriptions-overview.json +++ /dev/null @@ -1,752 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "The dashboard presents metric data describing IBM MQ subscriptions. Metrics show statistics of actions performed on durable and non-durable subscriptions, collected by a queue manager.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "e17294e6-0911-47dc-b28b-de87507924b5", - "w": 16, - "x": 0, - "y": 0 - }, - "panelIndex": "e17294e6-0911-47dc-b28b-de87507924b5", - "panelRefName": "panel_0", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "040d5750-fa77-45c6-82c1-26fc6f3859a6", - "w": 16, - "x": 16, - "y": 0 - }, - "panelIndex": "040d5750-fa77-45c6-82c1-26fc6f3859a6", - "panelRefName": "panel_1", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "fe5933aa-17b4-455e-8ab4-88d1f50ba73a", - "w": 16, - "x": 32, - "y": 0 - }, - "panelIndex": "fe5933aa-17b4-455e-8ab4-88d1f50ba73a", - "panelRefName": "panel_2", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "87a5c31a-6456-4839-a9ec-24802f51889d", - "w": 16, - "x": 0, - "y": 12 - }, - "panelIndex": "87a5c31a-6456-4839-a9ec-24802f51889d", - "panelRefName": "panel_3", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "1af1ab03-5cfd-4495-9d50-7dd77f43f1a4", - "w": 16, - "x": 16, - "y": 12 - }, - "panelIndex": "1af1ab03-5cfd-4495-9d50-7dd77f43f1a4", - "panelRefName": "panel_4", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "a9a53a87-592f-480f-997d-73fcb1843167", - "w": 16, - "x": 32, - "y": 12 - }, - "panelIndex": "a9a53a87-592f-480f-997d-73fcb1843167", - "panelRefName": "panel_5", - "version": "7.4.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "38525462-b0f6-4cc9-a052-6e5f66f1cba3", - "w": 16, - "x": 0, - "y": 24 - }, - "panelIndex": "38525462-b0f6-4cc9-a052-6e5f66f1cba3", - "panelRefName": "panel_6", - "version": "7.4.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat IBM MQ] Subscriptions Overview", - "version": 1 - }, - "id": "8f788c70-36c9-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "b455bc00-36cb-11ea-9f7a-097fe7ab3ddd", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "bdf17380-36cb-11ea-9f7a-097fe7ab3ddd", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "9939e270-36cb-11ea-9f7a-097fe7ab3ddd", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "89984460-36cb-11ea-9f7a-097fe7ab3ddd", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "908afbf0-36cb-11ea-9f7a-097fe7ab3ddd", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "d8dbdcd0-36cb-11ea-9f7a-097fe7ab3ddd", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "3901ed30-36cb-11ea-9f7a-097fe7ab3ddd", - "name": "panel_6", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-01-14T12:58:08.915Z", - "version": "WzIzLDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Create non-durable subscription [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_non_durable_subscription_create_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "b5619140-36cc-11ea-b7bc-e7f346d59677", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Create non-durable subscription [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "b455bc00-36cb-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T12:52:51.700Z", - "version": "WzE2LDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Delete non-durable subscription [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_non_durable_subscription_delete_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "cd9fed60-36cc-11ea-b7bc-e7f346d59677", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Delete non-durable subscription [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "bdf17380-36cb-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T12:53:21.649Z", - "version": "WzE3LDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Resume durable subscription [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_durable_subscription_resume_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "e0ece030-36cc-11ea-b7bc-e7f346d59677", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Resume durable subscription [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "9939e270-36cb-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T12:53:56.259Z", - "version": "WzE4LDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Create durable subscription [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_durable_subscription_create_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "alpha": 0.3, - "beta": 0.1, - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "gamma": 0.3, - "id": "f9af6070-36cc-11ea-b7bc-e7f346d59677", - "model_type": "simple", - "multiplicative": true, - "period": 1, - "type": "derivative", - "unit": "", - "window": 5 - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Create durable subscription [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "89984460-36cb-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T12:54:34.978Z", - "version": "WzE5LDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Delete durable subscription [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_durable_subscription_delete_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "0a276150-36cd-11ea-b7bc-e7f346d59677", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Delete durable subscription [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "908afbf0-36cb-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T12:55:01.483Z", - "version": "WzIwLDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Failed create/alter/resume subscription count [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_failed_subscription_create_alter_resume_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "2809d4f0-36cd-11ea-b7bc-e7f346d59677", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Failed create/alter/resume subscription count [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "d8dbdcd0-36cb-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T12:55:50.813Z", - "version": "WzIxLDJd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Alter durable subscription [Metricbeat IBM MQ]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "prometheus.metrics.ibmmq_qmgr_durable_subscription_alter_total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", - "type": "derivative", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.qmgr", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Alter durable subscription [Metricbeat IBM MQ]", - "type": "metrics" - } - }, - "id": "3901ed30-36cb-11ea-9f7a-097fe7ab3ddd", - "migrationVersion": { - "visualization": "7.3.1" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-14T12:56:29.734Z", - "version": "WzIyLDJd" - } - ], - "version": "7.4.0" -} diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-subscriptions-overview.ndjson b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-subscriptions-overview.ndjson new file mode 100644 index 00000000000..c1008311335 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-subscriptions-overview.ndjson @@ -0,0 +1,8 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Create non-durable subscription [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_non_durable_subscription_create_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"b5619140-36cc-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Create non-durable subscription [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b455bc00-36cb-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:27.109Z","version":"WzM5MDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Delete non-durable subscription [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_non_durable_subscription_delete_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"cd9fed60-36cc-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Delete non-durable subscription [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bdf17380-36cb-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:27.109Z","version":"WzM5MDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Resume durable subscription [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_durable_subscription_resume_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"e0ece030-36cc-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Resume durable subscription [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9939e270-36cb-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:27.109Z","version":"WzM5MDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Create durable subscription [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_durable_subscription_create_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"gamma\":0.3,\"id\":\"f9af6070-36cc-11ea-b7bc-e7f346d59677\",\"model_type\":\"simple\",\"multiplicative\":true,\"period\":1,\"type\":\"derivative\",\"unit\":\"\",\"window\":5}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Create durable subscription [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"89984460-36cb-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:27.109Z","version":"WzM5MDMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Delete durable subscription [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_durable_subscription_delete_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"0a276150-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Delete durable subscription [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"908afbf0-36cb-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:27.109Z","version":"WzM5MDQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Failed create/alter/resume subscription count [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_failed_subscription_create_alter_resume_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"2809d4f0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Failed create/alter/resume subscription count [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d8dbdcd0-36cb-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:27.109Z","version":"WzM5MDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Alter durable subscription [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_durable_subscription_alter_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Alter durable subscription [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3901ed30-36cb-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:27.109Z","version":"WzM5MDYsMV0="} +{"attributes":{"description":"The dashboard presents metric data describing IBM MQ subscriptions. Metrics show statistics of actions performed on durable and non-durable subscriptions, collected by a queue manager.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"e17294e6-0911-47dc-b28b-de87507924b5\",\"w\":16,\"x\":0,\"y\":0},\"panelIndex\":\"e17294e6-0911-47dc-b28b-de87507924b5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_e17294e6-0911-47dc-b28b-de87507924b5\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"040d5750-fa77-45c6-82c1-26fc6f3859a6\",\"w\":16,\"x\":16,\"y\":0},\"panelIndex\":\"040d5750-fa77-45c6-82c1-26fc6f3859a6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_040d5750-fa77-45c6-82c1-26fc6f3859a6\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"fe5933aa-17b4-455e-8ab4-88d1f50ba73a\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"fe5933aa-17b4-455e-8ab4-88d1f50ba73a\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_fe5933aa-17b4-455e-8ab4-88d1f50ba73a\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"87a5c31a-6456-4839-a9ec-24802f51889d\",\"w\":16,\"x\":0,\"y\":12},\"panelIndex\":\"87a5c31a-6456-4839-a9ec-24802f51889d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_87a5c31a-6456-4839-a9ec-24802f51889d\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"1af1ab03-5cfd-4495-9d50-7dd77f43f1a4\",\"w\":16,\"x\":16,\"y\":12},\"panelIndex\":\"1af1ab03-5cfd-4495-9d50-7dd77f43f1a4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1af1ab03-5cfd-4495-9d50-7dd77f43f1a4\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"a9a53a87-592f-480f-997d-73fcb1843167\",\"w\":16,\"x\":32,\"y\":12},\"panelIndex\":\"a9a53a87-592f-480f-997d-73fcb1843167\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a9a53a87-592f-480f-997d-73fcb1843167\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"38525462-b0f6-4cc9-a052-6e5f66f1cba3\",\"w\":16,\"x\":0,\"y\":24},\"panelIndex\":\"38525462-b0f6-4cc9-a052-6e5f66f1cba3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_38525462-b0f6-4cc9-a052-6e5f66f1cba3\"}]","timeRestore":false,"title":"[Metricbeat IBM MQ] Subscriptions Overview","version":1},"coreMigrationVersion":"8.0.0","id":"8f788c70-36c9-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"b455bc00-36cb-11ea-9f7a-097fe7ab3ddd","name":"e17294e6-0911-47dc-b28b-de87507924b5:panel_e17294e6-0911-47dc-b28b-de87507924b5","type":"visualization"},{"id":"bdf17380-36cb-11ea-9f7a-097fe7ab3ddd","name":"040d5750-fa77-45c6-82c1-26fc6f3859a6:panel_040d5750-fa77-45c6-82c1-26fc6f3859a6","type":"visualization"},{"id":"9939e270-36cb-11ea-9f7a-097fe7ab3ddd","name":"fe5933aa-17b4-455e-8ab4-88d1f50ba73a:panel_fe5933aa-17b4-455e-8ab4-88d1f50ba73a","type":"visualization"},{"id":"89984460-36cb-11ea-9f7a-097fe7ab3ddd","name":"87a5c31a-6456-4839-a9ec-24802f51889d:panel_87a5c31a-6456-4839-a9ec-24802f51889d","type":"visualization"},{"id":"908afbf0-36cb-11ea-9f7a-097fe7ab3ddd","name":"1af1ab03-5cfd-4495-9d50-7dd77f43f1a4:panel_1af1ab03-5cfd-4495-9d50-7dd77f43f1a4","type":"visualization"},{"id":"d8dbdcd0-36cb-11ea-9f7a-097fe7ab3ddd","name":"a9a53a87-592f-480f-997d-73fcb1843167:panel_a9a53a87-592f-480f-997d-73fcb1843167","type":"visualization"},{"id":"3901ed30-36cb-11ea-9f7a-097fe7ab3ddd","name":"38525462-b0f6-4cc9-a052-6e5f66f1cba3:panel_38525462-b0f6-4cc9-a052-6e5f66f1cba3","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:27.109Z","version":"WzM4OTksMV0="} diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-application-pool-overview.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-application-pool-overview.json deleted file mode 100644 index 866b4593489..00000000000 --- a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-application-pool-overview.json +++ /dev/null @@ -1,1026 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This dashboard shows application pools metrics for the IIS server.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "43790631-73f5-4f5e-824e-aa9d3f4f5664", - "w": 9, - "x": 0, - "y": 0 - }, - "panelIndex": "43790631-73f5-4f5e-824e-aa9d3f4f5664", - "panelRefName": "panel_0", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Thread Count" - }, - "gridData": { - "h": 11, - "i": "b94f6dac-0f16-4781-ac08-d632154458a6", - "w": 20, - "x": 9, - "y": 0 - }, - "panelIndex": "b94f6dac-0f16-4781-ac08-d632154458a6", - "panelRefName": "panel_1", - "title": "Thread Count", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Handle Count" - }, - "gridData": { - "h": 11, - "i": "a3c19f11-99d4-4794-8ebb-aa2b3583577b", - "w": 19, - "x": 29, - "y": 0 - }, - "panelIndex": "a3c19f11-99d4-4794-8ebb-aa2b3583577b", - "panelRefName": "panel_2", - "title": "Handle Count", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Filters" - }, - "gridData": { - "h": 6, - "i": "10fe7306-655b-4bc6-b078-892f91d0d9ea", - "w": 9, - "x": 0, - "y": 5 - }, - "panelIndex": "10fe7306-655b-4bc6-b078-892f91d0d9ea", - "panelRefName": "panel_3", - "title": "Filters", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "IO Write Operations" - }, - "gridData": { - "h": 15, - "i": "4dfc6a98-4749-47a8-a92e-ee955cf20c00", - "w": 24, - "x": 0, - "y": 11 - }, - "panelIndex": "4dfc6a98-4749-47a8-a92e-ee955cf20c00", - "panelRefName": "panel_4", - "title": "IO Write Operations", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "IO Read Operations" - }, - "gridData": { - "h": 15, - "i": "bae63734-a752-46c3-8083-8c12eabca5aa", - "w": 24, - "x": 24, - "y": 11 - }, - "panelIndex": "bae63734-a752-46c3-8083-8c12eabca5aa", - "panelRefName": "panel_5", - "title": "IO Read Operations", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Working Set" - }, - "gridData": { - "h": 15, - "i": "ce663f89-7cf9-4659-af06-2128f7d2f74b", - "w": 24, - "x": 0, - "y": 26 - }, - "panelIndex": "ce663f89-7cf9-4659-af06-2128f7d2f74b", - "panelRefName": "panel_6", - "title": "Working Set", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Virtual Bytes" - }, - "gridData": { - "h": 15, - "i": "99da2951-fb14-4a18-8a0c-4647daa9b626", - "w": 24, - "x": 24, - "y": 41 - }, - "panelIndex": "99da2951-fb14-4a18-8a0c-4647daa9b626", - "panelRefName": "panel_7", - "title": "Virtual Bytes", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Private Bytes" - }, - "gridData": { - "h": 15, - "i": "71985962-b5c9-412e-a99f-b55ed988f4ea", - "w": 24, - "x": 0, - "y": 41 - }, - "panelIndex": "71985962-b5c9-412e-a99f-b55ed988f4ea", - "panelRefName": "panel_8", - "title": "Private Bytes", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "CPU Usage" - }, - "gridData": { - "h": 15, - "i": "347b6893-0ab0-47fc-9e80-efc9bf47f13e", - "w": 24, - "x": 24, - "y": 26 - }, - "panelIndex": "347b6893-0ab0-47fc-9e80-efc9bf47f13e", - "panelRefName": "panel_9", - "title": "CPU Usage", - "version": "7.6.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat IIS] Application Pool Overview", - "version": 1 - }, - "id": "b4108810-861c-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "dc97bec0-861c-11ea-91bc-ab084c7ec0e7", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "41324ad0-861d-11ea-91bc-ab084c7ec0e7", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "98b90fa0-861d-11ea-91bc-ab084c7ec0e7", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "dd419de0-861d-11ea-91bc-ab084c7ec0e7", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "442a86c0-861e-11ea-91bc-ab084c7ec0e7", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "29a23aa0-861e-11ea-91bc-ab084c7ec0e7", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "34bfec50-8620-11ea-91bc-ab084c7ec0e7", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "14300bf0-8620-11ea-91bc-ab084c7ec0e7", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "f7194cc0-861f-11ea-91bc-ab084c7ec0e7", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "90fe3b30-861f-11ea-91bc-ab084c7ec0e7", - "name": "panel_9", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-04-24T12:19:57.800Z", - "version": "Wzk3MzMsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation Application Pool Overview [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### IIS\n\n[Webserver](#/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7)| [Webserver processes](#/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7) | [Websites](#/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7) | [**Application Pools**](#/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7) ", - "openLinksInNewTab": false - }, - "title": "Navigation Application Pool Overview [Metricbeat IIS]", - "type": "markdown" - } - }, - "id": "dc97bec0-861c-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T11:54:38.997Z", - "version": "WzkzMTksMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Application Pool Thread Count [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(22,165,165,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Thread Count", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.application_pool.process.thread_count", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.application_pool.name", - "terms_order_by": "_count", - "type": "timeseries", - "value_template": "{{value}} " - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "top_n" - }, - "title": "Application Pool Thread Count [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "41324ad0-861d-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T11:17:59.421Z", - "version": "WzkwMDMsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Application Pool Handle Count [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(101,50,148,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Handle Count", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.application_pool.process.handle_count", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.application_pool.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}} " - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "top_n" - }, - "title": "Application Pool Handle Count [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "98b90fa0-861d-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T11:20:26.266Z", - "version": "WzkwMTgsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Application Pool Filters [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "iis.application_pool.name", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "Application Pools", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "Application Pool Filters [Metricbeat IIS]", - "type": "input_control_vis" - } - }, - "id": "dd419de0-861d-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-04-24T11:22:21.246Z", - "version": "WzkwMjksMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Application Pool IO Write Operations [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "formatter": "number", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "IO Write Operations/s", - "line_width": "2", - "metrics": [ - { - "field": "iis.application_pool.process.io_write_operations_per_sec", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.application_pool.name", - "type": "timeseries", - "value_template": "{{value}}/s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Application Pool IO Write Operations [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "442a86c0-861e-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T11:25:13.899Z", - "version": "WzkwNDIsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Application Pool IO Read Operations [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": "0", - "formatter": "number", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "IO Read Operations/s", - "line_width": "2", - "metrics": [ - { - "field": "iis.application_pool.process.io_read_operations_per_sec", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.application_pool.name", - "type": "timeseries", - "value_template": "{{value}}/s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Application Pool IO Read Operations [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "29a23aa0-861e-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T11:26:30.995Z", - "version": "WzkwNjcsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Application Pool Working Set [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": "0", - "formatter": "bytes", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "Working Set", - "line_width": "2", - "metrics": [ - { - "field": "iis.application_pool.process.working_set", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.application_pool.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Application Pool Working Set [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "34bfec50-8620-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T11:39:22.702Z", - "version": "WzkxMTEsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Application Pool Virtual Bytes [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,98,177,1)", - "fill": "0", - "formatter": "bytes", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "Virtual Bytes", - "line_width": "2", - "metrics": [ - { - "field": "iis.application_pool.process.virtual_bytes", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.application_pool.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Application Pool Virtual Bytes [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "14300bf0-8620-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T11:38:12.399Z", - "version": "WzkxMDEsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Application Pool Private Bytes [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": "0", - "formatter": "bytes", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "Private Bytes", - "line_width": "2", - "metrics": [ - { - "field": "iis.application_pool.process.private_bytes", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.application_pool.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Application Pool Private Bytes [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "f7194cc0-861f-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T12:19:46.947Z", - "version": "Wzk3MjQsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Application Pool CPU Usage [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": "0", - "formatter": "percent", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "CPU Usage", - "line_width": "2", - "metrics": [ - { - "field": "iis.application_pool.process.cpu_usage_perc", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.application_pool.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Application Pool CPU Usage [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "90fe3b30-861f-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T11:34:32.291Z", - "version": "WzkwODEsMTNd" - } - ], - "version": "7.6.0" -} diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-application-pool-overview.ndjson b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-application-pool-overview.ndjson new file mode 100644 index 00000000000..8c9966841c3 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-application-pool-overview.ndjson @@ -0,0 +1,11 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Application Pool Overview [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### IIS\\n\\n[Webserver](#/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7)| [Webserver processes](#/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7) | [Websites](#/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7) | [**Application Pools**](#/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Application Pool Overview [Metricbeat IIS]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"dc97bec0-861c-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Application Pool Thread Count [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Thread Count\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.application_pool.process.thread_count\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.application_pool.name\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Application Pool Thread Count [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"41324ad0-861d-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Application Pool Handle Count [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(101,50,148,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Handle Count\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.application_pool.process.handle_count\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.application_pool.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Application Pool Handle Count [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"98b90fa0-861d-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Application Pool Filters [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"iis.application_pool.name\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Application Pools\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Application Pool Filters [Metricbeat IIS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"dd419de0-861d-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Application Pool IO Write Operations [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"IO Write Operations/s\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.application_pool.process.io_write_operations_per_sec\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.application_pool.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Application Pool IO Write Operations [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"442a86c0-861e-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Application Pool IO Read Operations [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"IO Read Operations/s\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.application_pool.process.io_read_operations_per_sec\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.application_pool.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Application Pool IO Read Operations [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"29a23aa0-861e-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Application Pool Working Set [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Working Set\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.application_pool.process.working_set\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.application_pool.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Application Pool Working Set [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"34bfec50-8620-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Application Pool Virtual Bytes [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,98,177,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Virtual Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.application_pool.process.virtual_bytes\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.application_pool.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Application Pool Virtual Bytes [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"14300bf0-8620-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Application Pool Private Bytes [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Private Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.application_pool.process.private_bytes\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.application_pool.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Application Pool Private Bytes [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f7194cc0-861f-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Application Pool CPU Usage [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0\",\"formatter\":\"percent\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"CPU Usage\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.application_pool.process.cpu_usage_perc\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.application_pool.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Application Pool CPU Usage [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"90fe3b30-861f-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MTcsMV0="} +{"attributes":{"description":"This dashboard shows application pools metrics for the IIS server.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"43790631-73f5-4f5e-824e-aa9d3f4f5664\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"43790631-73f5-4f5e-824e-aa9d3f4f5664\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_43790631-73f5-4f5e-824e-aa9d3f4f5664\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"b94f6dac-0f16-4781-ac08-d632154458a6\",\"w\":20,\"x\":9,\"y\":0},\"panelIndex\":\"b94f6dac-0f16-4781-ac08-d632154458a6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Thread Count\",\"panelRefName\":\"panel_b94f6dac-0f16-4781-ac08-d632154458a6\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"a3c19f11-99d4-4794-8ebb-aa2b3583577b\",\"w\":19,\"x\":29,\"y\":0},\"panelIndex\":\"a3c19f11-99d4-4794-8ebb-aa2b3583577b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Handle Count\",\"panelRefName\":\"panel_a3c19f11-99d4-4794-8ebb-aa2b3583577b\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"10fe7306-655b-4bc6-b078-892f91d0d9ea\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"10fe7306-655b-4bc6-b078-892f91d0d9ea\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_10fe7306-655b-4bc6-b078-892f91d0d9ea\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4dfc6a98-4749-47a8-a92e-ee955cf20c00\",\"w\":24,\"x\":0,\"y\":11},\"panelIndex\":\"4dfc6a98-4749-47a8-a92e-ee955cf20c00\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"IO Write Operations\",\"panelRefName\":\"panel_4dfc6a98-4749-47a8-a92e-ee955cf20c00\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"bae63734-a752-46c3-8083-8c12eabca5aa\",\"w\":24,\"x\":24,\"y\":11},\"panelIndex\":\"bae63734-a752-46c3-8083-8c12eabca5aa\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"IO Read Operations\",\"panelRefName\":\"panel_bae63734-a752-46c3-8083-8c12eabca5aa\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"ce663f89-7cf9-4659-af06-2128f7d2f74b\",\"w\":24,\"x\":0,\"y\":26},\"panelIndex\":\"ce663f89-7cf9-4659-af06-2128f7d2f74b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Working Set\",\"panelRefName\":\"panel_ce663f89-7cf9-4659-af06-2128f7d2f74b\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"99da2951-fb14-4a18-8a0c-4647daa9b626\",\"w\":24,\"x\":24,\"y\":41},\"panelIndex\":\"99da2951-fb14-4a18-8a0c-4647daa9b626\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Virtual Bytes\",\"panelRefName\":\"panel_99da2951-fb14-4a18-8a0c-4647daa9b626\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"71985962-b5c9-412e-a99f-b55ed988f4ea\",\"w\":24,\"x\":0,\"y\":41},\"panelIndex\":\"71985962-b5c9-412e-a99f-b55ed988f4ea\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Private Bytes\",\"panelRefName\":\"panel_71985962-b5c9-412e-a99f-b55ed988f4ea\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"347b6893-0ab0-47fc-9e80-efc9bf47f13e\",\"w\":24,\"x\":24,\"y\":26},\"panelIndex\":\"347b6893-0ab0-47fc-9e80-efc9bf47f13e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"CPU Usage\",\"panelRefName\":\"panel_347b6893-0ab0-47fc-9e80-efc9bf47f13e\"}]","timeRestore":false,"title":"[Metricbeat IIS] Application Pool Overview","version":1},"coreMigrationVersion":"8.0.0","id":"b4108810-861c-11ea-91bc-ab084c7ec0e7","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"dc97bec0-861c-11ea-91bc-ab084c7ec0e7","name":"43790631-73f5-4f5e-824e-aa9d3f4f5664:panel_43790631-73f5-4f5e-824e-aa9d3f4f5664","type":"visualization"},{"id":"41324ad0-861d-11ea-91bc-ab084c7ec0e7","name":"b94f6dac-0f16-4781-ac08-d632154458a6:panel_b94f6dac-0f16-4781-ac08-d632154458a6","type":"visualization"},{"id":"98b90fa0-861d-11ea-91bc-ab084c7ec0e7","name":"a3c19f11-99d4-4794-8ebb-aa2b3583577b:panel_a3c19f11-99d4-4794-8ebb-aa2b3583577b","type":"visualization"},{"id":"dd419de0-861d-11ea-91bc-ab084c7ec0e7","name":"10fe7306-655b-4bc6-b078-892f91d0d9ea:panel_10fe7306-655b-4bc6-b078-892f91d0d9ea","type":"visualization"},{"id":"442a86c0-861e-11ea-91bc-ab084c7ec0e7","name":"4dfc6a98-4749-47a8-a92e-ee955cf20c00:panel_4dfc6a98-4749-47a8-a92e-ee955cf20c00","type":"visualization"},{"id":"29a23aa0-861e-11ea-91bc-ab084c7ec0e7","name":"bae63734-a752-46c3-8083-8c12eabca5aa:panel_bae63734-a752-46c3-8083-8c12eabca5aa","type":"visualization"},{"id":"34bfec50-8620-11ea-91bc-ab084c7ec0e7","name":"ce663f89-7cf9-4659-af06-2128f7d2f74b:panel_ce663f89-7cf9-4659-af06-2128f7d2f74b","type":"visualization"},{"id":"14300bf0-8620-11ea-91bc-ab084c7ec0e7","name":"99da2951-fb14-4a18-8a0c-4647daa9b626:panel_99da2951-fb14-4a18-8a0c-4647daa9b626","type":"visualization"},{"id":"f7194cc0-861f-11ea-91bc-ab084c7ec0e7","name":"71985962-b5c9-412e-a99f-b55ed988f4ea:panel_71985962-b5c9-412e-a99f-b55ed988f4ea","type":"visualization"},{"id":"90fe3b30-861f-11ea-91bc-ab084c7ec0e7","name":"347b6893-0ab0-47fc-9e80-efc9bf47f13e:panel_347b6893-0ab0-47fc-9e80-efc9bf47f13e","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MDcsMV0="} diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-overview.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-overview.json deleted file mode 100644 index 57fe28b8ea6..00000000000 --- a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-overview.json +++ /dev/null @@ -1,1602 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This dashboard shows metrics for the IIS server.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "55b62196-f0fa-4473-a578-c5197ae7581c", - "w": 10, - "x": 0, - "y": 0 - }, - "panelIndex": "55b62196-f0fa-4473-a578-c5197ae7581c", - "panelRefName": "panel_0", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "9f1c724a-e57a-4667-8930-b60997efeee5", - "w": 9, - "x": 10, - "y": 0 - }, - "panelIndex": "9f1c724a-e57a-4667-8930-b60997efeee5", - "panelRefName": "panel_1", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "5aeeab99-314c-4732-b731-ebd390fa9210", - "w": 10, - "x": 19, - "y": 0 - }, - "panelIndex": "5aeeab99-314c-4732-b731-ebd390fa9210", - "panelRefName": "panel_2", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "88113bca-98b0-4877-b768-46f9b1c29751", - "w": 10, - "x": 29, - "y": 0 - }, - "panelIndex": "88113bca-98b0-4877-b768-46f9b1c29751", - "panelRefName": "panel_3", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "0add6210-d7d5-4b66-afaa-bcec0bc445d9", - "w": 9, - "x": 39, - "y": 0 - }, - "panelIndex": "0add6210-d7d5-4b66-afaa-bcec0bc445d9", - "panelRefName": "panel_4", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 8, - "i": "e809e015-29b2-496b-aaf1-f461d59b1568", - "w": 5, - "x": 0, - "y": 5 - }, - "panelIndex": "e809e015-29b2-496b-aaf1-f461d59b1568", - "panelRefName": "panel_5", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 8, - "i": "6ebec04f-3df0-4995-ae9c-836774f05ea7", - "w": 5, - "x": 5, - "y": 5 - }, - "panelIndex": "6ebec04f-3df0-4995-ae9c-836774f05ea7", - "panelRefName": "panel_6", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Total Requests" - }, - "gridData": { - "h": 12, - "i": "41de633b-40aa-4456-967a-5737d139a374", - "w": 38, - "x": 10, - "y": 9 - }, - "panelIndex": "41de633b-40aa-4456-967a-5737d139a374", - "panelRefName": "panel_7", - "title": "Total Requests", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 8, - "i": "3e1276ed-2f8f-4a07-948c-cf5ae0de9fc3", - "w": 5, - "x": 0, - "y": 13 - }, - "panelIndex": "3e1276ed-2f8f-4a07-948c-cf5ae0de9fc3", - "panelRefName": "panel_8", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 8, - "i": "983e0c36-04f7-4ec0-b6a6-8d2599a63065", - "w": 5, - "x": 5, - "y": 13 - }, - "panelIndex": "983e0c36-04f7-4ec0-b6a6-8d2599a63065", - "panelRefName": "panel_9", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Total Bytes Transferred" - }, - "gridData": { - "h": 14, - "i": "aa567463-86ec-4bbe-bf0f-b0d4d1d57bb0", - "w": 24, - "x": 24, - "y": 21 - }, - "panelIndex": "aa567463-86ec-4bbe-bf0f-b0d4d1d57bb0", - "panelRefName": "panel_10", - "title": "Total Bytes Transferred", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Bytes Transferred/sec" - }, - "gridData": { - "h": 14, - "i": "623596fb-3f1f-4f2e-b15b-800d197ce1aa", - "w": 24, - "x": 0, - "y": 21 - }, - "panelIndex": "623596fb-3f1f-4f2e-b15b-800d197ce1aa", - "panelRefName": "panel_11", - "title": "Bytes Transferred/sec", - "version": "7.6.2" - } - ], - "timeRestore": false, - "title": "[Metricbeat IIS] Webserver Overview", - "version": 1 - }, - "id": "ebc23240-8572-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "40614070-8573-11ea-91bc-ab084c7ec0e7", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "82f1d7d0-858a-11ea-91bc-ab084c7ec0e7", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "c92e0b80-8574-11ea-91bc-ab084c7ec0e7", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "348c4fe0-8575-11ea-91bc-ab084c7ec0e7", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "461a8640-8576-11ea-91bc-ab084c7ec0e7", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "c8e467d0-8d55-11ea-817c-a9b6d42fd8a0", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "df9d0e50-8d55-11ea-817c-a9b6d42fd8a0", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "75812480-857f-11ea-91bc-ab084c7ec0e7", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "14e77b40-8d56-11ea-817c-a9b6d42fd8a0", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "2d802c60-8d56-11ea-817c-a9b6d42fd8a0", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "68a9df20-8581-11ea-91bc-ab084c7ec0e7", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "92acc3e0-8582-11ea-91bc-ab084c7ec0e7", - "name": "panel_11", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-05-03T16:20:16.383Z", - "version": "WzEyNDUsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation Webserver Overview [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### IIS\n\n[**Webserver**](#/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7)| [Webserver processes](#/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7) | [Websites](#/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7) | [Application Pools](#/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7) \n\n\n\n", - "openLinksInNewTab": false - }, - "title": "Navigation Webserver Overview [Metricbeat IIS]", - "type": "markdown" - } - }, - "id": "40614070-8573-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T13:07:24.547Z", - "version": "WzUwOSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Service Uptime [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "s,h,", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Service Uptime", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.webserver.network.service_uptime", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}} h" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "gauge" - }, - "title": "Webserver Service Uptime [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "82f1d7d0-858a-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T13:07:24.547Z", - "version": "WzUxMCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Current Connections [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Current Connections", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.webserver.network.current_connections", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "gauge" - }, - "title": "Webserver Current Connections [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "c92e0b80-8574-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T13:07:24.547Z", - "version": "WzUxMSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Maximum Connections [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Maximum Connections", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.webserver.network.maximum_connections", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "gauge" - }, - "title": "Webserver Maximum Connections [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "348c4fe0-8575-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T13:07:24.547Z", - "version": "WzUxMiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Total Connection Attempts [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(251,158,0,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Total Connection Attempts", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.webserver.network.total_connection_attempts", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "gauge" - }, - "title": "Webserver Total Connection Attempts [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "461a8640-8576-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T13:07:24.547Z", - "version": "WzUxMywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Overview Current Anonymous Users [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(49,211,21,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Current Anonymous Users", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.webserver.network.current_anonymous_users", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}} " - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "gauge" - }, - "title": "Webserver Overview Current Anonymous Users [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "c8e467d0-8d55-11ea-817c-a9b6d42fd8a0", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-03T15:50:17.034Z", - "version": "WzEwNjcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Overview Total Anonymous Users [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(21,68,211,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Total Anonymous Users", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.webserver.network.total_anonymous_users", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}} " - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "gauge" - }, - "title": "Webserver Overview Total Anonymous Users [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "df9d0e50-8d55-11ea-817c-a9b6d42fd8a0", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-03T15:50:55.156Z", - "version": "WzEwNzMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Total Requests [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": "0", - "formatter": "number", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "Total Get Requests", - "line_width": "2", - "metrics": [ - { - "field": "iis.webserver.network.total_get_requests", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "everything", - "stacked": "none", - "terms_field": null, - "type": "timeseries", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "55ef6fb0-857e-11ea-87b6-db4d36ae5839", - "label": "Total Post Requests", - "line_width": "2", - "metrics": [ - { - "field": "iis.webserver.network.total_post_requests", - "id": "55ef6fb1-857e-11ea-87b6-db4d36ae5839", - "type": "avg" - } - ], - "point_size": "0", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(149,0,188,1)", - "fill": "0", - "formatter": "number", - "id": "7501b0c0-857e-11ea-87b6-db4d36ae5839", - "label": "Total Delete Requests", - "line_width": "2", - "metrics": [ - { - "field": "iis.webserver.network.total_delete_requests", - "id": "7501b0c1-857e-11ea-87b6-db4d36ae5839", - "type": "avg" - } - ], - "point_size": "", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Webserver Total Requests [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "75812480-857f-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T13:07:24.547Z", - "version": "WzUxNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Overview Current Non Anonymous Users [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(171,21,211,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Current Non Anonymous Users", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.webserver.network.current_non_anonymous_users", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}} " - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "gauge" - }, - "title": "Webserver Overview Current Non Anonymous Users [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "14e77b40-8d56-11ea-817c-a9b6d42fd8a0", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-03T15:52:24.564Z", - "version": "WzEwOTcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Overview Total Non Anonymous Users [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,21,105,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Total Non Anonymous Users", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.webserver.network.total_non_anonymous_users", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}} " - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "gauge" - }, - "title": "Webserver Overview Total Non Anonymous Users [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "2d802c60-8d56-11ea-817c-a9b6d42fd8a0", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-03T15:53:05.830Z", - "version": "WzExMDQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Total Bytes Transfered [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(251,158,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Total Bytes Sent ", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.webserver.network.total_bytes_sent", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "cb6910f0-8580-11ea-8d9f-cf59f8572d31", - "label": "Total Bytes Received", - "line_width": "2", - "metrics": [ - { - "field": "iis.webserver.network.total_bytes_received", - "id": "cb693800-8580-11ea-8d9f-cf59f8572d31", - "type": "avg" - } - ], - "point_size": "", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "timeseries" - }, - "title": "Webserver Total Bytes Transfered [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "68a9df20-8581-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T13:07:24.547Z", - "version": "WzUxNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Bytes Transfered Per Sec [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(22,165,165,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Bytes Sent/sec", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.webserver.network.bytes_sent_per_sec", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}/s" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(250,40,255,1)", - "fill": "0", - "formatter": "number", - "id": "cb6910f0-8580-11ea-8d9f-cf59f8572d31", - "label": "Bytes Received/sec", - "line_width": "2", - "metrics": [ - { - "field": "iis.webserver.network.bytes_received_per_sec", - "id": "cb693800-8580-11ea-8d9f-cf59f8572d31", - "type": "avg" - } - ], - "point_size": "", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "{{value}}/s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "timeseries" - }, - "title": "Webserver Bytes Transfered Per Sec [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "92acc3e0-8582-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T13:07:24.547Z", - "version": "WzUxNiwxXQ==" - } - ], - "version": "7.6.2" -} diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-overview.ndjson b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-overview.ndjson new file mode 100644 index 00000000000..c8187675d07 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-overview.ndjson @@ -0,0 +1,13 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Webserver Overview [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### IIS\\n\\n[**Webserver**](#/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7)| [Webserver processes](#/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7) | [Websites](#/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7) | [Application Pools](#/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7) \\n\\n\\n\\n\",\"openLinksInNewTab\":false},\"title\":\"Navigation Webserver Overview [Metricbeat IIS]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"40614070-8573-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Service Uptime [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"s,h,\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Service Uptime\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.service_uptime\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} h\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Service Uptime [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"82f1d7d0-858a-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Current Connections [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Current Connections\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.current_connections\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Current Connections [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c92e0b80-8574-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Maximum Connections [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Maximum Connections\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.maximum_connections\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Maximum Connections [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"348c4fe0-8575-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Total Connection Attempts [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Total Connection Attempts\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.total_connection_attempts\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Total Connection Attempts [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"461a8640-8576-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Overview Current Anonymous Users [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(49,211,21,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Current Anonymous Users\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.current_anonymous_users\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Overview Current Anonymous Users [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c8e467d0-8d55-11ea-817c-a9b6d42fd8a0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Overview Total Anonymous Users [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(21,68,211,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Total Anonymous Users\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.total_anonymous_users\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Overview Total Anonymous Users [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"df9d0e50-8d55-11ea-817c-a9b6d42fd8a0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Total Requests [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Total Get Requests\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.network.total_get_requests\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}}\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"55ef6fb0-857e-11ea-87b6-db4d36ae5839\",\"label\":\"Total Post Requests\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.network.total_post_requests\",\"id\":\"55ef6fb1-857e-11ea-87b6-db4d36ae5839\",\"type\":\"avg\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(149,0,188,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"7501b0c0-857e-11ea-87b6-db4d36ae5839\",\"label\":\"Total Delete Requests\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.network.total_delete_requests\",\"id\":\"7501b0c1-857e-11ea-87b6-db4d36ae5839\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Webserver Total Requests [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"75812480-857f-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Overview Current Non Anonymous Users [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(171,21,211,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Current Non Anonymous Users\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.current_non_anonymous_users\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Overview Current Non Anonymous Users [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"14e77b40-8d56-11ea-817c-a9b6d42fd8a0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Overview Total Non Anonymous Users [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,21,105,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Total Non Anonymous Users\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.total_non_anonymous_users\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Overview Total Non Anonymous Users [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2d802c60-8d56-11ea-817c-a9b6d42fd8a0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Total Bytes Transfered [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Total Bytes Sent \",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.total_bytes_sent\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"cb6910f0-8580-11ea-8d9f-cf59f8572d31\",\"label\":\"Total Bytes Received\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.network.total_bytes_received\",\"id\":\"cb693800-8580-11ea-8d9f-cf59f8572d31\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Webserver Total Bytes Transfered [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"68a9df20-8581-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Bytes Transfered Per Sec [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Bytes Sent/sec\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.bytes_sent_per_sec\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(250,40,255,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"cb6910f0-8580-11ea-8d9f-cf59f8572d31\",\"label\":\"Bytes Received/sec\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.network.bytes_received_per_sec\",\"id\":\"cb693800-8580-11ea-8d9f-cf59f8572d31\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Webserver Bytes Transfered Per Sec [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"92acc3e0-8582-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MzAsMV0="} +{"attributes":{"description":"This dashboard shows metrics for the IIS server.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"55b62196-f0fa-4473-a578-c5197ae7581c\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"55b62196-f0fa-4473-a578-c5197ae7581c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_55b62196-f0fa-4473-a578-c5197ae7581c\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"9f1c724a-e57a-4667-8930-b60997efeee5\",\"w\":9,\"x\":10,\"y\":0},\"panelIndex\":\"9f1c724a-e57a-4667-8930-b60997efeee5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_9f1c724a-e57a-4667-8930-b60997efeee5\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"5aeeab99-314c-4732-b731-ebd390fa9210\",\"w\":10,\"x\":19,\"y\":0},\"panelIndex\":\"5aeeab99-314c-4732-b731-ebd390fa9210\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_5aeeab99-314c-4732-b731-ebd390fa9210\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"88113bca-98b0-4877-b768-46f9b1c29751\",\"w\":10,\"x\":29,\"y\":0},\"panelIndex\":\"88113bca-98b0-4877-b768-46f9b1c29751\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_88113bca-98b0-4877-b768-46f9b1c29751\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"0add6210-d7d5-4b66-afaa-bcec0bc445d9\",\"w\":9,\"x\":39,\"y\":0},\"panelIndex\":\"0add6210-d7d5-4b66-afaa-bcec0bc445d9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_0add6210-d7d5-4b66-afaa-bcec0bc445d9\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"e809e015-29b2-496b-aaf1-f461d59b1568\",\"w\":5,\"x\":0,\"y\":5},\"panelIndex\":\"e809e015-29b2-496b-aaf1-f461d59b1568\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_e809e015-29b2-496b-aaf1-f461d59b1568\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"6ebec04f-3df0-4995-ae9c-836774f05ea7\",\"w\":5,\"x\":5,\"y\":5},\"panelIndex\":\"6ebec04f-3df0-4995-ae9c-836774f05ea7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_6ebec04f-3df0-4995-ae9c-836774f05ea7\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"41de633b-40aa-4456-967a-5737d139a374\",\"w\":38,\"x\":10,\"y\":9},\"panelIndex\":\"41de633b-40aa-4456-967a-5737d139a374\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Requests\",\"panelRefName\":\"panel_41de633b-40aa-4456-967a-5737d139a374\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"3e1276ed-2f8f-4a07-948c-cf5ae0de9fc3\",\"w\":5,\"x\":0,\"y\":13},\"panelIndex\":\"3e1276ed-2f8f-4a07-948c-cf5ae0de9fc3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_3e1276ed-2f8f-4a07-948c-cf5ae0de9fc3\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"983e0c36-04f7-4ec0-b6a6-8d2599a63065\",\"w\":5,\"x\":5,\"y\":13},\"panelIndex\":\"983e0c36-04f7-4ec0-b6a6-8d2599a63065\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_983e0c36-04f7-4ec0-b6a6-8d2599a63065\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"aa567463-86ec-4bbe-bf0f-b0d4d1d57bb0\",\"w\":24,\"x\":24,\"y\":21},\"panelIndex\":\"aa567463-86ec-4bbe-bf0f-b0d4d1d57bb0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Bytes Transferred\",\"panelRefName\":\"panel_aa567463-86ec-4bbe-bf0f-b0d4d1d57bb0\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"623596fb-3f1f-4f2e-b15b-800d197ce1aa\",\"w\":24,\"x\":0,\"y\":21},\"panelIndex\":\"623596fb-3f1f-4f2e-b15b-800d197ce1aa\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes Transferred/sec\",\"panelRefName\":\"panel_623596fb-3f1f-4f2e-b15b-800d197ce1aa\"}]","timeRestore":false,"title":"[Metricbeat IIS] Webserver Overview","version":1},"coreMigrationVersion":"8.0.0","id":"ebc23240-8572-11ea-91bc-ab084c7ec0e7","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"40614070-8573-11ea-91bc-ab084c7ec0e7","name":"55b62196-f0fa-4473-a578-c5197ae7581c:panel_55b62196-f0fa-4473-a578-c5197ae7581c","type":"visualization"},{"id":"82f1d7d0-858a-11ea-91bc-ab084c7ec0e7","name":"9f1c724a-e57a-4667-8930-b60997efeee5:panel_9f1c724a-e57a-4667-8930-b60997efeee5","type":"visualization"},{"id":"c92e0b80-8574-11ea-91bc-ab084c7ec0e7","name":"5aeeab99-314c-4732-b731-ebd390fa9210:panel_5aeeab99-314c-4732-b731-ebd390fa9210","type":"visualization"},{"id":"348c4fe0-8575-11ea-91bc-ab084c7ec0e7","name":"88113bca-98b0-4877-b768-46f9b1c29751:panel_88113bca-98b0-4877-b768-46f9b1c29751","type":"visualization"},{"id":"461a8640-8576-11ea-91bc-ab084c7ec0e7","name":"0add6210-d7d5-4b66-afaa-bcec0bc445d9:panel_0add6210-d7d5-4b66-afaa-bcec0bc445d9","type":"visualization"},{"id":"c8e467d0-8d55-11ea-817c-a9b6d42fd8a0","name":"e809e015-29b2-496b-aaf1-f461d59b1568:panel_e809e015-29b2-496b-aaf1-f461d59b1568","type":"visualization"},{"id":"df9d0e50-8d55-11ea-817c-a9b6d42fd8a0","name":"6ebec04f-3df0-4995-ae9c-836774f05ea7:panel_6ebec04f-3df0-4995-ae9c-836774f05ea7","type":"visualization"},{"id":"75812480-857f-11ea-91bc-ab084c7ec0e7","name":"41de633b-40aa-4456-967a-5737d139a374:panel_41de633b-40aa-4456-967a-5737d139a374","type":"visualization"},{"id":"14e77b40-8d56-11ea-817c-a9b6d42fd8a0","name":"3e1276ed-2f8f-4a07-948c-cf5ae0de9fc3:panel_3e1276ed-2f8f-4a07-948c-cf5ae0de9fc3","type":"visualization"},{"id":"2d802c60-8d56-11ea-817c-a9b6d42fd8a0","name":"983e0c36-04f7-4ec0-b6a6-8d2599a63065:panel_983e0c36-04f7-4ec0-b6a6-8d2599a63065","type":"visualization"},{"id":"68a9df20-8581-11ea-91bc-ab084c7ec0e7","name":"aa567463-86ec-4bbe-bf0f-b0d4d1d57bb0:panel_aa567463-86ec-4bbe-bf0f-b0d4d1d57bb0","type":"visualization"},{"id":"92acc3e0-8582-11ea-91bc-ab084c7ec0e7","name":"623596fb-3f1f-4f2e-b15b-800d197ce1aa:panel_623596fb-3f1f-4f2e-b15b-800d197ce1aa","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MTgsMV0="} diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-process-overview.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-process-overview.json deleted file mode 100644 index 6c294be381f..00000000000 --- a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-process-overview.json +++ /dev/null @@ -1,1510 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This dashboard shows process and cache metrics for the IIS server.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 5, - "i": "8c503a52-2cfb-4922-97db-b91bf343285d", - "w": 10, - "x": 0, - "y": 0 - }, - "panelIndex": "8c503a52-2cfb-4922-97db-b91bf343285d", - "panelRefName": "panel_0", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 11, - "i": "1bfd458d-84ff-4b0c-b091-9bfd7ac15de1", - "w": 8, - "x": 10, - "y": 0 - }, - "panelIndex": "1bfd458d-84ff-4b0c-b091-9bfd7ac15de1", - "panelRefName": "panel_1", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 11, - "i": "c0111c35-69be-41b9-a6be-b83f83721aeb", - "w": 10, - "x": 18, - "y": 0 - }, - "panelIndex": "c0111c35-69be-41b9-a6be-b83f83721aeb", - "panelRefName": "panel_2", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 11, - "i": "b857a52c-865a-4f99-9acb-cc6b64b4508b", - "w": 10, - "x": 28, - "y": 0 - }, - "panelIndex": "b857a52c-865a-4f99-9acb-cc6b64b4508b", - "panelRefName": "panel_3", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 11, - "i": "dfbef78c-4636-4c5f-ad52-45f931b6a101", - "w": 10, - "x": 38, - "y": 0 - }, - "panelIndex": "dfbef78c-4636-4c5f-ad52-45f931b6a101", - "panelRefName": "panel_4", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "552a8182-6705-4faa-95e5-2cde2a3e77c0", - "w": 5, - "x": 0, - "y": 5 - }, - "panelIndex": "552a8182-6705-4faa-95e5-2cde2a3e77c0", - "panelRefName": "panel_5", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "1f8299eb-beef-4851-ac58-4416891629c2", - "w": 5, - "x": 5, - "y": 5 - }, - "panelIndex": "1f8299eb-beef-4851-ac58-4416891629c2", - "panelRefName": "panel_6", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "IO Operations" - }, - "gridData": { - "h": 12, - "i": "5b29dd93-bdc2-4539-a08f-023638a8ccdb", - "w": 38, - "x": 10, - "y": 11 - }, - "panelIndex": "5b29dd93-bdc2-4539-a08f-023638a8ccdb", - "panelRefName": "panel_7", - "title": "IO Operations", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "c0d58d03-1af7-46d0-a01d-6d9c2d05d703", - "w": 5, - "x": 0, - "y": 14 - }, - "panelIndex": "c0d58d03-1af7-46d0-a01d-6d9c2d05d703", - "panelRefName": "panel_8", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "ddc9edcc-d8ee-4953-9f8e-0c24328a90e3", - "w": 5, - "x": 5, - "y": 14 - }, - "panelIndex": "ddc9edcc-d8ee-4953-9f8e-0c24328a90e3", - "panelRefName": "panel_9", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "Memory Usage" - }, - "gridData": { - "h": 15, - "i": "12a8098a-9dfa-464b-b4b7-c08a02829aa1", - "w": 24, - "x": 24, - "y": 23 - }, - "panelIndex": "12a8098a-9dfa-464b-b4b7-c08a02829aa1", - "panelRefName": "panel_10", - "title": "Memory Usage", - "version": "7.6.2" - }, - { - "embeddableConfig": { - "title": "CPU Usage" - }, - "gridData": { - "h": 15, - "i": "4b54bddb-c2e7-47a1-ab7c-71c51e91a931", - "w": 24, - "x": 0, - "y": 23 - }, - "panelIndex": "4b54bddb-c2e7-47a1-ab7c-71c51e91a931", - "panelRefName": "panel_11", - "title": "CPU Usage", - "version": "7.6.2" - } - ], - "timeRestore": false, - "title": "[Metricbeat IIS] Webserver Process Overview", - "version": 1 - }, - "id": "2c171500-858b-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "e6fab5c0-858b-11ea-91bc-ab084c7ec0e7", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "1084a0e0-8d57-11ea-817c-a9b6d42fd8a0", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "55755550-858c-11ea-91bc-ab084c7ec0e7", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "6c1272a0-858e-11ea-91bc-ab084c7ec0e7", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "92dcde20-858e-11ea-91bc-ab084c7ec0e7", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "d9dc78b0-8d56-11ea-817c-a9b6d42fd8a0", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "b5c6f400-8d56-11ea-817c-a9b6d42fd8a0", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "e26479e0-858d-11ea-91bc-ab084c7ec0e7", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "7d9e1f40-8d56-11ea-817c-a9b6d42fd8a0", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "945f7850-8d56-11ea-817c-a9b6d42fd8a0", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "e4d91170-858f-11ea-91bc-ab084c7ec0e7", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "2dd099f0-858d-11ea-91bc-ab084c7ec0e7", - "name": "panel_11", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-05-03T16:16:09.608Z", - "version": "WzEyMTcsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation Webserver Process Overview [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### IIS\n\n[Webserver](#/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7)| [**Webserver processes**](#/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7) | [Websites](#/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7) | [Application Pools](#/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7) ", - "openLinksInNewTab": false - }, - "title": "Navigation Webserver Process Overview [Metricbeat IIS]", - "type": "markdown" - } - }, - "id": "e6fab5c0-858b-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T13:07:25.601Z", - "version": "WzUxOSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Process Output Cache Current Memory Usage [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,181,21,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "bytes", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Output Cache Current Memory Usage", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.webserver.cache.output_cache_current_memory_usage", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}} " - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "gauge" - }, - "title": "Webserver Process Output Cache Current Memory Usage [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "1084a0e0-8d57-11ea-817c-a9b6d42fd8a0", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-03T16:10:45.498Z", - "version": "WzExOTEsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Process Worker Process Count [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Worker Processes", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.webserver.process.worker_process_count", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}} " - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "gauge" - }, - "title": "Webserver Process Worker Process Count [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "55755550-858c-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T13:07:25.601Z", - "version": "WzUyMCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Process Thread Count [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(22,165,165,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Thread Count", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.webserver.process.thread_count", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}} " - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "gauge" - }, - "title": "Webserver Process Thread Count [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "6c1272a0-858e-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T13:07:25.601Z", - "version": "WzUyMSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Process Handle Count [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(101,50,148,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Handle Count", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.webserver.process.handle_count", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}} " - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "gauge" - }, - "title": "Webserver Process Handle Count [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "92dcde20-858e-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T13:07:25.601Z", - "version": "WzUyMiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Process Current Files Cached [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(21,211,162,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Current Files Cached", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.webserver.cache.current_files_cached", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}} " - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "gauge" - }, - "title": "Webserver Process Current Files Cached [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "d9dc78b0-8d56-11ea-817c-a9b6d42fd8a0", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-03T15:57:55.003Z", - "version": "WzExMzMsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Process Total Files Cached [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(21,162,211,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Total Files Cached", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.webserver.cache.total_files_cached", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}} " - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "gauge" - }, - "title": "Webserver Process Total Files Cached [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "b5c6f400-8d56-11ea-817c-a9b6d42fd8a0", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-03T15:57:12.722Z", - "version": "WzExMjgsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Process IO Operations [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": "0", - "formatter": "number", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "IO Read Operations/s", - "line_width": "2", - "metrics": [ - { - "field": "iis.webserver.process.io_read_operations_per_sec", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "everything", - "stacked": "none", - "terms_field": null, - "type": "timeseries", - "value_template": "{{value}}/s" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "number", - "id": "55ef6fb0-857e-11ea-87b6-db4d36ae5839", - "label": "IO Write Operations/s", - "line_width": "2", - "metrics": [ - { - "field": "iis.webserver.process.io_write_operations_per_sec", - "id": "55ef6fb1-857e-11ea-87b6-db4d36ae5839", - "type": "avg" - } - ], - "point_size": "0", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "{{value}}/s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Webserver Process IO Operations [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "e26479e0-858d-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T13:07:25.601Z", - "version": "WzUyNCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Current Uris Cached [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,21,105,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Current Uris Cached", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.webserver.cache.current_uris_cached", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}} " - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "gauge" - }, - "title": "Webserver Current Uris Cached [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "7d9e1f40-8d56-11ea-817c-a9b6d42fd8a0", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-03T15:55:20.244Z", - "version": "WzExMTQsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Total Uris Cached [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(92,21,211,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Total Uris Cached", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.webserver.cache.total_uris_cached", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none", - "terms_field": "cloud.instance.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}} " - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "gauge" - }, - "title": "Webserver Total Uris Cached [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "945f7850-8d56-11ea-817c-a9b6d42fd8a0", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-05-03T15:55:58.421Z", - "version": "WzExMjAsMV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Process Memory Usage [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": "0", - "formatter": "bytes", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "Private Bytes", - "line_width": "2", - "metrics": [ - { - "field": "iis.webserver.process.private_bytes", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "everything", - "stacked": "none", - "terms_field": null, - "type": "timeseries", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "formatter": "bytes", - "id": "55ef6fb0-857e-11ea-87b6-db4d36ae5839", - "label": "Virtual Bytes", - "line_width": "2", - "metrics": [ - { - "field": "iis.webserver.process.virtual_bytes", - "id": "55ef6fb1-857e-11ea-87b6-db4d36ae5839", - "type": "avg" - } - ], - "point_size": "0", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(149,0,188,1)", - "fill": "0", - "formatter": "bytes", - "id": "7501b0c0-857e-11ea-87b6-db4d36ae5839", - "label": "Working Set", - "line_width": "2", - "metrics": [ - { - "field": "iis.webserver.process.working_set", - "id": "7501b0c1-857e-11ea-87b6-db4d36ae5839", - "type": "avg" - } - ], - "point_size": "", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Webserver Process Memory Usage [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "e4d91170-858f-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T13:07:25.601Z", - "version": "WzUyNiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Webserver Process CPU Usage [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#3185FC", - "fill": "0", - "formatter": "percent", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "CPU Usage", - "line_width": "2", - "metrics": [ - { - "field": "iis.webserver.process.cpu_usage_perc", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "everything", - "stacked": "none", - "terms_field": null, - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Webserver Process CPU Usage [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "2dd099f0-858d-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T13:07:25.601Z", - "version": "WzUyNSwxXQ==" - } - ], - "version": "7.6.2" -} diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-process-overview.ndjson b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-process-overview.ndjson new file mode 100644 index 00000000000..7874efde453 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-process-overview.ndjson @@ -0,0 +1,13 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Webserver Process Overview [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### IIS\\n\\n[Webserver](#/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7)| [**Webserver processes**](#/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7) | [Websites](#/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7) | [Application Pools](#/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Webserver Process Overview [Metricbeat IIS]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"e6fab5c0-858b-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5MzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Process Output Cache Current Memory Usage [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,181,21,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Output Cache Current Memory Usage\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.cache.output_cache_current_memory_usage\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Process Output Cache Current Memory Usage [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1084a0e0-8d57-11ea-817c-a9b6d42fd8a0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5MzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Process Worker Process Count [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Worker Processes\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.process.worker_process_count\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Process Worker Process Count [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"55755550-858c-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5MzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Process Thread Count [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Thread Count\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.process.thread_count\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Process Thread Count [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6c1272a0-858e-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5MzUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Process Handle Count [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(101,50,148,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Handle Count\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.process.handle_count\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Process Handle Count [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"92dcde20-858e-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5MzYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Process Current Files Cached [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(21,211,162,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Current Files Cached\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.cache.current_files_cached\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Process Current Files Cached [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d9dc78b0-8d56-11ea-817c-a9b6d42fd8a0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5MzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Process Total Files Cached [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(21,162,211,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Total Files Cached\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.cache.total_files_cached\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Process Total Files Cached [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b5c6f400-8d56-11ea-817c-a9b6d42fd8a0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5MzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Process IO Operations [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"IO Read Operations/s\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.process.io_read_operations_per_sec\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"55ef6fb0-857e-11ea-87b6-db4d36ae5839\",\"label\":\"IO Write Operations/s\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.process.io_write_operations_per_sec\",\"id\":\"55ef6fb1-857e-11ea-87b6-db4d36ae5839\",\"type\":\"avg\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Webserver Process IO Operations [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e26479e0-858d-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5MzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Current Uris Cached [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,21,105,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Current Uris Cached\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.cache.current_uris_cached\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Current Uris Cached [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7d9e1f40-8d56-11ea-817c-a9b6d42fd8a0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5NDAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Total Uris Cached [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(92,21,211,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Total Uris Cached\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.cache.total_uris_cached\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Total Uris Cached [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"945f7850-8d56-11ea-817c-a9b6d42fd8a0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5NDEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Process Memory Usage [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Private Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.process.private_bytes\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}}\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"55ef6fb0-857e-11ea-87b6-db4d36ae5839\",\"label\":\"Virtual Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.process.virtual_bytes\",\"id\":\"55ef6fb1-857e-11ea-87b6-db4d36ae5839\",\"type\":\"avg\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(149,0,188,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"7501b0c0-857e-11ea-87b6-db4d36ae5839\",\"label\":\"Working Set\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.process.working_set\",\"id\":\"7501b0c1-857e-11ea-87b6-db4d36ae5839\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Webserver Process Memory Usage [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e4d91170-858f-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5NDIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Process CPU Usage [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0\",\"formatter\":\"percent\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"CPU Usage\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.process.cpu_usage_perc\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Webserver Process CPU Usage [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2dd099f0-858d-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5NDMsMV0="} +{"attributes":{"description":"This dashboard shows process and cache metrics for the IIS server.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"8c503a52-2cfb-4922-97db-b91bf343285d\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"8c503a52-2cfb-4922-97db-b91bf343285d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_8c503a52-2cfb-4922-97db-b91bf343285d\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"1bfd458d-84ff-4b0c-b091-9bfd7ac15de1\",\"w\":8,\"x\":10,\"y\":0},\"panelIndex\":\"1bfd458d-84ff-4b0c-b091-9bfd7ac15de1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_1bfd458d-84ff-4b0c-b091-9bfd7ac15de1\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"c0111c35-69be-41b9-a6be-b83f83721aeb\",\"w\":10,\"x\":18,\"y\":0},\"panelIndex\":\"c0111c35-69be-41b9-a6be-b83f83721aeb\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_c0111c35-69be-41b9-a6be-b83f83721aeb\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"b857a52c-865a-4f99-9acb-cc6b64b4508b\",\"w\":10,\"x\":28,\"y\":0},\"panelIndex\":\"b857a52c-865a-4f99-9acb-cc6b64b4508b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_b857a52c-865a-4f99-9acb-cc6b64b4508b\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"dfbef78c-4636-4c5f-ad52-45f931b6a101\",\"w\":10,\"x\":38,\"y\":0},\"panelIndex\":\"dfbef78c-4636-4c5f-ad52-45f931b6a101\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_dfbef78c-4636-4c5f-ad52-45f931b6a101\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"552a8182-6705-4faa-95e5-2cde2a3e77c0\",\"w\":5,\"x\":0,\"y\":5},\"panelIndex\":\"552a8182-6705-4faa-95e5-2cde2a3e77c0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_552a8182-6705-4faa-95e5-2cde2a3e77c0\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1f8299eb-beef-4851-ac58-4416891629c2\",\"w\":5,\"x\":5,\"y\":5},\"panelIndex\":\"1f8299eb-beef-4851-ac58-4416891629c2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_1f8299eb-beef-4851-ac58-4416891629c2\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"5b29dd93-bdc2-4539-a08f-023638a8ccdb\",\"w\":38,\"x\":10,\"y\":11},\"panelIndex\":\"5b29dd93-bdc2-4539-a08f-023638a8ccdb\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"IO Operations\",\"panelRefName\":\"panel_5b29dd93-bdc2-4539-a08f-023638a8ccdb\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"c0d58d03-1af7-46d0-a01d-6d9c2d05d703\",\"w\":5,\"x\":0,\"y\":14},\"panelIndex\":\"c0d58d03-1af7-46d0-a01d-6d9c2d05d703\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_c0d58d03-1af7-46d0-a01d-6d9c2d05d703\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"ddc9edcc-d8ee-4953-9f8e-0c24328a90e3\",\"w\":5,\"x\":5,\"y\":14},\"panelIndex\":\"ddc9edcc-d8ee-4953-9f8e-0c24328a90e3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ddc9edcc-d8ee-4953-9f8e-0c24328a90e3\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"12a8098a-9dfa-464b-b4b7-c08a02829aa1\",\"w\":24,\"x\":24,\"y\":23},\"panelIndex\":\"12a8098a-9dfa-464b-b4b7-c08a02829aa1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Memory Usage\",\"panelRefName\":\"panel_12a8098a-9dfa-464b-b4b7-c08a02829aa1\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4b54bddb-c2e7-47a1-ab7c-71c51e91a931\",\"w\":24,\"x\":0,\"y\":23},\"panelIndex\":\"4b54bddb-c2e7-47a1-ab7c-71c51e91a931\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"CPU Usage\",\"panelRefName\":\"panel_4b54bddb-c2e7-47a1-ab7c-71c51e91a931\"}]","timeRestore":false,"title":"[Metricbeat IIS] Webserver Process Overview","version":1},"coreMigrationVersion":"8.0.0","id":"2c171500-858b-11ea-91bc-ab084c7ec0e7","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"e6fab5c0-858b-11ea-91bc-ab084c7ec0e7","name":"8c503a52-2cfb-4922-97db-b91bf343285d:panel_8c503a52-2cfb-4922-97db-b91bf343285d","type":"visualization"},{"id":"1084a0e0-8d57-11ea-817c-a9b6d42fd8a0","name":"1bfd458d-84ff-4b0c-b091-9bfd7ac15de1:panel_1bfd458d-84ff-4b0c-b091-9bfd7ac15de1","type":"visualization"},{"id":"55755550-858c-11ea-91bc-ab084c7ec0e7","name":"c0111c35-69be-41b9-a6be-b83f83721aeb:panel_c0111c35-69be-41b9-a6be-b83f83721aeb","type":"visualization"},{"id":"6c1272a0-858e-11ea-91bc-ab084c7ec0e7","name":"b857a52c-865a-4f99-9acb-cc6b64b4508b:panel_b857a52c-865a-4f99-9acb-cc6b64b4508b","type":"visualization"},{"id":"92dcde20-858e-11ea-91bc-ab084c7ec0e7","name":"dfbef78c-4636-4c5f-ad52-45f931b6a101:panel_dfbef78c-4636-4c5f-ad52-45f931b6a101","type":"visualization"},{"id":"d9dc78b0-8d56-11ea-817c-a9b6d42fd8a0","name":"552a8182-6705-4faa-95e5-2cde2a3e77c0:panel_552a8182-6705-4faa-95e5-2cde2a3e77c0","type":"visualization"},{"id":"b5c6f400-8d56-11ea-817c-a9b6d42fd8a0","name":"1f8299eb-beef-4851-ac58-4416891629c2:panel_1f8299eb-beef-4851-ac58-4416891629c2","type":"visualization"},{"id":"e26479e0-858d-11ea-91bc-ab084c7ec0e7","name":"5b29dd93-bdc2-4539-a08f-023638a8ccdb:panel_5b29dd93-bdc2-4539-a08f-023638a8ccdb","type":"visualization"},{"id":"7d9e1f40-8d56-11ea-817c-a9b6d42fd8a0","name":"c0d58d03-1af7-46d0-a01d-6d9c2d05d703:panel_c0d58d03-1af7-46d0-a01d-6d9c2d05d703","type":"visualization"},{"id":"945f7850-8d56-11ea-817c-a9b6d42fd8a0","name":"ddc9edcc-d8ee-4953-9f8e-0c24328a90e3:panel_ddc9edcc-d8ee-4953-9f8e-0c24328a90e3","type":"visualization"},{"id":"e4d91170-858f-11ea-91bc-ab084c7ec0e7","name":"12a8098a-9dfa-464b-b4b7-c08a02829aa1:panel_12a8098a-9dfa-464b-b4b7-c08a02829aa1","type":"visualization"},{"id":"2dd099f0-858d-11ea-91bc-ab084c7ec0e7","name":"4b54bddb-c2e7-47a1-ab7c-71c51e91a931:panel_4b54bddb-c2e7-47a1-ab7c-71c51e91a931","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5MzEsMV0="} diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-website-overview.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-website-overview.json deleted file mode 100644 index 8f1491f0f1c..00000000000 --- a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-website-overview.json +++ /dev/null @@ -1,1685 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "This dashboard shows metrics for the websites running on IIS.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "e8bd7244-57bf-4e16-b096-4fa7cb8cbba8", - "w": 9, - "x": 0, - "y": 0 - }, - "panelIndex": "e8bd7244-57bf-4e16-b096-4fa7cb8cbba8", - "panelRefName": "panel_0", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Current Connections" - }, - "gridData": { - "h": 12, - "i": "193cca9a-a5c3-40c4-a9af-1020b279b845", - "w": 13, - "x": 9, - "y": 0 - }, - "panelIndex": "193cca9a-a5c3-40c4-a9af-1020b279b845", - "panelRefName": "panel_1", - "title": "Current Connections", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Maximum Connections" - }, - "gridData": { - "h": 12, - "i": "7b5d1298-0480-443a-bf0e-5b594903c680", - "w": 13, - "x": 22, - "y": 0 - }, - "panelIndex": "7b5d1298-0480-443a-bf0e-5b594903c680", - "panelRefName": "panel_2", - "title": "Maximum Connections", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Total Connection Attempts" - }, - "gridData": { - "h": 12, - "i": "fd0c5fd7-4df8-44d9-905f-5634f49ae875", - "w": 13, - "x": 35, - "y": 0 - }, - "panelIndex": "fd0c5fd7-4df8-44d9-905f-5634f49ae875", - "panelRefName": "panel_3", - "title": "Total Connection Attempts", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Filters" - }, - "gridData": { - "h": 6, - "i": "69a127c6-8c4f-403a-aded-7a49dc3d3cd9", - "w": 9, - "x": 0, - "y": 6 - }, - "panelIndex": "69a127c6-8c4f-403a-aded-7a49dc3d3cd9", - "panelRefName": "panel_4", - "title": "Filters", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Service Uptime" - }, - "gridData": { - "h": 12, - "i": "545b1abe-fd22-455b-8bc6-68bd48c2d384", - "w": 9, - "x": 0, - "y": 12 - }, - "panelIndex": "545b1abe-fd22-455b-8bc6-68bd48c2d384", - "panelRefName": "panel_5", - "title": "Service Uptime", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Bytes Sent/sec" - }, - "gridData": { - "h": 12, - "i": "c026e461-8b64-4952-be07-744773cb18b9", - "w": 20, - "x": 9, - "y": 12 - }, - "panelIndex": "c026e461-8b64-4952-be07-744773cb18b9", - "panelRefName": "panel_6", - "title": "Bytes Sent/sec", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Bytes Received/sec" - }, - "gridData": { - "h": 12, - "i": "98b6e727-3343-43df-84e1-12933856f432", - "w": 19, - "x": 29, - "y": 12 - }, - "panelIndex": "98b6e727-3343-43df-84e1-12933856f432", - "panelRefName": "panel_7", - "title": "Bytes Received/sec", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "GET Requests/sec" - }, - "gridData": { - "h": 12, - "i": "d4b32bd4-dee2-44e2-930d-91e4607c0668", - "w": 12, - "x": 0, - "y": 24 - }, - "panelIndex": "d4b32bd4-dee2-44e2-930d-91e4607c0668", - "panelRefName": "panel_8", - "title": "GET Requests/sec", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "POST Requests/sec" - }, - "gridData": { - "h": 12, - "i": "d24b5bb0-6dc3-40ba-91cb-5ca5e48a3afa", - "w": 12, - "x": 12, - "y": 24 - }, - "panelIndex": "d24b5bb0-6dc3-40ba-91cb-5ca5e48a3afa", - "panelRefName": "panel_9", - "title": "POST Requests/sec", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "PUT Requests/sec" - }, - "gridData": { - "h": 12, - "i": "c8cfac9e-ad2a-4ddf-94c9-0454e987b2b8", - "w": 12, - "x": 24, - "y": 24 - }, - "panelIndex": "c8cfac9e-ad2a-4ddf-94c9-0454e987b2b8", - "panelRefName": "panel_10", - "title": "PUT Requests/sec", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "DELETE Requests/sec" - }, - "gridData": { - "h": 12, - "i": "41b4d631-4878-49af-b34b-f04f473599c8", - "w": 12, - "x": 36, - "y": 24 - }, - "panelIndex": "41b4d631-4878-49af-b34b-f04f473599c8", - "panelRefName": "panel_11", - "title": "DELETE Requests/sec", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Total DELETE Requests" - }, - "gridData": { - "h": 12, - "i": "90d9d209-6ef9-4ab7-b9a2-48a1f420e555", - "w": 12, - "x": 36, - "y": 36 - }, - "panelIndex": "90d9d209-6ef9-4ab7-b9a2-48a1f420e555", - "panelRefName": "panel_12", - "title": "Total DELETE Requests", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Total GET Requests" - }, - "gridData": { - "h": 12, - "i": "c7379d87-3da3-4be4-a8bd-8db04da66ba4", - "w": 12, - "x": 0, - "y": 36 - }, - "panelIndex": "c7379d87-3da3-4be4-a8bd-8db04da66ba4", - "panelRefName": "panel_13", - "title": "Total GET Requests", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Total POST Requests" - }, - "gridData": { - "h": 12, - "i": "9a22a36c-5fe8-4cc2-be23-4d9db2d7beda", - "w": 12, - "x": 12, - "y": 36 - }, - "panelIndex": "9a22a36c-5fe8-4cc2-be23-4d9db2d7beda", - "panelRefName": "panel_14", - "title": "Total POST Requests", - "version": "7.6.0" - }, - { - "embeddableConfig": { - "title": "Total PUT Requests " - }, - "gridData": { - "h": 12, - "i": "6cf940a0-eb04-447b-8f7e-d4561f8838ac", - "w": 12, - "x": 24, - "y": 36 - }, - "panelIndex": "6cf940a0-eb04-447b-8f7e-d4561f8838ac", - "panelRefName": "panel_15", - "title": "Total PUT Requests ", - "version": "7.6.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat IIS] Website Overview", - "version": 1 - }, - "id": "4b975820-85a1-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "f9723710-8602-11ea-91bc-ab084c7ec0e7", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "57d914d0-860e-11ea-91bc-ab084c7ec0e7", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "6db58c20-860e-11ea-91bc-ab084c7ec0e7", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "e3ee4990-860e-11ea-91bc-ab084c7ec0e7", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "b7230190-8603-11ea-91bc-ab084c7ec0e7", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "4557d670-860e-11ea-91bc-ab084c7ec0e7", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "c784f9b0-8614-11ea-91bc-ab084c7ec0e7", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "96fe7d70-8614-11ea-91bc-ab084c7ec0e7", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "4921d5c0-8619-11ea-91bc-ab084c7ec0e7", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "7dabd8e0-8619-11ea-91bc-ab084c7ec0e7", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "a9427270-8619-11ea-91bc-ab084c7ec0e7", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "7453b910-8624-11ea-91bc-ab084c7ec0e7", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "8ee988d0-861b-11ea-91bc-ab084c7ec0e7", - "name": "panel_12", - "type": "visualization" - }, - { - "id": "1b4f8790-861a-11ea-91bc-ab084c7ec0e7", - "name": "panel_13", - "type": "visualization" - }, - { - "id": "31ed84b0-861b-11ea-91bc-ab084c7ec0e7", - "name": "panel_14", - "type": "visualization" - }, - { - "id": "54038fe0-861b-11ea-91bc-ab084c7ec0e7", - "name": "panel_15", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-04-24T12:15:15.363Z", - "version": "Wzk1OTcsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Navigation Website Overview [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### IIS\n\n[Webserver](#/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7)| [Webserver processes](#/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7) | [**Websites**](#/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7) | [Application Pools](#/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7) \n\n\n\n", - "openLinksInNewTab": false - }, - "title": "Navigation Website Overview [Metricbeat IIS]", - "type": "markdown" - } - }, - "id": "f9723710-8602-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T12:15:06.609Z", - "version": "Wzk1ODIsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Website Current Connections [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Current Connections", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.website.network.current_connections", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.website.name", - "terms_order_by": "_count", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "top_n" - }, - "title": "Website Current Connections [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "57d914d0-860e-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T10:09:05.853Z", - "version": "Wzg3NTksMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Website Maximum Connections [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Maximum Connections", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.website.network.maximum_connections", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.website.name", - "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "top_n" - }, - "title": "Website Maximum Connections [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "6db58c20-860e-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T10:07:57.207Z", - "version": "Wzg3NDMsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Website Total Connection Attempts [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(251,158,0,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Total Connection Attempts", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.website.network.total_connection_attempts", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.website.name", - "terms_order_by": "_count", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "top_n" - }, - "title": "Website Total Connection Attempts [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "e3ee4990-860e-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T10:08:45.818Z", - "version": "Wzg3NTMsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Website Filters [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "iis.website.name", - "id": "1549397251041", - "indexPatternRefName": "control_0_index_pattern", - "label": "Website", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "Website Filters [Metricbeat IIS]", - "type": "input_control_vis" - } - }, - "id": "b7230190-8603-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-04-24T09:47:17.191Z", - "version": "Wzg2NDUsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Website Service Uptime [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "background_color": null, - "background_color_rules": [ - { - "id": "71978870-32e4-11ea-af9e-d70582a45bda" - } - ], - "bar_color_rules": [ - { - "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "drilldown_url": "", - "filter": { - "language": "kuery", - "query": "" - }, - "gauge_color_rules": [ - { - "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" - } - ], - "gauge_inner_color": null, - "gauge_inner_width": "6", - "gauge_style": "circle", - "gauge_width": "10", - "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", - "index_pattern": "metricbeat-*", - "interval": "60m", - "isModelInvalid": false, - "pivot_id": "cloud.instance.name", - "pivot_label": "Resource Name", - "pivot_rows": "30", - "pivot_type": "string", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": "1.2", - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "s,d,", - "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", - "label": "Service Uptime", - "line_width": 2, - "metrics": [ - { - "agg_with": "avg", - "field": "iis.website.network.service_uptime", - "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", - "order": "desc", - "order_by": "@timestamp", - "size": 1, - "type": "top_hit" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.website.name", - "terms_order_by": "_count", - "terms_size": "10", - "type": "timeseries", - "value_template": "{{value}} d" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "top_n" - }, - "title": "Website Service Uptime [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "4557d670-860e-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T10:06:35.877Z", - "version": "Wzg3MjksMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Website Bytes Sent/s [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": "0", - "formatter": "bytes", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "Bytes Sent", - "line_width": "2", - "metrics": [ - { - "field": "iis.website.network.bytes_sent_per_sec", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.website.name", - "type": "timeseries", - "value_template": "{{value}}/s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Website Bytes Sent/s [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "c784f9b0-8614-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T10:17:19.307Z", - "version": "Wzg3ODgsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Website Bytes Received/s [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": "0", - "formatter": "bytes", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "Bytes Received", - "line_width": "2", - "metrics": [ - { - "field": "iis.website.network.bytes_received_per_sec", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.website.name", - "type": "timeseries", - "value_template": "{{value}}/s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Website Bytes Received/s [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "96fe7d70-8614-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T10:18:51.070Z", - "version": "Wzg3OTksMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Website GET Requests/s [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": "0", - "formatter": "number", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "GET Requests ", - "line_width": "2", - "metrics": [ - { - "field": "iis.website.network.get_requests_per_sec", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.website.name", - "type": "timeseries", - "value_template": "{{value}}/s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Website GET Requests/s [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "4921d5c0-8619-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T10:49:34.748Z", - "version": "Wzg4MjQsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Website POST Requests/s [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,196,0,1)", - "fill": "0", - "formatter": "number", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "POST Requests ", - "line_width": "2", - "metrics": [ - { - "field": "iis.website.network.post_requests_per_sec", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.website.name", - "type": "timeseries", - "value_template": "{{value}}/s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Website POST Requests/s [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "7dabd8e0-8619-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T10:51:02.893Z", - "version": "Wzg4MjksMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Website PUT Requests/s [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": "0", - "formatter": "number", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "PUT Requests ", - "line_width": "2", - "metrics": [ - { - "field": "iis.website.network.put_requests_per_sec", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.website.name", - "type": "timeseries", - "value_template": "{{value}}/s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Website PUT Requests/s [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "a9427270-8619-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T10:52:16.023Z", - "version": "Wzg4MzUsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Website DELETE Requests/s [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(25,77,51,1)", - "fill": "0", - "formatter": "number", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "DELETE Requests ", - "line_width": "2", - "metrics": [ - { - "field": "iis.website.network.delete_requests_per_sec", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.website.name", - "type": "timeseries", - "value_template": "{{value}}/s" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Website DELETE Requests/s [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "7453b910-8624-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T12:09:31.681Z", - "version": "Wzk1MjEsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Website Total DELETE Requests [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": "0", - "formatter": "number", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "Total DELETE Requests ", - "line_width": "2", - "metrics": [ - { - "field": "iis.website.network.total_delete_requests", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.website.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Website Total DELETE Requests [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "8ee988d0-861b-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T11:05:50.813Z", - "version": "Wzg4ODUsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Website Total GET Requests [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "formatter": "number", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "Total GET Requests ", - "line_width": "2", - "metrics": [ - { - "field": "iis.website.network.total_get_requests", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.website.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Website Total GET Requests [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "1b4f8790-861a-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T11:02:23.731Z", - "version": "Wzg4NjQsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Website Total POST Requests [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": "0", - "formatter": "number", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "Total POST Requests ", - "line_width": "2", - "metrics": [ - { - "field": "iis.website.network.total_post_requests", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.website.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Website Total POST Requests [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "31ed84b0-861b-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T11:03:14.811Z", - "version": "Wzg4NjgsMTNd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Website Total PUT Requests [Metricbeat IIS]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(22,165,165,1)", - "fill": "0", - "formatter": "number", - "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", - "label": "Total PUT Requests ", - "line_width": "2", - "metrics": [ - { - "field": "iis.website.network.total_put_requests", - "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_color_mode": "rainbow", - "split_mode": "terms", - "stacked": "none", - "terms_field": "iis.website.name", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Website Total PUT Requests [Metricbeat IIS]", - "type": "metrics" - } - }, - "id": "54038fe0-861b-11ea-91bc-ab084c7ec0e7", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-04-24T11:04:11.998Z", - "version": "Wzg4NzQsMTNd" - } - ], - "version": "7.6.0" -} diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-website-overview.ndjson b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-website-overview.ndjson new file mode 100644 index 00000000000..1a27a4cc164 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-website-overview.ndjson @@ -0,0 +1,17 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Website Overview [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### IIS\\n\\n[Webserver](#/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7)| [Webserver processes](#/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7) | [**Websites**](#/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7) | [Application Pools](#/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7) \\n\\n\\n\\n\",\"openLinksInNewTab\":false},\"title\":\"Navigation Website Overview [Metricbeat IIS]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"f9723710-8602-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NDUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Current Connections [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Current Connections\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.website.network.current_connections\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Website Current Connections [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"57d914d0-860e-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NDYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Maximum Connections [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Maximum Connections\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.website.network.maximum_connections\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Website Maximum Connections [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6db58c20-860e-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NDcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Total Connection Attempts [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Total Connection Attempts\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.website.network.total_connection_attempts\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Website Total Connection Attempts [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e3ee4990-860e-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NDgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Website Filters [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"iis.website.name\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Website\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Website Filters [Metricbeat IIS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b7230190-8603-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NDksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Service Uptime [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"s,d,\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Service Uptime\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.website.network.service_uptime\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"terms_order_by\":\"_count\",\"terms_size\":\"10\",\"type\":\"timeseries\",\"value_template\":\"{{value}} d\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Website Service Uptime [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4557d670-860e-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Bytes Sent/s [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Bytes Sent\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.bytes_sent_per_sec\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website Bytes Sent/s [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c784f9b0-8614-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Bytes Received/s [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Bytes Received\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.bytes_received_per_sec\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website Bytes Received/s [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"96fe7d70-8614-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website GET Requests/s [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"GET Requests \",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.get_requests_per_sec\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website GET Requests/s [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4921d5c0-8619-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website POST Requests/s [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"POST Requests \",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.post_requests_per_sec\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website POST Requests/s [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7dabd8e0-8619-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website PUT Requests/s [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"PUT Requests \",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.put_requests_per_sec\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website PUT Requests/s [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a9427270-8619-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website DELETE Requests/s [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(25,77,51,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"DELETE Requests \",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.delete_requests_per_sec\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website DELETE Requests/s [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7453b910-8624-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Total DELETE Requests [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Total DELETE Requests \",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.total_delete_requests\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website Total DELETE Requests [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8ee988d0-861b-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Total GET Requests [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Total GET Requests \",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.total_get_requests\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website Total GET Requests [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1b4f8790-861a-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Total POST Requests [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Total POST Requests \",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.total_post_requests\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website Total POST Requests [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"31ed84b0-861b-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Total PUT Requests [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Total PUT Requests \",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.total_put_requests\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website Total PUT Requests [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"54038fe0-861b-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NjAsMV0="} +{"attributes":{"description":"This dashboard shows metrics for the websites running on IIS.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"e8bd7244-57bf-4e16-b096-4fa7cb8cbba8\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"e8bd7244-57bf-4e16-b096-4fa7cb8cbba8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_e8bd7244-57bf-4e16-b096-4fa7cb8cbba8\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"193cca9a-a5c3-40c4-a9af-1020b279b845\",\"w\":13,\"x\":9,\"y\":0},\"panelIndex\":\"193cca9a-a5c3-40c4-a9af-1020b279b845\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Current Connections\",\"panelRefName\":\"panel_193cca9a-a5c3-40c4-a9af-1020b279b845\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"7b5d1298-0480-443a-bf0e-5b594903c680\",\"w\":13,\"x\":22,\"y\":0},\"panelIndex\":\"7b5d1298-0480-443a-bf0e-5b594903c680\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Maximum Connections\",\"panelRefName\":\"panel_7b5d1298-0480-443a-bf0e-5b594903c680\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"fd0c5fd7-4df8-44d9-905f-5634f49ae875\",\"w\":13,\"x\":35,\"y\":0},\"panelIndex\":\"fd0c5fd7-4df8-44d9-905f-5634f49ae875\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Connection Attempts\",\"panelRefName\":\"panel_fd0c5fd7-4df8-44d9-905f-5634f49ae875\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"69a127c6-8c4f-403a-aded-7a49dc3d3cd9\",\"w\":9,\"x\":0,\"y\":6},\"panelIndex\":\"69a127c6-8c4f-403a-aded-7a49dc3d3cd9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_69a127c6-8c4f-403a-aded-7a49dc3d3cd9\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"545b1abe-fd22-455b-8bc6-68bd48c2d384\",\"w\":9,\"x\":0,\"y\":12},\"panelIndex\":\"545b1abe-fd22-455b-8bc6-68bd48c2d384\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Service Uptime\",\"panelRefName\":\"panel_545b1abe-fd22-455b-8bc6-68bd48c2d384\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"c026e461-8b64-4952-be07-744773cb18b9\",\"w\":20,\"x\":9,\"y\":12},\"panelIndex\":\"c026e461-8b64-4952-be07-744773cb18b9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes Sent/sec\",\"panelRefName\":\"panel_c026e461-8b64-4952-be07-744773cb18b9\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"98b6e727-3343-43df-84e1-12933856f432\",\"w\":19,\"x\":29,\"y\":12},\"panelIndex\":\"98b6e727-3343-43df-84e1-12933856f432\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes Received/sec\",\"panelRefName\":\"panel_98b6e727-3343-43df-84e1-12933856f432\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"d4b32bd4-dee2-44e2-930d-91e4607c0668\",\"w\":12,\"x\":0,\"y\":24},\"panelIndex\":\"d4b32bd4-dee2-44e2-930d-91e4607c0668\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"GET Requests/sec\",\"panelRefName\":\"panel_d4b32bd4-dee2-44e2-930d-91e4607c0668\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"d24b5bb0-6dc3-40ba-91cb-5ca5e48a3afa\",\"w\":12,\"x\":12,\"y\":24},\"panelIndex\":\"d24b5bb0-6dc3-40ba-91cb-5ca5e48a3afa\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"POST Requests/sec\",\"panelRefName\":\"panel_d24b5bb0-6dc3-40ba-91cb-5ca5e48a3afa\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"c8cfac9e-ad2a-4ddf-94c9-0454e987b2b8\",\"w\":12,\"x\":24,\"y\":24},\"panelIndex\":\"c8cfac9e-ad2a-4ddf-94c9-0454e987b2b8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"PUT Requests/sec\",\"panelRefName\":\"panel_c8cfac9e-ad2a-4ddf-94c9-0454e987b2b8\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"41b4d631-4878-49af-b34b-f04f473599c8\",\"w\":12,\"x\":36,\"y\":24},\"panelIndex\":\"41b4d631-4878-49af-b34b-f04f473599c8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"DELETE Requests/sec\",\"panelRefName\":\"panel_41b4d631-4878-49af-b34b-f04f473599c8\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"90d9d209-6ef9-4ab7-b9a2-48a1f420e555\",\"w\":12,\"x\":36,\"y\":36},\"panelIndex\":\"90d9d209-6ef9-4ab7-b9a2-48a1f420e555\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total DELETE Requests\",\"panelRefName\":\"panel_90d9d209-6ef9-4ab7-b9a2-48a1f420e555\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"c7379d87-3da3-4be4-a8bd-8db04da66ba4\",\"w\":12,\"x\":0,\"y\":36},\"panelIndex\":\"c7379d87-3da3-4be4-a8bd-8db04da66ba4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total GET Requests\",\"panelRefName\":\"panel_c7379d87-3da3-4be4-a8bd-8db04da66ba4\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"9a22a36c-5fe8-4cc2-be23-4d9db2d7beda\",\"w\":12,\"x\":12,\"y\":36},\"panelIndex\":\"9a22a36c-5fe8-4cc2-be23-4d9db2d7beda\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total POST Requests\",\"panelRefName\":\"panel_9a22a36c-5fe8-4cc2-be23-4d9db2d7beda\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6cf940a0-eb04-447b-8f7e-d4561f8838ac\",\"w\":12,\"x\":24,\"y\":36},\"panelIndex\":\"6cf940a0-eb04-447b-8f7e-d4561f8838ac\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total PUT Requests \",\"panelRefName\":\"panel_6cf940a0-eb04-447b-8f7e-d4561f8838ac\"}]","timeRestore":false,"title":"[Metricbeat IIS] Website Overview","version":1},"coreMigrationVersion":"8.0.0","id":"4b975820-85a1-11ea-91bc-ab084c7ec0e7","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"f9723710-8602-11ea-91bc-ab084c7ec0e7","name":"e8bd7244-57bf-4e16-b096-4fa7cb8cbba8:panel_e8bd7244-57bf-4e16-b096-4fa7cb8cbba8","type":"visualization"},{"id":"57d914d0-860e-11ea-91bc-ab084c7ec0e7","name":"193cca9a-a5c3-40c4-a9af-1020b279b845:panel_193cca9a-a5c3-40c4-a9af-1020b279b845","type":"visualization"},{"id":"6db58c20-860e-11ea-91bc-ab084c7ec0e7","name":"7b5d1298-0480-443a-bf0e-5b594903c680:panel_7b5d1298-0480-443a-bf0e-5b594903c680","type":"visualization"},{"id":"e3ee4990-860e-11ea-91bc-ab084c7ec0e7","name":"fd0c5fd7-4df8-44d9-905f-5634f49ae875:panel_fd0c5fd7-4df8-44d9-905f-5634f49ae875","type":"visualization"},{"id":"b7230190-8603-11ea-91bc-ab084c7ec0e7","name":"69a127c6-8c4f-403a-aded-7a49dc3d3cd9:panel_69a127c6-8c4f-403a-aded-7a49dc3d3cd9","type":"visualization"},{"id":"4557d670-860e-11ea-91bc-ab084c7ec0e7","name":"545b1abe-fd22-455b-8bc6-68bd48c2d384:panel_545b1abe-fd22-455b-8bc6-68bd48c2d384","type":"visualization"},{"id":"c784f9b0-8614-11ea-91bc-ab084c7ec0e7","name":"c026e461-8b64-4952-be07-744773cb18b9:panel_c026e461-8b64-4952-be07-744773cb18b9","type":"visualization"},{"id":"96fe7d70-8614-11ea-91bc-ab084c7ec0e7","name":"98b6e727-3343-43df-84e1-12933856f432:panel_98b6e727-3343-43df-84e1-12933856f432","type":"visualization"},{"id":"4921d5c0-8619-11ea-91bc-ab084c7ec0e7","name":"d4b32bd4-dee2-44e2-930d-91e4607c0668:panel_d4b32bd4-dee2-44e2-930d-91e4607c0668","type":"visualization"},{"id":"7dabd8e0-8619-11ea-91bc-ab084c7ec0e7","name":"d24b5bb0-6dc3-40ba-91cb-5ca5e48a3afa:panel_d24b5bb0-6dc3-40ba-91cb-5ca5e48a3afa","type":"visualization"},{"id":"a9427270-8619-11ea-91bc-ab084c7ec0e7","name":"c8cfac9e-ad2a-4ddf-94c9-0454e987b2b8:panel_c8cfac9e-ad2a-4ddf-94c9-0454e987b2b8","type":"visualization"},{"id":"7453b910-8624-11ea-91bc-ab084c7ec0e7","name":"41b4d631-4878-49af-b34b-f04f473599c8:panel_41b4d631-4878-49af-b34b-f04f473599c8","type":"visualization"},{"id":"8ee988d0-861b-11ea-91bc-ab084c7ec0e7","name":"90d9d209-6ef9-4ab7-b9a2-48a1f420e555:panel_90d9d209-6ef9-4ab7-b9a2-48a1f420e555","type":"visualization"},{"id":"1b4f8790-861a-11ea-91bc-ab084c7ec0e7","name":"c7379d87-3da3-4be4-a8bd-8db04da66ba4:panel_c7379d87-3da3-4be4-a8bd-8db04da66ba4","type":"visualization"},{"id":"31ed84b0-861b-11ea-91bc-ab084c7ec0e7","name":"9a22a36c-5fe8-4cc2-be23-4d9db2d7beda:panel_9a22a36c-5fe8-4cc2-be23-4d9db2d7beda","type":"visualization"},{"id":"54038fe0-861b-11ea-91bc-ab084c7ec0e7","name":"6cf940a0-eb04-447b-8f7e-d4561f8838ac:panel_6cf940a0-eb04-447b-8f7e-d4561f8838ac","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NDQsMV0="} diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-overview.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-overview.json deleted file mode 100644 index ce73d05972b..00000000000 --- a/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-overview.json +++ /dev/null @@ -1,1828 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of the Istiod Service status", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 3, - "i": "3ab7d813-a0b5-48b8-9c10-5ac962a4177c", - "w": 12, - "x": 0, - "y": 0 - }, - "panelIndex": "3ab7d813-a0b5-48b8-9c10-5ac962a4177c", - "panelRefName": "panel_0", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Pilot xds Push Time" - }, - "gridData": { - "h": 9, - "i": "06af11e6-e026-48db-a06b-b34b402b535b", - "w": 12, - "x": 12, - "y": 0 - }, - "panelIndex": "06af11e6-e026-48db-a06b-b34b402b535b", - "panelRefName": "panel_1", - "title": "Pilot xds Push Time", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Pilot xds Pushes" - }, - "gridData": { - "h": 9, - "i": "d9a49bf0-f88b-4d4f-a1e2-74fbd482f77c", - "w": 11, - "x": 24, - "y": 0 - }, - "panelIndex": "d9a49bf0-f88b-4d4f-a1e2-74fbd482f77c", - "panelRefName": "panel_2", - "title": "Pilot xds Pushes", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Pilot Inbound Updates" - }, - "gridData": { - "h": 9, - "i": "a8e47ef0-03db-419f-890f-0880d674682c", - "w": 13, - "x": 35, - "y": 0 - }, - "panelIndex": "a8e47ef0-03db-419f-890f-0880d674682c", - "panelRefName": "panel_3", - "title": "Pilot Inbound Updates", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Pilot Conflict Inbound Listener", - "vis": null - }, - "gridData": { - "h": 6, - "i": "0a63d980-8d93-4ce1-b5a1-ab77e589ceec", - "w": 12, - "x": 0, - "y": 3 - }, - "panelIndex": "0a63d980-8d93-4ce1-b5a1-ab77e589ceec", - "panelRefName": "panel_4", - "title": "Pilot Conflict Inbound Listener", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Pilot Proxy Queue Time" - }, - "gridData": { - "h": 9, - "i": "cd1bbc4f-95de-4156-a3ef-c091cf6402c0", - "w": 12, - "x": 0, - "y": 9 - }, - "panelIndex": "cd1bbc4f-95de-4156-a3ef-c091cf6402c0", - "panelRefName": "panel_5", - "title": "Pilot Proxy Queue Time", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Galley Validation Failed" - }, - "gridData": { - "h": 9, - "i": "724f0f9e-2186-4ddd-859c-edb2649b8c0f", - "w": 12, - "x": 12, - "y": 9 - }, - "panelIndex": "724f0f9e-2186-4ddd-859c-edb2649b8c0f", - "panelRefName": "panel_6", - "title": "Galley Validation Failed", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Pods witout IP", - "vis": null - }, - "gridData": { - "h": 9, - "i": "32eaa989-a4f9-4d31-97cb-684f31488aa8", - "w": 8, - "x": 24, - "y": 9 - }, - "panelIndex": "32eaa989-a4f9-4d31-97cb-684f31488aa8", - "panelRefName": "panel_7", - "title": "Pods witout IP", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Pilot Virtual Services", - "vis": null - }, - "gridData": { - "h": 9, - "i": "6a8463fe-b7cb-4cd8-bf01-f7ca6a185178", - "w": 8, - "x": 32, - "y": 9 - }, - "panelIndex": "6a8463fe-b7cb-4cd8-bf01-f7ca6a185178", - "panelRefName": "panel_8", - "title": "Pilot Virtual Services", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Pilot Services", - "vis": null - }, - "gridData": { - "h": 9, - "i": "51ecc2f8-3c3f-4a80-b4b6-b52db10e68ad", - "w": 8, - "x": 40, - "y": 9 - }, - "panelIndex": "51ecc2f8-3c3f-4a80-b4b6-b52db10e68ad", - "panelRefName": "panel_9", - "title": "Pilot Services", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Pilot eds instances", - "vis": null - }, - "gridData": { - "h": 9, - "i": "9fbfca4c-37b5-4a1a-924e-49fc9ef2294c", - "w": 10, - "x": 0, - "y": 18 - }, - "panelIndex": "9fbfca4c-37b5-4a1a-924e-49fc9ef2294c", - "panelRefName": "panel_10", - "title": "Pilot eds instances", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Citadel Cert Issuane" - }, - "gridData": { - "h": 9, - "i": "e708abfa-5a95-483c-9bb2-4470ee913f3c", - "w": 12, - "x": 10, - "y": 18 - }, - "panelIndex": "e708abfa-5a95-483c-9bb2-4470ee913f3c", - "panelRefName": "panel_11", - "title": "Citadel Cert Issuane", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Pilot xds endpoints" - }, - "gridData": { - "h": 9, - "i": "d6b2845f-9582-4863-853e-ab753f3d763e", - "w": 11, - "x": 22, - "y": 18 - }, - "panelIndex": "d6b2845f-9582-4863-853e-ab753f3d763e", - "panelRefName": "panel_12", - "title": "Pilot xds endpoints", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Pilot xds expired" - }, - "gridData": { - "h": 9, - "i": "3d0dec37-26c3-490b-a45f-48b6d1baa160", - "w": 15, - "x": 33, - "y": 18 - }, - "panelIndex": "3d0dec37-26c3-490b-a45f-48b6d1baa160", - "panelRefName": "panel_13", - "title": "Pilot xds expired", - "version": "7.9.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Istio] Overview", - "version": 1 - }, - "id": "d899d3f0-0883-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "19a8b9c0-0c7f-11eb-a3fd-1b45ec532bb3", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "b5b3abb0-087c-11eb-a3fd-1b45ec532bb3", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "f858c200-087e-11eb-a3fd-1b45ec532bb3", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "aa997510-087d-11eb-a3fd-1b45ec532bb3", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "d62a1e60-0881-11eb-a3fd-1b45ec532bb3", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "dd1392f0-07d8-11eb-a3fd-1b45ec532bb3", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "98b01f00-087f-11eb-a3fd-1b45ec532bb3", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "4275f710-0882-11eb-a3fd-1b45ec532bb3", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "96bfe060-0882-11eb-a3fd-1b45ec532bb3", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "6cfbe3f0-0882-11eb-a3fd-1b45ec532bb3", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "12cdcce0-0882-11eb-a3fd-1b45ec532bb3", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "506c8490-087f-11eb-a3fd-1b45ec532bb3", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "e5f3e870-0882-11eb-a3fd-1b45ec532bb3", - "name": "panel_12", - "type": "visualization" - }, - { - "id": "0ed17c80-0883-11eb-a3fd-1b45ec532bb3", - "name": "panel_13", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-10-13T13:01:42.340Z", - "version": "WzI5OCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboards Navigation Overview [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "**Overview** | [Traffic](#/dashboard/3b88a120-0c7c-11eb-a3fd-1b45ec532bb3)\n", - "openLinksInNewTab": false - }, - "title": "Dashboards Navigation Overview [Metricbeat Istio]", - "type": "markdown" - } - }, - "id": "19a8b9c0-0c7f-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-10-13T12:53:51.050Z", - "version": "WzQ2LDFd" - }, - { - "attributes": { - "description": "Total time in seconds Pilot takes to push lds, rds, cds and eds.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Pilot xds Push Time [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "filter": { - "language": "kuery", - "query": "prometheus.labels.type: \"rds\" OR prometheus.labels.type: \"lds\" OR prometheus.labels.type: \"cds\" OR prometheus.labels.type: \"eds\"" - }, - "formatter": "s,s,2", - "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", - "label": "pilot_xds_push_time", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.pilot_xds_push_time.histogram", - "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "percentiles": [ - { - "id": "88c0d000-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "25" - }, - { - "id": "95c750d0-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "50" - }, - { - "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "75" - }, - { - "id": "9f8e3700-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "95" - }, - { - "id": "a3581040-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "99" - } - ], - "type": "percentile" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.type", - "terms_size": "20", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Pilot xds Push Time [Metricbeat Istio]", - "type": "metrics" - } - }, - "id": "b5b3abb0-087c-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-10-13T13:01:21.843Z", - "version": "WzI2MCwxXQ==" - }, - { - "attributes": { - "description": "Pilot build and send errors for lds, rds, cds and eds.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Pilot xds Pushes [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", - "label": "pilot_xds_pushes", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.pilot_xds_pushes.counter", - "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "percentiles": [ - { - "id": "88c0d000-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "50" - }, - { - "id": "95c750d0-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "25" - }, - { - "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "75" - }, - { - "id": "9f8e3700-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "95" - }, - { - "id": "a3581040-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "99" - } - ], - "type": "max", - "unit": "" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.type", - "terms_order_by": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "terms_size": "4", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Pilot xds Pushes [Metricbeat Istio]", - "type": "metrics" - } - }, - "id": "f858c200-087e-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-10-13T12:53:51.050Z", - "version": "WzQ4LDFd" - }, - { - "attributes": { - "description": "Total number of updates received by pilot.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Pilot Inbound Updates [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", - "label": "pilot_inbound_updates", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.pilot_inbound_updates.counter", - "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "percentiles": [ - { - "id": "88c0d000-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "50" - }, - { - "id": "95c750d0-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "25" - }, - { - "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "75" - }, - { - "id": "9f8e3700-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "95" - }, - { - "id": "a3581040-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "99" - } - ], - "type": "max", - "unit": "" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.type", - "terms_order_by": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "terms_size": "10", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Pilot Inbound Updates [Metricbeat Istio]", - "type": "metrics" - } - }, - "id": "aa997510-087d-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-10-13T12:53:51.050Z", - "version": "WzQ5LDFd" - }, - { - "attributes": { - "description": "Number of conflicting inbound listeners.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Pilot Conflict Inbound Listener [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Pilot conflict inbound listener", - "field": "prometheus.pilot_conflict_inbound_listener.value" - }, - "schema": "metric", - "type": "avg" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "gauge": { - "alignment": "automatic", - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 50 - }, - { - "from": 50, - "to": 75 - }, - { - "from": 75, - "to": 100 - } - ], - "extendRange": true, - "gaugeColorMode": "Labels", - "gaugeStyle": "Full", - "gaugeType": "Arc", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "rgba(105,112,125,0.2)", - "labels": false, - "show": true - }, - "style": { - "bgColor": true, - "bgFill": "rgba(105,112,125,0.2)", - "bgMask": false, - "bgWidth": 0.9, - "fontSize": 60, - "mask": false, - "maskBars": 50, - "subText": "", - "width": 0.9 - }, - "type": "meter" - }, - "isDisplayWarning": false, - "type": "gauge" - }, - "title": "Pilot Conflict Inbound Listener [Metricbeat Istio]", - "type": "gauge" - } - }, - "id": "d62a1e60-0881-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-10-13T12:53:51.050Z", - "version": "WzUwLDFd" - }, - { - "attributes": { - "description": "Time in seconds, a proxy is in the push queue before being dequeued.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Pilot Proxy Queue Time [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "number", - "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", - "label": "queue_time", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.pilot_proxy_queue_time.histogram", - "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "percentiles": [ - { - "id": "88c0d000-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "25" - }, - { - "id": "03ef6580-0887-11eb-876a-9d8e5e94d2f5", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "50" - }, - { - "id": "071fe4f0-0887-11eb-876a-9d8e5e94d2f5", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "75" - }, - { - "id": "0b7164c0-0887-11eb-876a-9d8e5e94d2f5", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "90" - }, - { - "id": "0f611580-0887-11eb-876a-9d8e5e94d2f5", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "95" - }, - { - "id": "136f98e0-0887-11eb-876a-9d8e5e94d2f5", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "99" - } - ], - "type": "percentile" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Pilot Proxy Queue Time [Metricbeat Istio]", - "type": "metrics" - } - }, - "id": "dd1392f0-07d8-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-10-13T12:59:52.108Z", - "version": "WzI0NywxXQ==" - }, - { - "attributes": { - "description": "Resource validation failed.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Galley Validation Failed [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", - "label": "galley_validation_failed", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.galley_validation_failed.counter", - "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "percentiles": [ - { - "id": "88c0d000-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "50" - }, - { - "id": "95c750d0-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "25" - }, - { - "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "75" - }, - { - "id": "9f8e3700-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "95" - }, - { - "id": "a3581040-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "99" - } - ], - "type": "max", - "unit": "" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.resource", - "terms_order_by": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "terms_size": "10", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Galley Validation Failed [Metricbeat Istio]", - "type": "metrics" - } - }, - "id": "98b01f00-087f-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-10-13T12:53:51.050Z", - "version": "WzUyLDFd" - }, - { - "attributes": { - "description": "Pods not found in the endpoint table, possibly invalid.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Pilot Pods without IP [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Pilot No IP pods", - "field": "prometheus.pilot_no_ip.value" - }, - "schema": "metric", - "type": "avg" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "gauge": { - "alignment": "automatic", - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 50 - }, - { - "from": 50, - "to": 75 - }, - { - "from": 75, - "to": 100 - } - ], - "extendRange": true, - "gaugeColorMode": "Labels", - "gaugeStyle": "Full", - "gaugeType": "Arc", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "rgba(105,112,125,0.2)", - "labels": false, - "show": true - }, - "style": { - "bgColor": true, - "bgFill": "rgba(105,112,125,0.2)", - "bgMask": false, - "bgWidth": 0.9, - "fontSize": 60, - "mask": false, - "maskBars": 50, - "subText": "", - "width": 0.9 - }, - "type": "meter" - }, - "isDisplayWarning": false, - "type": "gauge" - }, - "title": "Pilot Pods without IP [Metricbeat Istio]", - "type": "gauge" - } - }, - "id": "4275f710-0882-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-10-13T12:53:51.050Z", - "version": "WzUzLDFd" - }, - { - "attributes": { - "description": "Total virtual services known to pilot.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Pilot Virtual Services [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Pilot Virtual Services", - "field": "prometheus.pilot_virt_services.value" - }, - "schema": "metric", - "type": "avg" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "gauge": { - "alignment": "automatic", - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 50 - }, - { - "from": 50, - "to": 75 - }, - { - "from": 75, - "to": 100 - } - ], - "extendRange": true, - "gaugeColorMode": "Labels", - "gaugeStyle": "Full", - "gaugeType": "Arc", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "rgba(105,112,125,0.2)", - "labels": false, - "show": true - }, - "style": { - "bgColor": true, - "bgFill": "rgba(105,112,125,0.2)", - "bgMask": false, - "bgWidth": 0.9, - "fontSize": 60, - "mask": false, - "maskBars": 50, - "subText": "", - "width": 0.9 - }, - "type": "meter" - }, - "isDisplayWarning": false, - "type": "gauge" - }, - "title": "Pilot Virtual Services [Metricbeat Istio]", - "type": "gauge" - } - }, - "id": "96bfe060-0882-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-10-13T12:53:51.050Z", - "version": "WzU0LDFd" - }, - { - "attributes": { - "description": "Total services known to pilot.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Pilot Services [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Pilot Services", - "field": "prometheus.pilot_services.value" - }, - "schema": "metric", - "type": "avg" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "gauge": { - "alignment": "automatic", - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 50 - }, - { - "from": 50, - "to": 75 - }, - { - "from": 75, - "to": 100 - } - ], - "extendRange": true, - "gaugeColorMode": "Labels", - "gaugeStyle": "Full", - "gaugeType": "Arc", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "rgba(105,112,125,0.2)", - "labels": false, - "show": true - }, - "style": { - "bgColor": true, - "bgFill": "rgba(105,112,125,0.2)", - "bgMask": false, - "bgWidth": 0.9, - "fontSize": 60, - "mask": false, - "maskBars": 50, - "subText": "", - "width": 0.9 - }, - "type": "meter" - }, - "isDisplayWarning": false, - "type": "gauge" - }, - "title": "Pilot Services [Metricbeat Istio]", - "type": "gauge" - } - }, - "id": "6cfbe3f0-0882-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-10-13T12:53:51.050Z", - "version": "WzU1LDFd" - }, - { - "attributes": { - "description": "Number of clusters without instances.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Pilot eds Instances [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Pilot eds instnaces", - "field": "prometheus.pilot_eds_no_instances.value" - }, - "schema": "metric", - "type": "avg" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "gauge": { - "alignment": "automatic", - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 50 - }, - { - "from": 50, - "to": 75 - }, - { - "from": 75, - "to": 100 - } - ], - "extendRange": true, - "gaugeColorMode": "Labels", - "gaugeStyle": "Full", - "gaugeType": "Arc", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": false, - "scale": { - "color": "rgba(105,112,125,0.2)", - "labels": false, - "show": true - }, - "style": { - "bgColor": true, - "bgFill": "rgba(105,112,125,0.2)", - "bgMask": false, - "bgWidth": 0.9, - "fontSize": 60, - "mask": false, - "maskBars": 50, - "subText": "", - "width": 0.9 - }, - "type": "meter" - }, - "isDisplayWarning": false, - "type": "gauge" - }, - "title": "Pilot eds Instances [Metricbeat Istio]", - "type": "gauge" - } - }, - "id": "12cdcce0-0882-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-10-13T12:53:51.050Z", - "version": "WzU2LDFd" - }, - { - "attributes": { - "description": "The number of certificates issuances that have succeeded.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Citadel Cert Issuance [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "filter": { - "language": "kuery", - "query": "" - }, - "formatter": "number", - "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", - "label": "success_cert_issuance", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.citadel_server_success_cert_issuance_count.counter", - "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "percentiles": [ - { - "id": "88c0d000-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "50" - }, - { - "id": "95c750d0-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "25" - }, - { - "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "75" - }, - { - "id": "9f8e3700-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "95" - }, - { - "id": "a3581040-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "99" - } - ], - "type": "max", - "unit": "" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "terms_field": "prometheus.labels.type", - "terms_order_by": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "terms_size": "4", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Citadel Cert Issuance [Metricbeat Istio]", - "type": "metrics" - } - }, - "id": "506c8490-087f-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-10-13T12:53:51.050Z", - "version": "WzU3LDFd" - }, - { - "attributes": { - "description": "Number of endpoints connected to this pilot using XDS.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Pilot XDS endpoints [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "number", - "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", - "label": "pilot_xds", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.pilot_xds.value", - "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "percentiles": [ - { - "id": "88c0d000-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "50" - }, - { - "id": "95c750d0-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "25" - }, - { - "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "75" - }, - { - "id": "9f8e3700-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "95" - }, - { - "id": "a3581040-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "99" - } - ], - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Pilot XDS endpoints [Metricbeat Istio]", - "type": "metrics" - } - }, - "id": "e5f3e870-0882-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-10-13T12:53:51.050Z", - "version": "WzU4LDFd" - }, - { - "attributes": { - "description": "Total number of XDS requests with an expired nonce.", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Pilot XDS expired [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "number", - "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", - "label": "pilot_xds_expired_nonce", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.pilot_xds_expired_nonce.counter", - "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "percentiles": [ - { - "id": "88c0d000-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "50" - }, - { - "id": "95c750d0-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "25" - }, - { - "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "75" - }, - { - "id": "9f8e3700-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "95" - }, - { - "id": "a3581040-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "99" - } - ], - "type": "avg" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Pilot XDS expired [Metricbeat Istio]", - "type": "metrics" - } - }, - "id": "0ed17c80-0883-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-10-13T12:53:51.050Z", - "version": "WzU5LDFd" - } - ], - "version": "7.9.0" -} diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-overview.ndjson b/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-overview.ndjson new file mode 100644 index 00000000000..f26de940260 --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-overview.ndjson @@ -0,0 +1,15 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboards Navigation Overview [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Overview** | [Traffic](#/dashboard/3b88a120-0c7c-11eb-a3fd-1b45ec532bb3)\\n\",\"openLinksInNewTab\":false},\"title\":\"Dashboards Navigation Overview [Metricbeat Istio]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"19a8b9c0-0c7f-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NjIsMV0="} +{"attributes":{"description":"Total time in seconds Pilot takes to push lds, rds, cds and eds.","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pilot xds Push Time [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"prometheus.labels.type: \\\"rds\\\" OR prometheus.labels.type: \\\"lds\\\" OR prometheus.labels.type: \\\"cds\\\" OR prometheus.labels.type: \\\"eds\\\"\"},\"formatter\":\"s,s,2\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"pilot_xds_push_time\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.pilot_xds_push_time.histogram\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"9f8e3700-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"percentile\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.type\",\"terms_size\":\"20\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Pilot xds Push Time [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b5b3abb0-087c-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NjMsMV0="} +{"attributes":{"description":"Pilot build and send errors for lds, rds, cds and eds.","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pilot xds Pushes [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"pilot_xds_pushes\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.pilot_xds_pushes.counter\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"9f8e3700-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"max\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.type\",\"terms_order_by\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"terms_size\":\"4\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Pilot xds Pushes [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f858c200-087e-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NjQsMV0="} +{"attributes":{"description":"Total number of updates received by pilot.","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pilot Inbound Updates [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"pilot_inbound_updates\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.pilot_inbound_updates.counter\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"9f8e3700-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"max\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.type\",\"terms_order_by\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"terms_size\":\"10\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Pilot Inbound Updates [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"aa997510-087d-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NjUsMV0="} +{"attributes":{"description":"Number of conflicting inbound listeners.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Pilot Conflict Inbound Listener [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Pilot conflict inbound listener\",\"field\":\"prometheus.pilot_conflict_inbound_listener.value\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"gauge\":{\"alignment\":\"automatic\",\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":50},{\"from\":50,\"to\":75},{\"from\":75,\"to\":100}],\"extendRange\":true,\"gaugeColorMode\":\"Labels\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Arc\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"rgba(105,112,125,0.2)\",\"labels\":false,\"show\":true},\"style\":{\"bgColor\":true,\"bgFill\":\"rgba(105,112,125,0.2)\",\"bgMask\":false,\"bgWidth\":0.9,\"fontSize\":60,\"mask\":false,\"maskBars\":50,\"subText\":\"\",\"width\":0.9},\"type\":\"meter\"},\"isDisplayWarning\":false,\"type\":\"gauge\"},\"title\":\"Pilot Conflict Inbound Listener [Metricbeat Istio]\",\"type\":\"gauge\"}"},"coreMigrationVersion":"8.0.0","id":"d62a1e60-0881-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NjYsMV0="} +{"attributes":{"description":"Time in seconds, a proxy is in the push queue before being dequeued.","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pilot Proxy Queue Time [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"queue_time\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.pilot_proxy_queue_time.histogram\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"03ef6580-0887-11eb-876a-9d8e5e94d2f5\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"071fe4f0-0887-11eb-876a-9d8e5e94d2f5\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"0b7164c0-0887-11eb-876a-9d8e5e94d2f5\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"90\"},{\"id\":\"0f611580-0887-11eb-876a-9d8e5e94d2f5\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"136f98e0-0887-11eb-876a-9d8e5e94d2f5\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"percentile\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Pilot Proxy Queue Time [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"dd1392f0-07d8-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NjcsMV0="} +{"attributes":{"description":"Resource validation failed.","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Galley Validation Failed [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"galley_validation_failed\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.galley_validation_failed.counter\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"9f8e3700-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"max\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.resource\",\"terms_order_by\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"terms_size\":\"10\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Galley Validation Failed [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"98b01f00-087f-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NjgsMV0="} +{"attributes":{"description":"Pods not found in the endpoint table, possibly invalid.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Pilot Pods without IP [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Pilot No IP pods\",\"field\":\"prometheus.pilot_no_ip.value\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"gauge\":{\"alignment\":\"automatic\",\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":50},{\"from\":50,\"to\":75},{\"from\":75,\"to\":100}],\"extendRange\":true,\"gaugeColorMode\":\"Labels\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Arc\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"rgba(105,112,125,0.2)\",\"labels\":false,\"show\":true},\"style\":{\"bgColor\":true,\"bgFill\":\"rgba(105,112,125,0.2)\",\"bgMask\":false,\"bgWidth\":0.9,\"fontSize\":60,\"mask\":false,\"maskBars\":50,\"subText\":\"\",\"width\":0.9},\"type\":\"meter\"},\"isDisplayWarning\":false,\"type\":\"gauge\"},\"title\":\"Pilot Pods without IP [Metricbeat Istio]\",\"type\":\"gauge\"}"},"coreMigrationVersion":"8.0.0","id":"4275f710-0882-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NjksMV0="} +{"attributes":{"description":"Total virtual services known to pilot.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Pilot Virtual Services [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Pilot Virtual Services\",\"field\":\"prometheus.pilot_virt_services.value\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"gauge\":{\"alignment\":\"automatic\",\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":50},{\"from\":50,\"to\":75},{\"from\":75,\"to\":100}],\"extendRange\":true,\"gaugeColorMode\":\"Labels\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Arc\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"rgba(105,112,125,0.2)\",\"labels\":false,\"show\":true},\"style\":{\"bgColor\":true,\"bgFill\":\"rgba(105,112,125,0.2)\",\"bgMask\":false,\"bgWidth\":0.9,\"fontSize\":60,\"mask\":false,\"maskBars\":50,\"subText\":\"\",\"width\":0.9},\"type\":\"meter\"},\"isDisplayWarning\":false,\"type\":\"gauge\"},\"title\":\"Pilot Virtual Services [Metricbeat Istio]\",\"type\":\"gauge\"}"},"coreMigrationVersion":"8.0.0","id":"96bfe060-0882-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NzAsMV0="} +{"attributes":{"description":"Total services known to pilot.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Pilot Services [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Pilot Services\",\"field\":\"prometheus.pilot_services.value\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"gauge\":{\"alignment\":\"automatic\",\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":50},{\"from\":50,\"to\":75},{\"from\":75,\"to\":100}],\"extendRange\":true,\"gaugeColorMode\":\"Labels\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Arc\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"rgba(105,112,125,0.2)\",\"labels\":false,\"show\":true},\"style\":{\"bgColor\":true,\"bgFill\":\"rgba(105,112,125,0.2)\",\"bgMask\":false,\"bgWidth\":0.9,\"fontSize\":60,\"mask\":false,\"maskBars\":50,\"subText\":\"\",\"width\":0.9},\"type\":\"meter\"},\"isDisplayWarning\":false,\"type\":\"gauge\"},\"title\":\"Pilot Services [Metricbeat Istio]\",\"type\":\"gauge\"}"},"coreMigrationVersion":"8.0.0","id":"6cfbe3f0-0882-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NzEsMV0="} +{"attributes":{"description":"Number of clusters without instances.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Pilot eds Instances [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Pilot eds instnaces\",\"field\":\"prometheus.pilot_eds_no_instances.value\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"gauge\":{\"alignment\":\"automatic\",\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":50},{\"from\":50,\"to\":75},{\"from\":75,\"to\":100}],\"extendRange\":true,\"gaugeColorMode\":\"Labels\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Arc\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"rgba(105,112,125,0.2)\",\"labels\":false,\"show\":true},\"style\":{\"bgColor\":true,\"bgFill\":\"rgba(105,112,125,0.2)\",\"bgMask\":false,\"bgWidth\":0.9,\"fontSize\":60,\"mask\":false,\"maskBars\":50,\"subText\":\"\",\"width\":0.9},\"type\":\"meter\"},\"isDisplayWarning\":false,\"type\":\"gauge\"},\"title\":\"Pilot eds Instances [Metricbeat Istio]\",\"type\":\"gauge\"}"},"coreMigrationVersion":"8.0.0","id":"12cdcce0-0882-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NzIsMV0="} +{"attributes":{"description":"The number of certificates issuances that have succeeded.","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Citadel Cert Issuance [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"success_cert_issuance\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.citadel_server_success_cert_issuance_count.counter\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"9f8e3700-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"max\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.type\",\"terms_order_by\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"terms_size\":\"4\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Citadel Cert Issuance [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"506c8490-087f-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NzMsMV0="} +{"attributes":{"description":"Number of endpoints connected to this pilot using XDS.","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pilot XDS endpoints [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"pilot_xds\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.pilot_xds.value\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"9f8e3700-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Pilot XDS endpoints [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e5f3e870-0882-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NzQsMV0="} +{"attributes":{"description":"Total number of XDS requests with an expired nonce.","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pilot XDS expired [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"pilot_xds_expired_nonce\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.pilot_xds_expired_nonce.counter\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"9f8e3700-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Pilot XDS expired [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0ed17c80-0883-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NzUsMV0="} +{"attributes":{"description":"Overview of the Istiod Service status","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":3,\"i\":\"3ab7d813-a0b5-48b8-9c10-5ac962a4177c\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"3ab7d813-a0b5-48b8-9c10-5ac962a4177c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_3ab7d813-a0b5-48b8-9c10-5ac962a4177c\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"06af11e6-e026-48db-a06b-b34b402b535b\",\"w\":12,\"x\":12,\"y\":0},\"panelIndex\":\"06af11e6-e026-48db-a06b-b34b402b535b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Pilot xds Push Time\",\"panelRefName\":\"panel_06af11e6-e026-48db-a06b-b34b402b535b\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"d9a49bf0-f88b-4d4f-a1e2-74fbd482f77c\",\"w\":11,\"x\":24,\"y\":0},\"panelIndex\":\"d9a49bf0-f88b-4d4f-a1e2-74fbd482f77c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Pilot xds Pushes\",\"panelRefName\":\"panel_d9a49bf0-f88b-4d4f-a1e2-74fbd482f77c\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"a8e47ef0-03db-419f-890f-0880d674682c\",\"w\":13,\"x\":35,\"y\":0},\"panelIndex\":\"a8e47ef0-03db-419f-890f-0880d674682c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Pilot Inbound Updates\",\"panelRefName\":\"panel_a8e47ef0-03db-419f-890f-0880d674682c\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"0a63d980-8d93-4ce1-b5a1-ab77e589ceec\",\"w\":12,\"x\":0,\"y\":3},\"panelIndex\":\"0a63d980-8d93-4ce1-b5a1-ab77e589ceec\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"title\":\"Pilot Conflict Inbound Listener\",\"panelRefName\":\"panel_0a63d980-8d93-4ce1-b5a1-ab77e589ceec\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"cd1bbc4f-95de-4156-a3ef-c091cf6402c0\",\"w\":12,\"x\":0,\"y\":9},\"panelIndex\":\"cd1bbc4f-95de-4156-a3ef-c091cf6402c0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Pilot Proxy Queue Time\",\"panelRefName\":\"panel_cd1bbc4f-95de-4156-a3ef-c091cf6402c0\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"724f0f9e-2186-4ddd-859c-edb2649b8c0f\",\"w\":12,\"x\":12,\"y\":9},\"panelIndex\":\"724f0f9e-2186-4ddd-859c-edb2649b8c0f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Galley Validation Failed\",\"panelRefName\":\"panel_724f0f9e-2186-4ddd-859c-edb2649b8c0f\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"32eaa989-a4f9-4d31-97cb-684f31488aa8\",\"w\":8,\"x\":24,\"y\":9},\"panelIndex\":\"32eaa989-a4f9-4d31-97cb-684f31488aa8\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"title\":\"Pods witout IP\",\"panelRefName\":\"panel_32eaa989-a4f9-4d31-97cb-684f31488aa8\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"6a8463fe-b7cb-4cd8-bf01-f7ca6a185178\",\"w\":8,\"x\":32,\"y\":9},\"panelIndex\":\"6a8463fe-b7cb-4cd8-bf01-f7ca6a185178\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"title\":\"Pilot Virtual Services\",\"panelRefName\":\"panel_6a8463fe-b7cb-4cd8-bf01-f7ca6a185178\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"51ecc2f8-3c3f-4a80-b4b6-b52db10e68ad\",\"w\":8,\"x\":40,\"y\":9},\"panelIndex\":\"51ecc2f8-3c3f-4a80-b4b6-b52db10e68ad\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"title\":\"Pilot Services\",\"panelRefName\":\"panel_51ecc2f8-3c3f-4a80-b4b6-b52db10e68ad\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"9fbfca4c-37b5-4a1a-924e-49fc9ef2294c\",\"w\":10,\"x\":0,\"y\":18},\"panelIndex\":\"9fbfca4c-37b5-4a1a-924e-49fc9ef2294c\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"title\":\"Pilot eds instances\",\"panelRefName\":\"panel_9fbfca4c-37b5-4a1a-924e-49fc9ef2294c\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"e708abfa-5a95-483c-9bb2-4470ee913f3c\",\"w\":12,\"x\":10,\"y\":18},\"panelIndex\":\"e708abfa-5a95-483c-9bb2-4470ee913f3c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Citadel Cert Issuane\",\"panelRefName\":\"panel_e708abfa-5a95-483c-9bb2-4470ee913f3c\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"d6b2845f-9582-4863-853e-ab753f3d763e\",\"w\":11,\"x\":22,\"y\":18},\"panelIndex\":\"d6b2845f-9582-4863-853e-ab753f3d763e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Pilot xds endpoints\",\"panelRefName\":\"panel_d6b2845f-9582-4863-853e-ab753f3d763e\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"3d0dec37-26c3-490b-a45f-48b6d1baa160\",\"w\":15,\"x\":33,\"y\":18},\"panelIndex\":\"3d0dec37-26c3-490b-a45f-48b6d1baa160\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Pilot xds expired\",\"panelRefName\":\"panel_3d0dec37-26c3-490b-a45f-48b6d1baa160\"}]","timeRestore":false,"title":"[Metricbeat Istio] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"d899d3f0-0883-11eb-a3fd-1b45ec532bb3","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"19a8b9c0-0c7f-11eb-a3fd-1b45ec532bb3","name":"3ab7d813-a0b5-48b8-9c10-5ac962a4177c:panel_3ab7d813-a0b5-48b8-9c10-5ac962a4177c","type":"visualization"},{"id":"b5b3abb0-087c-11eb-a3fd-1b45ec532bb3","name":"06af11e6-e026-48db-a06b-b34b402b535b:panel_06af11e6-e026-48db-a06b-b34b402b535b","type":"visualization"},{"id":"f858c200-087e-11eb-a3fd-1b45ec532bb3","name":"d9a49bf0-f88b-4d4f-a1e2-74fbd482f77c:panel_d9a49bf0-f88b-4d4f-a1e2-74fbd482f77c","type":"visualization"},{"id":"aa997510-087d-11eb-a3fd-1b45ec532bb3","name":"a8e47ef0-03db-419f-890f-0880d674682c:panel_a8e47ef0-03db-419f-890f-0880d674682c","type":"visualization"},{"id":"d62a1e60-0881-11eb-a3fd-1b45ec532bb3","name":"0a63d980-8d93-4ce1-b5a1-ab77e589ceec:panel_0a63d980-8d93-4ce1-b5a1-ab77e589ceec","type":"visualization"},{"id":"dd1392f0-07d8-11eb-a3fd-1b45ec532bb3","name":"cd1bbc4f-95de-4156-a3ef-c091cf6402c0:panel_cd1bbc4f-95de-4156-a3ef-c091cf6402c0","type":"visualization"},{"id":"98b01f00-087f-11eb-a3fd-1b45ec532bb3","name":"724f0f9e-2186-4ddd-859c-edb2649b8c0f:panel_724f0f9e-2186-4ddd-859c-edb2649b8c0f","type":"visualization"},{"id":"4275f710-0882-11eb-a3fd-1b45ec532bb3","name":"32eaa989-a4f9-4d31-97cb-684f31488aa8:panel_32eaa989-a4f9-4d31-97cb-684f31488aa8","type":"visualization"},{"id":"96bfe060-0882-11eb-a3fd-1b45ec532bb3","name":"6a8463fe-b7cb-4cd8-bf01-f7ca6a185178:panel_6a8463fe-b7cb-4cd8-bf01-f7ca6a185178","type":"visualization"},{"id":"6cfbe3f0-0882-11eb-a3fd-1b45ec532bb3","name":"51ecc2f8-3c3f-4a80-b4b6-b52db10e68ad:panel_51ecc2f8-3c3f-4a80-b4b6-b52db10e68ad","type":"visualization"},{"id":"12cdcce0-0882-11eb-a3fd-1b45ec532bb3","name":"9fbfca4c-37b5-4a1a-924e-49fc9ef2294c:panel_9fbfca4c-37b5-4a1a-924e-49fc9ef2294c","type":"visualization"},{"id":"506c8490-087f-11eb-a3fd-1b45ec532bb3","name":"e708abfa-5a95-483c-9bb2-4470ee913f3c:panel_e708abfa-5a95-483c-9bb2-4470ee913f3c","type":"visualization"},{"id":"e5f3e870-0882-11eb-a3fd-1b45ec532bb3","name":"d6b2845f-9582-4863-853e-ab753f3d763e:panel_d6b2845f-9582-4863-853e-ab753f3d763e","type":"visualization"},{"id":"0ed17c80-0883-11eb-a3fd-1b45ec532bb3","name":"3d0dec37-26c3-490b-a45f-48b6d1baa160:panel_3d0dec37-26c3-490b-a45f-48b6d1baa160","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NjEsMV0="} diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-traffic.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-traffic.json deleted file mode 100644 index 5998c84f3c3..00000000000 --- a/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-traffic.json +++ /dev/null @@ -1,1274 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Istio traffic statistics based on metrics collected from istio proxies", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 3, - "i": "fbc3815e-eb3a-46dd-b37a-a61b741b754e", - "w": 10, - "x": 0, - "y": 0 - }, - "panelIndex": "fbc3815e-eb3a-46dd-b37a-a61b741b754e", - "panelRefName": "panel_0", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Number of requests per source" - }, - "gridData": { - "h": 11, - "i": "1f88dc8b-1c21-40e0-8507-b468643d5507", - "w": 15, - "x": 10, - "y": 0 - }, - "panelIndex": "1f88dc8b-1c21-40e0-8507-b468643d5507", - "panelRefName": "panel_1", - "title": "Number of requests per source", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Number of requests per destination" - }, - "gridData": { - "h": 11, - "i": "7c7c491b-c55c-4892-a73e-3bfb5af9a610", - "w": 23, - "x": 25, - "y": 0 - }, - "panelIndex": "7c7c491b-c55c-4892-a73e-3bfb5af9a610", - "panelRefName": "panel_2", - "title": "Number of requests per destination", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "title": "Destination Apps" - }, - "gridData": { - "h": 8, - "i": "c87dc307-71f1-4642-8d2a-60066f5ab114", - "w": 10, - "x": 0, - "y": 3 - }, - "panelIndex": "c87dc307-71f1-4642-8d2a-60066f5ab114", - "panelRefName": "panel_3", - "title": "Destination Apps", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Duration of requests per destination" - }, - "gridData": { - "h": 10, - "i": "894e458b-c822-4df1-ae43-aa99d73bfedc", - "w": 12, - "x": 12, - "y": 11 - }, - "panelIndex": "894e458b-c822-4df1-ae43-aa99d73bfedc", - "panelRefName": "panel_4", - "title": "Duration of requests per destination", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Size of requests per source" - }, - "gridData": { - "h": 10, - "i": "28d6f60d-1b2c-4688-9cbc-5ebf3d587469", - "w": 12, - "x": 24, - "y": 11 - }, - "panelIndex": "28d6f60d-1b2c-4688-9cbc-5ebf3d587469", - "panelRefName": "panel_5", - "title": "Size of requests per source", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Size of requests per destination" - }, - "gridData": { - "h": 10, - "i": "1b1f0dcb-613d-4b71-a8a9-e30f79734ede", - "w": 12, - "x": 36, - "y": 11 - }, - "panelIndex": "1b1f0dcb-613d-4b71-a8a9-e30f79734ede", - "panelRefName": "panel_6", - "title": "Size of requests per destination", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Duration of requests per source" - }, - "gridData": { - "h": 10, - "i": "ae905bb4-456f-4122-8f5c-44a9ced608f1", - "w": 12, - "x": 0, - "y": 11 - }, - "panelIndex": "ae905bb4-456f-4122-8f5c-44a9ced608f1", - "panelRefName": "panel_7", - "title": "Duration of requests per source", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Size of response per source" - }, - "gridData": { - "h": 10, - "i": "3f4222fc-a243-4141-8787-1dd41d9f1661", - "w": 17, - "x": 12, - "y": 21 - }, - "panelIndex": "3f4222fc-a243-4141-8787-1dd41d9f1661", - "panelRefName": "panel_8", - "title": "Size of response per source", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Size of response per destination" - }, - "gridData": { - "h": 10, - "i": "4c498b69-296c-4e30-8a35-1510566ea5ef", - "w": 19, - "x": 29, - "y": 21 - }, - "panelIndex": "4c498b69-296c-4e30-8a35-1510566ea5ef", - "panelRefName": "panel_9", - "title": "Size of response per destination", - "version": "7.9.0" - }, - { - "embeddableConfig": { - "hidePanelTitles": false, - "title": "Response Codes" - }, - "gridData": { - "h": 10, - "i": "2a128040-ef73-40a2-8b52-62c8180bcad7", - "w": 12, - "x": 0, - "y": 21 - }, - "panelIndex": "2a128040-ef73-40a2-8b52-62c8180bcad7", - "panelRefName": "panel_10", - "title": "Response Codes", - "version": "7.9.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Istio] Traffic", - "version": 1 - }, - "id": "3b88a120-0c7c-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "96c4a5c0-0c7c-11eb-a3fd-1b45ec532bb3", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "e14e3560-0c78-11eb-a3fd-1b45ec532bb3", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "c7468af0-0c78-11eb-a3fd-1b45ec532bb3", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "1d076a90-0c7e-11eb-a3fd-1b45ec532bb3", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "3ae9b3f0-0c7a-11eb-a3fd-1b45ec532bb3", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "60dacbe0-0c79-11eb-a3fd-1b45ec532bb3", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "78375380-0c79-11eb-a3fd-1b45ec532bb3", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "5fd462f0-0c7a-11eb-a3fd-1b45ec532bb3", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "b4235550-0c7a-11eb-a3fd-1b45ec532bb3", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "8d818070-0c7a-11eb-a3fd-1b45ec532bb3", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "09404610-0c7b-11eb-a3fd-1b45ec532bb3", - "name": "panel_10", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-10-13T13:18:36.737Z", - "version": "WzUxNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboards Navigation Overview Traffic [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Overview](#/dashboard/d899d3f0-0883-11eb-a3fd-1b45ec532bb3) | **Traffic**", - "openLinksInNewTab": false - }, - "title": "Dashboards Navigation Overview Traffic [Metricbeat Istio]", - "type": "markdown" - } - }, - "id": "96c4a5c0-0c7c-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-10-13T12:53:51.894Z", - "version": "WzYxLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Number of requests per source [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "number", - "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", - "label": "Number of requests", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.istio_requests_total.rate", - "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "percentiles": [ - { - "id": "88c0d000-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "50" - }, - { - "id": "95c750d0-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "25" - }, - { - "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "75" - }, - { - "id": "9f8e3700-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "95" - }, - { - "id": "a3581040-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "99" - } - ], - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.source_app", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Number of requests per source [Metricbeat Istio]", - "type": "metrics" - } - }, - "id": "e14e3560-0c78-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-10-13T12:53:51.894Z", - "version": "WzYyLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Number of requests per destination [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "number", - "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", - "label": "Number of requests", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.istio_requests_total.rate", - "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "percentiles": [ - { - "id": "88c0d000-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "50" - }, - { - "id": "95c750d0-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "25" - }, - { - "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "75" - }, - { - "id": "9f8e3700-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "95" - }, - { - "id": "a3581040-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "99" - } - ], - "type": "max" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.destination_app", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Number of requests per destination [Metricbeat Istio]", - "type": "metrics" - } - }, - "id": "c7468af0-0c78-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-10-13T12:53:51.894Z", - "version": "WzYzLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Destination Apps [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "some" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "prometheus.labels.destination_app", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 25 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "maxFontSize": 49, - "minFontSize": 13, - "orientation": "single", - "scale": "linear", - "showLabel": false - }, - "title": "Destination Apps [Metricbeat Istio]", - "type": "tagcloud" - } - }, - "id": "1d076a90-0c7e-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-10-13T12:53:51.894Z", - "version": "WzY0LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Duration of requests per destination [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "ms,s,2", - "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", - "label": "Duration of Requests", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.istio_request_duration_milliseconds.histogram", - "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "percentiles": [ - { - "id": "257a4bc0-0c79-11eb-a187-45e4454f723b", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "99" - } - ], - "type": "percentile" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.destination_app", - "terms_size": "100", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Duration of requests per destination [Metricbeat Istio]", - "type": "metrics" - } - }, - "id": "3ae9b3f0-0c7a-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-10-13T13:04:46.542Z", - "version": "WzM0MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Size of requests per source [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "bytes", - "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", - "label": "Size of Requests", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.istio_request_bytes.histogram", - "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "percentiles": [ - { - "id": "257a4bc0-0c79-11eb-a187-45e4454f723b", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "99" - } - ], - "type": "percentile", - "values": [ - "99" - ] - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.source_app", - "terms_size": "100", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Size of requests per source [Metricbeat Istio]", - "type": "metrics" - } - }, - "id": "60dacbe0-0c79-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-10-13T13:15:39.548Z", - "version": "WzQ4NywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Size of requests per destination [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "bytes", - "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", - "label": "Size of Requests", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.istio_request_bytes.histogram", - "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "percentiles": [ - { - "id": "257a4bc0-0c79-11eb-a187-45e4454f723b", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "99" - } - ], - "type": "percentile", - "values": [ - "99" - ] - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.destination_app", - "terms_size": "100", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Size of requests per destination [Metricbeat Istio]", - "type": "metrics" - } - }, - "id": "78375380-0c79-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-10-13T13:15:47.103Z", - "version": "WzQ5MCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Duration of requests per source [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "ms,s,2", - "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", - "label": "Duration of Requests", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.istio_request_duration_milliseconds.histogram", - "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "percentiles": [ - { - "id": "257a4bc0-0c79-11eb-a187-45e4454f723b", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "99" - } - ], - "type": "percentile" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.source_app", - "terms_size": "100", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Duration of requests per source [Metricbeat Istio]", - "type": "metrics" - } - }, - "id": "5fd462f0-0c7a-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-10-13T13:03:54.986Z", - "version": "WzMyNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Size of response per source [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "bytes", - "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", - "label": "Size of Responses", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.istio_response_bytes.histogram", - "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "percentiles": [ - { - "id": "257a4bc0-0c79-11eb-a187-45e4454f723b", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "99" - } - ], - "type": "percentile_rank", - "values": [ - "99" - ] - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.source_app", - "terms_size": "100", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Size of response per source [Metricbeat Istio]", - "type": "metrics" - } - }, - "id": "b4235550-0c7a-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-10-13T13:13:05.112Z", - "version": "WzQ0NSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Size of response per destination [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "bytes", - "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", - "label": "Size of Responses", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.istio_response_bytes.histogram", - "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "percentiles": [ - { - "id": "257a4bc0-0c79-11eb-a187-45e4454f723b", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "99" - } - ], - "type": "percentile", - "values": [ - "99" - ] - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.destination_app", - "terms_size": "100", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "tooltip_mode": "show_all", - "type": "timeseries" - }, - "title": "Size of response per destination [Metricbeat Istio]", - "type": "metrics" - } - }, - "id": "8d818070-0c7a-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-10-13T13:16:05.893Z", - "version": "WzQ5NywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": {} - }, - "title": "Response Codes [Metricbeat Istio]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_min": 0, - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", - "index_pattern": "metricbeat-*", - "interval": "auto", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#6092C0", - "fill": 0, - "formatter": "number", - "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", - "label": "Response Codes", - "line_width": 2, - "metrics": [ - { - "field": "prometheus.istio_response_bytes.histogram.values", - "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", - "percentiles": [ - { - "id": "88c0d000-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "25" - }, - { - "id": "95c750d0-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "50" - }, - { - "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "75" - }, - { - "id": "a3581040-07d8-11eb-86d1-6521145f6524", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "95" - }, - { - "id": "257a4bc0-0c79-11eb-a187-45e4454f723b", - "mode": "line", - "percentile": "", - "shade": 0.2, - "value": "99" - } - ], - "type": "count" - } - ], - "point_size": 0, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "prometheus.labels.response_code", - "terms_size": "100", - "type": "timeseries", - "value_template": "{{value}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Response Codes [Metricbeat Istio]", - "type": "metrics" - } - }, - "id": "09404610-0c7b-11eb-a3fd-1b45ec532bb3", - "migrationVersion": { - "visualization": "7.8.0" - }, - "namespaces": [ - "default" - ], - "references": [], - "type": "visualization", - "updated_at": "2020-10-13T12:53:51.894Z", - "version": "WzcxLDFd" - } - ], - "version": "7.9.0" -} diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-traffic.ndjson b/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-traffic.ndjson new file mode 100644 index 00000000000..12e833ae70f --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-traffic.ndjson @@ -0,0 +1,12 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboards Navigation Overview Traffic [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Overview](#/dashboard/d899d3f0-0883-11eb-a3fd-1b45ec532bb3) | **Traffic**\",\"openLinksInNewTab\":false},\"title\":\"Dashboards Navigation Overview Traffic [Metricbeat Istio]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"96c4a5c0-0c7c-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5NzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of requests per source [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"Number of requests\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.istio_requests_total.rate\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"9f8e3700-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.source_app\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Number of requests per source [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e14e3560-0c78-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5NzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of requests per destination [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"Number of requests\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.istio_requests_total.rate\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"9f8e3700-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.destination_app\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Number of requests per destination [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c7468af0-0c78-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5NzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Destination Apps [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"some\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"prometheus.labels.destination_app\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":49,\"minFontSize\":13,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Destination Apps [Metricbeat Istio]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"1d076a90-0c7e-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5ODAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Duration of requests per destination [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"ms,s,2\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"Duration of Requests\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.istio_request_duration_milliseconds.histogram\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"257a4bc0-0c79-11eb-a187-45e4454f723b\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"percentile\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.destination_app\",\"terms_size\":\"100\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Duration of requests per destination [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3ae9b3f0-0c7a-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5ODEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Size of requests per source [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"Size of Requests\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.istio_request_bytes.histogram\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"257a4bc0-0c79-11eb-a187-45e4454f723b\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"percentile\",\"values\":[\"99\"]}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.source_app\",\"terms_size\":\"100\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Size of requests per source [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"60dacbe0-0c79-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5ODIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Size of requests per destination [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"Size of Requests\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.istio_request_bytes.histogram\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"257a4bc0-0c79-11eb-a187-45e4454f723b\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"percentile\",\"values\":[\"99\"]}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.destination_app\",\"terms_size\":\"100\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Size of requests per destination [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"78375380-0c79-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5ODMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Duration of requests per source [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"ms,s,2\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"Duration of Requests\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.istio_request_duration_milliseconds.histogram\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"257a4bc0-0c79-11eb-a187-45e4454f723b\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"percentile\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.source_app\",\"terms_size\":\"100\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Duration of requests per source [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5fd462f0-0c7a-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5ODQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Size of response per source [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"Size of Responses\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.istio_response_bytes.histogram\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"257a4bc0-0c79-11eb-a187-45e4454f723b\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"percentile_rank\",\"values\":[\"99\"]}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.source_app\",\"terms_size\":\"100\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Size of response per source [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b4235550-0c7a-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5ODUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Size of response per destination [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"Size of Responses\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.istio_response_bytes.histogram\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"257a4bc0-0c79-11eb-a187-45e4454f723b\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"percentile\",\"values\":[\"99\"]}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.destination_app\",\"terms_size\":\"100\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Size of response per destination [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8d818070-0c7a-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5ODYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Response Codes [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"Response Codes\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.istio_response_bytes.histogram.values\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"257a4bc0-0c79-11eb-a187-45e4454f723b\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"count\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.response_code\",\"terms_size\":\"100\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Response Codes [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"09404610-0c7b-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5ODcsMV0="} +{"attributes":{"description":"Istio traffic statistics based on metrics collected from istio proxies","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":3,\"i\":\"fbc3815e-eb3a-46dd-b37a-a61b741b754e\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"fbc3815e-eb3a-46dd-b37a-a61b741b754e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_fbc3815e-eb3a-46dd-b37a-a61b741b754e\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"1f88dc8b-1c21-40e0-8507-b468643d5507\",\"w\":15,\"x\":10,\"y\":0},\"panelIndex\":\"1f88dc8b-1c21-40e0-8507-b468643d5507\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Number of requests per source\",\"panelRefName\":\"panel_1f88dc8b-1c21-40e0-8507-b468643d5507\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"7c7c491b-c55c-4892-a73e-3bfb5af9a610\",\"w\":23,\"x\":25,\"y\":0},\"panelIndex\":\"7c7c491b-c55c-4892-a73e-3bfb5af9a610\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Number of requests per destination\",\"panelRefName\":\"panel_7c7c491b-c55c-4892-a73e-3bfb5af9a610\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"c87dc307-71f1-4642-8d2a-60066f5ab114\",\"w\":10,\"x\":0,\"y\":3},\"panelIndex\":\"c87dc307-71f1-4642-8d2a-60066f5ab114\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Destination Apps\",\"panelRefName\":\"panel_c87dc307-71f1-4642-8d2a-60066f5ab114\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"894e458b-c822-4df1-ae43-aa99d73bfedc\",\"w\":12,\"x\":12,\"y\":11},\"panelIndex\":\"894e458b-c822-4df1-ae43-aa99d73bfedc\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Duration of requests per destination\",\"panelRefName\":\"panel_894e458b-c822-4df1-ae43-aa99d73bfedc\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"28d6f60d-1b2c-4688-9cbc-5ebf3d587469\",\"w\":12,\"x\":24,\"y\":11},\"panelIndex\":\"28d6f60d-1b2c-4688-9cbc-5ebf3d587469\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Size of requests per source\",\"panelRefName\":\"panel_28d6f60d-1b2c-4688-9cbc-5ebf3d587469\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1b1f0dcb-613d-4b71-a8a9-e30f79734ede\",\"w\":12,\"x\":36,\"y\":11},\"panelIndex\":\"1b1f0dcb-613d-4b71-a8a9-e30f79734ede\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Size of requests per destination\",\"panelRefName\":\"panel_1b1f0dcb-613d-4b71-a8a9-e30f79734ede\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"ae905bb4-456f-4122-8f5c-44a9ced608f1\",\"w\":12,\"x\":0,\"y\":11},\"panelIndex\":\"ae905bb4-456f-4122-8f5c-44a9ced608f1\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Duration of requests per source\",\"panelRefName\":\"panel_ae905bb4-456f-4122-8f5c-44a9ced608f1\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3f4222fc-a243-4141-8787-1dd41d9f1661\",\"w\":17,\"x\":12,\"y\":21},\"panelIndex\":\"3f4222fc-a243-4141-8787-1dd41d9f1661\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Size of response per source\",\"panelRefName\":\"panel_3f4222fc-a243-4141-8787-1dd41d9f1661\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"4c498b69-296c-4e30-8a35-1510566ea5ef\",\"w\":19,\"x\":29,\"y\":21},\"panelIndex\":\"4c498b69-296c-4e30-8a35-1510566ea5ef\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Size of response per destination\",\"panelRefName\":\"panel_4c498b69-296c-4e30-8a35-1510566ea5ef\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"2a128040-ef73-40a2-8b52-62c8180bcad7\",\"w\":12,\"x\":0,\"y\":21},\"panelIndex\":\"2a128040-ef73-40a2-8b52-62c8180bcad7\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Response Codes\",\"panelRefName\":\"panel_2a128040-ef73-40a2-8b52-62c8180bcad7\"}]","timeRestore":false,"title":"[Metricbeat Istio] Traffic","version":1},"coreMigrationVersion":"8.0.0","id":"3b88a120-0c7c-11eb-a3fd-1b45ec532bb3","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"96c4a5c0-0c7c-11eb-a3fd-1b45ec532bb3","name":"fbc3815e-eb3a-46dd-b37a-a61b741b754e:panel_fbc3815e-eb3a-46dd-b37a-a61b741b754e","type":"visualization"},{"id":"e14e3560-0c78-11eb-a3fd-1b45ec532bb3","name":"1f88dc8b-1c21-40e0-8507-b468643d5507:panel_1f88dc8b-1c21-40e0-8507-b468643d5507","type":"visualization"},{"id":"c7468af0-0c78-11eb-a3fd-1b45ec532bb3","name":"7c7c491b-c55c-4892-a73e-3bfb5af9a610:panel_7c7c491b-c55c-4892-a73e-3bfb5af9a610","type":"visualization"},{"id":"1d076a90-0c7e-11eb-a3fd-1b45ec532bb3","name":"c87dc307-71f1-4642-8d2a-60066f5ab114:panel_c87dc307-71f1-4642-8d2a-60066f5ab114","type":"visualization"},{"id":"3ae9b3f0-0c7a-11eb-a3fd-1b45ec532bb3","name":"894e458b-c822-4df1-ae43-aa99d73bfedc:panel_894e458b-c822-4df1-ae43-aa99d73bfedc","type":"visualization"},{"id":"60dacbe0-0c79-11eb-a3fd-1b45ec532bb3","name":"28d6f60d-1b2c-4688-9cbc-5ebf3d587469:panel_28d6f60d-1b2c-4688-9cbc-5ebf3d587469","type":"visualization"},{"id":"78375380-0c79-11eb-a3fd-1b45ec532bb3","name":"1b1f0dcb-613d-4b71-a8a9-e30f79734ede:panel_1b1f0dcb-613d-4b71-a8a9-e30f79734ede","type":"visualization"},{"id":"5fd462f0-0c7a-11eb-a3fd-1b45ec532bb3","name":"ae905bb4-456f-4122-8f5c-44a9ced608f1:panel_ae905bb4-456f-4122-8f5c-44a9ced608f1","type":"visualization"},{"id":"b4235550-0c7a-11eb-a3fd-1b45ec532bb3","name":"3f4222fc-a243-4141-8787-1dd41d9f1661:panel_3f4222fc-a243-4141-8787-1dd41d9f1661","type":"visualization"},{"id":"8d818070-0c7a-11eb-a3fd-1b45ec532bb3","name":"4c498b69-296c-4e30-8a35-1510566ea5ef:panel_4c498b69-296c-4e30-8a35-1510566ea5ef","type":"visualization"},{"id":"09404610-0c7b-11eb-a3fd-1b45ec532bb3","name":"2a128040-ef73-40a2-8b52-62c8180bcad7:panel_2a128040-ef73-40a2-8b52-62c8180bcad7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5NzYsMV0="} diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-performance.json b/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-performance.json deleted file mode 100644 index 4d99733002e..00000000000 --- a/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-performance.json +++ /dev/null @@ -1,773 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "User Connections [Metricbeat MSSQL] ECS", - "uiStateJSON": { - "vis": { - "legendOpen": false - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "", - "field": "mssql.performance.user_connections" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "time_zone": "Europe/Madrid", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": true, - "style": { - "color": "#eee" - }, - "valueAxis": "ValueAxis-1" - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Average mssql.performance.user_connections" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "" - }, - "type": "value" - } - ] - }, - "title": "User Connections [Metricbeat MSSQL] ECS", - "type": "line" - } - }, - "id": "7784db10-18ba-11e9-9836-f37dedd3b411-ecs", - "type": "visualization", - "updated_at": "2019-01-22T13:04:43.827Z", - "version": 8 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Transactions [Metricbeat MSSQL] ECS", - "uiStateJSON": { - "vis": { - "legendOpen": false - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "", - "field": "mssql.performance.transactions" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "time_zone": "Europe/Madrid", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": true, - "style": { - "color": "#eee" - }, - "valueAxis": "ValueAxis-1" - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Average mssql.performance.transactions" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "" - }, - "type": "value" - } - ] - }, - "title": "Transactions [Metricbeat MSSQL] ECS", - "type": "line" - } - }, - "id": "910f3f30-18ba-11e9-9836-f37dedd3b411-ecs", - "type": "visualization", - "updated_at": "2019-01-22T13:04:34.757Z", - "version": 8 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Lock Waits/sec [Metricbeat MSSQL] ECS", - "uiStateJSON": { - "vis": { - "legendOpen": false - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "", - "field": "mssql.performance.lock_waits_per_sec" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "time_zone": "Europe/Madrid", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": true, - "style": { - "color": "#eee" - }, - "valueAxis": "ValueAxis-1" - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Average mssql.performance.lock_waits_per_sec" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "" - }, - "type": "value" - } - ] - }, - "title": "Lock Waits/sec [Metricbeat MSSQL] ECS", - "type": "line" - } - }, - "id": "5bd5c230-18ba-11e9-9836-f37dedd3b411-ecs", - "type": "visualization", - "updated_at": "2019-01-22T13:04:24.139Z", - "version": 7 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Batch Requests/sec [Metricbeat MSSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "", - "customMetric": { - "enabled": true, - "id": "1-metric", - "params": { - "field": "mssql.performance.batch_requests_per_sec" - }, - "schema": "metricAgg", - "type": "avg" - }, - "metricAgg": "custom" - }, - "schema": "metric", - "type": "derivative" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 0, - "time_zone": "Europe/Madrid", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": true, - "style": { - "color": "#eee" - }, - "valueAxis": "ValueAxis-1" - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Derivative of Average mssql.performance.batch_requests_per_sec" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "" - }, - "type": "value" - } - ] - }, - "title": "Batch Requests/sec [Metricbeat MSSQL] ECS", - "type": "line" - } - }, - "id": "b29a2160-18ba-11e9-9836-f37dedd3b411-ecs", - "type": "visualization", - "updated_at": "2019-01-22T13:03:10.853Z", - "version": 9 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "index": "metricbeat-*", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Buffer Cache Hit Ratio [Metricbeat MSSQL] ECS", - "uiStateJSON": { - "vis": { - "legendOpen": false - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "mssql.performance.buffer.cache_hit.pct", - "percents": [ - 50 - ] - }, - "schema": "metric", - "type": "median" - }, - { - "enabled": true, - "id": "2", - "params": { - "customInterval": "2h", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 0, - "time_zone": "Europe/Madrid", - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": true, - "style": { - "color": "#eee" - }, - "valueAxis": "ValueAxis-1" - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Median mssql.performance.buffer.cache_hit.pct" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "mode": "normal", - "show": "true", - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "" - }, - "type": "value" - } - ] - }, - "title": "Buffer Cache Hit Ratio [Metricbeat MSSQL] ECS", - "type": "line" - } - }, - "id": "2e795230-1b2a-11e9-8b36-136038bb307a-ecs", - "type": "visualization", - "updated_at": "2019-01-22T13:04:16.184Z", - "version": 8 - }, - { - "attributes": { - "description": "A dashboard with key metrics about a MSSQL instance performance", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 15, - "i": "1", - "w": 16, - "x": 0, - "y": 0 - }, - "id": "7784db10-18ba-11e9-9836-f37dedd3b411-ecs", - "panelIndex": "1", - "title": "User Connections", - "type": "visualization", - "version": "7.0.0-alpha2" - }, - { - "embeddableConfig": { - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 15, - "i": "2", - "w": 32, - "x": 16, - "y": 15 - }, - "id": "910f3f30-18ba-11e9-9836-f37dedd3b411-ecs", - "panelIndex": "2", - "title": "Transactions", - "type": "visualization", - "version": "7.0.0-alpha2" - }, - { - "embeddableConfig": { - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 15, - "i": "3", - "w": 16, - "x": 32, - "y": 0 - }, - "id": "5bd5c230-18ba-11e9-9836-f37dedd3b411-ecs", - "panelIndex": "3", - "title": "Lock Waits/sec", - "type": "visualization", - "version": "7.0.0-alpha2" - }, - { - "embeddableConfig": { - "vis": { - "legendOpen": false - } - }, - "gridData": { - "h": 15, - "i": "4", - "w": 16, - "x": 16, - "y": 0 - }, - "id": "b29a2160-18ba-11e9-9836-f37dedd3b411-ecs", - "panelIndex": "4", - "title": "Batch Requests/sec", - "type": "visualization", - "version": "7.0.0-alpha2" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "5", - "w": 16, - "x": 0, - "y": 15 - }, - "id": "2e795230-1b2a-11e9-8b36-136038bb307a-ecs", - "panelIndex": "5", - "title": "Buffer Cache Hit Ratio", - "type": "visualization", - "version": "7.0.0-alpha2" - } - ], - "timeRestore": false, - "title": "[Metricbeat MSSQL] Performance ECS", - "version": 1 - }, - "id": "a2ead240-18bb-11e9-9836-f37dedd3b411-ecs", - "type": "dashboard", - "updated_at": "2019-01-22T12:55:59.857Z", - "version": 11 - } - ], - "version": "7.0.0-alpha2" -} \ No newline at end of file diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-performance.ndjson b/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-performance.ndjson new file mode 100644 index 00000000000..b34c9bcf20c --- /dev/null +++ b/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-performance.ndjson @@ -0,0 +1,6 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"User Connections [Metricbeat MSSQL] ECS","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\",\"field\":\"mssql.performance.user_connections\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":true,\"style\":{\"color\":\"#eee\"},\"valueAxis\":\"ValueAxis-1\"},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Average mssql.performance.user_connections\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"User Connections [Metricbeat MSSQL] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"7784db10-18ba-11e9-9836-f37dedd3b411-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:41.416Z","version":"WzQwNTMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Transactions [Metricbeat MSSQL] ECS","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\",\"field\":\"mssql.performance.transactions\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":true,\"style\":{\"color\":\"#eee\"},\"valueAxis\":\"ValueAxis-1\"},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Average mssql.performance.transactions\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Transactions [Metricbeat MSSQL] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"910f3f30-18ba-11e9-9836-f37dedd3b411-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:41.416Z","version":"WzQwNTQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Lock Waits/sec [Metricbeat MSSQL] ECS","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\",\"field\":\"mssql.performance.lock_waits_per_sec\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":true,\"style\":{\"color\":\"#eee\"},\"valueAxis\":\"ValueAxis-1\"},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Average mssql.performance.lock_waits_per_sec\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Lock Waits/sec [Metricbeat MSSQL] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"5bd5c230-18ba-11e9-9836-f37dedd3b411-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:41.416Z","version":"WzQwNTUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Batch Requests/sec [Metricbeat MSSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\",\"customMetric\":{\"enabled\":true,\"id\":\"1-metric\",\"params\":{\"field\":\"mssql.performance.batch_requests_per_sec\"},\"schema\":\"metricAgg\",\"type\":\"avg\"},\"metricAgg\":\"custom\"},\"schema\":\"metric\",\"type\":\"derivative\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":0,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":true,\"style\":{\"color\":\"#eee\"},\"valueAxis\":\"ValueAxis-1\"},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Derivative of Average mssql.performance.batch_requests_per_sec\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Batch Requests/sec [Metricbeat MSSQL] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"b29a2160-18ba-11e9-9836-f37dedd3b411-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:41.416Z","version":"WzQwNTYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Buffer Cache Hit Ratio [Metricbeat MSSQL] ECS","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"mssql.performance.buffer.cache_hit.pct\",\"percents\":[50]},\"schema\":\"metric\",\"type\":\"median\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":0,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":true,\"style\":{\"color\":\"#eee\"},\"valueAxis\":\"ValueAxis-1\"},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Median mssql.performance.buffer.cache_hit.pct\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Buffer Cache Hit Ratio [Metricbeat MSSQL] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"2e795230-1b2a-11e9-8b36-136038bb307a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:41.416Z","version":"WzQwNTcsMV0="} +{"attributes":{"description":"A dashboard with key metrics about a MSSQL instance performance","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":16,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"User Connections\",\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":32,\"x\":16,\"y\":15},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Transactions\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Lock Waits/sec\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":16,\"x\":16,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Batch Requests/sec\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":16,\"x\":0,\"y\":15},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Buffer Cache Hit Ratio\",\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Metricbeat MSSQL] Performance ECS","version":1},"coreMigrationVersion":"8.0.0","id":"a2ead240-18bb-11e9-9836-f37dedd3b411-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"7784db10-18ba-11e9-9836-f37dedd3b411-ecs","name":"panel_0","type":"visualization"},{"id":"910f3f30-18ba-11e9-9836-f37dedd3b411-ecs","name":"panel_1","type":"visualization"},{"id":"5bd5c230-18ba-11e9-9836-f37dedd3b411-ecs","name":"panel_2","type":"visualization"},{"id":"b29a2160-18ba-11e9-9836-f37dedd3b411-ecs","name":"panel_3","type":"visualization"},{"id":"2e795230-1b2a-11e9-8b36-136038bb307a-ecs","name":"panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:41.416Z","version":"WzQwNTgsMV0="} diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-transaction_log.json b/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-transaction_log.json deleted file mode 100644 index b195ad3c4dc..00000000000 --- a/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-transaction_log.json +++ /dev/null @@ -1,665 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Recovery size of transaction log [Metricbeat MSSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Recovery size of transaction log", - "line_width": 1, - "metrics": [ - { - "field": "mssql.transaction_log.stats.recovery_size.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_filters": [ - { - "color": "#68BC00", - "id": "de4cb6c0-1fb2-11e9-9c8a-cb3f85dff2a3" - } - ], - "split_mode": "terms", - "stacked": "none", - "terms_field": "mssql.database.name" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Recovery size of transaction log [Metricbeat MSSQL] ECS", - "type": "metrics" - } - }, - "id": "e9654a40-1fb2-11e9-8a4d-eb34d2834f6b-ecs", - "migrationVersion": { - "visualization": "7.0.0" - }, - "type": "visualization", - "updated_at": "2019-02-01T10:13:18.406Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Transaction log size since last checkpoint [Metricbeat MSSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Transaction log size since last checkpoint", - "line_width": 1, - "metrics": [ - { - "field": "mssql.transaction_log.stats.since_last_checkpoint.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "mssql.database.name" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Transaction log size since last checkpoint [Metricbeat MSSQL] ECS", - "type": "metrics" - } - }, - "id": "1757d530-1fb3-11e9-8a4d-eb34d2834f6b-ecs", - "migrationVersion": { - "visualization": "7.0.0" - }, - "type": "visualization", - "updated_at": "2019-02-01T10:13:18.406Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Percentage of used space of transaction log [Metricbeat MSSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "percent", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Percentage of used space of transaction log", - "line_width": 1, - "metrics": [ - { - "field": "mssql.transaction_log.space_usage.used.pct", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "percent", - "terms_field": "mssql.database.name" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Percentage of used space of transaction log [Metricbeat MSSQL] ECS", - "type": "metrics" - } - }, - "id": "a55bb000-1fb2-11e9-8a4d-eb34d2834f6b-ecs", - "migrationVersion": { - "visualization": "7.0.0" - }, - "type": "visualization", - "updated_at": "2019-02-01T10:13:18.406Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Log space size since last backup [Metricbeat MSSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "mssql.transaction_log.space_usage.since_last_backup.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "mssql.database.name" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Log space size since last backup [Metricbeat MSSQL] ECS", - "type": "metrics" - } - }, - "id": "edb7a0c0-1f2b-11e9-8a4d-eb34d2834f6b-ecs", - "migrationVersion": { - "visualization": "7.0.0" - }, - "type": "visualization", - "updated_at": "2019-02-01T10:13:18.406Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Active size of transaction log [Metricbeat MSSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Active size of transaction log", - "line_width": 1, - "metrics": [ - { - "field": "mssql.transaction_log.stats.active_size.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "mssql.database.name" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Active size of transaction log [Metricbeat MSSQL] ECS", - "type": "metrics" - } - }, - "id": "c9ead180-1fb2-11e9-8a4d-eb34d2834f6b-ecs", - "migrationVersion": { - "visualization": "7.0.0" - }, - "type": "visualization", - "updated_at": "2019-02-01T10:13:18.406Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Used space of transaction log [Metricbeat MSSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Used space of transaction log", - "line_width": 1, - "metrics": [ - { - "field": "mssql.transaction_log.space_usage.used.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "mssql.database.name" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Used space of transaction log [Metricbeat MSSQL] ECS", - "type": "metrics" - } - }, - "id": "68fa61b0-1fb2-11e9-8a4d-eb34d2834f6b-ecs", - "migrationVersion": { - "visualization": "7.0.0" - }, - "type": "visualization", - "updated_at": "2019-02-01T10:13:18.406Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Total log space usage [Metricbeat MSSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Total log space usage", - "line_width": 1, - "metrics": [ - { - "field": "mssql.transaction_log.space_usage.total.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "stacked", - "terms_field": "mssql.database.name" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Total log space usage [Metricbeat MSSQL] ECS", - "type": "metrics" - } - }, - "id": "6710ff20-1f2c-11e9-8a4d-eb34d2834f6b-ecs", - "migrationVersion": { - "visualization": "7.0.0" - }, - "type": "visualization", - "updated_at": "2019-02-01T10:13:18.406Z", - "version": 1 - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Database selector [Metricbeat MSSQL] ECS", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "mssql.database.name", - "id": "1549016598264", - "indexPattern": "metricbeat-*", - "label": "", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": false, - "useTimeFilter": false - }, - "title": "Database selector [Metricbeat MSSQL] ECS", - "type": "input_control_vis" - } - }, - "id": "82bf9480-260b-11e9-a46a-471d2a76b305-ecs", - "migrationVersion": { - "visualization": "7.0.0" - }, - "type": "visualization", - "updated_at": "2019-02-01T10:24:09.159Z", - "version": 1 - }, - { - "attributes": { - "description": "An overview of the transaction log of each database in a MSSQL instance", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "darkTheme": false, - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "1", - "w": 24, - "x": 0, - "y": 12 - }, - "id": "e9654a40-1fb2-11e9-8a4d-eb34d2834f6b-ecs", - "panelIndex": "1", - "title": "Recovery size of transaction log", - "type": "visualization", - "version": "7.0.0-alpha2" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "2", - "w": 24, - "x": 24, - "y": 24 - }, - "id": "1757d530-1fb3-11e9-8a4d-eb34d2834f6b-ecs", - "panelIndex": "2", - "title": "Transaction log size since last checkpoint", - "type": "visualization", - "version": "7.0.0-alpha2" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "3", - "w": 18, - "x": 30, - "y": 0 - }, - "id": "a55bb000-1fb2-11e9-8a4d-eb34d2834f6b-ecs", - "panelIndex": "3", - "title": "Percentage of used space of transaction log", - "type": "visualization", - "version": "7.0.0-alpha2" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "4", - "w": 24, - "x": 0, - "y": 37 - }, - "id": "edb7a0c0-1f2b-11e9-8a4d-eb34d2834f6b-ecs", - "panelIndex": "4", - "title": "Log space size since last backup", - "type": "visualization", - "version": "7.0.0-alpha2" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "5", - "w": 24, - "x": 0, - "y": 24 - }, - "id": "c9ead180-1fb2-11e9-8a4d-eb34d2834f6b-ecs", - "panelIndex": "5", - "title": "Active size of transaction log", - "type": "visualization", - "version": "7.0.0-alpha2" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "6", - "w": 24, - "x": 24, - "y": 12 - }, - "id": "68fa61b0-1fb2-11e9-8a4d-eb34d2834f6b-ecs", - "panelIndex": "6", - "title": "Used space of transaction log", - "type": "visualization", - "version": "7.0.0-alpha2" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "7", - "w": 18, - "x": 12, - "y": 0 - }, - "id": "6710ff20-1f2c-11e9-8a4d-eb34d2834f6b-ecs", - "panelIndex": "7", - "title": "Total log space usage", - "type": "visualization", - "version": "7.0.0-alpha2" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 12, - "i": "8", - "w": 12, - "x": 0, - "y": 0 - }, - "id": "82bf9480-260b-11e9-a46a-471d2a76b305-ecs", - "panelIndex": "8", - "type": "visualization", - "version": "7.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Metricbeat MSSQL] Transaction log ECS", - "version": 1 - }, - "id": "18d66970-1fb4-11e9-8a4d-eb34d2834f6b-ecs", - "type": "dashboard", - "updated_at": "2019-02-01T10:39:36.585Z", - "version": 3 - } - ], - "version": "7.0.0-SNAPSHOT" -} \ No newline at end of file diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-transaction_log.ndjson b/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-transaction_log.ndjson new file mode 100644 index 00000000000..f24d0752726 --- /dev/null +++ b/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-transaction_log.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Recovery size of transaction log [Metricbeat MSSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Recovery size of transaction log\",\"line_width\":1,\"metrics\":[{\"field\":\"mssql.transaction_log.stats.recovery_size.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"de4cb6c0-1fb2-11e9-9c8a-cb3f85dff2a3\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"mssql.database.name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Recovery size of transaction log [Metricbeat MSSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e9654a40-1fb2-11e9-8a4d-eb34d2834f6b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:42.500Z","version":"WzQwNTksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Transaction log size since last checkpoint [Metricbeat MSSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Transaction log size since last checkpoint\",\"line_width\":1,\"metrics\":[{\"field\":\"mssql.transaction_log.stats.since_last_checkpoint.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"mssql.database.name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transaction log size since last checkpoint [Metricbeat MSSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1757d530-1fb3-11e9-8a4d-eb34d2834f6b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:42.500Z","version":"WzQwNjAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Percentage of used space of transaction log [Metricbeat MSSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Percentage of used space of transaction log\",\"line_width\":1,\"metrics\":[{\"field\":\"mssql.transaction_log.space_usage.used.pct\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"percent\",\"terms_field\":\"mssql.database.name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Percentage of used space of transaction log [Metricbeat MSSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a55bb000-1fb2-11e9-8a4d-eb34d2834f6b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:42.500Z","version":"WzQwNjEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Log space size since last backup [Metricbeat MSSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"mssql.transaction_log.space_usage.since_last_backup.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"mssql.database.name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Log space size since last backup [Metricbeat MSSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"edb7a0c0-1f2b-11e9-8a4d-eb34d2834f6b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:42.500Z","version":"WzQwNjIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Active size of transaction log [Metricbeat MSSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Active size of transaction log\",\"line_width\":1,\"metrics\":[{\"field\":\"mssql.transaction_log.stats.active_size.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"mssql.database.name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Active size of transaction log [Metricbeat MSSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c9ead180-1fb2-11e9-8a4d-eb34d2834f6b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:42.500Z","version":"WzQwNjMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Used space of transaction log [Metricbeat MSSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Used space of transaction log\",\"line_width\":1,\"metrics\":[{\"field\":\"mssql.transaction_log.space_usage.used.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"mssql.database.name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Used space of transaction log [Metricbeat MSSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"68fa61b0-1fb2-11e9-8a4d-eb34d2834f6b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:42.500Z","version":"WzQwNjQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total log space usage [Metricbeat MSSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total log space usage\",\"line_width\":1,\"metrics\":[{\"field\":\"mssql.transaction_log.space_usage.total.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"mssql.database.name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Total log space usage [Metricbeat MSSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6710ff20-1f2c-11e9-8a4d-eb34d2834f6b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:42.500Z","version":"WzQwNjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Database selector [Metricbeat MSSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"mssql.database.name\",\"id\":\"1549016598264\",\"indexPattern\":\"metricbeat-*\",\"label\":\"\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Database selector [Metricbeat MSSQL] ECS\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"82bf9480-260b-11e9-a46a-471d2a76b305-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:42.500Z","version":"WzQwNjYsMV0="} +{"attributes":{"description":"An overview of the transaction log of each database in a MSSQL instance","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":12,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":12},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Recovery size of transaction log\",\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":13,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":24},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Transaction log size since last checkpoint\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":12,\"i\":\"3\",\"w\":18,\"x\":30,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Percentage of used space of transaction log\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":13,\"i\":\"4\",\"w\":24,\"x\":0,\"y\":37},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Log space size since last backup\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":13,\"i\":\"5\",\"w\":24,\"x\":0,\"y\":24},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Active size of transaction log\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":12,\"i\":\"6\",\"w\":24,\"x\":24,\"y\":12},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Used space of transaction log\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":12,\"i\":\"7\",\"w\":18,\"x\":12,\"y\":0},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total log space usage\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":12,\"i\":\"8\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Metricbeat MSSQL] Transaction log ECS","version":1},"coreMigrationVersion":"8.0.0","id":"18d66970-1fb4-11e9-8a4d-eb34d2834f6b-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"e9654a40-1fb2-11e9-8a4d-eb34d2834f6b-ecs","name":"panel_0","type":"visualization"},{"id":"1757d530-1fb3-11e9-8a4d-eb34d2834f6b-ecs","name":"panel_1","type":"visualization"},{"id":"a55bb000-1fb2-11e9-8a4d-eb34d2834f6b-ecs","name":"panel_2","type":"visualization"},{"id":"edb7a0c0-1f2b-11e9-8a4d-eb34d2834f6b-ecs","name":"panel_3","type":"visualization"},{"id":"c9ead180-1fb2-11e9-8a4d-eb34d2834f6b-ecs","name":"panel_4","type":"visualization"},{"id":"68fa61b0-1fb2-11e9-8a4d-eb34d2834f6b-ecs","name":"panel_5","type":"visualization"},{"id":"6710ff20-1f2c-11e9-8a4d-eb34d2834f6b-ecs","name":"panel_6","type":"visualization"},{"id":"82bf9480-260b-11e9-a46a-471d2a76b305-ecs","name":"panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:42.500Z","version":"WzQwNjcsMV0="} diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-overview.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-overview.json deleted file mode 100644 index b8ac52d4441..00000000000 --- a/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-overview.json +++ /dev/null @@ -1,1520 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "An overview of key metrics from all Metricsets in the Oracle database Metricbeat module", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "1", - "w": 17, - "x": 18, - "y": 31 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "Tablespace Total Size", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "2", - "w": 12, - "x": 28, - "y": 0 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "Ratio of used space in Tablespaces", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 13, - "i": "3", - "w": 28, - "x": 20, - "y": 18 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "Avg data file size by filename", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "5", - "w": 20, - "x": 0, - "y": 8 - }, - "panelIndex": "5", - "panelRefName": "panel_3", - "title": "Total Cursors by machine (Top 10)", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "6", - "w": 8, - "x": 20, - "y": 0 - }, - "panelIndex": "6", - "panelRefName": "panel_4", - "title": "Cache Buffer Hit Ratio gauge", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "9", - "w": 20, - "x": 0, - "y": 15 - }, - "panelIndex": "9", - "panelRefName": "panel_5", - "title": "Current opened cursors", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "10", - "w": 13, - "x": 35, - "y": 31 - }, - "panelIndex": "10", - "panelRefName": "panel_6", - "title": "Session cache hits", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "11", - "w": 20, - "x": 0, - "y": 0 - }, - "panelIndex": "11", - "panelRefName": "panel_7", - "title": "Average Cursors by machine (Top 10)", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "12", - "w": 18, - "x": 0, - "y": 31 - }, - "panelIndex": "12", - "panelRefName": "panel_8", - "title": "Max Cursors by machine (Top 10)", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "13", - "w": 20, - "x": 0, - "y": 23 - }, - "panelIndex": "13", - "panelRefName": "panel_9", - "title": "DB Blocks Gets by buffer pool (Top 10)", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "14", - "w": 30, - "x": 18, - "y": 39 - }, - "panelIndex": "14", - "panelRefName": "panel_10", - "title": "Consistent Gets by buffer pool (Top 10)", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "15", - "w": 18, - "x": 0, - "y": 39 - }, - "panelIndex": "15", - "panelRefName": "panel_11", - "title": "Total / Real parsed cursors", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "16", - "w": 28, - "x": 20, - "y": 8 - }, - "panelIndex": "16", - "panelRefName": "panel_12", - "title": "Lock/Pin requests and IO reloads ratios", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "17", - "w": 8, - "x": 40, - "y": 0 - }, - "panelIndex": "17", - "panelRefName": "panel_13", - "title": "Cursors cache hit ratio gauge", - "version": "8.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Metricbeat Oracle] Overview", - "version": 1 - }, - "id": "3f018af0-ec08-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "05acae50-9bf0-11e9-a61b-f742ed613c57", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "981779d0-9bfc-11e9-a61b-f742ed613c57", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "c92efe60-9bef-11e9-a61b-f742ed613c57", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "62fb9430-ec0f-11e9-a4bb-7b5324058fcc", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "ec2b2010-ec0d-11e9-a4bb-7b5324058fcc", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "43369a60-ec0e-11e9-a4bb-7b5324058fcc", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "234013d0-ec0e-11e9-a4bb-7b5324058fcc", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "5a422660-ec0f-11e9-a4bb-7b5324058fcc", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "4f569650-ec0f-11e9-a4bb-7b5324058fcc", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "68ce1940-ec10-11e9-a4bb-7b5324058fcc", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "3ae419d0-ec10-11e9-a4bb-7b5324058fcc", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "c46de8c0-ec10-11e9-a4bb-7b5324058fcc", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "0b1da750-ec12-11e9-a4bb-7b5324058fcc", - "name": "panel_12", - "type": "visualization" - }, - { - "id": "bc977600-ec12-11e9-a4bb-7b5324058fcc", - "name": "panel_13", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-10-11T13:24:58.324Z", - "version": "WzQ1MiwzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Tablespace Total Size [Metricbeat Oracle]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Tablespace total size", - "line_width": 1, - "metrics": [ - { - "field": "oracle.tablespace.space.total.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "stacked", - "terms_field": "oracle.tablespace.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Tablespace Total Size [Metricbeat Oracle]", - "type": "metrics" - } - }, - "id": "05acae50-9bf0-11e9-a61b-f742ed613c57", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-11T09:17:37.972Z", - "version": "WzM4OSwzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Ratio of used space in Tablespaces [Metricbeat Oracle]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "70de46f0-9bfc-11e9-baad-815beb8da1b5" - } - ], - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "percent", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "oracle.tablespace.space.used.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "oracle.tablespace.space.total.bytes", - "id": "37c93d70-9bfc-11e9-baad-815beb8da1b5", - "type": "avg" - }, - { - "denominator": "2", - "field": "oracle.tablespace.space.total.bytes", - "id": "0d474830-9bfc-11e9-baad-815beb8da1b5", - "numerator": "1", - "script": "params.used / params.total", - "type": "math", - "variables": [ - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "34e8d9d0-9bfc-11e9-baad-815beb8da1b5", - "name": "used" - }, - { - "field": "37c93d70-9bfc-11e9-baad-815beb8da1b5", - "id": "467fdf40-9bfc-11e9-baad-815beb8da1b5", - "name": "total" - } - ] - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "oracle.tablespace.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "Ratio of used space in Tablespaces [Metricbeat Oracle]", - "type": "metrics" - } - }, - "id": "981779d0-9bfc-11e9-a61b-f742ed613c57", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-11T09:17:37.972Z", - "version": "WzM5MSwzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Avg data file size by filename [Metricbeat Oracle]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Data file size by filename", - "line_width": 1, - "metrics": [ - { - "agg_with": "noop", - "field": "oracle.tablespace.data_file.size.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "order": "desc", - "size": 1, - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "stacked", - "terms_field": "oracle.tablespace.data_file.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Avg data file size by filename [Metricbeat Oracle]", - "type": "metrics" - } - }, - "id": "c92efe60-9bef-11e9-a61b-f742ed613c57", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-11T09:17:37.972Z", - "version": "WzM4OCwzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Total Cursors by machine (Top 10) [Metricbeat Oracle]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,188,0,1)", - "fill": 0.5, - "formatter": "number", - "id": "78091830-ec0e-11e9-bea4-bdae5d622976", - "label": "Top 10 Total cursors", - "line_width": 1, - "metrics": [ - { - "field": "oracle.performance.cursors.total", - "id": "78091831-ec0e-11e9-bea4-bdae5d622976", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "stacked_within_series", - "steps": 0, - "terms_field": "oracle.performance.machine" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Total Cursors by machine (Top 10) [Metricbeat Oracle]", - "type": "metrics" - } - }, - "id": "62fb9430-ec0f-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-11T10:12:28.094Z", - "version": "WzQyNywzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Cache Buffer Hit Ratio gauge [Metricbeat Oracle]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 50": "rgb(165,0,38)", - "50 - 75": "rgb(255,255,190)", - "75 - 100": "rgb(0,104,55)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Cache Buffer Hit Ratio", - "field": "oracle.performance.cache.buffer.hit.pct" - }, - "schema": "metric", - "type": "avg" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "x": null, - "y": [ - { - "accessor": 0, - "aggType": "avg", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "gauge": { - "alignment": "automatic", - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 0.5 - }, - { - "from": 0.5, - "to": 0.75 - }, - { - "from": 0.75, - "to": 1 - } - ], - "extendRange": true, - "gaugeColorMode": "Labels", - "gaugeStyle": "Full", - "gaugeType": "Arc", - "invertColors": true, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": true, - "scale": { - "color": "rgba(105,112,125,0.2)", - "labels": false, - "show": true - }, - "style": { - "bgColor": true, - "bgFill": "rgba(105,112,125,0.2)", - "bgMask": false, - "bgWidth": 0.9, - "fontSize": 60, - "labelColor": true, - "mask": false, - "maskBars": 50, - "subText": "", - "width": 0.9 - }, - "type": "meter" - }, - "isDisplayWarning": false, - "type": "gauge" - }, - "title": "Cache Buffer Hit Ratio gauge [Metricbeat Oracle]", - "type": "gauge" - } - }, - "id": "ec2b2010-ec0d-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-10-11T10:32:03.372Z", - "version": "WzQ0MywzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Current opened cursors [Metricbeat Oracle]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Current opened cursors", - "line_width": 1, - "metrics": [ - { - "field": "oracle.performance.cursors.opened.current", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 0, - "time_field": "", - "type": "timeseries" - }, - "title": "Current opened cursors [Metricbeat Oracle]", - "type": "metrics" - } - }, - "id": "43369a60-ec0e-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-11T10:43:29.383Z", - "version": "WzQ0OSwzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Session cache hits [Metricbeat Oracle]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(219,223,0,1)", - "fill": 0.5, - "formatter": "number", - "hide_in_legend": 0, - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Session cache hits", - "line_width": 1, - "metrics": [ - { - "field": "oracle.performance.cursors.session.cache_hits", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 0, - "time_field": "", - "type": "timeseries" - }, - "title": "Session cache hits [Metricbeat Oracle]", - "type": "metrics" - } - }, - "id": "234013d0-ec0e-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-11T10:35:45.888Z", - "version": "WzQ0NiwzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Average Cursors by machine (Top 10) [Metricbeat Oracle]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Average cursors", - "line_width": 1, - "metrics": [ - { - "field": "oracle.performance.cursors.avg", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_filters": [ - { - "color": "rgba(254,146,0,1)", - "filter": { - "language": "kuery", - "query": "" - }, - "id": "15889d10-ec0f-11e9-bea4-bdae5d622976" - } - ], - "split_mode": "terms", - "stacked": "stacked", - "terms_field": "oracle.performance.machine" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Average Cursors by machine (Top 10) [Metricbeat Oracle]", - "type": "metrics" - } - }, - "id": "5a422660-ec0f-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-11T10:14:31.128Z", - "version": "WzQzMCwzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Max Cursors by machine (Top 10) [Metricbeat Oracle]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": 0.5, - "formatter": "number", - "id": "6e3a42c0-ec0e-11e9-bea4-bdae5d622976", - "label": "Top 10 Max cursors", - "line_width": 1, - "metrics": [ - { - "field": "oracle.performance.cursors.max", - "id": "6e3a42c1-ec0e-11e9-bea4-bdae5d622976", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "stacked", - "terms_field": "oracle.performance.machine" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Max Cursors by machine (Top 10) [Metricbeat Oracle]", - "type": "metrics" - } - }, - "id": "4f569650-ec0f-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-11T10:13:39.343Z", - "version": "WzQyOSwzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "DB Blocks Gets by buffer pool (Top 10) [Metricbeat Oracle]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": 0.5, - "formatter": "number", - "id": "1547f520-ec10-11e9-bea4-bdae5d622976", - "label": "DB Blocks gets", - "line_width": 1, - "metrics": [ - { - "field": "oracle.performance.cache.get.db_blocks", - "id": "1547f521-ec10-11e9-bea4-bdae5d622976", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "oracle.performance.buffer_pool" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "DB Blocks Gets by buffer pool (Top 10) [Metricbeat Oracle]", - "type": "metrics" - } - }, - "id": "68ce1940-ec10-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-11T10:18:28.007Z", - "version": "WzQzOCwzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Consistent Gets by buffer pool (Top 10) [Metricbeat Oracle]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Consistent Gets", - "line_width": 1, - "metrics": [ - { - "field": "oracle.performance.cache.get.consistent", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "oracle.performance.buffer_pool" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Consistent Gets by buffer pool (Top 10) [Metricbeat Oracle]", - "type": "metrics" - } - }, - "id": "3ae419d0-ec10-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-11T10:18:51.246Z", - "version": "WzQzOSwzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Total / Real parsed cursors [Metricbeat Oracle]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Real parsed cursors", - "line_width": 1, - "metrics": [ - { - "field": "oracle.performance.cursors.parse.real", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": 0.5, - "formatter": "number", - "id": "a1dae560-ec10-11e9-bea4-bdae5d622976", - "label": "Total parsed cursors", - "line_width": 1, - "metrics": [ - { - "field": "oracle.performance.cursors.parse.total", - "id": "a1dae561-ec10-11e9-bea4-bdae5d622976", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Total / Real parsed cursors [Metricbeat Oracle]", - "type": "metrics" - } - }, - "id": "c46de8c0-ec10-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-10-11T10:20:37.067Z", - "version": "WzQ0MCwzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Lock/Pin requests and IO reloads ratios [Metricbeat Oracle]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 50": "rgb(247,251,255)", - "50 - 75": "rgb(107,174,214)", - "75 - 100": "rgb(8,48,107)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "IO Reloads", - "field": "oracle.performance.io_reloads" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Lock requests", - "field": "oracle.performance.lock_requests" - }, - "schema": "metric", - "type": "avg" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Pin requests", - "field": "oracle.performance.pin_requests" - }, - "schema": "metric", - "type": "avg" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "x": null, - "y": [ - { - "accessor": 0, - "aggType": "avg", - "format": { - "id": "number" - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "avg", - "format": { - "id": "number" - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "avg", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "gauge": { - "alignment": "automatic", - "backStyle": "Full", - "colorSchema": "Blues", - "colorsRange": [ - { - "from": 0, - "to": 0.5 - }, - { - "from": 0.5, - "to": 0.75 - }, - { - "from": 0.75, - "to": 1 - } - ], - "extendRange": true, - "gaugeColorMode": "Labels", - "gaugeStyle": "Full", - "gaugeType": "Arc", - "invertColors": false, - "labels": { - "color": "black", - "show": true - }, - "orientation": "vertical", - "percentageMode": true, - "scale": { - "color": "rgba(105,112,125,0.2)", - "labels": false, - "show": true - }, - "style": { - "bgColor": true, - "bgFill": "rgba(105,112,125,0.2)", - "bgMask": false, - "bgWidth": 0.9, - "fontSize": 60, - "mask": false, - "maskBars": 50, - "subText": "", - "width": 0.9 - }, - "type": "meter" - }, - "isDisplayWarning": false, - "type": "gauge" - }, - "title": "Lock/Pin requests and IO reloads ratios [Metricbeat Oracle]", - "type": "gauge" - } - }, - "id": "0b1da750-ec12-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-10-11T10:29:45.157Z", - "version": "WzQ0MSwzXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Cursors cache hit ratio gauge [Metricbeat Oracle]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 50": "rgb(0,104,55)", - "50 - 75": "rgb(255,255,190)", - "75 - 100": "rgb(165,0,38)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Cursors cache hit ratio", - "field": "oracle.performance.cursors.cache_hit.pct" - }, - "schema": "metric", - "type": "avg" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "x": null, - "y": [ - { - "accessor": 0, - "aggType": "avg", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "gauge": { - "alignment": "automatic", - "backStyle": "Full", - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 0.5 - }, - { - "from": 0.5, - "to": 0.75 - }, - { - "from": 0.75, - "to": 1 - } - ], - "extendRange": true, - "gaugeColorMode": "Labels", - "gaugeStyle": "Full", - "gaugeType": "Arc", - "invertColors": false, - "labels": { - "color": "black", - "show": false - }, - "orientation": "vertical", - "percentageMode": true, - "scale": { - "color": "rgba(105,112,125,0.2)", - "labels": false, - "show": true - }, - "style": { - "bgColor": true, - "bgFill": "rgba(105,112,125,0.2)", - "bgMask": false, - "bgWidth": 0.9, - "fontSize": 60, - "mask": false, - "maskBars": 50, - "subText": "", - "width": 0.9 - }, - "type": "meter" - }, - "isDisplayWarning": false, - "type": "gauge" - }, - "title": "Cursors cache hit ratio gauge [Metricbeat Oracle]", - "type": "gauge" - } - }, - "id": "bc977600-ec12-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "visualization": "7.3.0" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2019-10-11T10:34:42.911Z", - "version": "WzQ0NSwzXQ==" - } - ], - "version": "8.0.0-SNAPSHOT" -} diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-overview.ndjson b/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-overview.ndjson new file mode 100644 index 00000000000..2ca75e05784 --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-overview.ndjson @@ -0,0 +1,15 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Tablespace Total Size [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Tablespace total size\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.tablespace.space.total.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"oracle.tablespace.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Tablespace Total Size [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"05acae50-9bf0-11e9-a61b-f742ed613c57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:20.355Z","version":"WzMyNzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ratio of used space in Tablespaces [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"70de46f0-9bfc-11e9-baad-815beb8da1b5\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.tablespace.space.used.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"oracle.tablespace.space.total.bytes\",\"id\":\"37c93d70-9bfc-11e9-baad-815beb8da1b5\",\"type\":\"avg\"},{\"denominator\":\"2\",\"field\":\"oracle.tablespace.space.total.bytes\",\"id\":\"0d474830-9bfc-11e9-baad-815beb8da1b5\",\"numerator\":\"1\",\"script\":\"params.used / params.total\",\"type\":\"math\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"34e8d9d0-9bfc-11e9-baad-815beb8da1b5\",\"name\":\"used\"},{\"field\":\"37c93d70-9bfc-11e9-baad-815beb8da1b5\",\"id\":\"467fdf40-9bfc-11e9-baad-815beb8da1b5\",\"name\":\"total\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"oracle.tablespace.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Ratio of used space in Tablespaces [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"981779d0-9bfc-11e9-a61b-f742ed613c57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:20.355Z","version":"WzMyODAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Avg data file size by filename [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Data file size by filename\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"noop\",\"field\":\"oracle.tablespace.data_file.size.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"order\":\"desc\",\"size\":1,\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"oracle.tablespace.data_file.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Avg data file size by filename [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c92efe60-9bef-11e9-a61b-f742ed613c57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:20.355Z","version":"WzMyNzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total Cursors by machine (Top 10) [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"78091830-ec0e-11e9-bea4-bdae5d622976\",\"label\":\"Top 10 Total cursors\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.performance.cursors.total\",\"id\":\"78091831-ec0e-11e9-bea4-bdae5d622976\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked_within_series\",\"steps\":0,\"terms_field\":\"oracle.performance.machine\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Total Cursors by machine (Top 10) [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"62fb9430-ec0f-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNjUsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Cache Buffer Hit Ratio gauge [Metricbeat Oracle]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 50\": \"rgb(165,0,38)\", \"50 - 75\": \"rgb(255,255,190)\", \"75 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Cache Buffer Hit Ratio\",\"field\":\"oracle.performance.cache.buffer.hit.pct\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"x\":null,\"y\":[{\"accessor\":0,\"aggType\":\"avg\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"gauge\":{\"alignment\":\"automatic\",\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":0.5},{\"from\":0.5,\"to\":0.75},{\"from\":0.75,\"to\":1}],\"extendRange\":true,\"gaugeColorMode\":\"Labels\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Arc\",\"invertColors\":true,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":true,\"scale\":{\"color\":\"rgba(105,112,125,0.2)\",\"labels\":false,\"show\":true},\"style\":{\"bgColor\":true,\"bgFill\":\"rgba(105,112,125,0.2)\",\"bgMask\":false,\"bgWidth\":0.9,\"fontSize\":60,\"labelColor\":true,\"mask\":false,\"maskBars\":50,\"subText\":\"\",\"width\":0.9},\"type\":\"meter\"},\"isDisplayWarning\":false,\"type\":\"gauge\"},\"title\":\"Cache Buffer Hit Ratio gauge [Metricbeat Oracle]\",\"type\":\"gauge\"}"},"coreMigrationVersion":"8.0.0","id":"ec2b2010-ec0d-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNjYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Current opened cursors [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Current opened cursors\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.performance.cursors.opened.current\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Current opened cursors [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"43369a60-ec0e-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNjcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Session cache hits [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(219,223,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Session cache hits\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.performance.cursors.session.cache_hits\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Session cache hits [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"234013d0-ec0e-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNjgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average Cursors by machine (Top 10) [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average cursors\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.performance.cursors.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(254,146,0,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"15889d10-ec0f-11e9-bea4-bdae5d622976\"}],\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"oracle.performance.machine\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Average Cursors by machine (Top 10) [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5a422660-ec0f-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNjksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Max Cursors by machine (Top 10) [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"6e3a42c0-ec0e-11e9-bea4-bdae5d622976\",\"label\":\"Top 10 Max cursors\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.performance.cursors.max\",\"id\":\"6e3a42c1-ec0e-11e9-bea4-bdae5d622976\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"oracle.performance.machine\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Max Cursors by machine (Top 10) [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4f569650-ec0f-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNzAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DB Blocks Gets by buffer pool (Top 10) [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"1547f520-ec10-11e9-bea4-bdae5d622976\",\"label\":\"DB Blocks gets\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.performance.cache.get.db_blocks\",\"id\":\"1547f521-ec10-11e9-bea4-bdae5d622976\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"oracle.performance.buffer_pool\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"DB Blocks Gets by buffer pool (Top 10) [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"68ce1940-ec10-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNzEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Consistent Gets by buffer pool (Top 10) [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Consistent Gets\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.performance.cache.get.consistent\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"oracle.performance.buffer_pool\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Consistent Gets by buffer pool (Top 10) [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3ae419d0-ec10-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNzIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total / Real parsed cursors [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Real parsed cursors\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.performance.cursors.parse.real\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a1dae560-ec10-11e9-bea4-bdae5d622976\",\"label\":\"Total parsed cursors\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.performance.cursors.parse.total\",\"id\":\"a1dae561-ec10-11e9-bea4-bdae5d622976\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Total / Real parsed cursors [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c46de8c0-ec10-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNzMsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Lock/Pin requests and IO reloads ratios [Metricbeat Oracle]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 50\": \"rgb(247,251,255)\", \"50 - 75\": \"rgb(107,174,214)\", \"75 - 100\": \"rgb(8,48,107)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"IO Reloads\",\"field\":\"oracle.performance.io_reloads\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Lock requests\",\"field\":\"oracle.performance.lock_requests\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Pin requests\",\"field\":\"oracle.performance.pin_requests\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"x\":null,\"y\":[{\"accessor\":0,\"aggType\":\"avg\",\"format\":{\"id\":\"number\"},\"params\":{}},{\"accessor\":1,\"aggType\":\"avg\",\"format\":{\"id\":\"number\"},\"params\":{}},{\"accessor\":2,\"aggType\":\"avg\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"gauge\":{\"alignment\":\"automatic\",\"backStyle\":\"Full\",\"colorSchema\":\"Blues\",\"colorsRange\":[{\"from\":0,\"to\":0.5},{\"from\":0.5,\"to\":0.75},{\"from\":0.75,\"to\":1}],\"extendRange\":true,\"gaugeColorMode\":\"Labels\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Arc\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":true,\"scale\":{\"color\":\"rgba(105,112,125,0.2)\",\"labels\":false,\"show\":true},\"style\":{\"bgColor\":true,\"bgFill\":\"rgba(105,112,125,0.2)\",\"bgMask\":false,\"bgWidth\":0.9,\"fontSize\":60,\"mask\":false,\"maskBars\":50,\"subText\":\"\",\"width\":0.9},\"type\":\"meter\"},\"isDisplayWarning\":false,\"type\":\"gauge\"},\"title\":\"Lock/Pin requests and IO reloads ratios [Metricbeat Oracle]\",\"type\":\"gauge\"}"},"coreMigrationVersion":"8.0.0","id":"0b1da750-ec12-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNzQsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Cursors cache hit ratio gauge [Metricbeat Oracle]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 50\": \"rgb(0,104,55)\", \"50 - 75\": \"rgb(255,255,190)\", \"75 - 100\": \"rgb(165,0,38)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Cursors cache hit ratio\",\"field\":\"oracle.performance.cursors.cache_hit.pct\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"x\":null,\"y\":[{\"accessor\":0,\"aggType\":\"avg\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"gauge\":{\"alignment\":\"automatic\",\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":0.5},{\"from\":0.5,\"to\":0.75},{\"from\":0.75,\"to\":1}],\"extendRange\":true,\"gaugeColorMode\":\"Labels\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Arc\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":false},\"orientation\":\"vertical\",\"percentageMode\":true,\"scale\":{\"color\":\"rgba(105,112,125,0.2)\",\"labels\":false,\"show\":true},\"style\":{\"bgColor\":true,\"bgFill\":\"rgba(105,112,125,0.2)\",\"bgMask\":false,\"bgWidth\":0.9,\"fontSize\":60,\"mask\":false,\"maskBars\":50,\"subText\":\"\",\"width\":0.9},\"type\":\"meter\"},\"isDisplayWarning\":false,\"type\":\"gauge\"},\"title\":\"Cursors cache hit ratio gauge [Metricbeat Oracle]\",\"type\":\"gauge\"}"},"coreMigrationVersion":"8.0.0","id":"bc977600-ec12-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNzUsMV0="} +{"attributes":{"description":"An overview of key metrics from all Metricsets in the Oracle database Metricbeat module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"1\",\"w\":17,\"x\":18,\"y\":31},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Tablespace Total Size\",\"panelRefName\":\"panel_1\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"2\",\"w\":12,\"x\":28,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ratio of used space in Tablespaces\",\"panelRefName\":\"panel_2\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"3\",\"w\":28,\"x\":20,\"y\":18},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Avg data file size by filename\",\"panelRefName\":\"panel_3\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"5\",\"w\":20,\"x\":0,\"y\":8},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Cursors by machine (Top 10)\",\"panelRefName\":\"panel_5\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"6\",\"w\":8,\"x\":20,\"y\":0},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cache Buffer Hit Ratio gauge\",\"panelRefName\":\"panel_6\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"9\",\"w\":20,\"x\":0,\"y\":15},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Current opened cursors\",\"panelRefName\":\"panel_9\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"10\",\"w\":13,\"x\":35,\"y\":31},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Session cache hits\",\"panelRefName\":\"panel_10\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"11\",\"w\":20,\"x\":0,\"y\":0},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Average Cursors by machine (Top 10)\",\"panelRefName\":\"panel_11\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"12\",\"w\":18,\"x\":0,\"y\":31},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Max Cursors by machine (Top 10)\",\"panelRefName\":\"panel_12\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"13\",\"w\":20,\"x\":0,\"y\":23},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"DB Blocks Gets by buffer pool (Top 10)\",\"panelRefName\":\"panel_13\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"14\",\"w\":30,\"x\":18,\"y\":39},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Consistent Gets by buffer pool (Top 10)\",\"panelRefName\":\"panel_14\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"15\",\"w\":18,\"x\":0,\"y\":39},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total / Real parsed cursors\",\"panelRefName\":\"panel_15\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"16\",\"w\":28,\"x\":20,\"y\":8},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Lock/Pin requests and IO reloads ratios\",\"panelRefName\":\"panel_16\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"17\",\"w\":8,\"x\":40,\"y\":0},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cursors cache hit ratio gauge\",\"panelRefName\":\"panel_17\"}]","timeRestore":false,"title":"[Metricbeat Oracle] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"3f018af0-ec08-11e9-a4bb-7b5324058fcc","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"05acae50-9bf0-11e9-a61b-f742ed613c57","name":"1:panel_1","type":"visualization"},{"id":"981779d0-9bfc-11e9-a61b-f742ed613c57","name":"2:panel_2","type":"visualization"},{"id":"c92efe60-9bef-11e9-a61b-f742ed613c57","name":"3:panel_3","type":"visualization"},{"id":"62fb9430-ec0f-11e9-a4bb-7b5324058fcc","name":"5:panel_5","type":"visualization"},{"id":"ec2b2010-ec0d-11e9-a4bb-7b5324058fcc","name":"6:panel_6","type":"visualization"},{"id":"43369a60-ec0e-11e9-a4bb-7b5324058fcc","name":"9:panel_9","type":"visualization"},{"id":"234013d0-ec0e-11e9-a4bb-7b5324058fcc","name":"10:panel_10","type":"visualization"},{"id":"5a422660-ec0f-11e9-a4bb-7b5324058fcc","name":"11:panel_11","type":"visualization"},{"id":"4f569650-ec0f-11e9-a4bb-7b5324058fcc","name":"12:panel_12","type":"visualization"},{"id":"68ce1940-ec10-11e9-a4bb-7b5324058fcc","name":"13:panel_13","type":"visualization"},{"id":"3ae419d0-ec10-11e9-a4bb-7b5324058fcc","name":"14:panel_14","type":"visualization"},{"id":"c46de8c0-ec10-11e9-a4bb-7b5324058fcc","name":"15:panel_15","type":"visualization"},{"id":"0b1da750-ec12-11e9-a4bb-7b5324058fcc","name":"16:panel_16","type":"visualization"},{"id":"bc977600-ec12-11e9-a4bb-7b5324058fcc","name":"17:panel_17","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNjEsMV0="} diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-tablespaces.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-tablespaces.json deleted file mode 100644 index 4012c8c3309..00000000000 --- a/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-tablespaces.json +++ /dev/null @@ -1,536 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of Oracle Tablespaces", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "1", - "w": 19, - "x": 0, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "Avg data file size by filename", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "2", - "w": 24, - "x": 0, - "y": 15 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "Tablespace Total Size", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "3", - "w": 19, - "x": 19, - "y": 0 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "Maximum data file size", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "4", - "w": 10, - "x": 38, - "y": 0 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "title": "Ratio of used space in Tablespaces", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "5", - "w": 24, - "x": 24, - "y": 15 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "title": "Ratio of used space in data files", - "version": "8.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Metricbeat Oracle] Tablespaces", - "version": 1 - }, - "id": "862e2c20-9bf0-11e9-a61b-f742ed613c57", - "migrationVersion": { - "dashboard": "7.0.0" - }, - "references": [ - { - "id": "c92efe60-9bef-11e9-a61b-f742ed613c57", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "05acae50-9bf0-11e9-a61b-f742ed613c57", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "4c051a90-9bf0-11e9-a61b-f742ed613c57", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "981779d0-9bfc-11e9-a61b-f742ed613c57", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "072de430-9bfd-11e9-a61b-f742ed613c57", - "name": "panel_4", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2019-07-01T13:32:15.355Z", - "version": "Wzk0MywxNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Avg data file size by filename [Metricbeat Oracle]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Data file size by filename", - "line_width": 1, - "metrics": [ - { - "agg_with": "noop", - "field": "oracle.tablespace.data_file.size.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "order": "desc", - "size": 1, - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "stacked", - "terms_field": "oracle.tablespace.data_file.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Avg data file size by filename [Metricbeat Oracle]", - "type": "metrics" - } - }, - "id": "c92efe60-9bef-11e9-a61b-f742ed613c57", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-01T12:24:40.028Z", - "version": "WzkzOCwxNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Tablespace Total Size [Metricbeat Oracle]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Tablespace total size", - "line_width": 1, - "metrics": [ - { - "field": "oracle.tablespace.space.total.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "stacked", - "terms_field": "oracle.tablespace.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Tablespace Total Size [Metricbeat Oracle]", - "type": "metrics" - } - }, - "id": "05acae50-9bf0-11e9-a61b-f742ed613c57", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-01T11:09:27.312Z", - "version": "WzkzNCwxNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Maximum data file size [Metricbeat Oracle]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(254,146,0,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Maximum data file size", - "line_width": 1, - "metrics": [ - { - "field": "oracle.tablespace.data_file.size.max.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "stacked", - "terms_field": "oracle.tablespace.data_file.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Maximum data file size [Metricbeat Oracle]", - "type": "metrics" - } - }, - "id": "4c051a90-9bf0-11e9-a61b-f742ed613c57", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-01T11:09:16.058Z", - "version": "WzkzMywxNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Ratio of used space in Tablespaces [Metricbeat Oracle]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "70de46f0-9bfc-11e9-baad-815beb8da1b5" - } - ], - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "percent", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "oracle.tablespace.space.used.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "oracle.tablespace.space.total.bytes", - "id": "37c93d70-9bfc-11e9-baad-815beb8da1b5", - "type": "avg" - }, - { - "denominator": "2", - "field": "oracle.tablespace.space.total.bytes", - "id": "0d474830-9bfc-11e9-baad-815beb8da1b5", - "numerator": "1", - "script": "params.used / params.total", - "type": "math", - "variables": [ - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "34e8d9d0-9bfc-11e9-baad-815beb8da1b5", - "name": "used" - }, - { - "field": "37c93d70-9bfc-11e9-baad-815beb8da1b5", - "id": "467fdf40-9bfc-11e9-baad-815beb8da1b5", - "name": "total" - } - ] - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "oracle.tablespace.name", - "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "Ratio of used space in Tablespaces [Metricbeat Oracle]", - "type": "metrics" - } - }, - "id": "981779d0-9bfc-11e9-a61b-f742ed613c57", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-01T12:34:39.724Z", - "version": "WzkzOSwxNF0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Ratio of used space in data files [Metricbeat Oracle]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "bar_color_rules": [ - { - "id": "da9fa430-9bfc-11e9-baad-815beb8da1b5" - } - ], - "default_index_pattern": "metricbeat-*", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "auto", - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(204,204,204,1)", - "fill": 0.5, - "formatter": "percent", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Ratio of used space in data files", - "line_width": 1, - "metrics": [ - { - "field": "oracle.tablespace.data_file.size.max.bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "oracle.tablespace.data_file.size.bytes", - "id": "c0f200a0-9bfc-11e9-baad-815beb8da1b5", - "type": "avg" - }, - { - "id": "c8289f00-9bfc-11e9-baad-815beb8da1b5", - "script": "params.used / params.max", - "type": "math", - "variables": [ - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "c9a63e50-9bfc-11e9-baad-815beb8da1b5", - "name": "max" - }, - { - "field": "c0f200a0-9bfc-11e9-baad-815beb8da1b5", - "id": "cddc46e0-9bfc-11e9-baad-815beb8da1b5", - "name": "used" - } - ] - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "stacked", - "terms_field": "oracle.tablespace.data_file.name", - "terms_order_by": "c0f200a0-9bfc-11e9-baad-815beb8da1b5" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "top_n" - }, - "title": "Ratio of used space in data files [Metricbeat Oracle]", - "type": "metrics" - } - }, - "id": "072de430-9bfd-11e9-a61b-f742ed613c57", - "migrationVersion": { - "visualization": "7.2.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2019-07-01T12:37:59.842Z", - "version": "Wzk0MSwxNF0=" - } - ], - "version": "8.0.0-SNAPSHOT" -} diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-tablespaces.ndjson b/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-tablespaces.ndjson new file mode 100644 index 00000000000..7aed16fc392 --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-tablespaces.ndjson @@ -0,0 +1,6 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Avg data file size by filename [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Data file size by filename\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"noop\",\"field\":\"oracle.tablespace.data_file.size.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"order\":\"desc\",\"size\":1,\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"oracle.tablespace.data_file.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Avg data file size by filename [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c92efe60-9bef-11e9-a61b-f742ed613c57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:20.355Z","version":"WzMyNzcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Tablespace Total Size [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Tablespace total size\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.tablespace.space.total.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"oracle.tablespace.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Tablespace Total Size [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"05acae50-9bf0-11e9-a61b-f742ed613c57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:20.355Z","version":"WzMyNzgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Maximum data file size [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Maximum data file size\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.tablespace.data_file.size.max.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"oracle.tablespace.data_file.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Maximum data file size [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4c051a90-9bf0-11e9-a61b-f742ed613c57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:20.355Z","version":"WzMyNzksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ratio of used space in Tablespaces [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"70de46f0-9bfc-11e9-baad-815beb8da1b5\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.tablespace.space.used.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"oracle.tablespace.space.total.bytes\",\"id\":\"37c93d70-9bfc-11e9-baad-815beb8da1b5\",\"type\":\"avg\"},{\"denominator\":\"2\",\"field\":\"oracle.tablespace.space.total.bytes\",\"id\":\"0d474830-9bfc-11e9-baad-815beb8da1b5\",\"numerator\":\"1\",\"script\":\"params.used / params.total\",\"type\":\"math\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"34e8d9d0-9bfc-11e9-baad-815beb8da1b5\",\"name\":\"used\"},{\"field\":\"37c93d70-9bfc-11e9-baad-815beb8da1b5\",\"id\":\"467fdf40-9bfc-11e9-baad-815beb8da1b5\",\"name\":\"total\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"oracle.tablespace.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Ratio of used space in Tablespaces [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"981779d0-9bfc-11e9-a61b-f742ed613c57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:20.355Z","version":"WzMyODAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ratio of used space in data files [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"da9fa430-9bfc-11e9-baad-815beb8da1b5\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(204,204,204,1)\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Ratio of used space in data files\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.tablespace.data_file.size.max.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"oracle.tablespace.data_file.size.bytes\",\"id\":\"c0f200a0-9bfc-11e9-baad-815beb8da1b5\",\"type\":\"avg\"},{\"id\":\"c8289f00-9bfc-11e9-baad-815beb8da1b5\",\"script\":\"params.used / params.max\",\"type\":\"math\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"c9a63e50-9bfc-11e9-baad-815beb8da1b5\",\"name\":\"max\"},{\"field\":\"c0f200a0-9bfc-11e9-baad-815beb8da1b5\",\"id\":\"cddc46e0-9bfc-11e9-baad-815beb8da1b5\",\"name\":\"used\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"oracle.tablespace.data_file.name\",\"terms_order_by\":\"c0f200a0-9bfc-11e9-baad-815beb8da1b5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Ratio of used space in data files [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"072de430-9bfd-11e9-a61b-f742ed613c57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:20.355Z","version":"WzMyODEsMV0="} +{"attributes":{"description":"Overview of Oracle Tablespaces","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":19,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Avg data file size by filename\",\"panelRefName\":\"panel_1\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Tablespace Total Size\",\"panelRefName\":\"panel_2\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":19,\"x\":19,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Maximum data file size\",\"panelRefName\":\"panel_3\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":10,\"x\":38,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ratio of used space in Tablespaces\",\"panelRefName\":\"panel_4\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ratio of used space in data files\",\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Metricbeat Oracle] Tablespaces","version":1},"coreMigrationVersion":"8.0.0","id":"862e2c20-9bf0-11e9-a61b-f742ed613c57","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"c92efe60-9bef-11e9-a61b-f742ed613c57","name":"1:panel_1","type":"visualization"},{"id":"05acae50-9bf0-11e9-a61b-f742ed613c57","name":"2:panel_2","type":"visualization"},{"id":"4c051a90-9bf0-11e9-a61b-f742ed613c57","name":"3:panel_3","type":"visualization"},{"id":"981779d0-9bfc-11e9-a61b-f742ed613c57","name":"4:panel_4","type":"visualization"},{"id":"072de430-9bfd-11e9-a61b-f742ed613c57","name":"5:panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:20.355Z","version":"WzMyNzYsMV0="} diff --git a/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/dashboard/Metricbeat-redisenterprise-overview.json b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/dashboard/Metricbeat-redisenterprise-overview.json deleted file mode 100644 index 5cfaba7539d..00000000000 --- a/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/dashboard/Metricbeat-redisenterprise-overview.json +++ /dev/null @@ -1,1609 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview of Redis Enterprise dashboard", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 8, - "i": "bdd26554-0293-4928-9751-f7304d9fbc74", - "w": 9, - "x": 0, - "y": 0 - }, - "panelIndex": "bdd26554-0293-4928-9751-f7304d9fbc74", - "panelRefName": "panel_0", - "version": "7.1.0" - }, - { - "embeddableConfig": { - "title": "System CPU time" - }, - "gridData": { - "h": 8, - "i": "4aa7a92c-1705-40ee-9f53-478610ea34f0", - "w": 8, - "x": 9, - "y": 0 - }, - "panelIndex": "4aa7a92c-1705-40ee-9f53-478610ea34f0", - "panelRefName": "panel_1", - "title": "System CPU time", - "version": "7.1.0" - }, - { - "embeddableConfig": { - "title": "User CPU time" - }, - "gridData": { - "h": 8, - "i": "431e4d28-f8be-46a3-8079-d562e644bae1", - "w": 8, - "x": 17, - "y": 0 - }, - "panelIndex": "431e4d28-f8be-46a3-8079-d562e644bae1", - "panelRefName": "panel_2", - "title": "User CPU time", - "version": "7.1.0" - }, - { - "embeddableConfig": { - "title": "Node free memory" - }, - "gridData": { - "h": 8, - "i": "192540d9-3c81-495d-ba22-2b1d96841ba7", - "w": 7, - "x": 25, - "y": 0 - }, - "panelIndex": "192540d9-3c81-495d-ba22-2b1d96841ba7", - "panelRefName": "panel_3", - "title": "Node free memory", - "version": "7.1.0" - }, - { - "embeddableConfig": { - "title": "Free persistent disk space" - }, - "gridData": { - "h": 8, - "i": "666f6222-3542-42b0-9085-7e93224c3998", - "w": 8, - "x": 32, - "y": 0 - }, - "panelIndex": "666f6222-3542-42b0-9085-7e93224c3998", - "panelRefName": "panel_4", - "title": "Free persistent disk space", - "version": "7.1.0" - }, - { - "embeddableConfig": { - "title": "Free ephemeral disk space" - }, - "gridData": { - "h": 8, - "i": "9d84abb9-cc6d-4d78-b2a4-ca77b942cf5c", - "w": 8, - "x": 40, - "y": 0 - }, - "panelIndex": "9d84abb9-cc6d-4d78-b2a4-ca77b942cf5c", - "panelRefName": "panel_5", - "title": "Free ephemeral disk space", - "version": "7.1.0" - }, - { - "embeddableConfig": { - "title": "Rate of incoming/outgoing network traffic" - }, - "gridData": { - "h": 17, - "i": "86afca72-c2a2-4d20-af63-7e74220df79c", - "w": 16, - "x": 0, - "y": 8 - }, - "panelIndex": "86afca72-c2a2-4d20-af63-7e74220df79c", - "panelRefName": "panel_6", - "title": "Rate of incoming/outgoing network traffic", - "version": "7.1.0" - }, - { - "embeddableConfig": { - "title": "Total requests" - }, - "gridData": { - "h": 17, - "i": "aab5878f-0105-4be9-aaea-1951de591ec8", - "w": 16, - "x": 16, - "y": 8 - }, - "panelIndex": "aab5878f-0105-4be9-aaea-1951de591ec8", - "panelRefName": "panel_7", - "title": "Total requests", - "version": "7.1.0" - }, - { - "embeddableConfig": { - "title": "Connections" - }, - "gridData": { - "h": 17, - "i": "c520c103-f16f-4490-ab07-3fbd38681c94", - "w": 16, - "x": 32, - "y": 8 - }, - "panelIndex": "c520c103-f16f-4490-ab07-3fbd38681c94", - "panelRefName": "panel_8", - "title": "Connections", - "version": "7.1.0" - }, - { - "embeddableConfig": { - "title": "GET/SET commands" - }, - "gridData": { - "h": 17, - "i": "52d5e0f2-8c7d-42a0-b0d7-3bff758034bd", - "w": 16, - "x": 0, - "y": 25 - }, - "panelIndex": "52d5e0f2-8c7d-42a0-b0d7-3bff758034bd", - "panelRefName": "panel_9", - "title": "GET/SET commands", - "version": "7.1.0" - }, - { - "embeddableConfig": { - "title": "Other commands" - }, - "gridData": { - "h": 17, - "i": "8d97e4fa-7929-42b6-bcd1-c73a0ec6ceea", - "w": 16, - "x": 16, - "y": 25 - }, - "panelIndex": "8d97e4fa-7929-42b6-bcd1-c73a0ec6ceea", - "panelRefName": "panel_10", - "title": "Other commands", - "version": "7.1.0" - }, - { - "embeddableConfig": { - "title": "Listener latency" - }, - "gridData": { - "h": 17, - "i": "0f739671-dfbe-4ec9-8468-d5b2b9aad001", - "w": 16, - "x": 32, - "y": 25 - }, - "panelIndex": "0f739671-dfbe-4ec9-8468-d5b2b9aad001", - "panelRefName": "panel_11", - "title": "Listener latency", - "version": "7.1.0" - } - ], - "timeRestore": false, - "title": "[Metricbeat Redis Enterprise] Overview", - "version": 1 - }, - "id": "8da53a40-5a2f-11ea-bc69-cdcc68092a57", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "b96c3b00-5c92-11ea-b0b5-8133f1152545", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "8cba84c0-5a32-11ea-bc69-cdcc68092a57", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "9ddea420-5a32-11ea-bc69-cdcc68092a57", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "49c7dbf0-5a36-11ea-bc69-cdcc68092a57", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "14f6de30-5c7a-11ea-b0b5-8133f1152545", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "2d7ec670-5c7a-11ea-b0b5-8133f1152545", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "f6c6d0e0-5a36-11ea-bc69-cdcc68092a57", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "6c861200-5c7b-11ea-b0b5-8133f1152545", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "b5621150-5c7a-11ea-b0b5-8133f1152545", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "3c776b90-5c80-11ea-b0b5-8133f1152545", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "837f9fd0-5c80-11ea-b0b5-8133f1152545", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "a452c8c0-5c96-11ea-b0b5-8133f1152545", - "name": "panel_11", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-03-03T15:48:26.671Z", - "version": "WzgwNCw0XQ==" - }, - { - "attributes": { - "description": "Select cluster/node based on its name", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Cluster/node selector [Metricbeat Redis Enterprise]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "controls": [ - { - "fieldName": "prometheus.labels.cluster", - "id": "1583159394252", - "indexPatternRefName": "control_0_index_pattern", - "label": "cluster name", - "options": { - "dynamicOptions": true, - "multiselect": false, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - }, - { - "fieldName": "prometheus.labels.node", - "id": "1583250395046", - "indexPatternRefName": "control_1_index_pattern", - "label": "node name", - "options": { - "dynamicOptions": true, - "multiselect": true, - "order": "desc", - "size": 5, - "type": "terms" - }, - "parent": "", - "type": "list" - } - ], - "pinFilters": false, - "updateFiltersOnChange": true, - "useTimeFilter": false - }, - "title": "Cluster/node selector [Metricbeat Redis Enterprise]", - "type": "input_control_vis" - } - }, - "id": "b96c3b00-5c92-11ea-b0b5-8133f1152545", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "metricbeat-*", - "name": "control_0_index_pattern", - "type": "index-pattern" - }, - { - "id": "metricbeat-*", - "name": "control_1_index_pattern", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-03-03T15:47:18.669Z", - "version": "WzgwMyw0XQ==" - }, - { - "attributes": { - "description": "System CPU time", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "System CPU time [Metricbeat Redis Enterprise]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [ - { - "color": "#F00", - "fields": "", - "icon": "fa-tag", - "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", - "ignore_global_filters": 1, - "ignore_panel_filters": 1, - "index_pattern": "*", - "query_string": { - "language": "kuery", - "query": "" - }, - "template": "" - } - ], - "axis_formatter": "number", - "axis_max": "1", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "c743b7b0-5a32-11ea-89da-eba74ed7a082" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0.5", - "formatter": "percent", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "system", - "line_width": "1", - "metrics": [ - { - "field": "prometheus.metrics.node_cpu_system", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "1", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "prometheus.labels.node", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "gauge" - }, - "title": "System CPU time [Metricbeat Redis Enterprise]", - "type": "metrics" - } - }, - "id": "8cba84c0-5a32-11ea-bc69-cdcc68092a57", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-02T14:26:48.851Z", - "version": "Wzc2MiwzXQ==" - }, - { - "attributes": { - "description": "User CPU time", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "User CPU time [Metricbeat Redis Enterprise]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [ - { - "color": "#F00", - "fields": "", - "icon": "fa-tag", - "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", - "ignore_global_filters": 1, - "ignore_panel_filters": 1, - "index_pattern": "*", - "query_string": { - "language": "kuery", - "query": "" - }, - "template": "" - } - ], - "axis_formatter": "number", - "axis_max": "1", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(104,204,202,1)", - "fill": "0.5", - "formatter": "percent", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "user", - "line_width": "1", - "metrics": [ - { - "field": "prometheus.metrics.node_cpu_user", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "1", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "prometheus.labels.node", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "gauge" - }, - "title": "User CPU time [Metricbeat Redis Enterprise]", - "type": "metrics" - } - }, - "id": "9ddea420-5a32-11ea-bc69-cdcc68092a57", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-02T14:27:31.125Z", - "version": "Wzc2MywzXQ==" - }, - { - "attributes": { - "description": "Node free memory", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Node free memory [Metricbeat Redis Enterprise]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [ - { - "color": "#F00", - "fields": "", - "icon": "fa-tag", - "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", - "ignore_global_filters": 1, - "ignore_panel_filters": 1, - "index_pattern": "*", - "query_string": { - "language": "kuery", - "query": "" - }, - "template": "" - } - ], - "axis_formatter": "number", - "axis_max": "", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "4493a7d0-5a37-11ea-83f4-dbbc99caa7c0" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(164,221,0,1)", - "fill": "0.5", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Free memory", - "line_width": "1", - "metrics": [ - { - "field": "prometheus.metrics.node_free_memory", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "1", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "prometheus.labels.node", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "metric" - }, - "title": "Node free memory [Metricbeat Redis Enterprise]", - "type": "metrics" - } - }, - "id": "49c7dbf0-5a36-11ea-bc69-cdcc68092a57", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-02T14:27:48.934Z", - "version": "Wzc2NCwzXQ==" - }, - { - "attributes": { - "description": "Free disk space on configured persistent disk", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Free persistent disk space [Metricbeat Redis Enterprise]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [ - { - "color": "#F00", - "fields": "", - "icon": "fa-tag", - "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", - "ignore_global_filters": 1, - "ignore_panel_filters": 1, - "index_pattern": "*", - "query_string": { - "language": "kuery", - "query": "" - }, - "template": "" - } - ], - "axis_formatter": "number", - "axis_max": "", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "4493a7d0-5a37-11ea-83f4-dbbc99caa7c0" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(164,221,0,1)", - "fill": "0.5", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Free persistent", - "line_width": "1", - "metrics": [ - { - "field": "prometheus.metrics.node_persistent_storage_free", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "1", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "prometheus.labels.node", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "metric" - }, - "title": "Free persistent disk space [Metricbeat Redis Enterprise]", - "type": "metrics" - } - }, - "id": "14f6de30-5c7a-11ea-b0b5-8133f1152545", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-02T14:28:01.957Z", - "version": "Wzc2NSwzXQ==" - }, - { - "attributes": { - "description": "Free disk space on configured ephemeral disk", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Free ephemeral disk space [Metricbeat Redis Enterprise]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [ - { - "color": "#F00", - "fields": "", - "icon": "fa-tag", - "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", - "ignore_global_filters": 1, - "ignore_panel_filters": 1, - "index_pattern": "*", - "query_string": { - "language": "kuery", - "query": "" - }, - "template": "" - } - ], - "axis_formatter": "number", - "axis_max": "", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "4493a7d0-5a37-11ea-83f4-dbbc99caa7c0" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(164,221,0,1)", - "fill": "0.5", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Free ephemeral", - "line_width": "1", - "metrics": [ - { - "field": "prometheus.metrics.node_ephemeral_storage_free", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "1", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "prometheus.labels.node", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "metric" - }, - "title": "Free ephemeral disk space [Metricbeat Redis Enterprise]", - "type": "metrics" - } - }, - "id": "2d7ec670-5c7a-11ea-b0b5-8133f1152545", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-02T14:28:19.864Z", - "version": "Wzc2NiwzXQ==" - }, - { - "attributes": { - "description": "Rate of incoming/outgoing network traffic", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Rate of incoming/outgoing network traffic [Metricbeat Redis Enterprise]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [ - { - "color": "#F00", - "fields": "", - "icon": "fa-tag", - "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", - "ignore_global_filters": 1, - "ignore_panel_filters": 1, - "index_pattern": "*", - "query_string": { - "language": "kuery", - "query": "" - }, - "template": "" - } - ], - "axis_formatter": "number", - "axis_max": "", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(0,156,224,1)", - "fill": "0.5", - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Node ingress", - "line_width": "1", - "metrics": [ - { - "field": "prometheus.metrics.node_ingress_bytes", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "1", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "prometheus.labels.node", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(211,49,21,1)", - "fill": "0.5", - "formatter": "bytes", - "id": "cc4a9810-5c93-11ea-a0a2-61bf5e1bd67b", - "label": "Node egress", - "line_width": "1", - "metrics": [ - { - "field": "prometheus.metrics.node_egress_bytes", - "id": "cc4a9811-5c93-11ea-a0a2-61bf5e1bd67b", - "type": "avg" - } - ], - "point_size": "1", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "prometheus.labels.node", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Rate of incoming/outgoing network traffic [Metricbeat Redis Enterprise]", - "type": "metrics" - } - }, - "id": "f6c6d0e0-5a36-11ea-bc69-cdcc68092a57", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-02T14:42:18.930Z", - "version": "Wzc4NCwzXQ==" - }, - { - "attributes": { - "description": "Request rate handled by endpoints on node", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Total requests (ops/sec) [Metricbeat Redis Enterprise]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [ - { - "color": "#F00", - "fields": "", - "icon": "fa-tag", - "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", - "ignore_global_filters": 1, - "ignore_panel_filters": 1, - "index_pattern": "*", - "query_string": { - "language": "kuery", - "query": "" - }, - "template": "" - } - ], - "axis_formatter": "number", - "axis_max": "", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "4493a7d0-5a37-11ea-83f4-dbbc99caa7c0" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(12,121,125,1)", - "fill": "0.5", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Total requests (ops/sec)", - "line_width": "1", - "metrics": [ - { - "field": "prometheus.metrics.node_total_req", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "1", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "prometheus.labels.node", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Total requests (ops/sec) [Metricbeat Redis Enterprise]", - "type": "metrics" - } - }, - "id": "6c861200-5c7b-11ea-b0b5-8133f1152545", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-02T14:44:20.783Z", - "version": "Wzc4NiwzXQ==" - }, - { - "attributes": { - "description": "Number of clients connected to endpoints on node", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Connections [Metricbeat Redis Enterprise]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [ - { - "color": "#F00", - "fields": "", - "icon": "fa-tag", - "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", - "ignore_global_filters": 1, - "ignore_panel_filters": 1, - "index_pattern": "*", - "query_string": { - "language": "kuery", - "query": "" - }, - "template": "" - } - ], - "axis_formatter": "number", - "axis_max": "", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "4493a7d0-5a37-11ea-83f4-dbbc99caa7c0" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(123,100,255,1)", - "fill": "0.5", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Connections", - "line_width": "1", - "metrics": [ - { - "field": "prometheus.metrics.node_conns", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "1", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "prometheus.labels.node", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Connections [Metricbeat Redis Enterprise]", - "type": "metrics" - } - }, - "id": "b5621150-5c7a-11ea-b0b5-8133f1152545", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-02T14:44:37.374Z", - "version": "Wzc4NywzXQ==" - }, - { - "attributes": { - "description": "Number of memcached GET/SET commands sent to the DB", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "GET/SET commands [Metricbeat Redis Enterprise]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [ - { - "color": "#F00", - "fields": "", - "icon": "fa-tag", - "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", - "ignore_global_filters": 1, - "ignore_panel_filters": 1, - "index_pattern": "*", - "query_string": { - "language": "kuery", - "query": "" - }, - "template": "" - } - ], - "axis_formatter": "number", - "axis_max": "", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "4493a7d0-5a37-11ea-83f4-dbbc99caa7c0" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(22,165,165,1)", - "fill": "0.5", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "GET", - "line_width": "1", - "metrics": [ - { - "field": "prometheus.metrics.listener_cmd_get", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "1", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "prometheus.labels.proxy", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": "0.5", - "formatter": "number", - "id": "90e3af50-5c93-11ea-a0a2-61bf5e1bd67b", - "label": "SET", - "line_width": "1", - "metrics": [ - { - "field": "prometheus.metrics.listener_cmd_set", - "id": "90e3af51-5c93-11ea-a0a2-61bf5e1bd67b", - "type": "avg" - } - ], - "point_size": "1", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "prometheus.labels.proxy", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "GET/SET commands [Metricbeat Redis Enterprise]", - "type": "metrics" - } - }, - "id": "3c776b90-5c80-11ea-b0b5-8133f1152545", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-02T14:40:12.682Z", - "version": "Wzc4MSwzXQ==" - }, - { - "attributes": { - "description": "Number of memcached commands sent to the DB", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Other commands [Metricbeat Redis Enterprise]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [ - { - "color": "#F00", - "fields": "", - "icon": "fa-tag", - "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", - "ignore_global_filters": 1, - "ignore_panel_filters": 1, - "index_pattern": "*", - "query_string": { - "language": "kuery", - "query": "" - }, - "template": "" - } - ], - "axis_formatter": "number", - "axis_max": "", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "4493a7d0-5a37-11ea-83f4-dbbc99caa7c0" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": "0.5", - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "TOUCH", - "line_width": "1", - "metrics": [ - { - "field": "prometheus.metrics.listener_cmd_touch", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": "1", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "prometheus.labels.proxy", - "type": "timeseries", - "value_template": "{{value}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": "0.5", - "formatter": "number", - "id": "0576cfe0-5c90-11ea-83c6-4f084e5b49b0", - "label": "FLUSH", - "line_width": "1", - "metrics": [ - { - "field": "prometheus.metrics.listener_cmd_flush", - "id": "0576cfe1-5c90-11ea-83c6-4f084e5b49b0", - "type": "avg" - } - ], - "point_size": "1", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "prometheus.labels.proxy", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(164,221,0,1)", - "fill": "0.5", - "formatter": "number", - "id": "22e43a90-5c90-11ea-83c6-4f084e5b49b0", - "label": "AUTH", - "line_width": "1", - "metrics": [ - { - "field": "prometheus.metrics.listener_auth_cmds", - "id": "22e43a91-5c90-11ea-83c6-4f084e5b49b0", - "type": "avg" - } - ], - "point_size": "1", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "prometheus.labels.proxy", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Other commands [Metricbeat Redis Enterprise]", - "type": "metrics" - } - }, - "id": "837f9fd0-5c80-11ea-b0b5-8133f1152545", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-02T14:26:30.812Z", - "version": "Wzc2MSwzXQ==" - }, - { - "attributes": { - "description": "Average latency of all types of commands on DB", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Listener latency [Metricbeat Redis Enterprise]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "annotations": [ - { - "color": "#F00", - "fields": "", - "icon": "fa-tag", - "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", - "ignore_global_filters": 1, - "ignore_panel_filters": 1, - "index_pattern": "*", - "query_string": { - "language": "kuery", - "query": "" - }, - "template": "" - } - ], - "axis_formatter": "number", - "axis_max": "", - "axis_min": "0", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "id": "4493a7d0-5a37-11ea-83f4-dbbc99caa7c0" - } - ], - "bar_color_rules": [ - { - "id": "69b152e0-5c96-11ea-a0a2-61bf5e1bd67b" - } - ], - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "gauge_color_rules": [ - { - "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" - } - ], - "gauge_inner_width": 10, - "gauge_style": "half", - "gauge_width": 10, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "1m", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(12,121,125,1)", - "fill": "0.5", - "formatter": "ms,ms,", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Latency", - "line_width": "1", - "metrics": [ - { - "field": "prometheus.metrics.listener_acc_latency", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "prometheus.metrics.listener_total_res", - "id": "37d10ba0-5c99-11ea-a0a2-61bf5e1bd67b", - "type": "avg" - }, - { - "id": "12007b60-5c97-11ea-a0a2-61bf5e1bd67b", - "script": "params.listener_acc_latency != null \u0026\u0026 params.listener_total_res \u003e 0 ? params.listener_acc_latency/params.listener_total_res : null", - "type": "calculation", - "variables": [ - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "144dedd0-5c97-11ea-a0a2-61bf5e1bd67b", - "name": "listener_acc_latency" - }, - { - "field": "37d10ba0-5c99-11ea-a0a2-61bf5e1bd67b", - "id": "bf706520-5c98-11ea-a0a2-61bf5e1bd67b", - "name": "listener_total_res" - } - ] - } - ], - "point_size": "1", - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "prometheus.labels.node", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Listener latency [Metricbeat Redis Enterprise]", - "type": "metrics" - } - }, - "id": "a452c8c0-5c96-11ea-b0b5-8133f1152545", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-03-02T15:21:44.393Z", - "version": "Wzc5MSwzXQ==" - } - ], - "version": "7.1.0" -} diff --git a/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/dashboard/Metricbeat-redisenterprise-overview.ndjson b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/dashboard/Metricbeat-redisenterprise-overview.ndjson new file mode 100644 index 00000000000..6cb7d451373 --- /dev/null +++ b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/dashboard/Metricbeat-redisenterprise-overview.ndjson @@ -0,0 +1,13 @@ +{"attributes":{"description":"Select cluster/node based on its name","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Cluster/node selector [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"prometheus.labels.cluster\",\"id\":\"1583159394252\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"cluster name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"prometheus.labels.node\",\"id\":\"1583250395046\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"node name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Cluster/node selector [Metricbeat Redis Enterprise]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b96c3b00-5c92-11ea-b0b5-8133f1152545","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNDMsMV0="} +{"attributes":{"description":"System CPU time","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"System CPU time [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"1\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"gauge_color_rules\":[{\"id\":\"c743b7b0-5a32-11ea-89da-eba74ed7a082\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.5\",\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"system\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.node_cpu_system\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"System CPU time [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8cba84c0-5a32-11ea-bc69-cdcc68092a57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNDQsMV0="} +{"attributes":{"description":"User CPU time","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"User CPU time [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"1\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"0.5\",\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"user\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.node_cpu_user\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"User CPU time [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9ddea420-5a32-11ea-bc69-cdcc68092a57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNDUsMV0="} +{"attributes":{"description":"Node free memory","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Node free memory [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4493a7d0-5a37-11ea-83f4-dbbc99caa7c0\"}],\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Free memory\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.node_free_memory\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Node free memory [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"49c7dbf0-5a36-11ea-bc69-cdcc68092a57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNDYsMV0="} +{"attributes":{"description":"Free disk space on configured persistent disk","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Free persistent disk space [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4493a7d0-5a37-11ea-83f4-dbbc99caa7c0\"}],\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Free persistent\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.node_persistent_storage_free\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Free persistent disk space [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"14f6de30-5c7a-11ea-b0b5-8133f1152545","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNDcsMV0="} +{"attributes":{"description":"Free disk space on configured ephemeral disk","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Free ephemeral disk space [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4493a7d0-5a37-11ea-83f4-dbbc99caa7c0\"}],\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Free ephemeral\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.node_ephemeral_storage_free\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Free ephemeral disk space [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2d7ec670-5c7a-11ea-b0b5-8133f1152545","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNDgsMV0="} +{"attributes":{"description":"Rate of incoming/outgoing network traffic","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Rate of incoming/outgoing network traffic [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Node ingress\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.node_ingress_bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"cc4a9810-5c93-11ea-a0a2-61bf5e1bd67b\",\"label\":\"Node egress\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.node_egress_bytes\",\"id\":\"cc4a9811-5c93-11ea-a0a2-61bf5e1bd67b\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Rate of incoming/outgoing network traffic [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f6c6d0e0-5a36-11ea-bc69-cdcc68092a57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNDksMV0="} +{"attributes":{"description":"Request rate handled by endpoints on node","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total requests (ops/sec) [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4493a7d0-5a37-11ea-83f4-dbbc99caa7c0\"}],\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(12,121,125,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total requests (ops/sec)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.node_total_req\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Total requests (ops/sec) [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6c861200-5c7b-11ea-b0b5-8133f1152545","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNTAsMV0="} +{"attributes":{"description":"Number of clients connected to endpoints on node","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4493a7d0-5a37-11ea-83f4-dbbc99caa7c0\"}],\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(123,100,255,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Connections\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.node_conns\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Connections [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b5621150-5c7a-11ea-b0b5-8133f1152545","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNTEsMV0="} +{"attributes":{"description":"Number of memcached GET/SET commands sent to the DB","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"GET/SET commands [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4493a7d0-5a37-11ea-83f4-dbbc99caa7c0\"}],\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"GET\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.listener_cmd_get\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.proxy\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"90e3af50-5c93-11ea-a0a2-61bf5e1bd67b\",\"label\":\"SET\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.listener_cmd_set\",\"id\":\"90e3af51-5c93-11ea-a0a2-61bf5e1bd67b\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.proxy\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"GET/SET commands [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3c776b90-5c80-11ea-b0b5-8133f1152545","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNTIsMV0="} +{"attributes":{"description":"Number of memcached commands sent to the DB","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Other commands [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4493a7d0-5a37-11ea-83f4-dbbc99caa7c0\"}],\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"TOUCH\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.listener_cmd_touch\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.proxy\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"0576cfe0-5c90-11ea-83c6-4f084e5b49b0\",\"label\":\"FLUSH\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.listener_cmd_flush\",\"id\":\"0576cfe1-5c90-11ea-83c6-4f084e5b49b0\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.proxy\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"22e43a90-5c90-11ea-83c6-4f084e5b49b0\",\"label\":\"AUTH\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.listener_auth_cmds\",\"id\":\"22e43a91-5c90-11ea-83c6-4f084e5b49b0\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.proxy\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Other commands [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"837f9fd0-5c80-11ea-b0b5-8133f1152545","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNTMsMV0="} +{"attributes":{"description":"Average latency of all types of commands on DB","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Listener latency [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4493a7d0-5a37-11ea-83f4-dbbc99caa7c0\"}],\"bar_color_rules\":[{\"id\":\"69b152e0-5c96-11ea-a0a2-61bf5e1bd67b\"}],\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(12,121,125,1)\",\"fill\":\"0.5\",\"formatter\":\"ms,ms,\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Latency\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.listener_acc_latency\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"prometheus.metrics.listener_total_res\",\"id\":\"37d10ba0-5c99-11ea-a0a2-61bf5e1bd67b\",\"type\":\"avg\"},{\"id\":\"12007b60-5c97-11ea-a0a2-61bf5e1bd67b\",\"script\":\"params.listener_acc_latency != null && params.listener_total_res > 0 ? params.listener_acc_latency/params.listener_total_res : null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"144dedd0-5c97-11ea-a0a2-61bf5e1bd67b\",\"name\":\"listener_acc_latency\"},{\"field\":\"37d10ba0-5c99-11ea-a0a2-61bf5e1bd67b\",\"id\":\"bf706520-5c98-11ea-a0a2-61bf5e1bd67b\",\"name\":\"listener_total_res\"}]}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Listener latency [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a452c8c0-5c96-11ea-b0b5-8133f1152545","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNTQsMV0="} +{"attributes":{"description":"Overview of Redis Enterprise dashboard","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.1.0\",\"gridData\":{\"h\":8,\"i\":\"bdd26554-0293-4928-9751-f7304d9fbc74\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"bdd26554-0293-4928-9751-f7304d9fbc74\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_0\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":8,\"i\":\"4aa7a92c-1705-40ee-9f53-478610ea34f0\",\"w\":8,\"x\":9,\"y\":0},\"panelIndex\":\"4aa7a92c-1705-40ee-9f53-478610ea34f0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"System CPU time\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":8,\"i\":\"431e4d28-f8be-46a3-8079-d562e644bae1\",\"w\":8,\"x\":17,\"y\":0},\"panelIndex\":\"431e4d28-f8be-46a3-8079-d562e644bae1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"User CPU time\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":8,\"i\":\"192540d9-3c81-495d-ba22-2b1d96841ba7\",\"w\":7,\"x\":25,\"y\":0},\"panelIndex\":\"192540d9-3c81-495d-ba22-2b1d96841ba7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Node free memory\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":8,\"i\":\"666f6222-3542-42b0-9085-7e93224c3998\",\"w\":8,\"x\":32,\"y\":0},\"panelIndex\":\"666f6222-3542-42b0-9085-7e93224c3998\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Free persistent disk space\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":8,\"i\":\"9d84abb9-cc6d-4d78-b2a4-ca77b942cf5c\",\"w\":8,\"x\":40,\"y\":0},\"panelIndex\":\"9d84abb9-cc6d-4d78-b2a4-ca77b942cf5c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Free ephemeral disk space\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":17,\"i\":\"86afca72-c2a2-4d20-af63-7e74220df79c\",\"w\":16,\"x\":0,\"y\":8},\"panelIndex\":\"86afca72-c2a2-4d20-af63-7e74220df79c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Rate of incoming/outgoing network traffic\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":17,\"i\":\"aab5878f-0105-4be9-aaea-1951de591ec8\",\"w\":16,\"x\":16,\"y\":8},\"panelIndex\":\"aab5878f-0105-4be9-aaea-1951de591ec8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total requests\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":17,\"i\":\"c520c103-f16f-4490-ab07-3fbd38681c94\",\"w\":16,\"x\":32,\"y\":8},\"panelIndex\":\"c520c103-f16f-4490-ab07-3fbd38681c94\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Connections\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":17,\"i\":\"52d5e0f2-8c7d-42a0-b0d7-3bff758034bd\",\"w\":16,\"x\":0,\"y\":25},\"panelIndex\":\"52d5e0f2-8c7d-42a0-b0d7-3bff758034bd\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"GET/SET commands\",\"panelRefName\":\"panel_9\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":17,\"i\":\"8d97e4fa-7929-42b6-bcd1-c73a0ec6ceea\",\"w\":16,\"x\":16,\"y\":25},\"panelIndex\":\"8d97e4fa-7929-42b6-bcd1-c73a0ec6ceea\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Other commands\",\"panelRefName\":\"panel_10\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":17,\"i\":\"0f739671-dfbe-4ec9-8468-d5b2b9aad001\",\"w\":16,\"x\":32,\"y\":25},\"panelIndex\":\"0f739671-dfbe-4ec9-8468-d5b2b9aad001\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Listener latency\",\"panelRefName\":\"panel_11\"}]","timeRestore":false,"title":"[Metricbeat Redis Enterprise] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"8da53a40-5a2f-11ea-bc69-cdcc68092a57","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"b96c3b00-5c92-11ea-b0b5-8133f1152545","name":"panel_0","type":"visualization"},{"id":"8cba84c0-5a32-11ea-bc69-cdcc68092a57","name":"panel_1","type":"visualization"},{"id":"9ddea420-5a32-11ea-bc69-cdcc68092a57","name":"panel_2","type":"visualization"},{"id":"49c7dbf0-5a36-11ea-bc69-cdcc68092a57","name":"panel_3","type":"visualization"},{"id":"14f6de30-5c7a-11ea-b0b5-8133f1152545","name":"panel_4","type":"visualization"},{"id":"2d7ec670-5c7a-11ea-b0b5-8133f1152545","name":"panel_5","type":"visualization"},{"id":"f6c6d0e0-5a36-11ea-bc69-cdcc68092a57","name":"panel_6","type":"visualization"},{"id":"6c861200-5c7b-11ea-b0b5-8133f1152545","name":"panel_7","type":"visualization"},{"id":"b5621150-5c7a-11ea-b0b5-8133f1152545","name":"panel_8","type":"visualization"},{"id":"3c776b90-5c80-11ea-b0b5-8133f1152545","name":"panel_9","type":"visualization"},{"id":"837f9fd0-5c80-11ea-b0b5-8133f1152545","name":"panel_10","type":"visualization"},{"id":"a452c8c0-5c96-11ea-b0b5-8133f1152545","name":"panel_11","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNDIsMV0="} diff --git a/x-pack/metricbeat/module/stan/_meta/kibana/7/dashboard/Metricbeat-STAN-overview.json b/x-pack/metricbeat/module/stan/_meta/kibana/7/dashboard/Metricbeat-STAN-overview.json deleted file mode 100644 index f54ef71ef86..00000000000 --- a/x-pack/metricbeat/module/stan/_meta/kibana/7/dashboard/Metricbeat-STAN-overview.json +++ /dev/null @@ -1,214 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Metrics for STAN channels / subjects", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "98c9a793-903a-47af-900b-8becd2493d0a", - "w": 24, - "x": 24, - "y": 0 - }, - "panelIndex": "98c9a793-903a-47af-900b-8becd2493d0a", - "panelRefName": "panel_0", - "version": "7.5.2" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "d11727cf-8d05-45ae-9ae0-2f3b79ab7eda", - "w": 24, - "x": 0, - "y": 0 - }, - "panelIndex": "d11727cf-8d05-45ae-9ae0-2f3b79ab7eda", - "panelRefName": "panel_1", - "version": "7.5.2" - } - ], - "timeRestore": false, - "title": "[Metricbeat Stan] Channel Overview Metrics", - "version": 1 - }, - "id": "b6a60340-4371-11ea-b0c6-cb14c0977bd1", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "46a07ac0-436d-11ea-b0c6-cb14c0977bd1", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "0e412fe0-4371-11ea-b0c6-cb14c0977bd1", - "name": "panel_1", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-01-30T15:03:46.292Z", - "version": "WzI0MTMsMV0=" - }, - { - "attributes": { - "description": "Number of messages in each channel / subject", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Channel Messages [Metricbeat Stan]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "STAN Queue Messages", - "line_width": 1, - "metrics": [ - { - "field": "stan.channels.messages", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "stan.channels.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Channel Messages [Metricbeat Stan]", - "type": "metrics" - } - }, - "id": "46a07ac0-436d-11ea-b0c6-cb14c0977bd1", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-30T15:01:38.606Z", - "version": "WzI0MDcsMV0=" - }, - { - "attributes": { - "description": "Queue depth of STAN channels, summed per channel", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Channel Queue Depth [Metricbeat Stan]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Queue Depth", - "line_width": 1, - "metrics": [ - { - "field": "stan.channels.depth", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "max" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "terms", - "stacked": "none", - "terms_field": "stan.channels.name", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Channel Queue Depth [Metricbeat Stan]", - "type": "metrics" - } - }, - "id": "0e412fe0-4371-11ea-b0c6-cb14c0977bd1", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-01-30T15:02:01.289Z", - "version": "WzI0MDgsMV0=" - } - ], - "version": "7.5.2" -} diff --git a/x-pack/metricbeat/module/stan/_meta/kibana/7/dashboard/Metricbeat-STAN-overview.ndjson b/x-pack/metricbeat/module/stan/_meta/kibana/7/dashboard/Metricbeat-STAN-overview.ndjson new file mode 100644 index 00000000000..6baeaf36367 --- /dev/null +++ b/x-pack/metricbeat/module/stan/_meta/kibana/7/dashboard/Metricbeat-STAN-overview.ndjson @@ -0,0 +1,3 @@ +{"attributes":{"description":"Number of messages in each channel / subject","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Channel Messages [Metricbeat Stan]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"STAN Queue Messages\",\"line_width\":1,\"metrics\":[{\"field\":\"stan.channels.messages\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"stan.channels.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Channel Messages [Metricbeat Stan]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"46a07ac0-436d-11ea-b0c6-cb14c0977bd1","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:21.442Z","version":"WzMyODMsMV0="} +{"attributes":{"description":"Queue depth of STAN channels, summed per channel","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Channel Queue Depth [Metricbeat Stan]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Queue Depth\",\"line_width\":1,\"metrics\":[{\"field\":\"stan.channels.depth\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"stan.channels.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Channel Queue Depth [Metricbeat Stan]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0e412fe0-4371-11ea-b0c6-cb14c0977bd1","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:21.442Z","version":"WzMyODQsMV0="} +{"attributes":{"description":"Metrics for STAN channels / subjects","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.5.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"98c9a793-903a-47af-900b-8becd2493d0a\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"98c9a793-903a-47af-900b-8becd2493d0a\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_98c9a793-903a-47af-900b-8becd2493d0a\"},{\"version\":\"7.5.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"d11727cf-8d05-45ae-9ae0-2f3b79ab7eda\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"d11727cf-8d05-45ae-9ae0-2f3b79ab7eda\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_d11727cf-8d05-45ae-9ae0-2f3b79ab7eda\"}]","timeRestore":false,"title":"[Metricbeat Stan] Channel Overview Metrics","version":1},"coreMigrationVersion":"8.0.0","id":"b6a60340-4371-11ea-b0c6-cb14c0977bd1","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"46a07ac0-436d-11ea-b0c6-cb14c0977bd1","name":"98c9a793-903a-47af-900b-8becd2493d0a:panel_98c9a793-903a-47af-900b-8becd2493d0a","type":"visualization"},{"id":"0e412fe0-4371-11ea-b0c6-cb14c0977bd1","name":"d11727cf-8d05-45ae-9ae0-2f3b79ab7eda:panel_d11727cf-8d05-45ae-9ae0-2f3b79ab7eda","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:21.442Z","version":"WzMyODIsMV0="} diff --git a/x-pack/metricbeat/module/stan/module.yml b/x-pack/metricbeat/module/stan/module.yml index a297032b0f5..a5a4aeea383 100644 --- a/x-pack/metricbeat/module/stan/module.yml +++ b/x-pack/metricbeat/module/stan/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Metricbeat-STAN-Dashboard - file: Metricbeat-STAN-overview.json + file: Metricbeat-STAN-overview.ndjson diff --git a/x-pack/metricbeat/module/tomcat/_meta/kibana/7/dashboard/Metricbeat-Tomcat-overview.json b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/dashboard/Metricbeat-Tomcat-overview.json deleted file mode 100644 index 1f339e44ee6..00000000000 --- a/x-pack/metricbeat/module/tomcat/_meta/kibana/7/dashboard/Metricbeat-Tomcat-overview.json +++ /dev/null @@ -1,1026 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "An overview dashboards of all key metrics included in the Tomcat Metricbeat module", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "1", - "w": 18, - "x": 16, - "y": 18 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "Other Memory usage", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "2", - "w": 25, - "x": 0, - "y": 0 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "Heap memory usage", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "3", - "w": 16, - "x": 0, - "y": 18 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "Total Threads", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "5", - "w": 14, - "x": 34, - "y": 18 - }, - "panelIndex": "5", - "panelRefName": "panel_3", - "title": "Cache Size", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "6", - "w": 23, - "x": 25, - "y": 0 - }, - "panelIndex": "6", - "panelRefName": "panel_4", - "title": "Total requests", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "7", - "w": 16, - "x": 0, - "y": 9 - }, - "panelIndex": "7", - "panelRefName": "panel_5", - "title": "Bytes sent/received", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "8", - "w": 18, - "x": 16, - "y": 9 - }, - "panelIndex": "8", - "panelRefName": "panel_6", - "title": "Processing time ms", - "version": "8.0.0-SNAPSHOT" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 9, - "i": "9", - "w": 14, - "x": 34, - "y": 9 - }, - "panelIndex": "9", - "panelRefName": "panel_7", - "title": "Cache Hit Total", - "version": "8.0.0-SNAPSHOT" - } - ], - "timeRestore": false, - "title": "[Metricbeat Tomcat] Overview", - "version": 1 - }, - "id": "b7675d90-ec34-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "618130c0-ec31-11e9-a4bb-7b5324058fcc", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "e037f620-ec30-11e9-a4bb-7b5324058fcc", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "17ec8fd0-ec32-11e9-a4bb-7b5324058fcc", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "b3e833d0-ec32-11e9-a4bb-7b5324058fcc", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "9d0616e0-ec33-11e9-a4bb-7b5324058fcc", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "7bcc3ae0-ec33-11e9-a4bb-7b5324058fcc", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "9343a810-ec34-11e9-a4bb-7b5324058fcc", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "38f55440-ec33-11e9-a4bb-7b5324058fcc", - "name": "panel_7", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-02-06T17:15:24.232Z", - "version": "WzEzMDUsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Other Memory usage [Metricbeat Tomcat]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "legend_position": "right", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(159,5,0,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Used", - "line_width": 1, - "metrics": [ - { - "field": "tomcat.memory.other.usage.used", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value/1024}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "f34791d0-ec30-11e9-a38d-abb22848ef7c", - "label": "Committed", - "line_width": 1, - "metrics": [ - { - "field": "tomcat.memory.other.usage.committed", - "id": "f34791d1-ec30-11e9-a38d-abb22848ef7c", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value/1024}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": 0.5, - "formatter": "bytes", - "hidden": false, - "id": "2acecf60-ec31-11e9-a38d-abb22848ef7c", - "label": "Init", - "line_width": 1, - "metrics": [ - { - "field": "tomcat.memory.other.usage.init", - "id": "2acecf61-ec31-11e9-a38d-abb22848ef7c", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value/1024}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(226,115,0,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "36d48200-ec31-11e9-a38d-abb22848ef7c", - "label": "Max", - "line_width": 1, - "metrics": [ - { - "field": "tomcat.memory.other.usage.max", - "id": "36d48201-ec31-11e9-a38d-abb22848ef7c", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value/1024}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Other Memory usage [Metricbeat Tomcat]", - "type": "metrics" - } - }, - "id": "618130c0-ec31-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-06T17:15:24.232Z", - "version": "WzEzMDYsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Heap memory usage [Metricbeat Tomcat]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(159,5,0,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "9057a880-ec30-11e9-a38d-abb22848ef7c", - "label": "Used", - "line_width": 1, - "metrics": [ - { - "field": "tomcat.memory.heap.usage.used", - "id": "9057a881-ec30-11e9-a38d-abb22848ef7c", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value/1024}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Committed", - "line_width": 1, - "metrics": [ - { - "field": "tomcat.memory.heap.usage.committed", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value/1024}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "78d8a4c0-ec30-11e9-a38d-abb22848ef7c", - "label": "Init", - "line_width": 1, - "metrics": [ - { - "field": "tomcat.memory.heap.usage.init", - "id": "78d8cbd0-ec30-11e9-a38d-abb22848ef7c", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value/1024}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(254,146,0,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "855cd630-ec30-11e9-a38d-abb22848ef7c", - "label": "Max", - "line_width": 1, - "metrics": [ - { - "field": "tomcat.memory.heap.usage.max", - "id": "855cd631-ec30-11e9-a38d-abb22848ef7c", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value/1024}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Heap memory usage [Metricbeat Tomcat]", - "type": "metrics" - } - }, - "id": "e037f620-ec30-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-06T17:15:24.232Z", - "version": "WzEzMDcsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Total Threads [Metricbeat Tomcat]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "hide_in_legend": 0, - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Total", - "line_width": 1, - "metrics": [ - { - "field": "tomcat.threading.total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "steps": 0, - "terms_field": "tomcat.threading.mbean" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": 0.5, - "formatter": "number", - "id": "2e15eea0-ec32-11e9-a38d-abb22848ef7c", - "label": "Peak", - "line_width": 1, - "metrics": [ - { - "field": "tomcat.threading.peak", - "id": "2e15eea1-ec32-11e9-a38d-abb22848ef7c", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Total Threads [Metricbeat Tomcat]", - "type": "metrics" - } - }, - "id": "17ec8fd0-ec32-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-06T17:15:24.232Z", - "version": "WzEzMDgsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Cache Size [Metricbeat Tomcat]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "bytes", - "id": "814df2c0-ec32-11e9-a38d-abb22848ef7c", - "label": "Total", - "line_width": 1, - "metrics": [ - { - "field": "tomcat.cache.size.total.kb", - "id": "814df2c1-ec32-11e9-a38d-abb22848ef7c", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value/1024}}" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(254,146,0,1)", - "fill": 0.5, - "formatter": "bytes", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Max", - "line_width": 1, - "metrics": [ - { - "field": "tomcat.cache.size.max.kb", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "value_template": "{{value/1024}}" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Cache Size [Metricbeat Tomcat]", - "type": "metrics" - } - }, - "id": "b3e833d0-ec32-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-06T17:15:24.232Z", - "version": "WzEzMDksNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Total requests [Metricbeat Tomcat]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "hidden": false, - "id": "a2ae7420-ec33-11e9-a38d-abb22848ef7c", - "label": "Total", - "line_width": 1, - "metrics": [ - { - "field": "tomcat.requests.total", - "id": "a2ae7421-ec33-11e9-a38d-abb22848ef7c", - "mode": "raw", - "sigma": "1", - "type": "avg" - }, - { - "field": "a2ae7421-ec33-11e9-a38d-abb22848ef7c", - "id": "40d82510-ee8c-11e9-a452-e36b1c5ca82b", - "type": "derivative", - "unit": "" - }, - { - "field": "40d82510-ee8c-11e9-a452-e36b1c5ca82b", - "id": "a3934920-ee94-11e9-a452-e36b1c5ca82b", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(244,78,59,1)", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Errors", - "line_width": 1, - "metrics": [ - { - "field": "tomcat.requests.errors.total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "be872850-ee94-11e9-a452-e36b1c5ca82b", - "type": "derivative", - "unit": "" - }, - { - "field": "be872850-ee94-11e9-a452-e36b1c5ca82b", - "id": "c2290730-ee94-11e9-a452-e36b1c5ca82b", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Total requests [Metricbeat Tomcat]", - "type": "metrics" - } - }, - "id": "9d0616e0-ec33-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-06T17:46:49.245Z", - "version": "WzE4MzAsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Bytes sent/received [Metricbeat Tomcat]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "legend_position": "bottom", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Received", - "line_width": 1, - "metrics": [ - { - "field": "tomcat.requests.bytes.sent", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "a0d8b6a0-ee8c-11e9-a452-e36b1c5ca82b", - "type": "derivative", - "unit": "" - }, - { - "field": "a0d8b6a0-ee8c-11e9-a452-e36b1c5ca82b", - "id": "e3099fa0-ee94-11e9-a452-e36b1c5ca82b", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(115,216,255,1)", - "fill": 0.5, - "formatter": "number", - "id": "5310fbe0-ec33-11e9-a38d-abb22848ef7c", - "label": "Sent", - "line_width": 1, - "metrics": [ - { - "field": "tomcat.requests.bytes.received", - "id": "5310fbe1-ec33-11e9-a38d-abb22848ef7c", - "type": "avg" - }, - { - "field": "5310fbe1-ec33-11e9-a38d-abb22848ef7c", - "id": "bbfe0610-ee8c-11e9-a452-e36b1c5ca82b", - "type": "derivative", - "unit": "" - }, - { - "field": "bbfe0610-ee8c-11e9-a452-e36b1c5ca82b", - "id": "e6da0890-ee94-11e9-a452-e36b1c5ca82b", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "type": "timeseries" - }, - "title": "Bytes sent/received [Metricbeat Tomcat]", - "type": "metrics" - } - }, - "id": "7bcc3ae0-ec33-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-06T17:46:17.902Z", - "version": "WzE4MjEsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Processing time ms [Metricbeat Tomcat]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "ms,ms,3", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "field": "tomcat.requests.processing.ms", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - }, - { - "field": "61ca57f2-469d-11e7-af02-69e470af7417", - "id": "cbb9e2e0-ee8c-11e9-a452-e36b1c5ca82b", - "type": "derivative", - "unit": "" - }, - { - "field": "cbb9e2e0-ee8c-11e9-a452-e36b1c5ca82b", - "id": "d0327910-ee94-11e9-a452-e36b1c5ca82b", - "type": "positive_only", - "unit": "" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 0, - "time_field": "", - "type": "timeseries" - }, - "title": "Processing time ms [Metricbeat Tomcat]", - "type": "metrics" - } - }, - "id": "9343a810-ec34-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-06T17:45:36.872Z", - "version": "WzE4MTQsNV0=" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Cache Hit Total [Metricbeat Tomcat]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "metricbeat-*", - "default_timefield": "@timestamp", - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "metricbeat-*", - "interval": "", - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Total", - "line_width": 1, - "metrics": [ - { - "field": "tomcat.cache.hit.total", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "avg" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 0, - "time_field": "", - "type": "timeseries" - }, - "title": "Cache Hit Total [Metricbeat Tomcat]", - "type": "metrics" - } - }, - "id": "38f55440-ec33-11e9-a4bb-7b5324058fcc", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-02-06T17:15:24.232Z", - "version": "WzEzMTMsNV0=" - } - ], - "version": "8.0.0-SNAPSHOT" -} diff --git a/x-pack/metricbeat/module/tomcat/_meta/kibana/7/dashboard/Metricbeat-Tomcat-overview.ndjson b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/dashboard/Metricbeat-Tomcat-overview.ndjson new file mode 100644 index 00000000000..83b21c6d091 --- /dev/null +++ b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/dashboard/Metricbeat-Tomcat-overview.ndjson @@ -0,0 +1,9 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Other Memory usage [Metricbeat Tomcat]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"legend_position\":\"right\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(159,5,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Used\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.memory.other.usage.used\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"f34791d0-ec30-11e9-a38d-abb22848ef7c\",\"label\":\"Committed\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.memory.other.usage.committed\",\"id\":\"f34791d1-ec30-11e9-a38d-abb22848ef7c\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"2acecf60-ec31-11e9-a38d-abb22848ef7c\",\"label\":\"Init\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.memory.other.usage.init\",\"id\":\"2acecf61-ec31-11e9-a38d-abb22848ef7c\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"36d48200-ec31-11e9-a38d-abb22848ef7c\",\"label\":\"Max\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.memory.other.usage.max\",\"id\":\"36d48201-ec31-11e9-a38d-abb22848ef7c\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Other Memory usage [Metricbeat Tomcat]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"618130c0-ec31-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:22.513Z","version":"WzMyODYsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Heap memory usage [Metricbeat Tomcat]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(159,5,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"9057a880-ec30-11e9-a38d-abb22848ef7c\",\"label\":\"Used\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.memory.heap.usage.used\",\"id\":\"9057a881-ec30-11e9-a38d-abb22848ef7c\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Committed\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.memory.heap.usage.committed\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"78d8a4c0-ec30-11e9-a38d-abb22848ef7c\",\"label\":\"Init\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.memory.heap.usage.init\",\"id\":\"78d8cbd0-ec30-11e9-a38d-abb22848ef7c\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"855cd630-ec30-11e9-a38d-abb22848ef7c\",\"label\":\"Max\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.memory.heap.usage.max\",\"id\":\"855cd631-ec30-11e9-a38d-abb22848ef7c\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Heap memory usage [Metricbeat Tomcat]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e037f620-ec30-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:22.513Z","version":"WzMyODcsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total Threads [Metricbeat Tomcat]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.threading.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"tomcat.threading.mbean\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"2e15eea0-ec32-11e9-a38d-abb22848ef7c\",\"label\":\"Peak\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.threading.peak\",\"id\":\"2e15eea1-ec32-11e9-a38d-abb22848ef7c\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Total Threads [Metricbeat Tomcat]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"17ec8fd0-ec32-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:22.513Z","version":"WzMyODgsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cache Size [Metricbeat Tomcat]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"814df2c0-ec32-11e9-a38d-abb22848ef7c\",\"label\":\"Total\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.cache.size.total.kb\",\"id\":\"814df2c1-ec32-11e9-a38d-abb22848ef7c\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Max\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.cache.size.max.kb\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Cache Size [Metricbeat Tomcat]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b3e833d0-ec32-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:22.513Z","version":"WzMyODksMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total requests [Metricbeat Tomcat]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"a2ae7420-ec33-11e9-a38d-abb22848ef7c\",\"label\":\"Total\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.requests.total\",\"id\":\"a2ae7421-ec33-11e9-a38d-abb22848ef7c\",\"mode\":\"raw\",\"sigma\":\"1\",\"type\":\"avg\"},{\"field\":\"a2ae7421-ec33-11e9-a38d-abb22848ef7c\",\"id\":\"40d82510-ee8c-11e9-a452-e36b1c5ca82b\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"40d82510-ee8c-11e9-a452-e36b1c5ca82b\",\"id\":\"a3934920-ee94-11e9-a452-e36b1c5ca82b\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Errors\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.requests.errors.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"be872850-ee94-11e9-a452-e36b1c5ca82b\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"be872850-ee94-11e9-a452-e36b1c5ca82b\",\"id\":\"c2290730-ee94-11e9-a452-e36b1c5ca82b\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Total requests [Metricbeat Tomcat]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9d0616e0-ec33-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:22.513Z","version":"WzMyOTAsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Bytes sent/received [Metricbeat Tomcat]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Received\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.requests.bytes.sent\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"a0d8b6a0-ee8c-11e9-a452-e36b1c5ca82b\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"a0d8b6a0-ee8c-11e9-a452-e36b1c5ca82b\",\"id\":\"e3099fa0-ee94-11e9-a452-e36b1c5ca82b\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"5310fbe0-ec33-11e9-a38d-abb22848ef7c\",\"label\":\"Sent\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.requests.bytes.received\",\"id\":\"5310fbe1-ec33-11e9-a38d-abb22848ef7c\",\"type\":\"avg\"},{\"field\":\"5310fbe1-ec33-11e9-a38d-abb22848ef7c\",\"id\":\"bbfe0610-ee8c-11e9-a452-e36b1c5ca82b\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"bbfe0610-ee8c-11e9-a452-e36b1c5ca82b\",\"id\":\"e6da0890-ee94-11e9-a452-e36b1c5ca82b\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Bytes sent/received [Metricbeat Tomcat]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7bcc3ae0-ec33-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:22.513Z","version":"WzMyOTEsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Processing time ms [Metricbeat Tomcat]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"ms,ms,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.requests.processing.ms\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"cbb9e2e0-ee8c-11e9-a452-e36b1c5ca82b\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"cbb9e2e0-ee8c-11e9-a452-e36b1c5ca82b\",\"id\":\"d0327910-ee94-11e9-a452-e36b1c5ca82b\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Processing time ms [Metricbeat Tomcat]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9343a810-ec34-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:22.513Z","version":"WzMyOTIsMV0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cache Hit Total [Metricbeat Tomcat]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.cache.hit.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Cache Hit Total [Metricbeat Tomcat]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"38f55440-ec33-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:22.513Z","version":"WzMyOTMsMV0="} +{"attributes":{"description":"An overview dashboards of all key metrics included in the Tomcat Metricbeat module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1\",\"w\":18,\"x\":16,\"y\":18},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Other Memory usage\",\"panelRefName\":\"panel_1\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"2\",\"w\":25,\"x\":0,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Heap memory usage\",\"panelRefName\":\"panel_2\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"3\",\"w\":16,\"x\":0,\"y\":18},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Threads\",\"panelRefName\":\"panel_3\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"5\",\"w\":14,\"x\":34,\"y\":18},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cache Size\",\"panelRefName\":\"panel_5\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"6\",\"w\":23,\"x\":25,\"y\":0},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total requests\",\"panelRefName\":\"panel_6\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"7\",\"w\":16,\"x\":0,\"y\":9},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes sent/received\",\"panelRefName\":\"panel_7\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"8\",\"w\":18,\"x\":16,\"y\":9},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Processing time ms\",\"panelRefName\":\"panel_8\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"9\",\"w\":14,\"x\":34,\"y\":9},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cache Hit Total\",\"panelRefName\":\"panel_9\"}]","timeRestore":false,"title":"[Metricbeat Tomcat] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"b7675d90-ec34-11e9-a4bb-7b5324058fcc","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"618130c0-ec31-11e9-a4bb-7b5324058fcc","name":"1:panel_1","type":"visualization"},{"id":"e037f620-ec30-11e9-a4bb-7b5324058fcc","name":"2:panel_2","type":"visualization"},{"id":"17ec8fd0-ec32-11e9-a4bb-7b5324058fcc","name":"3:panel_3","type":"visualization"},{"id":"b3e833d0-ec32-11e9-a4bb-7b5324058fcc","name":"5:panel_5","type":"visualization"},{"id":"9d0616e0-ec33-11e9-a4bb-7b5324058fcc","name":"6:panel_6","type":"visualization"},{"id":"7bcc3ae0-ec33-11e9-a4bb-7b5324058fcc","name":"7:panel_7","type":"visualization"},{"id":"9343a810-ec34-11e9-a4bb-7b5324058fcc","name":"8:panel_8","type":"visualization"},{"id":"38f55440-ec33-11e9-a4bb-7b5324058fcc","name":"9:panel_9","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:22.513Z","version":"WzMyODUsMV0="} diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/dashboard/Powershell-Overview-Dashboard.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/dashboard/Powershell-Overview-Dashboard.json deleted file mode 100644 index 7c784c58966..00000000000 --- a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/dashboard/Powershell-Overview-Dashboard.json +++ /dev/null @@ -1,2368 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Overview dashboard por powershell module.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "fa41e799-b6b3-49ec-a11c-3f20231a4a79", - "w": 13, - "x": 0, - "y": 0 - }, - "panelIndex": "fa41e799-b6b3-49ec-a11c-3f20231a4a79", - "panelRefName": "panel_0", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 6, - "i": "65ce6b63-6ce0-4094-ab23-189126fc169f", - "w": 7, - "x": 13, - "y": 0 - }, - "panelIndex": "65ce6b63-6ce0-4094-ab23-189126fc169f", - "panelRefName": "panel_1", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 6, - "i": "314e6f55-a05a-4ae3-ab76-bcae7f2074ab", - "w": 8, - "x": 20, - "y": 0 - }, - "panelIndex": "314e6f55-a05a-4ae3-ab76-bcae7f2074ab", - "panelRefName": "panel_2", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 6, - "i": "a1f161f6-1abe-4177-9ede-4d1984f5a963", - "w": 7, - "x": 28, - "y": 0 - }, - "panelIndex": "a1f161f6-1abe-4177-9ede-4d1984f5a963", - "panelRefName": "panel_3", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 6, - "i": "6b7ed122-22f3-4e9d-89eb-8de92c0d2033", - "w": 4, - "x": 35, - "y": 0 - }, - "panelIndex": "6b7ed122-22f3-4e9d-89eb-8de92c0d2033", - "panelRefName": "panel_4", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 6, - "i": "d536f6a7-ad28-4a32-9319-9e0b983828bf", - "w": 4, - "x": 39, - "y": 0 - }, - "panelIndex": "d536f6a7-ad28-4a32-9319-9e0b983828bf", - "panelRefName": "panel_5", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 6, - "i": "eda6d08f-b45e-448a-bf9f-afa5516d4b4b", - "w": 4, - "x": 43, - "y": 0 - }, - "panelIndex": "eda6d08f-b45e-448a-bf9f-afa5516d4b4b", - "panelRefName": "panel_6", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 10, - "i": "56d2dd76-6fec-422b-96e9-22791b0c5f0c", - "w": 10, - "x": 13, - "y": 6 - }, - "panelIndex": "56d2dd76-6fec-422b-96e9-22791b0c5f0c", - "panelRefName": "panel_7", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "3e4a9683-fd6a-4ad7-b05f-c71bcb4d92d5", - "w": 12, - "x": 23, - "y": 6 - }, - "panelIndex": "3e4a9683-fd6a-4ad7-b05f-c71bcb4d92d5", - "panelRefName": "panel_8", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "a8c00572-667b-4e39-8b0c-10be56fbadd5", - "w": 12, - "x": 35, - "y": 6 - }, - "panelIndex": "a8c00572-667b-4e39-8b0c-10be56fbadd5", - "panelRefName": "panel_9", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 8, - "i": "e8a57cba-14d2-4cd9-a727-f5e30165f6ba", - "w": 13, - "x": 0, - "y": 8 - }, - "panelIndex": "e8a57cba-14d2-4cd9-a727-f5e30165f6ba", - "panelRefName": "panel_10", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "8ae39cfa-cb06-45eb-880e-b749c3355d61", - "w": 12, - "x": 23, - "y": 13 - }, - "panelIndex": "8ae39cfa-cb06-45eb-880e-b749c3355d61", - "panelRefName": "panel_11", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "ef92d192-b56d-476c-b640-e226679ed178", - "w": 12, - "x": 35, - "y": 13 - }, - "panelIndex": "ef92d192-b56d-476c-b640-e226679ed178", - "panelRefName": "panel_12", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "b15dcac5-3616-4b41-8abb-cb28398b16f4", - "w": 13, - "x": 0, - "y": 16 - }, - "panelIndex": "b15dcac5-3616-4b41-8abb-cb28398b16f4", - "panelRefName": "panel_13", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 11, - "i": "23af61c8-6a45-4d7d-9905-8ed265328130", - "w": 10, - "x": 13, - "y": 16 - }, - "panelIndex": "23af61c8-6a45-4d7d-9905-8ed265328130", - "panelRefName": "panel_14", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "390068ed-b7fb-4ec1-87d5-e89f7cc82e04", - "w": 12, - "x": 23, - "y": 20 - }, - "panelIndex": "390068ed-b7fb-4ec1-87d5-e89f7cc82e04", - "panelRefName": "panel_15", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 7, - "i": "45724dca-fea2-4f3b-af79-cf89bb12a31b", - "w": 12, - "x": 35, - "y": 20 - }, - "panelIndex": "45724dca-fea2-4f3b-af79-cf89bb12a31b", - "panelRefName": "panel_16", - "version": "7.6.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 14, - "i": "7f0c4a51-d972-42a5-ba0a-d3de814c7440", - "w": 47, - "x": 0, - "y": 27 - }, - "panelIndex": "7f0c4a51-d972-42a5-ba0a-d3de814c7440", - "panelRefName": "panel_17", - "version": "7.6.0" - } - ], - "timeRestore": false, - "title": "[Winlogbeat powershell] Overview", - "version": 1 - }, - "id": "c77e06c0-9e7c-11ea-af6f-cfdb1ee1d6c8", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "9ec52c30-9e91-11ea-af6f-cfdb1ee1d6c8", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "52543ef0-9e95-11ea-af6f-cfdb1ee1d6c8", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "7f3e7710-9e94-11ea-af6f-cfdb1ee1d6c8", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "78874900-9f30-11ea-bef1-95118e62a7c1", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "e64ff750-9f28-11ea-bef1-95118e62a7c1", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "2dbabdf0-9f29-11ea-bef1-95118e62a7c1", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "92a2a6b0-9f29-11ea-bef1-95118e62a7c1", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "e20b3940-9e9a-11ea-af6f-cfdb1ee1d6c8", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "1eeaaf70-9f23-11ea-bef1-95118e62a7c1", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "f9fa55f0-9f34-11ea-bef1-95118e62a7c1", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "3e55daa0-9e8e-11ea-af6f-cfdb1ee1d6c8", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "d27dea70-9f32-11ea-bef1-95118e62a7c1", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "fbb025e0-9e7c-11ea-af6f-cfdb1ee1d6c8", - "name": "panel_12", - "type": "visualization" - }, - { - "id": "7adbce50-9e96-11ea-af6f-cfdb1ee1d6c8", - "name": "panel_13", - "type": "visualization" - }, - { - "id": "70751050-9f33-11ea-bef1-95118e62a7c1", - "name": "panel_14", - "type": "visualization" - }, - { - "id": "b0c5d570-9e7c-11ea-af6f-cfdb1ee1d6c8", - "name": "panel_15", - "type": "visualization" - }, - { - "id": "c0945210-9e8b-11ea-af6f-cfdb1ee1d6c8", - "name": "panel_16", - "type": "visualization" - }, - { - "id": "11a61760-9f27-11ea-bef1-95118e62a7c1", - "name": "panel_17", - "type": "search" - } - ], - "type": "dashboard", - "updated_at": "2020-05-26T12:55:23.284Z", - "version": "WzczLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " - } - } - }, - "title": "Connected users [Winlogbeat powershell]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "User", - "field": "powershell.connected_user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "4", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Host count", - "field": "host.name" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "", - "origin": "http://192.168.1.48:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "User", - "params": {} - } - ], - "metrics": [ - { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "label": "Count", - "params": {} - }, - { - "accessor": 2, - "aggType": "cardinality", - "format": { - "id": "number" - }, - "label": "Unique count of host.name", - "params": {} - } - ] - }, - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Connected users [Winlogbeat powershell]", - "type": "table" - } - }, - "id": "9ec52c30-9e91-11ea-af6f-cfdb1ee1d6c8", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-26T12:55:23.284Z", - "version": "Wzc0LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " - } - } - }, - "title": "Total engine started [Winlogbeat powershell]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "filters": [ - { - "input": { - "language": "kuery", - "query": "event.code: 400" - }, - "label": "" - } - ] - }, - "schema": "group", - "type": "filters" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "bucket": { - "accessor": 0, - "format": { - "id": "string", - "params": {} - }, - "type": "vis_dimension" - }, - "metrics": [ - { - "accessor": 1, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 32, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Total engine started [Winlogbeat powershell]", - "type": "metric" - } - }, - "id": "52543ef0-9e95-11ea-af6f-cfdb1ee1d6c8", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-26T12:55:23.284Z", - "version": "Wzc1LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " - } - } - }, - "title": "Total commands [Winlogbeat powershell]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "filters": [ - { - "input": { - "language": "kuery", - "query": "powershell.command.name: * " - }, - "label": "Commands" - } - ] - }, - "schema": "group", - "type": "filters" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "bucket": { - "accessor": 0, - "format": { - "id": "string", - "params": {} - }, - "type": "vis_dimension" - }, - "metrics": [ - { - "accessor": 1, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 32, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Total commands [Winlogbeat powershell]", - "type": "metric" - } - }, - "id": "7f3e7710-9e94-11ea-af6f-cfdb1ee1d6c8", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-26T12:55:23.284Z", - "version": "Wzc2LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " - } - } - }, - "title": "Total remote commands [Winlogbeat powershell]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "filters": [ - { - "input": { - "language": "kuery", - "query": "process.title:\"ServerRemoteHost\" " - }, - "label": "Remote commands" - } - ] - }, - "schema": "group", - "type": "filters" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "bucket": { - "accessor": 0, - "format": { - "id": "string", - "params": {} - }, - "type": "vis_dimension" - }, - "metrics": [ - { - "accessor": 1, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 32, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Total remote commands [Winlogbeat powershell]", - "type": "metric" - } - }, - "id": "78874900-9f30-11ea-bef1-95118e62a7c1", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-26T12:55:23.284Z", - "version": "Wzc3LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " - } - } - }, - "title": "Unique users [Winlogbeat powershell]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Unique users", - "field": "related.user" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 32, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Unique users [Winlogbeat powershell]", - "type": "metric" - } - }, - "id": "e64ff750-9f28-11ea-bef1-95118e62a7c1", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-26T12:55:23.284Z", - "version": "Wzc4LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " - } - } - }, - "title": "Unique engine versions [Winlogbeat powershell]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Unique versions", - "field": "powershell.engine.version" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 32, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Unique engine versions [Winlogbeat powershell]", - "type": "metric" - } - }, - "id": "2dbabdf0-9f29-11ea-bef1-95118e62a7c1", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-26T12:55:23.284Z", - "version": "Wzc5LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " - } - } - }, - "title": "Unique hosts [Winlogbeat powershell]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Unique hosts", - "field": "host.name" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 32, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Unique hosts [Winlogbeat powershell]", - "type": "metric" - } - }, - "id": "92a2a6b0-9f29-11ea-bef1-95118e62a7c1", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-26T12:55:23.284Z", - "version": "WzgwLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " - } - } - }, - "title": "Engine versions ran by host [Winlogbeat powershell]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Host", - "field": "host.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "3", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Version count", - "field": "powershell.engine.version" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "", - "origin": "http://192.168.1.48:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "Host", - "params": {} - } - ], - "metrics": [ - { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "label": "Count", - "params": {} - }, - { - "accessor": 2, - "aggType": "cardinality", - "format": { - "id": "number" - }, - "label": "Version count", - "params": {} - } - ] - }, - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Engine versions ran by host [Winlogbeat powershell]", - "type": "table" - } - }, - "id": "e20b3940-9e9a-11ea-af6f-cfdb1ee1d6c8", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-26T12:55:23.284Z", - "version": "WzgxLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " - } - } - }, - "title": "Engine versions [Winlogbeat powershell]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Engine version", - "field": "powershell.engine.version", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "metric": { - "accessor": 0, - "aggType": "count", - "format": { - "id": "number" - }, - "label": "Count", - "params": {} - } - }, - "isDonut": false, - "labels": { - "last_level": false, - "show": false, - "truncate": 100, - "values": false - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Engine versions [Winlogbeat powershell]", - "type": "pie" - } - }, - "id": "1eeaaf70-9f23-11ea-bef1-95118e62a7c1", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-26T12:55:23.284Z", - "version": "WzgyLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " - } - } - }, - "title": "Host processes [Winlogbeat powershell]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "process.title", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "", - "origin": "http://192.168.1.48:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "process.title: Descending", - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "label": "Count", - "params": {} - } - }, - "isDonut": false, - "labels": { - "last_level": false, - "show": false, - "truncate": 100, - "values": false - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Host processes [Winlogbeat powershell]", - "type": "pie" - } - }, - "id": "f9fa55f0-9f34-11ea-bef1-95118e62a7c1", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-26T12:55:23.284Z", - "version": "WzgzLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " - } - } - }, - "title": "Users [Winlogbeat powershell]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "User", - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Host count", - "field": "host.name" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "", - "origin": "http://192.168.1.48:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "User", - "params": {} - } - ], - "metrics": [ - { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "label": "Count", - "params": {} - }, - { - "accessor": 2, - "aggType": "cardinality", - "format": { - "id": "number" - }, - "label": "Unique count of host.name", - "params": {} - } - ] - }, - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users [Winlogbeat powershell]", - "type": "table" - } - }, - "id": "3e55daa0-9e8e-11ea-af6f-cfdb1ee1d6c8", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-26T12:55:23.284Z", - "version": "Wzg0LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " - } - } - }, - "title": "Event type [Winlogbeat powershell]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Event type", - "field": "event.code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "", - "origin": "http://192.168.1.48:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "event.code: Descending", - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "label": "Count", - "params": {} - } - }, - "isDonut": false, - "labels": { - "last_level": false, - "show": false, - "truncate": 100, - "values": false - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Event type [Winlogbeat powershell]", - "type": "pie" - } - }, - "id": "d27dea70-9f32-11ea-bef1-95118e62a7c1", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-26T12:55:23.284Z", - "version": "Wzg1LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " - } - } - }, - "title": "Event Levels [Winlogbeat powershell]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "log.level", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "", - "origin": "http://192.168.1.48:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "log.level: Descending", - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "label": "Count", - "params": {} - } - }, - "isDonut": false, - "labels": { - "last_level": false, - "show": false, - "truncate": 100, - "values": false - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Event Levels [Winlogbeat powershell]", - "type": "pie" - } - }, - "id": "fbb025e0-9e7c-11ea-af6f-cfdb1ee1d6c8", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-26T12:55:23.284Z", - "version": "Wzg2LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " - } - } - }, - "title": "Engine and Command started[Winlogbeat powershell]", - "uiStateJSON": { - "vis": { - "colors": { - "*": "#EAB839", - "Engine stopped": "#BF1B00" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "now-1d", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "4", - "params": { - "filters": [ - { - "input": { - "language": "kuery", - "query": "event.code: \"400\" " - }, - "label": "Engine started" - }, - { - "input": { - "language": "kuery", - "query": "event.code: \"4105\" " - }, - "label": "Command started" - } - ] - }, - "schema": "group", - "type": "filters" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "dimensions": { - "series": [ - { - "accessor": 1, - "aggType": "filters", - "format": {}, - "label": "filters", - "params": {} - } - ], - "x": { - "accessor": 0, - "aggType": "date_histogram", - "format": { - "id": "date", - "params": { - "pattern": "HH:mm" - } - }, - "label": "@timestamp per 30 minutes", - "params": { - "bounds": { - "max": "2020-05-26T09:14:29.996Z", - "min": "2020-05-25T09:14:29.996Z" - }, - "date": true, - "format": "HH:mm", - "interval": "PT30M", - "intervalESUnit": "m", - "intervalESValue": 30 - } - }, - "y": [ - { - "accessor": 2, - "aggType": "count", - "format": { - "id": "number" - }, - "label": "Count", - "params": {} - } - ] - }, - "grid": { - "categoryLines": false - }, - "labels": {}, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "linear", - "lineWidth": 2, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": true, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "defaultYExtents": false, - "mode": "normal", - "setYExtents": false, - "type": "log" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Engine and Command started[Winlogbeat powershell]", - "type": "line" - } - }, - "id": "7adbce50-9e96-11ea-af6f-cfdb1ee1d6c8", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-26T12:55:23.284Z", - "version": "Wzg3LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " - } - } - }, - "title": "Top active hosts [Winlogbeat powershell]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "host.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [], - "metrics": [ - { - "accessor": 0, - "aggType": "count", - "format": { - "id": "number" - }, - "label": "Count", - "params": {} - } - ] - }, - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Top active hosts [Winlogbeat powershell]", - "type": "table" - } - }, - "id": "70751050-9f33-11ea-bef1-95118e62a7c1", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-26T12:55:23.284Z", - "version": "Wzg4LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "powershell.command.invocation_details.type", - "negate": false, - "params": { - "query": "CommandInvocation" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "powershell.command.invocation_details.type": "CommandInvocation" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " - } - } - }, - "title": "Top Invoked Commands [Winlogbeat powershell]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "powershell.command.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "", - "origin": "http://192.168.1.48:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "powershell.command.invocation_details.related_command: Descending", - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "label": "Count", - "params": {} - } - }, - "isDonut": false, - "labels": { - "last_level": false, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Top Invoked Commands [Winlogbeat powershell]", - "type": "pie" - } - }, - "id": "b0c5d570-9e7c-11ea-af6f-cfdb1ee1d6c8", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-26T12:55:23.284Z", - "version": "Wzg5LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " - } - } - }, - "title": "Started providers [Winlogbeat powershell]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "powershell.provider.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "", - "origin": "http://192.168.1.48:5601", - "pathname": "/app/kibana" - } - } - }, - "label": "powershell.provider.name: Descending", - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "label": "Count", - "params": {} - } - }, - "isDonut": false, - "labels": { - "last_level": false, - "show": false, - "truncate": 100, - "values": false - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Started providers [Winlogbeat powershell]", - "type": "pie" - } - }, - "id": "c0945210-9e8b-11ea-af6f-cfdb1ee1d6c8", - "migrationVersion": { - "visualization": "7.4.2" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-05-26T12:55:23.284Z", - "version": "WzkwLDFd" - }, - { - "attributes": { - "columns": [ - "event.code", - "powershell.engine.version", - "powershell.runspace_id", - "process.args", - "powershell.command.invocation_details", - "powershell.file.script_block_text" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "(winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" )" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Details [Winlogbeat powershell]", - "version": 1 - }, - "id": "11a61760-9f27-11ea-bef1-95118e62a7c1", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-05-26T12:55:23.284Z", - "version": "WzkxLDFd" - } - ], - "version": "7.6.0" - } diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/dashboard/Powershell-Overview-Dashboard.ndjson b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/dashboard/Powershell-Overview-Dashboard.ndjson new file mode 100644 index 00000000000..7a3b847de0c --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/dashboard/Powershell-Overview-Dashboard.ndjson @@ -0,0 +1,19 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Connected users [Winlogbeat powershell]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"User\",\"field\":\"powershell.connected_user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"4\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Host count\",\"field\":\"host.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://192.168.1.48:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"User\",\"params\":{}}],\"metrics\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}},{\"accessor\":2,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"label\":\"Unique count of host.name\",\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Connected users [Winlogbeat powershell]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"9ec52c30-9e91-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNTUsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Total engine started [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"event.code: 400\"},\"label\":\"\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"metrics\":[{\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":32,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total engine started [Winlogbeat powershell]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"52543ef0-9e95-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNTYsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Total commands [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"powershell.command.name: * \"},\"label\":\"Commands\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"metrics\":[{\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":32,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total commands [Winlogbeat powershell]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"7f3e7710-9e94-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNTcsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Total remote commands [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"process.title:\\\"ServerRemoteHost\\\" \"},\"label\":\"Remote commands\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"metrics\":[{\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":32,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total remote commands [Winlogbeat powershell]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"78874900-9f30-11ea-bef1-95118e62a7c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNTgsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Unique users [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique users\",\"field\":\"related.user\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":32,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Unique users [Winlogbeat powershell]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"e64ff750-9f28-11ea-bef1-95118e62a7c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNTksMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Unique engine versions [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique versions\",\"field\":\"powershell.engine.version\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":32,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Unique engine versions [Winlogbeat powershell]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"2dbabdf0-9f29-11ea-bef1-95118e62a7c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjAsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Unique hosts [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique hosts\",\"field\":\"host.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":32,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Unique hosts [Winlogbeat powershell]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"92a2a6b0-9f29-11ea-bef1-95118e62a7c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjEsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Engine versions ran by host [Winlogbeat powershell]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Host\",\"field\":\"host.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"3\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Version count\",\"field\":\"powershell.engine.version\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://192.168.1.48:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Host\",\"params\":{}}],\"metrics\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}},{\"accessor\":2,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"label\":\"Version count\",\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Engine versions ran by host [Winlogbeat powershell]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"e20b3940-9e9a-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjIsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Engine versions [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Engine version\",\"field\":\"powershell.engine.version\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":false,\"show\":false,\"truncate\":100,\"values\":false},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Engine versions [Winlogbeat powershell]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"1eeaaf70-9f23-11ea-bef1-95118e62a7c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjMsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Host processes [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"process.title\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://192.168.1.48:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"process.title: Descending\",\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":false,\"show\":false,\"truncate\":100,\"values\":false},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Host processes [Winlogbeat powershell]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"f9fa55f0-9f34-11ea-bef1-95118e62a7c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjQsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Users [Winlogbeat powershell]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"User\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Host count\",\"field\":\"host.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://192.168.1.48:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"User\",\"params\":{}}],\"metrics\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}},{\"accessor\":2,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"label\":\"Unique count of host.name\",\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users [Winlogbeat powershell]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"3e55daa0-9e8e-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjUsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Event type [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Event type\",\"field\":\"event.code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://192.168.1.48:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"event.code: Descending\",\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":false,\"show\":false,\"truncate\":100,\"values\":false},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Event type [Winlogbeat powershell]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"d27dea70-9f32-11ea-bef1-95118e62a7c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjYsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Event Levels [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"log.level\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://192.168.1.48:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"log.level: Descending\",\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":false,\"show\":false,\"truncate\":100,\"values\":false},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Event Levels [Winlogbeat powershell]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"fbb025e0-9e7c-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjcsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Engine and Command started[Winlogbeat powershell]","uiStateJSON":"{\"vis\": {\"colors\": {\"*\": \"#EAB839\", \"Engine stopped\": \"#BF1B00\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-1d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"400\\\" \"},\"label\":\"Engine started\"},{\"input\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4105\\\" \"},\"label\":\"Command started\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"filters\",\"format\":{},\"label\":\"filters\",\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"HH:mm\"}},\"label\":\"@timestamp per 30 minutes\",\"params\":{\"bounds\":{\"max\":\"2020-05-26T09:14:29.996Z\",\"min\":\"2020-05-25T09:14:29.996Z\"},\"date\":true,\"format\":\"HH:mm\",\"interval\":\"PT30M\",\"intervalESUnit\":\"m\",\"intervalESValue\":30}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"log\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Engine and Command started[Winlogbeat powershell]\",\"type\":\"line\"}"},"coreMigrationVersion":"7.14.0","id":"7adbce50-9e96-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjgsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Top active hosts [Winlogbeat powershell]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"host.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[],\"metrics\":[{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top active hosts [Winlogbeat powershell]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"70751050-9f33-11ea-bef1-95118e62a7c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjksMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"powershell.command.invocation_details.type\", \"negate\": false, \"params\": {\"query\": \"CommandInvocation\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"powershell.command.invocation_details.type\": \"CommandInvocation\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Top Invoked Commands [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"powershell.command.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://192.168.1.48:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"powershell.command.invocation_details.related_command: Descending\",\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":false,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top Invoked Commands [Winlogbeat powershell]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"b0c5d570-9e7c-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNzAsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Started providers [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"powershell.provider.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://192.168.1.48:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"powershell.provider.name: Descending\",\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":false,\"show\":false,\"truncate\":100,\"values\":false},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Started providers [Winlogbeat powershell]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"c0945210-9e8b-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNzEsMl0="} +{"attributes":{"columns":["event.code","powershell.engine.version","powershell.runspace_id","process.args","powershell.command.invocation_details","powershell.file.script_block_text"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"(winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" )\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Details [Winlogbeat powershell]","version":1},"coreMigrationVersion":"7.14.0","id":"11a61760-9f27-11ea-bef1-95118e62a7c1","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNzIsMl0="} +{"attributes":{"description":"Overview dashboard por powershell module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"fa41e799-b6b3-49ec-a11c-3f20231a4a79\",\"w\":13,\"x\":0,\"y\":0},\"panelIndex\":\"fa41e799-b6b3-49ec-a11c-3f20231a4a79\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_fa41e799-b6b3-49ec-a11c-3f20231a4a79\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"65ce6b63-6ce0-4094-ab23-189126fc169f\",\"w\":7,\"x\":13,\"y\":0},\"panelIndex\":\"65ce6b63-6ce0-4094-ab23-189126fc169f\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_65ce6b63-6ce0-4094-ab23-189126fc169f\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"314e6f55-a05a-4ae3-ab76-bcae7f2074ab\",\"w\":8,\"x\":20,\"y\":0},\"panelIndex\":\"314e6f55-a05a-4ae3-ab76-bcae7f2074ab\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_314e6f55-a05a-4ae3-ab76-bcae7f2074ab\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"a1f161f6-1abe-4177-9ede-4d1984f5a963\",\"w\":7,\"x\":28,\"y\":0},\"panelIndex\":\"a1f161f6-1abe-4177-9ede-4d1984f5a963\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a1f161f6-1abe-4177-9ede-4d1984f5a963\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"6b7ed122-22f3-4e9d-89eb-8de92c0d2033\",\"w\":4,\"x\":35,\"y\":0},\"panelIndex\":\"6b7ed122-22f3-4e9d-89eb-8de92c0d2033\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6b7ed122-22f3-4e9d-89eb-8de92c0d2033\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"d536f6a7-ad28-4a32-9319-9e0b983828bf\",\"w\":4,\"x\":39,\"y\":0},\"panelIndex\":\"d536f6a7-ad28-4a32-9319-9e0b983828bf\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_d536f6a7-ad28-4a32-9319-9e0b983828bf\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"eda6d08f-b45e-448a-bf9f-afa5516d4b4b\",\"w\":4,\"x\":43,\"y\":0},\"panelIndex\":\"eda6d08f-b45e-448a-bf9f-afa5516d4b4b\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_eda6d08f-b45e-448a-bf9f-afa5516d4b4b\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"56d2dd76-6fec-422b-96e9-22791b0c5f0c\",\"w\":10,\"x\":13,\"y\":6},\"panelIndex\":\"56d2dd76-6fec-422b-96e9-22791b0c5f0c\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_56d2dd76-6fec-422b-96e9-22791b0c5f0c\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"3e4a9683-fd6a-4ad7-b05f-c71bcb4d92d5\",\"w\":12,\"x\":23,\"y\":6},\"panelIndex\":\"3e4a9683-fd6a-4ad7-b05f-c71bcb4d92d5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3e4a9683-fd6a-4ad7-b05f-c71bcb4d92d5\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"a8c00572-667b-4e39-8b0c-10be56fbadd5\",\"w\":12,\"x\":35,\"y\":6},\"panelIndex\":\"a8c00572-667b-4e39-8b0c-10be56fbadd5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a8c00572-667b-4e39-8b0c-10be56fbadd5\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"e8a57cba-14d2-4cd9-a727-f5e30165f6ba\",\"w\":13,\"x\":0,\"y\":8},\"panelIndex\":\"e8a57cba-14d2-4cd9-a727-f5e30165f6ba\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_e8a57cba-14d2-4cd9-a727-f5e30165f6ba\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"8ae39cfa-cb06-45eb-880e-b749c3355d61\",\"w\":12,\"x\":23,\"y\":13},\"panelIndex\":\"8ae39cfa-cb06-45eb-880e-b749c3355d61\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8ae39cfa-cb06-45eb-880e-b749c3355d61\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"ef92d192-b56d-476c-b640-e226679ed178\",\"w\":12,\"x\":35,\"y\":13},\"panelIndex\":\"ef92d192-b56d-476c-b640-e226679ed178\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_ef92d192-b56d-476c-b640-e226679ed178\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"b15dcac5-3616-4b41-8abb-cb28398b16f4\",\"w\":13,\"x\":0,\"y\":16},\"panelIndex\":\"b15dcac5-3616-4b41-8abb-cb28398b16f4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_b15dcac5-3616-4b41-8abb-cb28398b16f4\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"23af61c8-6a45-4d7d-9905-8ed265328130\",\"w\":10,\"x\":13,\"y\":16},\"panelIndex\":\"23af61c8-6a45-4d7d-9905-8ed265328130\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_23af61c8-6a45-4d7d-9905-8ed265328130\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"390068ed-b7fb-4ec1-87d5-e89f7cc82e04\",\"w\":12,\"x\":23,\"y\":20},\"panelIndex\":\"390068ed-b7fb-4ec1-87d5-e89f7cc82e04\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_390068ed-b7fb-4ec1-87d5-e89f7cc82e04\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"45724dca-fea2-4f3b-af79-cf89bb12a31b\",\"w\":12,\"x\":35,\"y\":20},\"panelIndex\":\"45724dca-fea2-4f3b-af79-cf89bb12a31b\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_45724dca-fea2-4f3b-af79-cf89bb12a31b\"},{\"version\":\"7.6.0\",\"type\":\"search\",\"gridData\":{\"h\":14,\"i\":\"7f0c4a51-d972-42a5-ba0a-d3de814c7440\",\"w\":47,\"x\":0,\"y\":27},\"panelIndex\":\"7f0c4a51-d972-42a5-ba0a-d3de814c7440\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7f0c4a51-d972-42a5-ba0a-d3de814c7440\"}]","timeRestore":false,"title":"[Winlogbeat powershell] Overview","version":1},"coreMigrationVersion":"7.14.0","id":"c77e06c0-9e7c-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"9ec52c30-9e91-11ea-af6f-cfdb1ee1d6c8","name":"fa41e799-b6b3-49ec-a11c-3f20231a4a79:panel_fa41e799-b6b3-49ec-a11c-3f20231a4a79","type":"visualization"},{"id":"52543ef0-9e95-11ea-af6f-cfdb1ee1d6c8","name":"65ce6b63-6ce0-4094-ab23-189126fc169f:panel_65ce6b63-6ce0-4094-ab23-189126fc169f","type":"visualization"},{"id":"7f3e7710-9e94-11ea-af6f-cfdb1ee1d6c8","name":"314e6f55-a05a-4ae3-ab76-bcae7f2074ab:panel_314e6f55-a05a-4ae3-ab76-bcae7f2074ab","type":"visualization"},{"id":"78874900-9f30-11ea-bef1-95118e62a7c1","name":"a1f161f6-1abe-4177-9ede-4d1984f5a963:panel_a1f161f6-1abe-4177-9ede-4d1984f5a963","type":"visualization"},{"id":"e64ff750-9f28-11ea-bef1-95118e62a7c1","name":"6b7ed122-22f3-4e9d-89eb-8de92c0d2033:panel_6b7ed122-22f3-4e9d-89eb-8de92c0d2033","type":"visualization"},{"id":"2dbabdf0-9f29-11ea-bef1-95118e62a7c1","name":"d536f6a7-ad28-4a32-9319-9e0b983828bf:panel_d536f6a7-ad28-4a32-9319-9e0b983828bf","type":"visualization"},{"id":"92a2a6b0-9f29-11ea-bef1-95118e62a7c1","name":"eda6d08f-b45e-448a-bf9f-afa5516d4b4b:panel_eda6d08f-b45e-448a-bf9f-afa5516d4b4b","type":"visualization"},{"id":"e20b3940-9e9a-11ea-af6f-cfdb1ee1d6c8","name":"56d2dd76-6fec-422b-96e9-22791b0c5f0c:panel_56d2dd76-6fec-422b-96e9-22791b0c5f0c","type":"visualization"},{"id":"1eeaaf70-9f23-11ea-bef1-95118e62a7c1","name":"3e4a9683-fd6a-4ad7-b05f-c71bcb4d92d5:panel_3e4a9683-fd6a-4ad7-b05f-c71bcb4d92d5","type":"visualization"},{"id":"f9fa55f0-9f34-11ea-bef1-95118e62a7c1","name":"a8c00572-667b-4e39-8b0c-10be56fbadd5:panel_a8c00572-667b-4e39-8b0c-10be56fbadd5","type":"visualization"},{"id":"3e55daa0-9e8e-11ea-af6f-cfdb1ee1d6c8","name":"e8a57cba-14d2-4cd9-a727-f5e30165f6ba:panel_e8a57cba-14d2-4cd9-a727-f5e30165f6ba","type":"visualization"},{"id":"d27dea70-9f32-11ea-bef1-95118e62a7c1","name":"8ae39cfa-cb06-45eb-880e-b749c3355d61:panel_8ae39cfa-cb06-45eb-880e-b749c3355d61","type":"visualization"},{"id":"fbb025e0-9e7c-11ea-af6f-cfdb1ee1d6c8","name":"ef92d192-b56d-476c-b640-e226679ed178:panel_ef92d192-b56d-476c-b640-e226679ed178","type":"visualization"},{"id":"7adbce50-9e96-11ea-af6f-cfdb1ee1d6c8","name":"b15dcac5-3616-4b41-8abb-cb28398b16f4:panel_b15dcac5-3616-4b41-8abb-cb28398b16f4","type":"visualization"},{"id":"70751050-9f33-11ea-bef1-95118e62a7c1","name":"23af61c8-6a45-4d7d-9905-8ed265328130:panel_23af61c8-6a45-4d7d-9905-8ed265328130","type":"visualization"},{"id":"b0c5d570-9e7c-11ea-af6f-cfdb1ee1d6c8","name":"390068ed-b7fb-4ec1-87d5-e89f7cc82e04:panel_390068ed-b7fb-4ec1-87d5-e89f7cc82e04","type":"visualization"},{"id":"c0945210-9e8b-11ea-af6f-cfdb1ee1d6c8","name":"45724dca-fea2-4f3b-af79-cf89bb12a31b:panel_45724dca-fea2-4f3b-af79-cf89bb12a31b","type":"visualization"},{"id":"11a61760-9f27-11ea-bef1-95118e62a7c1","name":"7f0c4a51-d972-42a5-ba0a-d3de814c7440:panel_7f0c4a51-d972-42a5-ba0a-d3de814c7440","type":"search"}],"type":"dashboard","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNTQsMl0="} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts-tsvb.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts-tsvb.json deleted file mode 100644 index b6856b1f66b..00000000000 --- a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts-tsvb.json +++ /dev/null @@ -1,2018 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Failed and blocked accounts with TSVB metrics.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": false - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "1", - "w": 14, - "x": 0, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "colors": { - "Failed Logins": "#EF843C", - "Failed Logons": "#E24D42", - "Successful Login": "#B7DBAB", - "Successful Logon": "#9AC48A" - }, - "legendOpen": true, - "title": "Login Successful vs Failed", - "vis": { - "colors": { - "Failed Logins": "#EF843C", - "Failed Logons": "#BF1B00", - "Successful Login": "#B7DBAB", - "Successful Logon": "#9AC48A" - }, - "legendOpen": true - } - }, - "gridData": { - "h": 18, - "i": "2", - "w": 12, - "x": 0, - "y": 7 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "Login Successful vs Failed", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Blocked Acoounts" - }, - "gridData": { - "h": 21, - "i": "3", - "w": 11, - "x": 12, - "y": 35 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "Blocked Acoounts", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "colors": { - "Login Failed": "#F9934E", - "Login OK": "#9AC48A", - "Logon Failed": "#E24D42", - "Logon Successful": "#9AC48A" - }, - "legendOpen": true, - "title": "Logon Successful and Failed Over time", - "vis": { - "colors": { - "Login Failed": "#F9934E", - "Login OK": "#9AC48A", - "Logon Failed": "#BF1B00", - "Logon Successful": "#9AC48A" - }, - "legendOpen": true - } - }, - "gridData": { - "h": 18, - "i": "4", - "w": 23, - "x": 12, - "y": 7 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "title": "Logon Successful and Failed Over time", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 21, - "i": "5", - "w": 12, - "x": 0, - "y": 35 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Logon Failed (Time Mosaic View)", - "vis": { - "defaultColors": { - "0 - 5": "rgb(255,245,240)", - "10 - 15": "rgb(252,138,106)", - "15 - 20": "rgb(241,68,50)", - "20 - 24": "rgb(188,20,26)", - "5 - 10": "rgb(253,202,181)" - }, - "legendOpen": false - } - }, - "gridData": { - "h": 30, - "i": "6", - "w": 48, - "x": 0, - "y": 56 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "title": "Logon Failed (Time Mosaic View)", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Logon Failed and Account Lockouts" - }, - "gridData": { - "h": 20, - "i": "8", - "w": 48, - "x": 0, - "y": 86 - }, - "panelIndex": "8", - "panelRefName": "panel_6", - "title": "Logon Failed and Account Lockouts", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Logon Failed Source IPs" - }, - "gridData": { - "h": 18, - "i": "10", - "w": 13, - "x": 35, - "y": 7 - }, - "panelIndex": "10", - "panelRefName": "panel_7", - "title": "Logon Failed Source IPs", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Failed Logins Table" - }, - "gridData": { - "h": 31, - "i": "11", - "w": 25, - "x": 23, - "y": 25 - }, - "panelIndex": "11", - "panelRefName": "panel_8", - "title": "Failed Logins Table", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "628de26f-7b7b-457c-b811-e06161e4e7b4", - "w": 34, - "x": 14, - "y": 0 - }, - "panelIndex": "628de26f-7b7b-457c-b811-e06161e4e7b4", - "panelRefName": "panel_9", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 10, - "i": "01a624c2-7a86-4fa9-89d3-e2ae84e94ec9", - "w": 12, - "x": 0, - "y": 25 - }, - "panelIndex": "01a624c2-7a86-4fa9-89d3-e2ae84e94ec9", - "panelRefName": "panel_10", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 10, - "i": "e3046900-1ffc-4efa-9dab-613d685c617b", - "w": 11, - "x": 12, - "y": 25 - }, - "panelIndex": "e3046900-1ffc-4efa-9dab-613d685c617b", - "panelRefName": "panel_11", - "version": "7.7.0" - } - ], - "timeRestore": false, - "title": "[Winlogbeat Security] Failed and Blocked Accounts", - "version": 1 - }, - "id": "d401ef40-a7d5-11e9-a422-d144027429da", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "c2ea73f0-a4bd-11e9-a422-d144027429da", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "175a5760-a7d5-11e9-a422-d144027429da", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "7a329a00-a7d5-11e9-a422-d144027429da", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "162d7ab0-a7d6-11e9-a422-d144027429da", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "729443b0-a7d6-11e9-a422-d144027429da", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "4b683ac0-a7d7-11e9-a422-d144027429da", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "757510b0-a87f-11e9-a422-d144027429da", - "name": "panel_6", - "type": "search" - }, - { - "id": "2084e300-a884-11e9-a422-d144027429da", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "421f0610-af98-11e9-a422-d144027429da", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "a3c3f350-9b6d-11ea-87e4-49f31ec44891", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "8ef59f90-6ab8-11ea-896f-0d70f7ec3956", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "a79395f0-6aba-11ea-896f-0d70f7ec3956", - "name": "panel_11", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-06-04T16:26:28.275Z", - "version": "WzE1MSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Failed Logon and Account Lockout [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### **Failed Logons and Account Lockouts**", - "openLinksInNewTab": false - }, - "title": "Failed Logon and Account Lockout [Winlogbeat Security]", - "type": "markdown" - } - }, - "id": "c2ea73f0-a4bd-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE2NSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "winlog.provider_name", - "negate": false, - "params": { - "query": "Microsoft-Windows-Security-Auditing" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "winlog.provider_name": "Microsoft-Windows-Security-Auditing" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Logon Successful vs Failed [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "colors": { - "Failed Logins": "#EF843C", - "Failed Logons": "#EA6460", - "Successful Login": "#B7DBAB", - "Successful Logon": "#B7DBAB" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "filters": [ - { - "input": { - "language": "lucene", - "query": "event.code: 4624" - }, - "label": "Successful Logon" - }, - { - "input": { - "language": "lucene", - "query": "event.code: 4625" - }, - "label": "Failed Logons" - } - ] - }, - "schema": "segment", - "type": "filters" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "filters", - "format": {}, - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "isDonut": false, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "bottom", - "type": "pie" - }, - "title": "Logon Successful vs Failed [Winlogbeat Security]", - "type": "pie" - } - }, - "id": "175a5760-a7d5-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE2NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4740" - }, - "type": "phrase" - }, - "query": { - "match": { - "event.code": { - "query": "4740", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Blocked Accounts Tag [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "bucket": { - "accessor": 0, - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "/s/siem", - "origin": "https://192.168.1.72:5601", - "pathname": "/s/siem/app/kibana" - } - } - }, - "type": "vis_dimension" - }, - "maxFontSize": 53, - "metric": { - "accessor": 1, - "format": { - "id": "string", - "params": {} - }, - "type": "vis_dimension" - }, - "minFontSize": 18, - "orientation": "single", - "scale": "linear", - "showLabel": false - }, - "title": "Blocked Accounts Tag [Winlogbeat Security]", - "type": "tagcloud" - } - }, - "id": "7a329a00-a7d5-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE2NywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "winlog.provider_name", - "negate": false, - "params": { - "query": "Microsoft-Windows-Security-Auditing" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "winlog.provider_name": "Microsoft-Windows-Security-Auditing" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Logon Successful - Logon Failed Timeline [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "colors": { - "Login Failed": "#F9934E", - "Login OK": "#9AC48A", - "Logon Failed": "#EF843C", - "Logon Successful": "#9AC48A" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "2020-05-17T09:37:55.995Z", - "to": "2020-05-22T03:09:27.260Z" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "filters": [ - { - "input": { - "language": "lucene", - "query": "event.code: 4624" - }, - "label": "Logon Successful" - }, - { - "input": { - "language": "lucene", - "query": "event.code: 4625" - }, - "label": "Logon Failed" - } - ] - }, - "schema": "group", - "type": "filters" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "dimensions": { - "series": [ - { - "accessor": 1, - "aggType": "filters", - "format": {}, - "params": {} - } - ], - "x": { - "accessor": 0, - "aggType": "date_histogram", - "format": { - "id": "date", - "params": { - "pattern": "HH:mm" - } - }, - "params": { - "bounds": { - "max": "2019-07-16T14:30:11.515Z", - "min": "2019-07-16T12:30:11.514Z" - }, - "date": true, - "format": "HH:mm", - "interval": "PT1M" - } - }, - "y": [ - { - "accessor": 2, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "grid": { - "categoryLines": false - }, - "labels": { - "show": false - }, - "legendPosition": "bottom", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Logon Successful - Logon Failed Timeline [Winlogbeat Security]", - "type": "histogram" - } - }, - "id": "162d7ab0-a7d6-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE2OCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4625", - "4771" - ], - "type": "phrases", - "value": "4625, 4771" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4625" - } - }, - { - "match_phrase": { - "event.code": "4771" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Logon Failed Acconts [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "bucket": { - "accessor": 0, - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "/s/siem", - "origin": "https://192.168.1.72:5601", - "pathname": "/s/siem/app/kibana" - } - } - }, - "type": "vis_dimension" - }, - "maxFontSize": 37, - "metric": { - "accessor": 1, - "format": { - "id": "string", - "params": {} - }, - "type": "vis_dimension" - }, - "minFontSize": 15, - "orientation": "single", - "scale": "linear", - "showLabel": false - }, - "title": "Logon Failed Acconts [Winlogbeat Security]", - "type": "tagcloud" - } - }, - "id": "729443b0-a7d6-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE2OSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4625" - ], - "type": "phrases", - "value": "4625" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4625" - } - } - ] - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "winlog.provider_name", - "negate": false, - "params": { - "query": "Microsoft-Windows-Security-Auditing" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "winlog.provider_name": "Microsoft-Windows-Security-Auditing" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Failed Logon HeatMap [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 4": "rgb(255,255,204)", - "12 - 16": "rgb(252,91,46)", - "16 - 20": "rgb(212,16,32)", - "4 - 8": "rgb(254,225,135)", - "8 - 12": "rgb(254,171,73)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "drop_partials": true, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "h", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "2020-05-17T09:37:55.995Z", - "to": "2020-05-22T03:09:27.260Z" - }, - "useNormalizedEsInterval": true - }, - "schema": "group", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTooltip": false, - "colorSchema": "Yellow to Red", - "colorsNumber": 5, - "colorsRange": [], - "dimensions": { - "series": [ - { - "accessor": 1, - "aggType": "date_histogram", - "format": { - "id": "date", - "params": { - "pattern": "YYYY-MM-DD HH:mm" - } - }, - "label": "@timestamp per hour", - "params": {} - } - ], - "x": { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "/s/siem", - "origin": "https://192.168.1.72:5601", - "pathname": "/s/siem/app/kibana" - } - } - }, - "label": "user.name: Descending", - "params": {} - }, - "y": [ - { - "accessor": 2, - "aggType": "count", - "format": { - "id": "number" - }, - "label": "Count", - "params": {} - } - ] - }, - "enableHover": true, - "invertColors": false, - "legendPosition": "bottom", - "percentageMode": false, - "setColorRange": false, - "times": [], - "type": "heatmap", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "color": "black", - "overwriteColor": false, - "rotate": 0, - "show": true - }, - "scale": { - "defaultYExtents": false, - "type": "linear" - }, - "show": false, - "type": "value" - } - ] - }, - "title": "Failed Logon HeatMap [Winlogbeat Security]", - "type": "heatmap" - } - }, - "id": "4b683ac0-a7d7-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE3MCwxXQ==" - }, - { - "attributes": { - "columns": [ - "event.action", - "user.name", - "related.user", - "user.domain", - "source.domain", - "source.ip", - "winlog.event_data.SubjectUserName" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4625", - "4740" - ], - "type": "phrases", - "value": "4625, 4740" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4625" - } - }, - { - "match_phrase": { - "event.code": "4740" - } - } - ] - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "winlog.provider_name", - "negate": false, - "params": { - "query": "Microsoft-Windows-Security-Auditing" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "winlog.provider_name": "Microsoft-Windows-Security-Auditing" - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "3. Login Failed Details", - "version": 1 - }, - "id": "757510b0-a87f-11e9-a422-d144027429da", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE3MSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4625" - }, - "type": "phrase" - }, - "query": { - "match": { - "event.code": { - "query": "4625", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "winlog.provider_name", - "negate": false, - "params": { - "query": "Microsoft-Windows-Security-Auditing" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "winlog.provider_name": "Microsoft-Windows-Security-Auditing" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Logon Failed Source IP [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "source.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "bucket": { - "accessor": 0, - "format": { - "id": "terms", - "params": { - "id": "ip", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "/s/siem", - "origin": "https://192.168.1.72:5601", - "pathname": "/s/siem/app/kibana" - } - } - }, - "type": "vis_dimension" - }, - "maxFontSize": 38, - "metric": { - "accessor": 1, - "format": { - "id": "string", - "params": {} - }, - "type": "vis_dimension" - }, - "minFontSize": 10, - "orientation": "single", - "scale": "linear", - "showLabel": false - }, - "title": "Logon Failed Source IP [Winlogbeat Security]", - "type": "tagcloud" - } - }, - "id": "2084e300-a884-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE3MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4625" - }, - "type": "phrase" - }, - "query": { - "match": { - "event.code": { - "query": "4625", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "winlog.provider_name", - "negate": false, - "params": { - "query": "Microsoft-Windows-Security-Auditing" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "winlog.provider_name": "Microsoft-Windows-Security-Auditing" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Logon Failed Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Time Bucket", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "h", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "2020-05-17T09:37:55.995Z", - "to": "2020-05-22T03:09:27.260Z" - }, - "useNormalizedEsInterval": true - }, - "schema": "bucket", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "user.name", - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 1000 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "source workstation", - "field": "source.domain", - "json": "{\"missing\": \"N/A\"}", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "source.ip", - "field": "source.ip", - "json": "{\"missing\": \"::\"}", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "event.action", - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "7", - "params": { - "customLabel": "winlog.logon.type", - "field": "winlog.logon.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "8", - "params": { - "customLabel": "winlog.event_data.SubjectUserName", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "date_histogram", - "format": { - "id": "date", - "params": { - "pattern": "YYYY-MM-DD HH:mm" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 3, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "ip", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 4, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 5, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 15, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Logon Failed Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "421f0610-af98-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE3MywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboard links [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Winlogbeat Overview](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/bae11b00-9bfc-11ea-87e4-49f31ec44891) | [Logon Failed and Account Lockout](#/dashboard/d401ef40-a7d5-11e9-a422-d144027429da) | [User Management Events](#/dashboard/71f720f0-ff18-11e9-8405-516218e3d268) | [Group Management Events](#/dashboard/bb858830-f412-11e9-8405-516218e3d268)", - "openLinksInNewTab": false - }, - "title": "Dashboard links [Winlogbeat Security]", - "type": "markdown" - } - }, - "id": "a3c3f350-9b6d-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:49:11.152Z", - "version": "WzI1MCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Failed Logons TSVB [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(204,204,204,1)", - "id": "8d597960-ff18-11e9-8249-2371c695f3b0", - "operator": "lte", - "value": 0 - }, - { - "background_color": "rgba(181,99,93,1)", - "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", - "operator": "gte", - "value": 1 - } - ], - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "event.code: \"4625\" and winlog.provider_name : \"Microsoft-Windows-Security-Auditing\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "90d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Failed Logon", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Failed Logons TSVB [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "8ef59f90-6ab8-11ea-896f-0d70f7ec3956", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:28.275Z", - "version": "WzE2MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Blocked Accounts TSVB [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(204,204,204,1)", - "color": "rgba(51,51,51,1)", - "id": "8d597960-ff18-11e9-8249-2371c695f3b0", - "operator": "lte", - "value": 0 - }, - { - "background_color": "rgba(102,102,102,1)", - "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", - "operator": "gte", - "value": 1 - } - ], - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "event.code: \"4740\"" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "90d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Blocked Accounts", - "line_width": 1, - "metrics": [ - { - "field": "user.name", - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "cardinality" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Blocked Accounts TSVB [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "a79395f0-6aba-11ea-896f-0d70f7ec3956", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:28.275Z", - "version": "WzE2MywxXQ==" - } - ], - "version": "7.7.0" -} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts-tsvb.ndjson b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts-tsvb.ndjson new file mode 100644 index 00000000000..a328b7099de --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts-tsvb.ndjson @@ -0,0 +1,13 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Failed Logon and Account Lockout [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### **Failed Logons and Account Lockouts**\",\"openLinksInNewTab\":false},\"title\":\"Failed Logon and Account Lockout [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"c2ea73f0-a4bd-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTMsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Successful vs Failed [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"colors\": {\"Failed Logins\": \"#EF843C\", \"Failed Logons\": \"#EA6460\", \"Successful Login\": \"#B7DBAB\", \"Successful Logon\": \"#B7DBAB\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"lucene\",\"query\":\"event.code: 4624\"},\"label\":\"Successful Logon\"},{\"input\":{\"language\":\"lucene\",\"query\":\"event.code: 4625\"},\"label\":\"Failed Logons\"}]},\"schema\":\"segment\",\"type\":\"filters\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"filters\",\"format\":{},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"bottom\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Logon Successful vs Failed [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"175a5760-a7d5-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTQsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4740\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4740\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Blocked Accounts Tag [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"type\":\"vis_dimension\"},\"maxFontSize\":53,\"metric\":{\"accessor\":1,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Blocked Accounts Tag [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"7a329a00-a7d5-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTUsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Successful - Logon Failed Timeline [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"colors\": {\"Login Failed\": \"#F9934E\", \"Login OK\": \"#9AC48A\", \"Logon Failed\": \"#EF843C\", \"Logon Successful\": \"#9AC48A\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-05-17T09:37:55.995Z\",\"to\":\"2020-05-22T03:09:27.260Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"filters\":[{\"input\":{\"language\":\"lucene\",\"query\":\"event.code: 4624\"},\"label\":\"Logon Successful\"},{\"input\":{\"language\":\"lucene\",\"query\":\"event.code: 4625\"},\"label\":\"Logon Failed\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"filters\",\"format\":{},\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"HH:mm\"}},\"params\":{\"bounds\":{\"max\":\"2019-07-16T14:30:11.515Z\",\"min\":\"2019-07-16T12:30:11.514Z\"},\"date\":true,\"format\":\"HH:mm\",\"interval\":\"PT1M\"}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"bottom\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Logon Successful - Logon Failed Timeline [Winlogbeat Security]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"7.14.0","id":"162d7ab0-a7d6-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTYsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4625\", \"4771\"], \"type\": \"phrases\", \"value\": \"4625, 4771\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4625\"}}, {\"match_phrase\": {\"event.code\": \"4771\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Failed Acconts [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"type\":\"vis_dimension\"},\"maxFontSize\":37,\"metric\":{\"accessor\":1,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"minFontSize\":15,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Logon Failed Acconts [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"729443b0-a7d6-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTcsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4625\"], \"type\": \"phrases\", \"value\": \"4625\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4625\"}}]}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Failed Logon HeatMap [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 4\": \"rgb(255,255,204)\", \"12 - 16\": \"rgb(252,91,46)\", \"16 - 20\": \"rgb(212,16,32)\", \"4 - 8\": \"rgb(254,225,135)\", \"8 - 12\": \"rgb(254,171,73)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":true,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"h\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-05-17T09:37:55.995Z\",\"to\":\"2020-05-22T03:09:27.260Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"group\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTooltip\":false,\"colorSchema\":\"Yellow to Red\",\"colorsNumber\":5,\"colorsRange\":[],\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"label\":\"@timestamp per hour\",\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"user.name: Descending\",\"params\":{}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}]},\"enableHover\":true,\"invertColors\":false,\"legendPosition\":\"bottom\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"black\",\"overwriteColor\":false,\"rotate\":0,\"show\":true},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Failed Logon HeatMap [Winlogbeat Security]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"7.14.0","id":"4b683ac0-a7d7-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTgsMl0="} +{"attributes":{"columns":["event.action","user.name","related.user","user.domain","source.domain","source.ip","winlog.event_data.SubjectUserName"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4625\", \"4740\"], \"type\": \"phrases\", \"value\": \"4625, 4740\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4625\"}}, {\"match_phrase\": {\"event.code\": \"4740\"}}]}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"3. Login Failed Details","version":1},"coreMigrationVersion":"7.14.0","id":"757510b0-a87f-11e9-a422-d144027429da","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTksMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4625\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4625\", \"type\": \"phrase\"}}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Failed Source IP [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"ip\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"type\":\"vis_dimension\"},\"maxFontSize\":38,\"metric\":{\"accessor\":1,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"minFontSize\":10,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Logon Failed Source IP [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"2084e300-a884-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIyMDAsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4625\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4625\", \"type\": \"phrase\"}}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Failed Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Time Bucket\",\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"h\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-05-17T09:37:55.995Z\",\"to\":\"2020-05-22T03:09:27.260Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"bucket\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"user.name\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":1000},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"source workstation\",\"field\":\"source.domain\",\"json\":\"{\\\"missing\\\": \\\"N/A\\\"}\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"source.ip\",\"field\":\"source.ip\",\"json\":\"{\\\"missing\\\": \\\"::\\\"}\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"event.action\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"winlog.logon.type\",\"field\":\"winlog.logon.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"winlog.event_data.SubjectUserName\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"ip\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":4,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":5,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":15,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Logon Failed Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"421f0610-af98-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIyMDEsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboard links [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Winlogbeat Overview](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/bae11b00-9bfc-11ea-87e4-49f31ec44891) | [Logon Failed and Account Lockout](#/dashboard/d401ef40-a7d5-11e9-a422-d144027429da) | [User Management Events](#/dashboard/71f720f0-ff18-11e9-8405-516218e3d268) | [Group Management Events](#/dashboard/bb858830-f412-11e9-8405-516218e3d268)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard links [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"a3c3f350-9b6d-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjksMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Failed Logons TSVB [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(181,99,93,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"e046d275-9e09-4e59-be48-7f7276c42e0d\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4625\\\" and winlog.provider_name : \\\"Microsoft-Windows-Security-Auditing\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Failed Logon\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Failed Logons TSVB [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"8ef59f90-6ab8-11ea-896f-0d70f7ec3956","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:53.287Z","version":"WzIxOTAsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Blocked Accounts TSVB [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"color\":\"rgba(51,51,51,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(102,102,102,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"color\":\"rgba(51,51,51,1)\",\"id\":\"efbe538c-41df-4ea0-9072-09d71fb8c5d8\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4740\\\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Blocked Accounts\",\"line_width\":1,\"metrics\":[{\"field\":\"user.name\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"cardinality\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Blocked Accounts TSVB [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"a79395f0-6aba-11ea-896f-0d70f7ec3956","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:53.287Z","version":"WzIxOTEsMl0="} +{"attributes":{"description":"Failed and blocked accounts with TSVB metrics.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"1\",\"w\":14,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"2\",\"w\":12,\"x\":0,\"y\":7},\"panelIndex\":\"2\",\"embeddableConfig\":{\"colors\":{\"Failed Logins\":\"#EF843C\",\"Failed Logons\":\"#E24D42\",\"Successful Login\":\"#B7DBAB\",\"Successful Logon\":\"#9AC48A\"},\"legendOpen\":true,\"vis\":{\"colors\":{\"Failed Logins\":\"#EF843C\",\"Failed Logons\":\"#BF1B00\",\"Successful Login\":\"#B7DBAB\",\"Successful Logon\":\"#9AC48A\"},\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Login Successful vs Failed\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"3\",\"w\":11,\"x\":12,\"y\":35},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Blocked Acoounts\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"4\",\"w\":23,\"x\":12,\"y\":7},\"panelIndex\":\"4\",\"embeddableConfig\":{\"colors\":{\"Login Failed\":\"#F9934E\",\"Login OK\":\"#9AC48A\",\"Logon Failed\":\"#E24D42\",\"Logon Successful\":\"#9AC48A\"},\"legendOpen\":true,\"vis\":{\"colors\":{\"Login Failed\":\"#F9934E\",\"Login OK\":\"#9AC48A\",\"Logon Failed\":\"#BF1B00\",\"Logon Successful\":\"#9AC48A\"},\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Logon Successful and Failed Over time\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"5\",\"w\":12,\"x\":0,\"y\":35},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":30,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":56},\"panelIndex\":\"6\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 5\":\"rgb(255,245,240)\",\"10 - 15\":\"rgb(252,138,106)\",\"15 - 20\":\"rgb(241,68,50)\",\"20 - 24\":\"rgb(188,20,26)\",\"5 - 10\":\"rgb(253,202,181)\"},\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Logon Failed (Time Mosaic View)\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":20,\"i\":\"8\",\"w\":48,\"x\":0,\"y\":86},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Failed and Account Lockouts\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"10\",\"w\":13,\"x\":35,\"y\":7},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Failed Source IPs\",\"panelRefName\":\"panel_10\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":31,\"i\":\"11\",\"w\":25,\"x\":23,\"y\":25},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Failed Logins Table\",\"panelRefName\":\"panel_11\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"628de26f-7b7b-457c-b811-e06161e4e7b4\",\"w\":34,\"x\":14,\"y\":0},\"panelIndex\":\"628de26f-7b7b-457c-b811-e06161e4e7b4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_628de26f-7b7b-457c-b811-e06161e4e7b4\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"01a624c2-7a86-4fa9-89d3-e2ae84e94ec9\",\"w\":12,\"x\":0,\"y\":25},\"panelIndex\":\"01a624c2-7a86-4fa9-89d3-e2ae84e94ec9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_01a624c2-7a86-4fa9-89d3-e2ae84e94ec9\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"e3046900-1ffc-4efa-9dab-613d685c617b\",\"w\":11,\"x\":12,\"y\":25},\"panelIndex\":\"e3046900-1ffc-4efa-9dab-613d685c617b\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_e3046900-1ffc-4efa-9dab-613d685c617b\"}]","timeRestore":false,"title":"[Winlogbeat Security] Failed and Blocked Accounts","version":1},"coreMigrationVersion":"7.14.0","id":"d401ef40-a7d5-11e9-a422-d144027429da","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"c2ea73f0-a4bd-11e9-a422-d144027429da","name":"1:panel_1","type":"visualization"},{"id":"175a5760-a7d5-11e9-a422-d144027429da","name":"2:panel_2","type":"visualization"},{"id":"7a329a00-a7d5-11e9-a422-d144027429da","name":"3:panel_3","type":"visualization"},{"id":"162d7ab0-a7d6-11e9-a422-d144027429da","name":"4:panel_4","type":"visualization"},{"id":"729443b0-a7d6-11e9-a422-d144027429da","name":"5:panel_5","type":"visualization"},{"id":"4b683ac0-a7d7-11e9-a422-d144027429da","name":"6:panel_6","type":"visualization"},{"id":"757510b0-a87f-11e9-a422-d144027429da","name":"8:panel_8","type":"search"},{"id":"2084e300-a884-11e9-a422-d144027429da","name":"10:panel_10","type":"visualization"},{"id":"421f0610-af98-11e9-a422-d144027429da","name":"11:panel_11","type":"visualization"},{"id":"a3c3f350-9b6d-11ea-87e4-49f31ec44891","name":"628de26f-7b7b-457c-b811-e06161e4e7b4:panel_628de26f-7b7b-457c-b811-e06161e4e7b4","type":"visualization"},{"id":"8ef59f90-6ab8-11ea-896f-0d70f7ec3956","name":"01a624c2-7a86-4fa9-89d3-e2ae84e94ec9:panel_01a624c2-7a86-4fa9-89d3-e2ae84e94ec9","type":"visualization"},{"id":"a79395f0-6aba-11ea-896f-0d70f7ec3956","name":"e3046900-1ffc-4efa-9dab-613d685c617b:panel_e3046900-1ffc-4efa-9dab-613d685c617b","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-11T13:18:53.287Z","version":"WzIxNzksMl0="} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts.json deleted file mode 100644 index 410fb321322..00000000000 --- a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts.json +++ /dev/null @@ -1,2073 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Failed and blocked accounts.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": false - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "1", - "w": 14, - "x": 0, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "colors": { - "Failed Logins": "#EF843C", - "Failed Logons": "#E24D42", - "Successful Login": "#B7DBAB", - "Successful Logon": "#9AC48A" - }, - "legendOpen": true, - "title": "Login Successful vs Failed", - "vis": { - "colors": { - "Failed Logins": "#EF843C", - "Failed Logons": "#BF1B00", - "Successful Login": "#B7DBAB", - "Successful Logon": "#9AC48A" - }, - "legendOpen": true - } - }, - "gridData": { - "h": 18, - "i": "2", - "w": 12, - "x": 0, - "y": 7 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "title": "Login Successful vs Failed", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Blocked Acoounts" - }, - "gridData": { - "h": 21, - "i": "3", - "w": 11, - "x": 12, - "y": 35 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "Blocked Acoounts", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "colors": { - "Login Failed": "#F9934E", - "Login OK": "#9AC48A", - "Logon Failed": "#E24D42", - "Logon Successful": "#9AC48A" - }, - "legendOpen": true, - "title": "Logon Successful and Failed Over time", - "vis": { - "colors": { - "Login Failed": "#F9934E", - "Login OK": "#9AC48A", - "Logon Failed": "#BF1B00", - "Logon Successful": "#9AC48A" - }, - "legendOpen": true - } - }, - "gridData": { - "h": 18, - "i": "4", - "w": 23, - "x": 12, - "y": 7 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "title": "Logon Successful and Failed Over time", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 21, - "i": "5", - "w": 12, - "x": 0, - "y": 35 - }, - "panelIndex": "5", - "panelRefName": "panel_4", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Logon Failed (Time Mosaic View)", - "vis": { - "defaultColors": { - "0 - 5": "rgb(255,245,240)", - "10 - 15": "rgb(252,138,106)", - "15 - 20": "rgb(241,68,50)", - "20 - 24": "rgb(188,20,26)", - "5 - 10": "rgb(253,202,181)" - }, - "legendOpen": false - } - }, - "gridData": { - "h": 30, - "i": "6", - "w": 48, - "x": 0, - "y": 56 - }, - "panelIndex": "6", - "panelRefName": "panel_5", - "title": "Logon Failed (Time Mosaic View)", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Logon Failed and Account Lockouts" - }, - "gridData": { - "h": 20, - "i": "8", - "w": 48, - "x": 0, - "y": 86 - }, - "panelIndex": "8", - "panelRefName": "panel_6", - "title": "Logon Failed and Account Lockouts", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Logon Failed Source IPs" - }, - "gridData": { - "h": 18, - "i": "10", - "w": 13, - "x": 35, - "y": 7 - }, - "panelIndex": "10", - "panelRefName": "panel_7", - "title": "Logon Failed Source IPs", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Failed Logins Table" - }, - "gridData": { - "h": 31, - "i": "11", - "w": 25, - "x": 23, - "y": 25 - }, - "panelIndex": "11", - "panelRefName": "panel_8", - "title": "Failed Logins Table", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "a79ee89f-ff45-486c-9788-9446d39456c2", - "w": 34, - "x": 14, - "y": 0 - }, - "panelIndex": "a79ee89f-ff45-486c-9788-9446d39456c2", - "panelRefName": "panel_9", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 10, - "i": "7765df59-11c4-476d-898f-9ebf98c369e2", - "w": 11, - "x": 12, - "y": 25 - }, - "panelIndex": "7765df59-11c4-476d-898f-9ebf98c369e2", - "panelRefName": "panel_10", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 10, - "i": "b47c91d3-58c4-4b5b-b302-444b048efdfa", - "w": 12, - "x": 0, - "y": 25 - }, - "panelIndex": "b47c91d3-58c4-4b5b-b302-444b048efdfa", - "panelRefName": "panel_11", - "version": "7.7.0" - } - ], - "timeRestore": false, - "title": "[Winlogbeat Security] Failed and Blocked Accounts - Simple Metrics", - "version": 1 - }, - "id": "f49f3170-9ffc-11ea-87e4-49f31ec44891", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "c2ea73f0-a4bd-11e9-a422-d144027429da", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "175a5760-a7d5-11e9-a422-d144027429da", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "7a329a00-a7d5-11e9-a422-d144027429da", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "162d7ab0-a7d6-11e9-a422-d144027429da", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "729443b0-a7d6-11e9-a422-d144027429da", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "4b683ac0-a7d7-11e9-a422-d144027429da", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "757510b0-a87f-11e9-a422-d144027429da", - "name": "panel_6", - "type": "search" - }, - { - "id": "2084e300-a884-11e9-a422-d144027429da", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "421f0610-af98-11e9-a422-d144027429da", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "d770b040-9b35-11ea-87e4-49f31ec44891", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "5d117970-9ffd-11ea-87e4-49f31ec44891", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "4bedf650-9ffd-11ea-87e4-49f31ec44891", - "name": "panel_11", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE2NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Failed Logon and Account Lockout [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "### **Failed Logons and Account Lockouts**", - "openLinksInNewTab": false - }, - "title": "Failed Logon and Account Lockout [Winlogbeat Security]", - "type": "markdown" - } - }, - "id": "c2ea73f0-a4bd-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE2NSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "winlog.provider_name", - "negate": false, - "params": { - "query": "Microsoft-Windows-Security-Auditing" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "winlog.provider_name": "Microsoft-Windows-Security-Auditing" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Logon Successful vs Failed [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "colors": { - "Failed Logins": "#EF843C", - "Failed Logons": "#EA6460", - "Successful Login": "#B7DBAB", - "Successful Logon": "#B7DBAB" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "filters": [ - { - "input": { - "language": "lucene", - "query": "event.code: 4624" - }, - "label": "Successful Logon" - }, - { - "input": { - "language": "lucene", - "query": "event.code: 4625" - }, - "label": "Failed Logons" - } - ] - }, - "schema": "segment", - "type": "filters" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "filters", - "format": {}, - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - }, - "isDonut": false, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "bottom", - "type": "pie" - }, - "title": "Logon Successful vs Failed [Winlogbeat Security]", - "type": "pie" - } - }, - "id": "175a5760-a7d5-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE2NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4740" - }, - "type": "phrase" - }, - "query": { - "match": { - "event.code": { - "query": "4740", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Blocked Accounts Tag [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "bucket": { - "accessor": 0, - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "/s/siem", - "origin": "https://192.168.1.72:5601", - "pathname": "/s/siem/app/kibana" - } - } - }, - "type": "vis_dimension" - }, - "maxFontSize": 53, - "metric": { - "accessor": 1, - "format": { - "id": "string", - "params": {} - }, - "type": "vis_dimension" - }, - "minFontSize": 18, - "orientation": "single", - "scale": "linear", - "showLabel": false - }, - "title": "Blocked Accounts Tag [Winlogbeat Security]", - "type": "tagcloud" - } - }, - "id": "7a329a00-a7d5-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE2NywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "winlog.provider_name", - "negate": false, - "params": { - "query": "Microsoft-Windows-Security-Auditing" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "winlog.provider_name": "Microsoft-Windows-Security-Auditing" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Logon Successful - Logon Failed Timeline [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "colors": { - "Login Failed": "#F9934E", - "Login OK": "#9AC48A", - "Logon Failed": "#EF843C", - "Logon Successful": "#9AC48A" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "2020-05-17T09:37:55.995Z", - "to": "2020-05-22T03:09:27.260Z" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "filters": [ - { - "input": { - "language": "lucene", - "query": "event.code: 4624" - }, - "label": "Logon Successful" - }, - { - "input": { - "language": "lucene", - "query": "event.code: 4625" - }, - "label": "Logon Failed" - } - ] - }, - "schema": "group", - "type": "filters" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "dimensions": { - "series": [ - { - "accessor": 1, - "aggType": "filters", - "format": {}, - "params": {} - } - ], - "x": { - "accessor": 0, - "aggType": "date_histogram", - "format": { - "id": "date", - "params": { - "pattern": "HH:mm" - } - }, - "params": { - "bounds": { - "max": "2019-07-16T14:30:11.515Z", - "min": "2019-07-16T12:30:11.514Z" - }, - "date": true, - "format": "HH:mm", - "interval": "PT1M" - } - }, - "y": [ - { - "accessor": 2, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "grid": { - "categoryLines": false - }, - "labels": { - "show": false - }, - "legendPosition": "bottom", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "stacked", - "show": "true", - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Logon Successful - Logon Failed Timeline [Winlogbeat Security]", - "type": "histogram" - } - }, - "id": "162d7ab0-a7d6-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE2OCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4625", - "4771" - ], - "type": "phrases", - "value": "4625, 4771" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4625" - } - }, - { - "match_phrase": { - "event.code": "4771" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Logon Failed Acconts [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "bucket": { - "accessor": 0, - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "/s/siem", - "origin": "https://192.168.1.72:5601", - "pathname": "/s/siem/app/kibana" - } - } - }, - "type": "vis_dimension" - }, - "maxFontSize": 37, - "metric": { - "accessor": 1, - "format": { - "id": "string", - "params": {} - }, - "type": "vis_dimension" - }, - "minFontSize": 15, - "orientation": "single", - "scale": "linear", - "showLabel": false - }, - "title": "Logon Failed Acconts [Winlogbeat Security]", - "type": "tagcloud" - } - }, - "id": "729443b0-a7d6-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE2OSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4625" - ], - "type": "phrases", - "value": "4625" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4625" - } - } - ] - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "winlog.provider_name", - "negate": false, - "params": { - "query": "Microsoft-Windows-Security-Auditing" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "winlog.provider_name": "Microsoft-Windows-Security-Auditing" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Failed Logon HeatMap [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "defaultColors": { - "0 - 4": "rgb(255,255,204)", - "12 - 16": "rgb(252,91,46)", - "16 - 20": "rgb(212,16,32)", - "4 - 8": "rgb(254,225,135)", - "8 - 12": "rgb(254,171,73)" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "drop_partials": true, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "h", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "2020-05-17T09:37:55.995Z", - "to": "2020-05-22T03:09:27.260Z" - }, - "useNormalizedEsInterval": true - }, - "schema": "group", - "type": "date_histogram" - } - ], - "params": { - "addLegend": true, - "addTooltip": false, - "colorSchema": "Yellow to Red", - "colorsNumber": 5, - "colorsRange": [], - "dimensions": { - "series": [ - { - "accessor": 1, - "aggType": "date_histogram", - "format": { - "id": "date", - "params": { - "pattern": "YYYY-MM-DD HH:mm" - } - }, - "label": "@timestamp per hour", - "params": {} - } - ], - "x": { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "/s/siem", - "origin": "https://192.168.1.72:5601", - "pathname": "/s/siem/app/kibana" - } - } - }, - "label": "user.name: Descending", - "params": {} - }, - "y": [ - { - "accessor": 2, - "aggType": "count", - "format": { - "id": "number" - }, - "label": "Count", - "params": {} - } - ] - }, - "enableHover": true, - "invertColors": false, - "legendPosition": "bottom", - "percentageMode": false, - "setColorRange": false, - "times": [], - "type": "heatmap", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "color": "black", - "overwriteColor": false, - "rotate": 0, - "show": true - }, - "scale": { - "defaultYExtents": false, - "type": "linear" - }, - "show": false, - "type": "value" - } - ] - }, - "title": "Failed Logon HeatMap [Winlogbeat Security]", - "type": "heatmap" - } - }, - "id": "4b683ac0-a7d7-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE3MCwxXQ==" - }, - { - "attributes": { - "columns": [ - "event.action", - "user.name", - "related.user", - "user.domain", - "source.domain", - "source.ip", - "winlog.event_data.SubjectUserName" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4625", - "4740" - ], - "type": "phrases", - "value": "4625, 4740" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4625" - } - }, - { - "match_phrase": { - "event.code": "4740" - } - } - ] - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "winlog.provider_name", - "negate": false, - "params": { - "query": "Microsoft-Windows-Security-Auditing" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "winlog.provider_name": "Microsoft-Windows-Security-Auditing" - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "3. Login Failed Details", - "version": 1 - }, - "id": "757510b0-a87f-11e9-a422-d144027429da", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE3MSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4625" - }, - "type": "phrase" - }, - "query": { - "match": { - "event.code": { - "query": "4625", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "winlog.provider_name", - "negate": false, - "params": { - "query": "Microsoft-Windows-Security-Auditing" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "winlog.provider_name": "Microsoft-Windows-Security-Auditing" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Logon Failed Source IP [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "source.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "bucket": { - "accessor": 0, - "format": { - "id": "terms", - "params": { - "id": "ip", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "/s/siem", - "origin": "https://192.168.1.72:5601", - "pathname": "/s/siem/app/kibana" - } - } - }, - "type": "vis_dimension" - }, - "maxFontSize": 38, - "metric": { - "accessor": 1, - "format": { - "id": "string", - "params": {} - }, - "type": "vis_dimension" - }, - "minFontSize": 10, - "orientation": "single", - "scale": "linear", - "showLabel": false - }, - "title": "Logon Failed Source IP [Winlogbeat Security]", - "type": "tagcloud" - } - }, - "id": "2084e300-a884-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE3MiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4625" - }, - "type": "phrase" - }, - "query": { - "match": { - "event.code": { - "query": "4625", - "type": "phrase" - } - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "winlog.provider_name", - "negate": false, - "params": { - "query": "Microsoft-Windows-Security-Auditing" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "winlog.provider_name": "Microsoft-Windows-Security-Auditing" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Logon Failed Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Time Bucket", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "h", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "2020-05-17T09:37:55.995Z", - "to": "2020-05-22T03:09:27.260Z" - }, - "useNormalizedEsInterval": true - }, - "schema": "bucket", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "user.name", - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 1000 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "source workstation", - "field": "source.domain", - "json": "{\"missing\": \"N/A\"}", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "source.ip", - "field": "source.ip", - "json": "{\"missing\": \"::\"}", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "event.action", - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "7", - "params": { - "customLabel": "winlog.logon.type", - "field": "winlog.logon.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "8", - "params": { - "customLabel": "winlog.event_data.SubjectUserName", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "date_histogram", - "format": { - "id": "date", - "params": { - "pattern": "YYYY-MM-DD HH:mm" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 3, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "ip", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 4, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 5, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 15, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Logon Failed Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "421f0610-af98-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE3MywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboard links - Simple [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Winlogbeat General ECS Dashboard](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/035846a0-a249-11e9-a422-d144027429da?) | [Logon failed and Account Lockout](#/dashboard/f49f3170-9ffc-11ea-87e4-49f31ec44891) | [User Management Events](#/dashboard/8223bed0-b9e9-11e9-b6a2-c9b4015c4baf) | [Group Management Events](#/dashboard/01c54730-fee6-11e9-8405-516218e3d268)", - "openLinksInNewTab": false - }, - "title": "Dashboard links - Simple [Winlogbeat Security]", - "type": "markdown" - } - }, - "id": "d770b040-9b35-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE3NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4740" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.code": "4740" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Blocked Accounts [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Blocked Accounts", - "field": "user.name" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Blocked Accounts [Winlogbeat Security]", - "type": "metric" - } - }, - "id": "5d117970-9ffd-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE3NSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4625" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.code": "4625" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "winlog.provider_name", - "negate": false, - "params": { - "query": "Microsoft-Windows-Security-Auditing" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "winlog.provider_name": "Microsoft-Windows-Security-Auditing" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": " Failed Logons [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Failed Logons" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": " Failed Logons [Winlogbeat Security]", - "type": "metric" - } - }, - "id": "4bedf650-9ffd-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE3NiwxXQ==" - } - ], - "version": "7.7.0" -} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts.ndjson b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts.ndjson new file mode 100644 index 00000000000..37491a0fae6 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts.ndjson @@ -0,0 +1,13 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Failed Logon and Account Lockout [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### **Failed Logons and Account Lockouts**\",\"openLinksInNewTab\":false},\"title\":\"Failed Logon and Account Lockout [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"c2ea73f0-a4bd-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTMsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Successful vs Failed [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"colors\": {\"Failed Logins\": \"#EF843C\", \"Failed Logons\": \"#EA6460\", \"Successful Login\": \"#B7DBAB\", \"Successful Logon\": \"#B7DBAB\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"lucene\",\"query\":\"event.code: 4624\"},\"label\":\"Successful Logon\"},{\"input\":{\"language\":\"lucene\",\"query\":\"event.code: 4625\"},\"label\":\"Failed Logons\"}]},\"schema\":\"segment\",\"type\":\"filters\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"filters\",\"format\":{},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"bottom\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Logon Successful vs Failed [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"175a5760-a7d5-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTQsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4740\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4740\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Blocked Accounts Tag [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"type\":\"vis_dimension\"},\"maxFontSize\":53,\"metric\":{\"accessor\":1,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Blocked Accounts Tag [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"7a329a00-a7d5-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTUsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Successful - Logon Failed Timeline [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"colors\": {\"Login Failed\": \"#F9934E\", \"Login OK\": \"#9AC48A\", \"Logon Failed\": \"#EF843C\", \"Logon Successful\": \"#9AC48A\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-05-17T09:37:55.995Z\",\"to\":\"2020-05-22T03:09:27.260Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"filters\":[{\"input\":{\"language\":\"lucene\",\"query\":\"event.code: 4624\"},\"label\":\"Logon Successful\"},{\"input\":{\"language\":\"lucene\",\"query\":\"event.code: 4625\"},\"label\":\"Logon Failed\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"filters\",\"format\":{},\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"HH:mm\"}},\"params\":{\"bounds\":{\"max\":\"2019-07-16T14:30:11.515Z\",\"min\":\"2019-07-16T12:30:11.514Z\"},\"date\":true,\"format\":\"HH:mm\",\"interval\":\"PT1M\"}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"bottom\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Logon Successful - Logon Failed Timeline [Winlogbeat Security]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"7.14.0","id":"162d7ab0-a7d6-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTYsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4625\", \"4771\"], \"type\": \"phrases\", \"value\": \"4625, 4771\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4625\"}}, {\"match_phrase\": {\"event.code\": \"4771\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Failed Acconts [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"type\":\"vis_dimension\"},\"maxFontSize\":37,\"metric\":{\"accessor\":1,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"minFontSize\":15,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Logon Failed Acconts [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"729443b0-a7d6-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTcsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4625\"], \"type\": \"phrases\", \"value\": \"4625\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4625\"}}]}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Failed Logon HeatMap [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 4\": \"rgb(255,255,204)\", \"12 - 16\": \"rgb(252,91,46)\", \"16 - 20\": \"rgb(212,16,32)\", \"4 - 8\": \"rgb(254,225,135)\", \"8 - 12\": \"rgb(254,171,73)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":true,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"h\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-05-17T09:37:55.995Z\",\"to\":\"2020-05-22T03:09:27.260Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"group\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTooltip\":false,\"colorSchema\":\"Yellow to Red\",\"colorsNumber\":5,\"colorsRange\":[],\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"label\":\"@timestamp per hour\",\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"user.name: Descending\",\"params\":{}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}]},\"enableHover\":true,\"invertColors\":false,\"legendPosition\":\"bottom\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"black\",\"overwriteColor\":false,\"rotate\":0,\"show\":true},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Failed Logon HeatMap [Winlogbeat Security]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"7.14.0","id":"4b683ac0-a7d7-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTgsMl0="} +{"attributes":{"columns":["event.action","user.name","related.user","user.domain","source.domain","source.ip","winlog.event_data.SubjectUserName"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4625\", \"4740\"], \"type\": \"phrases\", \"value\": \"4625, 4740\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4625\"}}, {\"match_phrase\": {\"event.code\": \"4740\"}}]}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"3. Login Failed Details","version":1},"coreMigrationVersion":"7.14.0","id":"757510b0-a87f-11e9-a422-d144027429da","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTksMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4625\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4625\", \"type\": \"phrase\"}}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Failed Source IP [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"ip\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"type\":\"vis_dimension\"},\"maxFontSize\":38,\"metric\":{\"accessor\":1,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"minFontSize\":10,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Logon Failed Source IP [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"2084e300-a884-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIyMDAsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4625\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4625\", \"type\": \"phrase\"}}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Failed Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Time Bucket\",\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"h\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-05-17T09:37:55.995Z\",\"to\":\"2020-05-22T03:09:27.260Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"bucket\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"user.name\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":1000},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"source workstation\",\"field\":\"source.domain\",\"json\":\"{\\\"missing\\\": \\\"N/A\\\"}\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"source.ip\",\"field\":\"source.ip\",\"json\":\"{\\\"missing\\\": \\\"::\\\"}\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"event.action\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"winlog.logon.type\",\"field\":\"winlog.logon.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"winlog.event_data.SubjectUserName\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"ip\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":4,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":5,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":15,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Logon Failed Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"421f0610-af98-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIyMDEsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboard links - Simple [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Winlogbeat General ECS Dashboard](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/035846a0-a249-11e9-a422-d144027429da?) | [Logon failed and Account Lockout](#/dashboard/f49f3170-9ffc-11ea-87e4-49f31ec44891) | [User Management Events](#/dashboard/8223bed0-b9e9-11e9-b6a2-c9b4015c4baf) | [Group Management Events](#/dashboard/01c54730-fee6-11e9-8405-516218e3d268)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard links - Simple [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"d770b040-9b35-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIzMDEsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4740\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.code\": \"4740\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Blocked Accounts [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Blocked Accounts\",\"field\":\"user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Blocked Accounts [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"5d117970-9ffd-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIyMDMsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4625\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.code\": \"4625\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":" Failed Logons [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Failed Logons\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\" Failed Logons [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"4bedf650-9ffd-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIyMDQsMl0="} +{"attributes":{"description":"Failed and blocked accounts.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"1\",\"w\":14,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"2\",\"w\":12,\"x\":0,\"y\":7},\"panelIndex\":\"2\",\"embeddableConfig\":{\"colors\":{\"Failed Logins\":\"#EF843C\",\"Failed Logons\":\"#E24D42\",\"Successful Login\":\"#B7DBAB\",\"Successful Logon\":\"#9AC48A\"},\"legendOpen\":true,\"vis\":{\"colors\":{\"Failed Logins\":\"#EF843C\",\"Failed Logons\":\"#BF1B00\",\"Successful Login\":\"#B7DBAB\",\"Successful Logon\":\"#9AC48A\"},\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Login Successful vs Failed\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"3\",\"w\":11,\"x\":12,\"y\":35},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Blocked Acoounts\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"4\",\"w\":23,\"x\":12,\"y\":7},\"panelIndex\":\"4\",\"embeddableConfig\":{\"colors\":{\"Login Failed\":\"#F9934E\",\"Login OK\":\"#9AC48A\",\"Logon Failed\":\"#E24D42\",\"Logon Successful\":\"#9AC48A\"},\"legendOpen\":true,\"vis\":{\"colors\":{\"Login Failed\":\"#F9934E\",\"Login OK\":\"#9AC48A\",\"Logon Failed\":\"#BF1B00\",\"Logon Successful\":\"#9AC48A\"},\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Logon Successful and Failed Over time\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"5\",\"w\":12,\"x\":0,\"y\":35},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":30,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":56},\"panelIndex\":\"6\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 5\":\"rgb(255,245,240)\",\"10 - 15\":\"rgb(252,138,106)\",\"15 - 20\":\"rgb(241,68,50)\",\"20 - 24\":\"rgb(188,20,26)\",\"5 - 10\":\"rgb(253,202,181)\"},\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Logon Failed (Time Mosaic View)\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":20,\"i\":\"8\",\"w\":48,\"x\":0,\"y\":86},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Failed and Account Lockouts\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"10\",\"w\":13,\"x\":35,\"y\":7},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Failed Source IPs\",\"panelRefName\":\"panel_10\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":31,\"i\":\"11\",\"w\":25,\"x\":23,\"y\":25},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Failed Logins Table\",\"panelRefName\":\"panel_11\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"a79ee89f-ff45-486c-9788-9446d39456c2\",\"w\":34,\"x\":14,\"y\":0},\"panelIndex\":\"a79ee89f-ff45-486c-9788-9446d39456c2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a79ee89f-ff45-486c-9788-9446d39456c2\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"7765df59-11c4-476d-898f-9ebf98c369e2\",\"w\":11,\"x\":12,\"y\":25},\"panelIndex\":\"7765df59-11c4-476d-898f-9ebf98c369e2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7765df59-11c4-476d-898f-9ebf98c369e2\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"b47c91d3-58c4-4b5b-b302-444b048efdfa\",\"w\":12,\"x\":0,\"y\":25},\"panelIndex\":\"b47c91d3-58c4-4b5b-b302-444b048efdfa\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_b47c91d3-58c4-4b5b-b302-444b048efdfa\"}]","timeRestore":false,"title":"[Winlogbeat Security] Failed and Blocked Accounts - Simple Metrics","version":1},"coreMigrationVersion":"7.14.0","id":"f49f3170-9ffc-11ea-87e4-49f31ec44891","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"c2ea73f0-a4bd-11e9-a422-d144027429da","name":"1:panel_1","type":"visualization"},{"id":"175a5760-a7d5-11e9-a422-d144027429da","name":"2:panel_2","type":"visualization"},{"id":"7a329a00-a7d5-11e9-a422-d144027429da","name":"3:panel_3","type":"visualization"},{"id":"162d7ab0-a7d6-11e9-a422-d144027429da","name":"4:panel_4","type":"visualization"},{"id":"729443b0-a7d6-11e9-a422-d144027429da","name":"5:panel_5","type":"visualization"},{"id":"4b683ac0-a7d7-11e9-a422-d144027429da","name":"6:panel_6","type":"visualization"},{"id":"757510b0-a87f-11e9-a422-d144027429da","name":"8:panel_8","type":"search"},{"id":"2084e300-a884-11e9-a422-d144027429da","name":"10:panel_10","type":"visualization"},{"id":"421f0610-af98-11e9-a422-d144027429da","name":"11:panel_11","type":"visualization"},{"id":"d770b040-9b35-11ea-87e4-49f31ec44891","name":"a79ee89f-ff45-486c-9788-9446d39456c2:panel_a79ee89f-ff45-486c-9788-9446d39456c2","type":"visualization"},{"id":"5d117970-9ffd-11ea-87e4-49f31ec44891","name":"7765df59-11c4-476d-898f-9ebf98c369e2:panel_7765df59-11c4-476d-898f-9ebf98c369e2","type":"visualization"},{"id":"4bedf650-9ffd-11ea-87e4-49f31ec44891","name":"b47c91d3-58c4-4b5b-b302-444b048efdfa:panel_b47c91d3-58c4-4b5b-b302-444b048efdfa","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTIsMl0="} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management-tsvb.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management-tsvb.json deleted file mode 100644 index 0c488dfc117..00000000000 --- a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management-tsvb.json +++ /dev/null @@ -1,4156 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Group management activity with TSVB metrics.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": false - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 8, - "i": "22", - "w": 17, - "x": 0, - "y": 0 - }, - "panelIndex": "22", - "panelRefName": "panel_0", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Group Creation Summary [Winlogbeat Security]" - }, - "gridData": { - "h": 13, - "i": "36", - "w": 9, - "x": 0, - "y": 59 - }, - "panelIndex": "36", - "panelRefName": "panel_1", - "title": "Group Creation Summary [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Group Changes Summary [Winlogbeat Security]" - }, - "gridData": { - "h": 13, - "i": "37", - "w": 9, - "x": 9, - "y": 59 - }, - "panelIndex": "37", - "panelRefName": "panel_2", - "title": "Group Changes Summary [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Group Deletion Summary [Winlogbeat Security]" - }, - "gridData": { - "h": 13, - "i": "38", - "w": 9, - "x": 18, - "y": 59 - }, - "panelIndex": "38", - "panelRefName": "panel_3", - "title": "Group Deletion Summary [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Users Added to Group Summary [Winlogbeat Security]" - }, - "gridData": { - "h": 14, - "i": "39", - "w": 16, - "x": 0, - "y": 81 - }, - "panelIndex": "39", - "panelRefName": "panel_4", - "title": "Users Added to Group Summary [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Users Removed From Group Summary [Winlogbeat Security]" - }, - "gridData": { - "h": 14, - "i": "40", - "w": 17, - "x": 16, - "y": 81 - }, - "panelIndex": "40", - "panelRefName": "panel_5", - "title": "Users Removed From Group Summary [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Group Membership Enumeration Summary [Winlogbeat Security]" - }, - "gridData": { - "h": 14, - "i": "42", - "w": 15, - "x": 33, - "y": 81 - }, - "panelIndex": "42", - "panelRefName": "panel_6", - "title": "Group Membership Enumeration Summary [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Logon Details [Winlogbeat Security]" - }, - "gridData": { - "h": 22, - "i": "43", - "w": 21, - "x": 27, - "y": 50 - }, - "panelIndex": "43", - "panelRefName": "panel_7", - "title": "Logon Details [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "44", - "w": 16, - "x": 0, - "y": 72 - }, - "panelIndex": "44", - "panelRefName": "panel_8", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "45", - "w": 9, - "x": 18, - "y": 50 - }, - "panelIndex": "45", - "panelRefName": "panel_9", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "46", - "w": 9, - "x": 0, - "y": 50 - }, - "panelIndex": "46", - "panelRefName": "panel_10", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "47", - "w": 9, - "x": 9, - "y": 50 - }, - "panelIndex": "47", - "panelRefName": "panel_11", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "48", - "w": 17, - "x": 16, - "y": 72 - }, - "panelIndex": "48", - "panelRefName": "panel_12", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "49", - "w": 15, - "x": 33, - "y": 72 - }, - "panelIndex": "49", - "panelRefName": "panel_13", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 21, - "i": "51", - "w": 48, - "x": 0, - "y": 95 - }, - "panelIndex": "51", - "panelRefName": "panel_14", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 8, - "i": "45614e1c-b2bb-4243-9a74-a4bdd0124c87", - "w": 31, - "x": 17, - "y": 0 - }, - "panelIndex": "45614e1c-b2bb-4243-9a74-a4bdd0124c87", - "panelRefName": "panel_15", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 21, - "i": "88e75800-8125-4c9e-96b8-5c36f6e91664", - "w": 9, - "x": 21, - "y": 8 - }, - "panelIndex": "88e75800-8125-4c9e-96b8-5c36f6e91664", - "panelRefName": "panel_16", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 21, - "i": "4b793b8e-72d4-42a2-b377-1c70f0307414", - "w": 18, - "x": 30, - "y": 8 - }, - "panelIndex": "4b793b8e-72d4-42a2-b377-1c70f0307414", - "panelRefName": "panel_17", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "vis": null - }, - "gridData": { - "h": 21, - "i": "82d229f9-44f4-4c4b-baf7-f9673a14c87f", - "w": 26, - "x": 0, - "y": 29 - }, - "panelIndex": "82d229f9-44f4-4c4b-baf7-f9673a14c87f", - "panelRefName": "panel_18", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "colors": { - "added-group-account": "#1F78C1", - "added-member-to-group": "#0A437C", - "deleted-group-account": "#5195CE", - "modified-group-account": "#0A50A1", - "type-changed-group-account": "#82B5D8", - "user-member-enumerated": "#2F575E" - }, - "vis": { - "colors": { - "added-group-account": "#1F78C1", - "added-member-to-group": "#0A437C", - "deleted-group-account": "#5195CE", - "modified-group-account": "#0A50A1", - "removed-member-from-group": "#82B5D8", - "type-changed-group-account": "#82B5D8", - "user-member-enumerated": "#2F575E" - } - } - }, - "gridData": { - "h": 21, - "i": "f44255b0-d9a8-479f-be3f-829c1f6ed794", - "w": 22, - "x": 26, - "y": 29 - }, - "panelIndex": "f44255b0-d9a8-479f-be3f-829c1f6ed794", - "panelRefName": "panel_19", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "colors": { - "added-group-account": "#0A50A1", - "added-member-to-group": "#1F78C1", - "deleted-group-account": "#5195CE", - "modified-group-account": "#0A437C", - "user-member-enumerated": "#052B51" - }, - "vis": { - "colors": { - "added-group-account": "#0A50A1", - "added-member-to-group": "#1F78C1", - "deleted-group-account": "#5195CE", - "modified-group-account": "#0A437C", - "user-member-enumerated": "#2F575E" - } - } - }, - "gridData": { - "h": 21, - "i": "9c42bff2-b295-4617-8d8c-455bd5948b66", - "w": 21, - "x": 0, - "y": 8 - }, - "panelIndex": "9c42bff2-b295-4617-8d8c-455bd5948b66", - "panelRefName": "panel_20", - "version": "7.7.0" - } - ], - "timeRestore": false, - "title": "[Winlogbeat Security] Group Management Events - Simple Metrics", - "version": 1 - }, - "id": "01c54730-fee6-11e9-8405-516218e3d268", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "6f0f2ea0-f414-11e9-8405-516218e3d268", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "98884120-f49d-11e9-8405-516218e3d268", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "9e534190-f49d-11e9-8405-516218e3d268", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "bb9cf7a0-f49d-11e9-8405-516218e3d268", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "ce867840-f49e-11e9-8405-516218e3d268", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "fee83900-f49f-11e9-8405-516218e3d268", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "bc165210-f4b8-11e9-8405-516218e3d268", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "7e178c80-fee1-11e9-8405-516218e3d268", - "name": "panel_7", - "type": "search" - }, - { - "id": "a13bf640-fee8-11e9-8405-516218e3d268", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "5eeaafd0-fee7-11e9-8405-516218e3d268", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "f42f3b20-fee6-11e9-8405-516218e3d268", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "b5f38780-fee6-11e9-8405-516218e3d268", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "1b5f17d0-feea-11e9-8405-516218e3d268", - "name": "panel_12", - "type": "visualization" - }, - { - "id": "0f2f5280-feeb-11e9-8405-516218e3d268", - "name": "panel_13", - "type": "visualization" - }, - { - "id": "9066d5b0-fef2-11e9-8405-516218e3d268", - "name": "panel_14", - "type": "search" - }, - { - "id": "d770b040-9b35-11ea-87e4-49f31ec44891", - "name": "panel_15", - "type": "visualization" - }, - { - "id": "33462600-9b47-11ea-87e4-49f31ec44891", - "name": "panel_16", - "type": "visualization" - }, - { - "id": "58fb9480-9b46-11ea-87e4-49f31ec44891", - "name": "panel_17", - "type": "visualization" - }, - { - "id": "e20c02d0-9b48-11ea-87e4-49f31ec44891", - "name": "panel_18", - "type": "visualization" - }, - { - "id": "7de2e3f0-9b4d-11ea-87e4-49f31ec44891", - "name": "panel_19", - "type": "visualization" - }, - { - "id": "b89b0c90-9b41-11ea-87e4-49f31ec44891", - "name": "panel_20", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-06-04T16:26:22.158Z", - "version": "WzIxLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Group Management Events - Description [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "# **Group Management Events**\n\n#### This dashboard shows information about Group Management Events collected by winlogbeat\n", - "openLinksInNewTab": false - }, - "title": "Group Management Events - Description [Winlogbeat Security]", - "type": "markdown" - } - }, - "id": "6f0f2ea0-f414-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzEzMCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4731", - "4727", - "4754", - "4744", - "4759", - "4779", - "4790", - "4783" - ], - "type": "phrases", - "value": "4731, 4727, 4754, 4744, 4759, 4779, 4790, 4783" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4731" - } - }, - { - "match_phrase": { - "event.code": "4727" - } - }, - { - "match_phrase": { - "event.code": "4754" - } - }, - { - "match_phrase": { - "event.code": "4744" - } - }, - { - "match_phrase": { - "event.code": "4759" - } - }, - { - "match_phrase": { - "event.code": "4779" - } - }, - { - "match_phrase": { - "event.code": "4790" - } - }, - { - "match_phrase": { - "event.code": "4783" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Groups Created - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Group", - "field": "group.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Domain", - "field": "group.domain", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Performer LogonID", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 3, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 4, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 5, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Groups Created - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "98884120-f49d-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzEzNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4735", - "4737", - "4755", - "4750", - "4760", - "4745", - "4791", - "4784", - "4764" - ], - "type": "phrases", - "value": "4735, 4737, 4755, 4750, 4760, 4745, 4791, 4784, 4764" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4735" - } - }, - { - "match_phrase": { - "event.code": "4737" - } - }, - { - "match_phrase": { - "event.code": "4755" - } - }, - { - "match_phrase": { - "event.code": "4750" - } - }, - { - "match_phrase": { - "event.code": "4760" - } - }, - { - "match_phrase": { - "event.code": "4745" - } - }, - { - "match_phrase": { - "event.code": "4791" - } - }, - { - "match_phrase": { - "event.code": "4784" - } - }, - { - "match_phrase": { - "event.code": "4764" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Group Changes - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Group", - "field": "group.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Domain", - "field": "group.domain", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Performer LogonID", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 3, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 4, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 5, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Group Changes - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "9e534190-f49d-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzEzOCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4734", - "4730", - "4758", - "4748", - "4763", - "4753", - "4792", - "4789" - ], - "type": "phrases", - "value": "4734, 4730, 4758, 4748, 4763, 4753, 4792, 4789" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4734" - } - }, - { - "match_phrase": { - "event.code": "4730" - } - }, - { - "match_phrase": { - "event.code": "4758" - } - }, - { - "match_phrase": { - "event.code": "4748" - } - }, - { - "match_phrase": { - "event.code": "4763" - } - }, - { - "match_phrase": { - "event.code": "4753" - } - }, - { - "match_phrase": { - "event.code": "4792" - } - }, - { - "match_phrase": { - "event.code": "4789" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Groups Deleted - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Group", - "field": "group.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Domain", - "field": "group.domain", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Performer LogonID", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 3, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 4, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 5, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Groups Deleted - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "bb9cf7a0-f49d-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzEzOSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4732", - "4728", - "4756", - "4751", - "4761", - "4746", - "4785", - "4787" - ], - "type": "phrases", - "value": "4732, 4728, 4756, 4751, 4761, 4746, 4785, 4787" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4732" - } - }, - { - "match_phrase": { - "event.code": "4728" - } - }, - { - "match_phrase": { - "event.code": "4756" - } - }, - { - "match_phrase": { - "event.code": "4751" - } - }, - { - "match_phrase": { - "event.code": "4761" - } - }, - { - "match_phrase": { - "event.code": "4746" - } - }, - { - "match_phrase": { - "event.code": "4785" - } - }, - { - "match_phrase": { - "event.code": "4787" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Added - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "User", - "field": "winlog.event_data.MemberName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Group", - "field": "group.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Domain", - "field": "group.domain", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Performed by", - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "Performed by Logon ID", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 3, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 4, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 5, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 5, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Added - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "ce867840-f49e-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0MCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4733", - "4729", - "4757", - "4786", - "4788", - "4752", - "4762", - "4747" - ], - "type": "phrases", - "value": "4733, 4729, 4757, 4786, 4788, 4752, 4762, 4747" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4733" - } - }, - { - "match_phrase": { - "event.code": "4729" - } - }, - { - "match_phrase": { - "event.code": "4757" - } - }, - { - "match_phrase": { - "event.code": "4786" - } - }, - { - "match_phrase": { - "event.code": "4788" - } - }, - { - "match_phrase": { - "event.code": "4752" - } - }, - { - "match_phrase": { - "event.code": "4762" - } - }, - { - "match_phrase": { - "event.code": "4747" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Removed from Group - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "User", - "field": "winlog.event_data.MemberName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Group", - "field": "group.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Domain", - "field": "group.domain", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "Performed by Logon ID", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 3, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 4, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 5, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 5, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Removed from Group - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "fee83900-f49f-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0MSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4799" - ], - "type": "phrases", - "value": "4799" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4799" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Group Enumeration - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Group", - "field": "group.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Domain", - "field": "group.domain", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Creator", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Creator LogonID", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 3, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 4, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 5, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Group Enumeration - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "bc165210-f4b8-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0MiwxXQ==" - }, - { - "attributes": { - "columns": [ - "user.name", - "source.domain", - "source.ip", - "winlog.logon.id", - "winlog.logon.type" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4624" - ], - "type": "phrases", - "value": "4624" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4624" - } - } - ] - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Logon Details [Winlogbeat Security]", - "version": 1 - }, - "id": "7e178c80-fee1-11e9-8405-516218e3d268", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0MywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4732", - "4728", - "4756", - "4751", - "4761", - "4746", - "4785", - "4787" - ], - "type": "phrases", - "value": "4732, 4728, 4756, 4751, 4761, 4746, 4785, 4787" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4732" - } - }, - { - "match_phrase": { - "event.code": "4728" - } - }, - { - "match_phrase": { - "event.code": "4756" - } - }, - { - "match_phrase": { - "event.code": "4751" - } - }, - { - "match_phrase": { - "event.code": "4761" - } - }, - { - "match_phrase": { - "event.code": "4746" - } - }, - { - "match_phrase": { - "event.code": "4785" - } - }, - { - "match_phrase": { - "event.code": "4787" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Users Added - Simple Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Users Added to Groups" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Reds", - "colorsRange": [ - { - "from": 0, - "to": 1, - "type": "range" - }, - { - "from": 1, - "to": 5 - }, - { - "from": 5, - "to": 10 - }, - { - "from": 10, - "to": 15 - }, - { - "from": 15, - "to": 20 - }, - { - "from": 20, - "to": 9999 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "Labels", - "percentageMode": false, - "style": { - "bgColor": true, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Users Added - Simple Metric [Winlogbeat Security]", - "type": "metric" - } - }, - "id": "a13bf640-fee8-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:22.158Z", - "version": "WzMwLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4734", - "4730", - "4758", - "4748", - "4763", - "4753", - "4792", - "4789" - ], - "type": "phrases", - "value": "4734, 4730, 4758, 4748, 4763, 4753, 4792, 4789" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4734" - } - }, - { - "match_phrase": { - "event.code": "4730" - } - }, - { - "match_phrase": { - "event.code": "4758" - } - }, - { - "match_phrase": { - "event.code": "4748" - } - }, - { - "match_phrase": { - "event.code": "4763" - } - }, - { - "match_phrase": { - "event.code": "4753" - } - }, - { - "match_phrase": { - "event.code": "4792" - } - }, - { - "match_phrase": { - "event.code": "4789" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Groups Deleted- Simple Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Groups Deleted" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Greens", - "colorsRange": [ - { - "from": 0, - "to": 1, - "type": "range" - }, - { - "from": 1, - "to": 5 - }, - { - "from": 5, - "to": 10 - }, - { - "from": 10, - "to": 15 - }, - { - "from": 15, - "to": 20 - }, - { - "from": 20, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "Labels", - "percentageMode": false, - "style": { - "bgColor": true, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Groups Deleted- Simple Metric [Winlogbeat Security]", - "type": "metric" - } - }, - "id": "5eeaafd0-fee7-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:22.158Z", - "version": "WzMxLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4731", - "4727", - "4754", - "4744", - "4759", - "4779", - "4790", - "4783" - ], - "type": "phrases", - "value": "4731, 4727, 4754, 4744, 4759, 4779, 4790, 4783" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4731" - } - }, - { - "match_phrase": { - "event.code": "4727" - } - }, - { - "match_phrase": { - "event.code": "4754" - } - }, - { - "match_phrase": { - "event.code": "4744" - } - }, - { - "match_phrase": { - "event.code": "4759" - } - }, - { - "match_phrase": { - "event.code": "4779" - } - }, - { - "match_phrase": { - "event.code": "4790" - } - }, - { - "match_phrase": { - "event.code": "4783" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Groups Created - Simple Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Groups Created" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Reds", - "colorsRange": [ - { - "from": 0, - "to": 1, - "type": "range" - }, - { - "from": 1, - "to": 10 - }, - { - "from": 10, - "to": 20 - }, - { - "from": 20, - "to": 9999 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "Labels", - "percentageMode": false, - "style": { - "bgColor": true, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Groups Created - Simple Metric [Winlogbeat Security]", - "type": "metric" - } - }, - "id": "f42f3b20-fee6-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:22.158Z", - "version": "WzMyLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4735", - "4737", - "4755", - "4750", - "4760", - "4745", - "4791", - "4784", - "4764" - ], - "type": "phrases", - "value": "4735, 4737, 4755, 4750, 4760, 4745, 4791, 4784, 4764" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4735" - } - }, - { - "match_phrase": { - "event.code": "4737" - } - }, - { - "match_phrase": { - "event.code": "4755" - } - }, - { - "match_phrase": { - "event.code": "4750" - } - }, - { - "match_phrase": { - "event.code": "4760" - } - }, - { - "match_phrase": { - "event.code": "4745" - } - }, - { - "match_phrase": { - "event.code": "4791" - } - }, - { - "match_phrase": { - "event.code": "4784" - } - }, - { - "match_phrase": { - "event.code": "4764" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Groups Changes - Simple Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Groups Changed" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Yellow to Red", - "colorsRange": [ - { - "from": 0, - "to": 1, - "type": "range" - }, - { - "from": 1, - "to": 5 - }, - { - "from": 5, - "to": 10 - }, - { - "from": 10, - "to": 15 - }, - { - "from": 15, - "to": 20 - }, - { - "from": 20, - "to": 100000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "Labels", - "percentageMode": false, - "style": { - "bgColor": true, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Groups Changes - Simple Metric [Winlogbeat Security]", - "type": "metric" - } - }, - "id": "b5f38780-fee6-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:22.158Z", - "version": "WzMzLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4733", - "4729", - "4757", - "4786", - "4788", - "4752", - "4762", - "4747" - ], - "type": "phrases", - "value": "4733, 4729, 4757, 4786, 4788, 4752, 4762, 4747" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4733" - } - }, - { - "match_phrase": { - "event.code": "4729" - } - }, - { - "match_phrase": { - "event.code": "4757" - } - }, - { - "match_phrase": { - "event.code": "4786" - } - }, - { - "match_phrase": { - "event.code": "4788" - } - }, - { - "match_phrase": { - "event.code": "4752" - } - }, - { - "match_phrase": { - "event.code": "4762" - } - }, - { - "match_phrase": { - "event.code": "4747" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Users Removed from Group - Simple Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Users Removed from Groups" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Greens", - "colorsRange": [ - { - "from": 0, - "to": 1, - "type": "range" - }, - { - "from": 1, - "to": 5 - }, - { - "from": 5, - "to": 9 - }, - { - "from": 9, - "to": 13 - }, - { - "from": 13, - "to": 17 - }, - { - "from": 17, - "to": 20000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "Labels", - "percentageMode": false, - "style": { - "bgColor": true, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Users Removed from Group - Simple Metric [Winlogbeat Security]", - "type": "metric" - } - }, - "id": "1b5f17d0-feea-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:22.158Z", - "version": "WzM0LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4799" - }, - "type": "phrase", - "value": "4799" - }, - "query": { - "match": { - "event.code": { - "query": "4799", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Group Membership Enumeration - Simple Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Group Membership Enumerated" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Blues", - "colorsRange": [ - { - "from": 0, - "to": 500, - "type": "range" - }, - { - "from": 500, - "to": 20000 - }, - { - "from": 20000, - "to": 30000 - }, - { - "from": 30000, - "to": 40000 - } - ], - "invertColors": true, - "labels": { - "show": true - }, - "metricColorMode": "Labels", - "percentageMode": false, - "style": { - "bgColor": true, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Group Membership Enumeration - Simple Metric [Winlogbeat Security]", - "type": "metric" - } - }, - "id": "0f2f5280-feeb-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:22.158Z", - "version": "WzM1LDFd" - }, - { - "attributes": { - "columns": [ - "event.action", - "group.name", - "group.domain", - "user.name", - "user.domain", - "host.name" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4731", - "4732", - "4733", - "4734", - "4735", - "4737", - "4764", - "4727", - "4728", - "4729", - "4730", - "4754", - "4755", - "4756", - "4757", - "4758", - "4799", - "4749", - "4750", - "4751", - "4752", - "4753", - "4759", - "4760", - "4761", - "4762", - "4763", - "4744", - "4745", - "4746", - "4748" - ], - "type": "phrases", - "value": "4731, 4732, 4733, 4734, 4735, 4737, 4764, 4727, 4728, 4729, 4730, 4754, 4755, 4756, 4757, 4758, 4799, 4749, 4750, 4751, 4752, 4753, 4759, 4760, 4761, 4762, 4763, 4744, 4745, 4746, 4748" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4731" - } - }, - { - "match_phrase": { - "event.code": "4732" - } - }, - { - "match_phrase": { - "event.code": "4733" - } - }, - { - "match_phrase": { - "event.code": "4734" - } - }, - { - "match_phrase": { - "event.code": "4735" - } - }, - { - "match_phrase": { - "event.code": "4737" - } - }, - { - "match_phrase": { - "event.code": "4764" - } - }, - { - "match_phrase": { - "event.code": "4727" - } - }, - { - "match_phrase": { - "event.code": "4728" - } - }, - { - "match_phrase": { - "event.code": "4729" - } - }, - { - "match_phrase": { - "event.code": "4730" - } - }, - { - "match_phrase": { - "event.code": "4754" - } - }, - { - "match_phrase": { - "event.code": "4755" - } - }, - { - "match_phrase": { - "event.code": "4756" - } - }, - { - "match_phrase": { - "event.code": "4757" - } - }, - { - "match_phrase": { - "event.code": "4758" - } - }, - { - "match_phrase": { - "event.code": "4799" - } - }, - { - "match_phrase": { - "event.code": "4749" - } - }, - { - "match_phrase": { - "event.code": "4750" - } - }, - { - "match_phrase": { - "event.code": "4751" - } - }, - { - "match_phrase": { - "event.code": "4752" - } - }, - { - "match_phrase": { - "event.code": "4753" - } - }, - { - "match_phrase": { - "event.code": "4759" - } - }, - { - "match_phrase": { - "event.code": "4760" - } - }, - { - "match_phrase": { - "event.code": "4761" - } - }, - { - "match_phrase": { - "event.code": "4762" - } - }, - { - "match_phrase": { - "event.code": "4763" - } - }, - { - "match_phrase": { - "event.code": "4744" - } - }, - { - "match_phrase": { - "event.code": "4745" - } - }, - { - "match_phrase": { - "event.code": "4746" - } - }, - { - "match_phrase": { - "event.code": "4748" - } - } - ] - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "lucene", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Group Management Details - Search View [Winlogbeat Security]", - "version": 1 - }, - "id": "9066d5b0-fef2-11e9-8405-516218e3d268", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboard links - Simple [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Winlogbeat General ECS Dashboard](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/035846a0-a249-11e9-a422-d144027429da?) | [Logon failed and Account Lockout](#/dashboard/f49f3170-9ffc-11ea-87e4-49f31ec44891) | [User Management Events](#/dashboard/8223bed0-b9e9-11e9-b6a2-c9b4015c4baf) | [Group Management Events](#/dashboard/01c54730-fee6-11e9-8405-516218e3d268)", - "openLinksInNewTab": false - }, - "title": "Dashboard links - Simple [Winlogbeat Security]", - "type": "markdown" - } - }, - "id": "d770b040-9b35-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE3NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Group Management Events - Event Actions - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "event.action", - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 50 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "event.code", - "field": "event.code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Group Management Events - Event Actions - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "33462600-9b47-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "9066d5b0-fef2-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0NywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Group Management Events - Target Groups - Tag Cloud [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "group.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "maxFontSize": 58, - "minFontSize": 18, - "orientation": "single", - "scale": "linear", - "showLabel": false - }, - "title": "Group Management Events - Target Groups - Tag Cloud [Winlogbeat Security]", - "type": "tagcloud" - } - }, - "id": "58fb9480-9b46-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "9066d5b0-fef2-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Group Management Events - Groups vs Actions - Heatmap [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Target Groups", - "field": "group.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Actions", - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "colorSchema": "Blues", - "colorsNumber": 4, - "colorsRange": [], - "enableHover": false, - "invertColors": false, - "legendPosition": "right", - "percentageMode": false, - "setColorRange": false, - "times": [], - "type": "heatmap", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "color": "black", - "overwriteColor": false, - "rotate": 0, - "show": true - }, - "scale": { - "defaultYExtents": false, - "type": "linear" - }, - "show": false, - "type": "value" - } - ] - }, - "title": "Group Management Events - Groups vs Actions - Heatmap [Winlogbeat Security]", - "type": "heatmap" - } - }, - "id": "e20c02d0-9b48-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "9066d5b0-fef2-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0OCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Group Management Action Distribution over Time [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "now-30d", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 25 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "valueAxis": "" - }, - "labels": { - "show": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Group Management Action Distribution over Time [Winlogbeat Security]", - "type": "histogram" - } - }, - "id": "7de2e3f0-9b4d-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "9066d5b0-fef2-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0OSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Group Management Events - Event Actions [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Group Management Events - Event Actions [Winlogbeat Security]", - "type": "pie" - } - }, - "id": "b89b0c90-9b41-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "9066d5b0-fef2-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0NSwxXQ==" - } - ], - "version": "7.7.0" -} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management-tsvb.ndjson b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management-tsvb.ndjson new file mode 100644 index 00000000000..9ad799682d5 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management-tsvb.ndjson @@ -0,0 +1,22 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Group Management Events - Description [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"# **Group Management Events**\\n\\n#### This dashboard shows information about Group Management Events collected by winlogbeat\\n\",\"openLinksInNewTab\":false},\"title\":\"Group Management Events - Description [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"6f0f2ea0-f414-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMjgsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4731\", \"4727\", \"4754\", \"4744\", \"4759\", \"4779\", \"4790\", \"4783\"], \"type\": \"phrases\", \"value\": \"4731, 4727, 4754, 4744, 4759, 4779, 4790, 4783\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4731\"}}, {\"match_phrase\": {\"event.code\": \"4727\"}}, {\"match_phrase\": {\"event.code\": \"4754\"}}, {\"match_phrase\": {\"event.code\": \"4744\"}}, {\"match_phrase\": {\"event.code\": \"4759\"}}, {\"match_phrase\": {\"event.code\": \"4779\"}}, {\"match_phrase\": {\"event.code\": \"4790\"}}, {\"match_phrase\": {\"event.code\": \"4783\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Groups Created - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performer LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Groups Created - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"98884120-f49d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzUsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4735\", \"4737\", \"4755\", \"4750\", \"4760\", \"4745\", \"4791\", \"4784\", \"4764\"], \"type\": \"phrases\", \"value\": \"4735, 4737, 4755, 4750, 4760, 4745, 4791, 4784, 4764\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4735\"}}, {\"match_phrase\": {\"event.code\": \"4737\"}}, {\"match_phrase\": {\"event.code\": \"4755\"}}, {\"match_phrase\": {\"event.code\": \"4750\"}}, {\"match_phrase\": {\"event.code\": \"4760\"}}, {\"match_phrase\": {\"event.code\": \"4745\"}}, {\"match_phrase\": {\"event.code\": \"4791\"}}, {\"match_phrase\": {\"event.code\": \"4784\"}}, {\"match_phrase\": {\"event.code\": \"4764\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Group Changes - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performer LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Group Changes - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"9e534190-f49d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzYsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4734\", \"4730\", \"4758\", \"4748\", \"4763\", \"4753\", \"4792\", \"4789\"], \"type\": \"phrases\", \"value\": \"4734, 4730, 4758, 4748, 4763, 4753, 4792, 4789\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4734\"}}, {\"match_phrase\": {\"event.code\": \"4730\"}}, {\"match_phrase\": {\"event.code\": \"4758\"}}, {\"match_phrase\": {\"event.code\": \"4748\"}}, {\"match_phrase\": {\"event.code\": \"4763\"}}, {\"match_phrase\": {\"event.code\": \"4753\"}}, {\"match_phrase\": {\"event.code\": \"4792\"}}, {\"match_phrase\": {\"event.code\": \"4789\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Groups Deleted - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performer LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Groups Deleted - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"bb9cf7a0-f49d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzcsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4732\", \"4728\", \"4756\", \"4751\", \"4761\", \"4746\", \"4785\", \"4787\"], \"type\": \"phrases\", \"value\": \"4732, 4728, 4756, 4751, 4761, 4746, 4785, 4787\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4732\"}}, {\"match_phrase\": {\"event.code\": \"4728\"}}, {\"match_phrase\": {\"event.code\": \"4756\"}}, {\"match_phrase\": {\"event.code\": \"4751\"}}, {\"match_phrase\": {\"event.code\": \"4761\"}}, {\"match_phrase\": {\"event.code\": \"4746\"}}, {\"match_phrase\": {\"event.code\": \"4785\"}}, {\"match_phrase\": {\"event.code\": \"4787\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Added - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"User\",\"field\":\"winlog.event_data.MemberName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Performed by Logon ID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":4,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":5,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Added - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"ce867840-f49e-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzgsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4733\", \"4729\", \"4757\", \"4786\", \"4788\", \"4752\", \"4762\", \"4747\"], \"type\": \"phrases\", \"value\": \"4733, 4729, 4757, 4786, 4788, 4752, 4762, 4747\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4733\"}}, {\"match_phrase\": {\"event.code\": \"4729\"}}, {\"match_phrase\": {\"event.code\": \"4757\"}}, {\"match_phrase\": {\"event.code\": \"4786\"}}, {\"match_phrase\": {\"event.code\": \"4788\"}}, {\"match_phrase\": {\"event.code\": \"4752\"}}, {\"match_phrase\": {\"event.code\": \"4762\"}}, {\"match_phrase\": {\"event.code\": \"4747\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Removed from Group - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"User\",\"field\":\"winlog.event_data.MemberName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Performed by Logon ID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":4,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":5,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Removed from Group - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"fee83900-f49f-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzksMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4799\"], \"type\": \"phrases\", \"value\": \"4799\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4799\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Group Enumeration - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Creator\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Creator LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Group Enumeration - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"bc165210-f4b8-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDAsMl0="} +{"attributes":{"columns":["user.name","source.domain","source.ip","winlog.logon.id","winlog.logon.type"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4624\"], \"type\": \"phrases\", \"value\": \"4624\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4624\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Logon Details [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"7e178c80-fee1-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTcsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4732\", \"4728\", \"4756\", \"4751\", \"4761\", \"4746\", \"4785\", \"4787\"], \"type\": \"phrases\", \"value\": \"4732, 4728, 4756, 4751, 4761, 4746, 4785, 4787\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4732\"}}, {\"match_phrase\": {\"event.code\": \"4728\"}}, {\"match_phrase\": {\"event.code\": \"4756\"}}, {\"match_phrase\": {\"event.code\": \"4751\"}}, {\"match_phrase\": {\"event.code\": \"4761\"}}, {\"match_phrase\": {\"event.code\": \"4746\"}}, {\"match_phrase\": {\"event.code\": \"4785\"}}, {\"match_phrase\": {\"event.code\": \"4787\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Users Added - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Users Added to Groups\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Reds\",\"colorsRange\":[{\"from\":0,\"to\":1,\"type\":\"range\"},{\"from\":1,\"to\":5},{\"from\":5,\"to\":10},{\"from\":10,\"to\":15},{\"from\":15,\"to\":20},{\"from\":20,\"to\":9999}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"Labels\",\"percentageMode\":false,\"style\":{\"bgColor\":true,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Added - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"a13bf640-fee8-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:55.318Z","version":"WzIyMTQsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4734\", \"4730\", \"4758\", \"4748\", \"4763\", \"4753\", \"4792\", \"4789\"], \"type\": \"phrases\", \"value\": \"4734, 4730, 4758, 4748, 4763, 4753, 4792, 4789\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4734\"}}, {\"match_phrase\": {\"event.code\": \"4730\"}}, {\"match_phrase\": {\"event.code\": \"4758\"}}, {\"match_phrase\": {\"event.code\": \"4748\"}}, {\"match_phrase\": {\"event.code\": \"4763\"}}, {\"match_phrase\": {\"event.code\": \"4753\"}}, {\"match_phrase\": {\"event.code\": \"4792\"}}, {\"match_phrase\": {\"event.code\": \"4789\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Groups Deleted- Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Groups Deleted\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Greens\",\"colorsRange\":[{\"from\":0,\"to\":1,\"type\":\"range\"},{\"from\":1,\"to\":5},{\"from\":5,\"to\":10},{\"from\":10,\"to\":15},{\"from\":15,\"to\":20},{\"from\":20,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"Labels\",\"percentageMode\":false,\"style\":{\"bgColor\":true,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Groups Deleted- Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"5eeaafd0-fee7-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:55.318Z","version":"WzIyMTUsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4731\", \"4727\", \"4754\", \"4744\", \"4759\", \"4779\", \"4790\", \"4783\"], \"type\": \"phrases\", \"value\": \"4731, 4727, 4754, 4744, 4759, 4779, 4790, 4783\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4731\"}}, {\"match_phrase\": {\"event.code\": \"4727\"}}, {\"match_phrase\": {\"event.code\": \"4754\"}}, {\"match_phrase\": {\"event.code\": \"4744\"}}, {\"match_phrase\": {\"event.code\": \"4759\"}}, {\"match_phrase\": {\"event.code\": \"4779\"}}, {\"match_phrase\": {\"event.code\": \"4790\"}}, {\"match_phrase\": {\"event.code\": \"4783\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Groups Created - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Groups Created\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Reds\",\"colorsRange\":[{\"from\":0,\"to\":1,\"type\":\"range\"},{\"from\":1,\"to\":10},{\"from\":10,\"to\":20},{\"from\":20,\"to\":9999}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"Labels\",\"percentageMode\":false,\"style\":{\"bgColor\":true,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Groups Created - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"f42f3b20-fee6-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:55.318Z","version":"WzIyMTYsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4735\", \"4737\", \"4755\", \"4750\", \"4760\", \"4745\", \"4791\", \"4784\", \"4764\"], \"type\": \"phrases\", \"value\": \"4735, 4737, 4755, 4750, 4760, 4745, 4791, 4784, 4764\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4735\"}}, {\"match_phrase\": {\"event.code\": \"4737\"}}, {\"match_phrase\": {\"event.code\": \"4755\"}}, {\"match_phrase\": {\"event.code\": \"4750\"}}, {\"match_phrase\": {\"event.code\": \"4760\"}}, {\"match_phrase\": {\"event.code\": \"4745\"}}, {\"match_phrase\": {\"event.code\": \"4791\"}}, {\"match_phrase\": {\"event.code\": \"4784\"}}, {\"match_phrase\": {\"event.code\": \"4764\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Groups Changes - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Groups Changed\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Yellow to Red\",\"colorsRange\":[{\"from\":0,\"to\":1,\"type\":\"range\"},{\"from\":1,\"to\":5},{\"from\":5,\"to\":10},{\"from\":10,\"to\":15},{\"from\":15,\"to\":20},{\"from\":20,\"to\":100000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"Labels\",\"percentageMode\":false,\"style\":{\"bgColor\":true,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Groups Changes - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"b5f38780-fee6-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:55.318Z","version":"WzIyMTcsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4733\", \"4729\", \"4757\", \"4786\", \"4788\", \"4752\", \"4762\", \"4747\"], \"type\": \"phrases\", \"value\": \"4733, 4729, 4757, 4786, 4788, 4752, 4762, 4747\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4733\"}}, {\"match_phrase\": {\"event.code\": \"4729\"}}, {\"match_phrase\": {\"event.code\": \"4757\"}}, {\"match_phrase\": {\"event.code\": \"4786\"}}, {\"match_phrase\": {\"event.code\": \"4788\"}}, {\"match_phrase\": {\"event.code\": \"4752\"}}, {\"match_phrase\": {\"event.code\": \"4762\"}}, {\"match_phrase\": {\"event.code\": \"4747\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Users Removed from Group - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Users Removed from Groups\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Greens\",\"colorsRange\":[{\"from\":0,\"to\":1,\"type\":\"range\"},{\"from\":1,\"to\":5},{\"from\":5,\"to\":9},{\"from\":9,\"to\":13},{\"from\":13,\"to\":17},{\"from\":17,\"to\":20000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"Labels\",\"percentageMode\":false,\"style\":{\"bgColor\":true,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Removed from Group - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"1b5f17d0-feea-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:55.318Z","version":"WzIyMTgsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4799\"}, \"type\": \"phrase\", \"value\": \"4799\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4799\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Group Membership Enumeration - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Group Membership Enumerated\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Blues\",\"colorsRange\":[{\"from\":0,\"to\":500,\"type\":\"range\"},{\"from\":500,\"to\":20000},{\"from\":20000,\"to\":30000},{\"from\":30000,\"to\":40000}],\"invertColors\":true,\"labels\":{\"show\":true},\"metricColorMode\":\"Labels\",\"percentageMode\":false,\"style\":{\"bgColor\":true,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Group Membership Enumeration - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"0f2f5280-feeb-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:55.318Z","version":"WzIyMTksMl0="} +{"attributes":{"columns":["event.action","group.name","group.domain","user.name","user.domain","host.name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4731\", \"4732\", \"4733\", \"4734\", \"4735\", \"4737\", \"4764\", \"4727\", \"4728\", \"4729\", \"4730\", \"4754\", \"4755\", \"4756\", \"4757\", \"4758\", \"4799\", \"4749\", \"4750\", \"4751\", \"4752\", \"4753\", \"4759\", \"4760\", \"4761\", \"4762\", \"4763\", \"4744\", \"4745\", \"4746\", \"4748\"], \"type\": \"phrases\", \"value\": \"4731, 4732, 4733, 4734, 4735, 4737, 4764, 4727, 4728, 4729, 4730, 4754, 4755, 4756, 4757, 4758, 4799, 4749, 4750, 4751, 4752, 4753, 4759, 4760, 4761, 4762, 4763, 4744, 4745, 4746, 4748\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4731\"}}, {\"match_phrase\": {\"event.code\": \"4732\"}}, {\"match_phrase\": {\"event.code\": \"4733\"}}, {\"match_phrase\": {\"event.code\": \"4734\"}}, {\"match_phrase\": {\"event.code\": \"4735\"}}, {\"match_phrase\": {\"event.code\": \"4737\"}}, {\"match_phrase\": {\"event.code\": \"4764\"}}, {\"match_phrase\": {\"event.code\": \"4727\"}}, {\"match_phrase\": {\"event.code\": \"4728\"}}, {\"match_phrase\": {\"event.code\": \"4729\"}}, {\"match_phrase\": {\"event.code\": \"4730\"}}, {\"match_phrase\": {\"event.code\": \"4754\"}}, {\"match_phrase\": {\"event.code\": \"4755\"}}, {\"match_phrase\": {\"event.code\": \"4756\"}}, {\"match_phrase\": {\"event.code\": \"4757\"}}, {\"match_phrase\": {\"event.code\": \"4758\"}}, {\"match_phrase\": {\"event.code\": \"4799\"}}, {\"match_phrase\": {\"event.code\": \"4749\"}}, {\"match_phrase\": {\"event.code\": \"4750\"}}, {\"match_phrase\": {\"event.code\": \"4751\"}}, {\"match_phrase\": {\"event.code\": \"4752\"}}, {\"match_phrase\": {\"event.code\": \"4753\"}}, {\"match_phrase\": {\"event.code\": \"4759\"}}, {\"match_phrase\": {\"event.code\": \"4760\"}}, {\"match_phrase\": {\"event.code\": \"4761\"}}, {\"match_phrase\": {\"event.code\": \"4762\"}}, {\"match_phrase\": {\"event.code\": \"4763\"}}, {\"match_phrase\": {\"event.code\": \"4744\"}}, {\"match_phrase\": {\"event.code\": \"4745\"}}, {\"match_phrase\": {\"event.code\": \"4746\"}}, {\"match_phrase\": {\"event.code\": \"4748\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Group Management Details - Search View [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"9066d5b0-fef2-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDIsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboard links - Simple [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Winlogbeat General ECS Dashboard](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/035846a0-a249-11e9-a422-d144027429da?) | [Logon failed and Account Lockout](#/dashboard/f49f3170-9ffc-11ea-87e4-49f31ec44891) | [User Management Events](#/dashboard/8223bed0-b9e9-11e9-b6a2-c9b4015c4baf) | [Group Management Events](#/dashboard/01c54730-fee6-11e9-8405-516218e3d268)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard links - Simple [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"d770b040-9b35-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIzMDEsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Events - Event Actions - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"event.action\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"event.code\",\"field\":\"event.code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Group Management Events - Event Actions - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"33462600-9b47-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDUsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Events - Target Groups - Tag Cloud [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":58,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Group Management Events - Target Groups - Tag Cloud [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"58fb9480-9b46-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDQsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Events - Groups vs Actions - Heatmap [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Target Groups\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Actions\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Blues\",\"colorsNumber\":4,\"colorsRange\":[],\"enableHover\":false,\"invertColors\":false,\"legendPosition\":\"right\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"black\",\"overwriteColor\":false,\"rotate\":0,\"show\":true},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Group Management Events - Groups vs Actions - Heatmap [Winlogbeat Security]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"7.14.0","id":"e20c02d0-9b48-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDYsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Action Distribution over Time [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-30d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"valueAxis\":\"\"},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Group Management Action Distribution over Time [Winlogbeat Security]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"7.14.0","id":"7de2e3f0-9b4d-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDcsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Events - Event Actions [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Group Management Events - Event Actions [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"b89b0c90-9b41-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDMsMl0="} +{"attributes":{"description":"Group management activity with TSVB metrics.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"22\",\"w\":17,\"x\":0,\"y\":0},\"panelIndex\":\"22\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_22\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"36\",\"w\":9,\"x\":0,\"y\":59},\"panelIndex\":\"36\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Creation Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_36\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"37\",\"w\":9,\"x\":9,\"y\":59},\"panelIndex\":\"37\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Changes Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_37\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"38\",\"w\":9,\"x\":18,\"y\":59},\"panelIndex\":\"38\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Deletion Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_38\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"39\",\"w\":16,\"x\":0,\"y\":81},\"panelIndex\":\"39\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Users Added to Group Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_39\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"40\",\"w\":17,\"x\":16,\"y\":81},\"panelIndex\":\"40\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Users Removed From Group Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_40\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"42\",\"w\":15,\"x\":33,\"y\":81},\"panelIndex\":\"42\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Membership Enumeration Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_42\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":22,\"i\":\"43\",\"w\":21,\"x\":27,\"y\":50},\"panelIndex\":\"43\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Details [Winlogbeat Security]\",\"panelRefName\":\"panel_43\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"44\",\"w\":16,\"x\":0,\"y\":72},\"panelIndex\":\"44\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_44\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"45\",\"w\":9,\"x\":18,\"y\":50},\"panelIndex\":\"45\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_45\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"46\",\"w\":9,\"x\":0,\"y\":50},\"panelIndex\":\"46\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_46\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"47\",\"w\":9,\"x\":9,\"y\":50},\"panelIndex\":\"47\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_47\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"48\",\"w\":17,\"x\":16,\"y\":72},\"panelIndex\":\"48\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_48\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"49\",\"w\":15,\"x\":33,\"y\":72},\"panelIndex\":\"49\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_49\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":21,\"i\":\"51\",\"w\":48,\"x\":0,\"y\":95},\"panelIndex\":\"51\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_51\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"45614e1c-b2bb-4243-9a74-a4bdd0124c87\",\"w\":31,\"x\":17,\"y\":0},\"panelIndex\":\"45614e1c-b2bb-4243-9a74-a4bdd0124c87\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_45614e1c-b2bb-4243-9a74-a4bdd0124c87\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"88e75800-8125-4c9e-96b8-5c36f6e91664\",\"w\":9,\"x\":21,\"y\":8},\"panelIndex\":\"88e75800-8125-4c9e-96b8-5c36f6e91664\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_88e75800-8125-4c9e-96b8-5c36f6e91664\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"4b793b8e-72d4-42a2-b377-1c70f0307414\",\"w\":18,\"x\":30,\"y\":8},\"panelIndex\":\"4b793b8e-72d4-42a2-b377-1c70f0307414\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4b793b8e-72d4-42a2-b377-1c70f0307414\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"82d229f9-44f4-4c4b-baf7-f9673a14c87f\",\"w\":26,\"x\":0,\"y\":29},\"panelIndex\":\"82d229f9-44f4-4c4b-baf7-f9673a14c87f\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"panelRefName\":\"panel_82d229f9-44f4-4c4b-baf7-f9673a14c87f\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"f44255b0-d9a8-479f-be3f-829c1f6ed794\",\"w\":22,\"x\":26,\"y\":29},\"panelIndex\":\"f44255b0-d9a8-479f-be3f-829c1f6ed794\",\"embeddableConfig\":{\"colors\":{\"added-group-account\":\"#1F78C1\",\"added-member-to-group\":\"#0A437C\",\"deleted-group-account\":\"#5195CE\",\"modified-group-account\":\"#0A50A1\",\"type-changed-group-account\":\"#82B5D8\",\"user-member-enumerated\":\"#2F575E\"},\"vis\":{\"colors\":{\"added-group-account\":\"#1F78C1\",\"added-member-to-group\":\"#0A437C\",\"deleted-group-account\":\"#5195CE\",\"modified-group-account\":\"#0A50A1\",\"removed-member-from-group\":\"#82B5D8\",\"type-changed-group-account\":\"#82B5D8\",\"user-member-enumerated\":\"#2F575E\"}},\"enhancements\":{}},\"panelRefName\":\"panel_f44255b0-d9a8-479f-be3f-829c1f6ed794\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"9c42bff2-b295-4617-8d8c-455bd5948b66\",\"w\":21,\"x\":0,\"y\":8},\"panelIndex\":\"9c42bff2-b295-4617-8d8c-455bd5948b66\",\"embeddableConfig\":{\"colors\":{\"added-group-account\":\"#0A50A1\",\"added-member-to-group\":\"#1F78C1\",\"deleted-group-account\":\"#5195CE\",\"modified-group-account\":\"#0A437C\",\"user-member-enumerated\":\"#052B51\"},\"vis\":{\"colors\":{\"added-group-account\":\"#0A50A1\",\"added-member-to-group\":\"#1F78C1\",\"deleted-group-account\":\"#5195CE\",\"modified-group-account\":\"#0A437C\",\"user-member-enumerated\":\"#2F575E\"}},\"enhancements\":{}},\"panelRefName\":\"panel_9c42bff2-b295-4617-8d8c-455bd5948b66\"}]","timeRestore":false,"title":"[Winlogbeat Security] Group Management Events - Simple Metrics","version":1},"coreMigrationVersion":"7.14.0","id":"01c54730-fee6-11e9-8405-516218e3d268","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"6f0f2ea0-f414-11e9-8405-516218e3d268","name":"22:panel_22","type":"visualization"},{"id":"98884120-f49d-11e9-8405-516218e3d268","name":"36:panel_36","type":"visualization"},{"id":"9e534190-f49d-11e9-8405-516218e3d268","name":"37:panel_37","type":"visualization"},{"id":"bb9cf7a0-f49d-11e9-8405-516218e3d268","name":"38:panel_38","type":"visualization"},{"id":"ce867840-f49e-11e9-8405-516218e3d268","name":"39:panel_39","type":"visualization"},{"id":"fee83900-f49f-11e9-8405-516218e3d268","name":"40:panel_40","type":"visualization"},{"id":"bc165210-f4b8-11e9-8405-516218e3d268","name":"42:panel_42","type":"visualization"},{"id":"7e178c80-fee1-11e9-8405-516218e3d268","name":"43:panel_43","type":"search"},{"id":"a13bf640-fee8-11e9-8405-516218e3d268","name":"44:panel_44","type":"visualization"},{"id":"5eeaafd0-fee7-11e9-8405-516218e3d268","name":"45:panel_45","type":"visualization"},{"id":"f42f3b20-fee6-11e9-8405-516218e3d268","name":"46:panel_46","type":"visualization"},{"id":"b5f38780-fee6-11e9-8405-516218e3d268","name":"47:panel_47","type":"visualization"},{"id":"1b5f17d0-feea-11e9-8405-516218e3d268","name":"48:panel_48","type":"visualization"},{"id":"0f2f5280-feeb-11e9-8405-516218e3d268","name":"49:panel_49","type":"visualization"},{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"51:panel_51","type":"search"},{"id":"d770b040-9b35-11ea-87e4-49f31ec44891","name":"45614e1c-b2bb-4243-9a74-a4bdd0124c87:panel_45614e1c-b2bb-4243-9a74-a4bdd0124c87","type":"visualization"},{"id":"33462600-9b47-11ea-87e4-49f31ec44891","name":"88e75800-8125-4c9e-96b8-5c36f6e91664:panel_88e75800-8125-4c9e-96b8-5c36f6e91664","type":"visualization"},{"id":"58fb9480-9b46-11ea-87e4-49f31ec44891","name":"4b793b8e-72d4-42a2-b377-1c70f0307414:panel_4b793b8e-72d4-42a2-b377-1c70f0307414","type":"visualization"},{"id":"e20c02d0-9b48-11ea-87e4-49f31ec44891","name":"82d229f9-44f4-4c4b-baf7-f9673a14c87f:panel_82d229f9-44f4-4c4b-baf7-f9673a14c87f","type":"visualization"},{"id":"7de2e3f0-9b4d-11ea-87e4-49f31ec44891","name":"f44255b0-d9a8-479f-be3f-829c1f6ed794:panel_f44255b0-d9a8-479f-be3f-829c1f6ed794","type":"visualization"},{"id":"b89b0c90-9b41-11ea-87e4-49f31ec44891","name":"9c42bff2-b295-4617-8d8c-455bd5948b66:panel_9c42bff2-b295-4617-8d8c-455bd5948b66","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-11T13:18:55.318Z","version":"WzIyMDUsMl0="} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management.json deleted file mode 100644 index baccc13ab72..00000000000 --- a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management.json +++ /dev/null @@ -1,3631 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "Group management activity.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": false - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "22", - "w": 16, - "x": 0, - "y": 0 - }, - "panelIndex": "22", - "panelRefName": "panel_0", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "29", - "w": 16, - "x": 0, - "y": 68 - }, - "panelIndex": "29", - "panelRefName": "panel_1", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "30", - "w": 9, - "x": 18, - "y": 48 - }, - "panelIndex": "30", - "panelRefName": "panel_2", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "31", - "w": 9, - "x": 0, - "y": 48 - }, - "panelIndex": "31", - "panelRefName": "panel_3", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "32", - "w": 9, - "x": 9, - "y": 48 - }, - "panelIndex": "32", - "panelRefName": "panel_4", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "33", - "w": 17, - "x": 16, - "y": 68 - }, - "panelIndex": "33", - "panelRefName": "panel_5", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "34", - "w": 15, - "x": 33, - "y": 68 - }, - "panelIndex": "34", - "panelRefName": "panel_6", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Group Creation Summary [Winlogbeat Security]" - }, - "gridData": { - "h": 13, - "i": "36", - "w": 9, - "x": 0, - "y": 55 - }, - "panelIndex": "36", - "panelRefName": "panel_7", - "title": "Group Creation Summary [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Group Changes Summary [Winlogbeat Security]" - }, - "gridData": { - "h": 13, - "i": "37", - "w": 9, - "x": 9, - "y": 55 - }, - "panelIndex": "37", - "panelRefName": "panel_8", - "title": "Group Changes Summary [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Group Deletion Summary [Winlogbeat Security]" - }, - "gridData": { - "h": 13, - "i": "38", - "w": 9, - "x": 18, - "y": 55 - }, - "panelIndex": "38", - "panelRefName": "panel_9", - "title": "Group Deletion Summary [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Users Added to Group Summary [Winlogbeat Security]" - }, - "gridData": { - "h": 14, - "i": "39", - "w": 16, - "x": 0, - "y": 75 - }, - "panelIndex": "39", - "panelRefName": "panel_10", - "title": "Users Added to Group Summary [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Users Removed From Group Summary [Winlogbeat Security]" - }, - "gridData": { - "h": 14, - "i": "40", - "w": 17, - "x": 16, - "y": 75 - }, - "panelIndex": "40", - "panelRefName": "panel_11", - "title": "Users Removed From Group Summary [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Group Enumeration - Table [Winlogbeat Security]" - }, - "gridData": { - "h": 14, - "i": "42", - "w": 15, - "x": 33, - "y": 75 - }, - "panelIndex": "42", - "panelRefName": "panel_12", - "title": "Group Enumeration - Table [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Logon Details [Winlogbeat Security]" - }, - "gridData": { - "h": 20, - "i": "43", - "w": 21, - "x": 27, - "y": 48 - }, - "panelIndex": "43", - "panelRefName": "panel_13", - "title": "Logon Details [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Group Management Operations Details [Winlogbeat Security]" - }, - "gridData": { - "h": 22, - "i": "45", - "w": 48, - "x": 0, - "y": 89 - }, - "panelIndex": "45", - "panelRefName": "panel_14", - "title": "Group Management Operations Details [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "colors": { - "added-group-account": "#0A437C", - "added-member-to-group": "#1F78C1", - "deleted-group-account": "#5195CE", - "modified-group-account": "#052B51", - "user-member-enumerated": "#447EBC" - }, - "vis": { - "colors": { - "added-group-account": "#0A437C", - "added-member-to-group": "#1F78C1", - "deleted-group-account": "#82B5D8", - "modified-group-account": "#052B51", - "user-member-enumerated": "#447EBC" - } - } - }, - "gridData": { - "h": 20, - "i": "3f7e277d-09d1-4a79-bc17-bc5da5a7e290", - "w": 20, - "x": 0, - "y": 7 - }, - "panelIndex": "3f7e277d-09d1-4a79-bc17-bc5da5a7e290", - "panelRefName": "panel_15", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 20, - "i": "8cda9d6a-096f-41a5-86e6-09dd1f6b9c98", - "w": 16, - "x": 32, - "y": 7 - }, - "panelIndex": "8cda9d6a-096f-41a5-86e6-09dd1f6b9c98", - "panelRefName": "panel_16", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Group Management Events - Event Actions - Table [Winlogbeat Security]" - }, - "gridData": { - "h": 20, - "i": "74edddd5-2dc5-41b8-b4f2-bf9c95218f1b", - "w": 12, - "x": 20, - "y": 7 - }, - "panelIndex": "74edddd5-2dc5-41b8-b4f2-bf9c95218f1b", - "panelRefName": "panel_17", - "title": "Group Management Events - Event Actions - Table [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "vis": null - }, - "gridData": { - "h": 21, - "i": "33cef054-615a-49cb-bb2e-eb55fab96ae5", - "w": 27, - "x": 0, - "y": 27 - }, - "panelIndex": "33cef054-615a-49cb-bb2e-eb55fab96ae5", - "panelRefName": "panel_18", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "colors": { - "added-group-account": "#1F78C1", - "added-member-to-group": "#0A437C", - "deleted-group-account": "#5195CE", - "modified-group-account": "#0A50A1", - "type-changed-group-account": "#82B5D8", - "user-member-enumerated": "#447EBC" - }, - "vis": { - "colors": { - "added-group-account": "#1F78C1", - "added-member-to-group": "#0A437C", - "deleted-group-account": "#5195CE", - "modified-group-account": "#0A50A1", - "removed-member-from-group": "#BADFF4", - "type-changed-group-account": "#82B5D8", - "user-member-enumerated": "#447EBC" - } - } - }, - "gridData": { - "h": 21, - "i": "e0d495aa-f897-403f-815b-6116fae330b7", - "w": 21, - "x": 27, - "y": 27 - }, - "panelIndex": "e0d495aa-f897-403f-815b-6116fae330b7", - "panelRefName": "panel_19", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "663e0493-2070-407b-9d00-079915cce7e7", - "w": 32, - "x": 16, - "y": 0 - }, - "panelIndex": "663e0493-2070-407b-9d00-079915cce7e7", - "panelRefName": "panel_20", - "version": "7.7.0" - } - ], - "timeRestore": false, - "title": "[Winlogbeat Security] Group Management Events", - "version": 1 - }, - "id": "bb858830-f412-11e9-8405-516218e3d268", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "6f0f2ea0-f414-11e9-8405-516218e3d268", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "ffebe440-f419-11e9-8405-516218e3d268", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "e22c6f40-f498-11e9-8405-516218e3d268", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "ee292bc0-f499-11e9-8405-516218e3d268", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "400b63e0-f49a-11e9-8405-516218e3d268", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "a5f664c0-f49a-11e9-8405-516218e3d268", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "546febc0-f49b-11e9-8405-516218e3d268", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "98884120-f49d-11e9-8405-516218e3d268", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "9e534190-f49d-11e9-8405-516218e3d268", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "bb9cf7a0-f49d-11e9-8405-516218e3d268", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "ce867840-f49e-11e9-8405-516218e3d268", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "fee83900-f49f-11e9-8405-516218e3d268", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "bc165210-f4b8-11e9-8405-516218e3d268", - "name": "panel_12", - "type": "visualization" - }, - { - "id": "7e178c80-fee1-11e9-8405-516218e3d268", - "name": "panel_13", - "type": "search" - }, - { - "id": "9066d5b0-fef2-11e9-8405-516218e3d268", - "name": "panel_14", - "type": "search" - }, - { - "id": "b89b0c90-9b41-11ea-87e4-49f31ec44891", - "name": "panel_15", - "type": "visualization" - }, - { - "id": "58fb9480-9b46-11ea-87e4-49f31ec44891", - "name": "panel_16", - "type": "visualization" - }, - { - "id": "33462600-9b47-11ea-87e4-49f31ec44891", - "name": "panel_17", - "type": "visualization" - }, - { - "id": "e20c02d0-9b48-11ea-87e4-49f31ec44891", - "name": "panel_18", - "type": "visualization" - }, - { - "id": "7de2e3f0-9b4d-11ea-87e4-49f31ec44891", - "name": "panel_19", - "type": "visualization" - }, - { - "id": "a3c3f350-9b6d-11ea-87e4-49f31ec44891", - "name": "panel_20", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzEyOSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Group Management Events - Description [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "# **Group Management Events**\n\n#### This dashboard shows information about Group Management Events collected by winlogbeat\n", - "openLinksInNewTab": false - }, - "title": "Group Management Events - Description [Winlogbeat Security]", - "type": "markdown" - } - }, - "id": "6f0f2ea0-f414-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzEzMCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Added - Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(204,204,204,1)", - "id": "bfcaced0-f419-11e9-928e-8f5fd2b6c66e", - "operator": "lte", - "value": 0 - }, - { - "background_color": "rgba(181,99,93,1)", - "id": "a7d935e0-f497-11e9-928e-8f5fd2b6c66e", - "operator": "gte", - "value": 1 - } - ], - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "event.code:4732 OR event.code:4728 OR event.code:4756 OR event.code:4751 OR event.code:4761 OR event.code:4746 OR event.code:4785 OR event.code:4787" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "90d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Users Added to Group", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Users Added - Metric [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "ffebe440-f419-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzEzMSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Groups Deleted TSVB Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(200,201,197,1)", - "id": "bfcaced0-f419-11e9-928e-8f5fd2b6c66e", - "operator": "lte", - "value": 0 - }, - { - "background_color": "rgba(228,155,75,1)", - "id": "a7d935e0-f497-11e9-928e-8f5fd2b6c66e", - "operator": "gt", - "value": 0 - } - ], - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "event.code:4734 OR event.code:4730 OR event.code:4758 OR event.code:4753 OR event.code:4763 OR event.code:4748 OR event.code:4789 OR event.code:4792" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "90d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Groups Deleted", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Groups Deleted TSVB Metric [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "e22c6f40-f498-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzEzMiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Groups Created TSVB Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(200,201,197,1)", - "id": "bfcaced0-f419-11e9-928e-8f5fd2b6c66e", - "operator": "lte", - "value": 0 - }, - { - "background_color": "rgba(181,99,93,1)", - "id": "a7d935e0-f497-11e9-928e-8f5fd2b6c66e", - "operator": "gt", - "value": 0 - } - ], - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "event.code:4731 OR event.code:4727 OR event.code:\"4754\" OR event.code:\"4749\" OR event.code:\"4759\" OR event.code:\"4744\" OR event.code:\"4783\" OR event.code:\"4790\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "90d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Groups Created", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Groups Created TSVB Metric [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "ee292bc0-f499-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzEzMywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Groups Changed TSVB Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(200,201,197,1)", - "id": "bfcaced0-f419-11e9-928e-8f5fd2b6c66e", - "operator": "lte", - "value": 0 - }, - { - "background_color": "rgba(221,186,64,1)", - "id": "a7d935e0-f497-11e9-928e-8f5fd2b6c66e", - "operator": "gt", - "value": 0 - } - ], - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "event.code:4735 OR event.code:4737 OR event.code:\"4755\" OR event.code:\"4764\" OR event.code:\"4750\" OR event.code:\"4760\" OR event.code:\"4745\" OR event.code:\"4784\" OR event.code:\"4791\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "60d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Groups Changed", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Groups Changed TSVB Metric [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "400b63e0-f49a-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzEzNCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Removed - TSVB Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(204,204,204,1)", - "id": "bfcaced0-f419-11e9-928e-8f5fd2b6c66e", - "operator": "lte", - "value": 0 - }, - { - "background_color": "rgba(228,155,75,1)", - "id": "11604700-9b51-11ea-99a1-e5b989979a59", - "operator": "gte", - "value": 1 - } - ], - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "event.code:4733 OR event.code:4729 OR event.code:4788 OR event.code:4786 OR event.code:4752 OR event.code:4762 OR event.code:4747" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "90d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Users Removed from Group", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Users Removed - TSVB Metric [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "a5f664c0-f49a-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzEzNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Groups Enumeration - TSVB Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(128,128,128,1)", - "color": "rgba(179,179,179,1)", - "id": "bfcaced0-f419-11e9-928e-8f5fd2b6c66e", - "operator": "gt", - "value": 0 - }, - { - "background_color": "rgba(179,179,179,1)", - "id": "8d3f3ed0-9b51-11ea-99a1-e5b989979a59", - "operator": "lte", - "value": 0 - } - ], - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "event.code:4799" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "90d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Group Membership Enumeration", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Groups Enumeration - TSVB Metric [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "546febc0-f49b-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzEzNiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4731", - "4727", - "4754", - "4744", - "4759", - "4779", - "4790", - "4783" - ], - "type": "phrases", - "value": "4731, 4727, 4754, 4744, 4759, 4779, 4790, 4783" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4731" - } - }, - { - "match_phrase": { - "event.code": "4727" - } - }, - { - "match_phrase": { - "event.code": "4754" - } - }, - { - "match_phrase": { - "event.code": "4744" - } - }, - { - "match_phrase": { - "event.code": "4759" - } - }, - { - "match_phrase": { - "event.code": "4779" - } - }, - { - "match_phrase": { - "event.code": "4790" - } - }, - { - "match_phrase": { - "event.code": "4783" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Groups Created - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Group", - "field": "group.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Domain", - "field": "group.domain", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Performer LogonID", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 3, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 4, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 5, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Groups Created - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "98884120-f49d-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzEzNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4735", - "4737", - "4755", - "4750", - "4760", - "4745", - "4791", - "4784", - "4764" - ], - "type": "phrases", - "value": "4735, 4737, 4755, 4750, 4760, 4745, 4791, 4784, 4764" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4735" - } - }, - { - "match_phrase": { - "event.code": "4737" - } - }, - { - "match_phrase": { - "event.code": "4755" - } - }, - { - "match_phrase": { - "event.code": "4750" - } - }, - { - "match_phrase": { - "event.code": "4760" - } - }, - { - "match_phrase": { - "event.code": "4745" - } - }, - { - "match_phrase": { - "event.code": "4791" - } - }, - { - "match_phrase": { - "event.code": "4784" - } - }, - { - "match_phrase": { - "event.code": "4764" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Group Changes - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Group", - "field": "group.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Domain", - "field": "group.domain", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Performer LogonID", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 3, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 4, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 5, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Group Changes - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "9e534190-f49d-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzEzOCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4734", - "4730", - "4758", - "4748", - "4763", - "4753", - "4792", - "4789" - ], - "type": "phrases", - "value": "4734, 4730, 4758, 4748, 4763, 4753, 4792, 4789" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4734" - } - }, - { - "match_phrase": { - "event.code": "4730" - } - }, - { - "match_phrase": { - "event.code": "4758" - } - }, - { - "match_phrase": { - "event.code": "4748" - } - }, - { - "match_phrase": { - "event.code": "4763" - } - }, - { - "match_phrase": { - "event.code": "4753" - } - }, - { - "match_phrase": { - "event.code": "4792" - } - }, - { - "match_phrase": { - "event.code": "4789" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Groups Deleted - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Group", - "field": "group.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Domain", - "field": "group.domain", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Performer LogonID", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 3, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 4, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 5, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Groups Deleted - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "bb9cf7a0-f49d-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzEzOSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4732", - "4728", - "4756", - "4751", - "4761", - "4746", - "4785", - "4787" - ], - "type": "phrases", - "value": "4732, 4728, 4756, 4751, 4761, 4746, 4785, 4787" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4732" - } - }, - { - "match_phrase": { - "event.code": "4728" - } - }, - { - "match_phrase": { - "event.code": "4756" - } - }, - { - "match_phrase": { - "event.code": "4751" - } - }, - { - "match_phrase": { - "event.code": "4761" - } - }, - { - "match_phrase": { - "event.code": "4746" - } - }, - { - "match_phrase": { - "event.code": "4785" - } - }, - { - "match_phrase": { - "event.code": "4787" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Added - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "User", - "field": "winlog.event_data.MemberName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Group", - "field": "group.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Domain", - "field": "group.domain", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Performed by", - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "Performed by Logon ID", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 3, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 4, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 5, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 5, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Added - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "ce867840-f49e-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0MCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4733", - "4729", - "4757", - "4786", - "4788", - "4752", - "4762", - "4747" - ], - "type": "phrases", - "value": "4733, 4729, 4757, 4786, 4788, 4752, 4762, 4747" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4733" - } - }, - { - "match_phrase": { - "event.code": "4729" - } - }, - { - "match_phrase": { - "event.code": "4757" - } - }, - { - "match_phrase": { - "event.code": "4786" - } - }, - { - "match_phrase": { - "event.code": "4788" - } - }, - { - "match_phrase": { - "event.code": "4752" - } - }, - { - "match_phrase": { - "event.code": "4762" - } - }, - { - "match_phrase": { - "event.code": "4747" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Removed from Group - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "User", - "field": "winlog.event_data.MemberName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Group", - "field": "group.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Domain", - "field": "group.domain", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "Performed by Logon ID", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 3, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 4, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 5, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 5, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Removed from Group - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "fee83900-f49f-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0MSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4799" - ], - "type": "phrases", - "value": "4799" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4799" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Group Enumeration - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Group", - "field": "group.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Domain", - "field": "group.domain", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Creator", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "Creator LogonID", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 3, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 4, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 5, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Group Enumeration - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "bc165210-f4b8-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0MiwxXQ==" - }, - { - "attributes": { - "columns": [ - "user.name", - "source.domain", - "source.ip", - "winlog.logon.id", - "winlog.logon.type" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4624" - ], - "type": "phrases", - "value": "4624" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4624" - } - } - ] - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Logon Details [Winlogbeat Security]", - "version": 1 - }, - "id": "7e178c80-fee1-11e9-8405-516218e3d268", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0MywxXQ==" - }, - { - "attributes": { - "columns": [ - "event.action", - "group.name", - "group.domain", - "user.name", - "user.domain", - "host.name" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4731", - "4732", - "4733", - "4734", - "4735", - "4737", - "4764", - "4727", - "4728", - "4729", - "4730", - "4754", - "4755", - "4756", - "4757", - "4758", - "4799", - "4749", - "4750", - "4751", - "4752", - "4753", - "4759", - "4760", - "4761", - "4762", - "4763", - "4744", - "4745", - "4746", - "4748" - ], - "type": "phrases", - "value": "4731, 4732, 4733, 4734, 4735, 4737, 4764, 4727, 4728, 4729, 4730, 4754, 4755, 4756, 4757, 4758, 4799, 4749, 4750, 4751, 4752, 4753, 4759, 4760, 4761, 4762, 4763, 4744, 4745, 4746, 4748" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4731" - } - }, - { - "match_phrase": { - "event.code": "4732" - } - }, - { - "match_phrase": { - "event.code": "4733" - } - }, - { - "match_phrase": { - "event.code": "4734" - } - }, - { - "match_phrase": { - "event.code": "4735" - } - }, - { - "match_phrase": { - "event.code": "4737" - } - }, - { - "match_phrase": { - "event.code": "4764" - } - }, - { - "match_phrase": { - "event.code": "4727" - } - }, - { - "match_phrase": { - "event.code": "4728" - } - }, - { - "match_phrase": { - "event.code": "4729" - } - }, - { - "match_phrase": { - "event.code": "4730" - } - }, - { - "match_phrase": { - "event.code": "4754" - } - }, - { - "match_phrase": { - "event.code": "4755" - } - }, - { - "match_phrase": { - "event.code": "4756" - } - }, - { - "match_phrase": { - "event.code": "4757" - } - }, - { - "match_phrase": { - "event.code": "4758" - } - }, - { - "match_phrase": { - "event.code": "4799" - } - }, - { - "match_phrase": { - "event.code": "4749" - } - }, - { - "match_phrase": { - "event.code": "4750" - } - }, - { - "match_phrase": { - "event.code": "4751" - } - }, - { - "match_phrase": { - "event.code": "4752" - } - }, - { - "match_phrase": { - "event.code": "4753" - } - }, - { - "match_phrase": { - "event.code": "4759" - } - }, - { - "match_phrase": { - "event.code": "4760" - } - }, - { - "match_phrase": { - "event.code": "4761" - } - }, - { - "match_phrase": { - "event.code": "4762" - } - }, - { - "match_phrase": { - "event.code": "4763" - } - }, - { - "match_phrase": { - "event.code": "4744" - } - }, - { - "match_phrase": { - "event.code": "4745" - } - }, - { - "match_phrase": { - "event.code": "4746" - } - }, - { - "match_phrase": { - "event.code": "4748" - } - } - ] - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "lucene", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Group Management Details - Search View [Winlogbeat Security]", - "version": 1 - }, - "id": "9066d5b0-fef2-11e9-8405-516218e3d268", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Group Management Events - Event Actions [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Group Management Events - Event Actions [Winlogbeat Security]", - "type": "pie" - } - }, - "id": "b89b0c90-9b41-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "9066d5b0-fef2-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0NSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Group Management Events - Target Groups - Tag Cloud [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "group.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "maxFontSize": 58, - "minFontSize": 18, - "orientation": "single", - "scale": "linear", - "showLabel": false - }, - "title": "Group Management Events - Target Groups - Tag Cloud [Winlogbeat Security]", - "type": "tagcloud" - } - }, - "id": "58fb9480-9b46-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "9066d5b0-fef2-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0NiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Group Management Events - Event Actions - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "event.action", - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 50 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "event.code", - "field": "event.code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Group Management Events - Event Actions - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "33462600-9b47-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "9066d5b0-fef2-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0NywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Group Management Events - Groups vs Actions - Heatmap [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Target Groups", - "field": "group.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Actions", - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "colorSchema": "Blues", - "colorsNumber": 4, - "colorsRange": [], - "enableHover": false, - "invertColors": false, - "legendPosition": "right", - "percentageMode": false, - "setColorRange": false, - "times": [], - "type": "heatmap", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "color": "black", - "overwriteColor": false, - "rotate": 0, - "show": true - }, - "scale": { - "defaultYExtents": false, - "type": "linear" - }, - "show": false, - "type": "value" - } - ] - }, - "title": "Group Management Events - Groups vs Actions - Heatmap [Winlogbeat Security]", - "type": "heatmap" - } - }, - "id": "e20c02d0-9b48-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "9066d5b0-fef2-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0OCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Group Management Action Distribution over Time [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "now-30d", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 25 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false, - "valueAxis": "" - }, - "labels": { - "show": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Group Management Action Distribution over Time [Winlogbeat Security]", - "type": "histogram" - } - }, - "id": "7de2e3f0-9b4d-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "9066d5b0-fef2-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0OSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboard links [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Winlogbeat Overview](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/bae11b00-9bfc-11ea-87e4-49f31ec44891) | [Logon Failed and Account Lockout](#/dashboard/d401ef40-a7d5-11e9-a422-d144027429da) | [User Management Events](#/dashboard/71f720f0-ff18-11e9-8405-516218e3d268) | [Group Management Events](#/dashboard/bb858830-f412-11e9-8405-516218e3d268)", - "openLinksInNewTab": false - }, - "title": "Dashboard links [Winlogbeat Security]", - "type": "markdown" - } - }, - "id": "a3c3f350-9b6d-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:49:11.152Z", - "version": "WzI1MCwxXQ==" - } - ], - "version": "7.7.0" -} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management.ndjson b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management.ndjson new file mode 100644 index 00000000000..82c11264324 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management.ndjson @@ -0,0 +1,22 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Group Management Events - Description [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"# **Group Management Events**\\n\\n#### This dashboard shows information about Group Management Events collected by winlogbeat\\n\",\"openLinksInNewTab\":false},\"title\":\"Group Management Events - Description [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"6f0f2ea0-f414-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMjgsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Added - Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"bfcaced0-f419-11e9-928e-8f5fd2b6c66e\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(181,99,93,1)\",\"id\":\"a7d935e0-f497-11e9-928e-8f5fd2b6c66e\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"49d7bf77-f350-44f2-adf8-5b18b3f6e9cd\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code:4732 OR event.code:4728 OR event.code:4756 OR event.code:4751 OR event.code:4761 OR event.code:4746 OR event.code:4785 OR event.code:4787\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Added to Group\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Added - Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"ffebe440-f419-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMjksMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Groups Deleted TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(200,201,197,1)\",\"id\":\"bfcaced0-f419-11e9-928e-8f5fd2b6c66e\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(228,155,75,1)\",\"id\":\"a7d935e0-f497-11e9-928e-8f5fd2b6c66e\",\"operator\":\"gt\",\"value\":0},{\"background_color\":\"rgba(200,201,197,1)\",\"id\":\"3627d626-8685-4afb-ac41-d38d691af211\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code:4734 OR event.code:4730 OR event.code:4758 OR event.code:4753 OR event.code:4763 OR event.code:4748 OR event.code:4789 OR event.code:4792\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Groups Deleted\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Groups Deleted TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"e22c6f40-f498-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzAsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Groups Created TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(200,201,197,1)\",\"id\":\"bfcaced0-f419-11e9-928e-8f5fd2b6c66e\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(181,99,93,1)\",\"id\":\"a7d935e0-f497-11e9-928e-8f5fd2b6c66e\",\"operator\":\"gt\",\"value\":0},{\"background_color\":\"rgba(200,201,197,1)\",\"id\":\"4013d6eb-54ec-4097-bff3-fb45467f44d3\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code:4731 OR event.code:4727 OR event.code:\\\"4754\\\" OR event.code:\\\"4749\\\" OR event.code:\\\"4759\\\" OR event.code:\\\"4744\\\" OR event.code:\\\"4783\\\" OR event.code:\\\"4790\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Groups Created\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Groups Created TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"ee292bc0-f499-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzEsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Groups Changed TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(200,201,197,1)\",\"id\":\"bfcaced0-f419-11e9-928e-8f5fd2b6c66e\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(221,186,64,1)\",\"id\":\"a7d935e0-f497-11e9-928e-8f5fd2b6c66e\",\"operator\":\"gt\",\"value\":0},{\"background_color\":\"rgba(200,201,197,1)\",\"id\":\"78de9594-840c-459f-b414-64ac93d3b1da\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code:4735 OR event.code:4737 OR event.code:\\\"4755\\\" OR event.code:\\\"4764\\\" OR event.code:\\\"4750\\\" OR event.code:\\\"4760\\\" OR event.code:\\\"4745\\\" OR event.code:\\\"4784\\\" OR event.code:\\\"4791\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"60d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Groups Changed\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Groups Changed TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"400b63e0-f49a-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzIsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Removed - TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"bfcaced0-f419-11e9-928e-8f5fd2b6c66e\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(228,155,75,1)\",\"id\":\"11604700-9b51-11ea-99a1-e5b989979a59\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"262938b1-9927-40be-92ea-1498472d36be\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code:4733 OR event.code:4729 OR event.code:4788 OR event.code:4786 OR event.code:4752 OR event.code:4762 OR event.code:4747\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Removed from Group\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Removed - TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"a5f664c0-f49a-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzMsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Groups Enumeration - TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(128,128,128,1)\",\"color\":\"rgba(179,179,179,1)\",\"id\":\"bfcaced0-f419-11e9-928e-8f5fd2b6c66e\",\"operator\":\"gt\",\"value\":0},{\"background_color\":\"rgba(179,179,179,1)\",\"id\":\"8d3f3ed0-9b51-11ea-99a1-e5b989979a59\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(179,179,179,1)\",\"id\":\"1fc1a366-626b-40f5-b76c-963926edaf83\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code:4799\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Group Membership Enumeration\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Groups Enumeration - TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"546febc0-f49b-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzQsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4731\", \"4727\", \"4754\", \"4744\", \"4759\", \"4779\", \"4790\", \"4783\"], \"type\": \"phrases\", \"value\": \"4731, 4727, 4754, 4744, 4759, 4779, 4790, 4783\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4731\"}}, {\"match_phrase\": {\"event.code\": \"4727\"}}, {\"match_phrase\": {\"event.code\": \"4754\"}}, {\"match_phrase\": {\"event.code\": \"4744\"}}, {\"match_phrase\": {\"event.code\": \"4759\"}}, {\"match_phrase\": {\"event.code\": \"4779\"}}, {\"match_phrase\": {\"event.code\": \"4790\"}}, {\"match_phrase\": {\"event.code\": \"4783\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Groups Created - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performer LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Groups Created - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"98884120-f49d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzUsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4735\", \"4737\", \"4755\", \"4750\", \"4760\", \"4745\", \"4791\", \"4784\", \"4764\"], \"type\": \"phrases\", \"value\": \"4735, 4737, 4755, 4750, 4760, 4745, 4791, 4784, 4764\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4735\"}}, {\"match_phrase\": {\"event.code\": \"4737\"}}, {\"match_phrase\": {\"event.code\": \"4755\"}}, {\"match_phrase\": {\"event.code\": \"4750\"}}, {\"match_phrase\": {\"event.code\": \"4760\"}}, {\"match_phrase\": {\"event.code\": \"4745\"}}, {\"match_phrase\": {\"event.code\": \"4791\"}}, {\"match_phrase\": {\"event.code\": \"4784\"}}, {\"match_phrase\": {\"event.code\": \"4764\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Group Changes - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performer LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Group Changes - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"9e534190-f49d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzYsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4734\", \"4730\", \"4758\", \"4748\", \"4763\", \"4753\", \"4792\", \"4789\"], \"type\": \"phrases\", \"value\": \"4734, 4730, 4758, 4748, 4763, 4753, 4792, 4789\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4734\"}}, {\"match_phrase\": {\"event.code\": \"4730\"}}, {\"match_phrase\": {\"event.code\": \"4758\"}}, {\"match_phrase\": {\"event.code\": \"4748\"}}, {\"match_phrase\": {\"event.code\": \"4763\"}}, {\"match_phrase\": {\"event.code\": \"4753\"}}, {\"match_phrase\": {\"event.code\": \"4792\"}}, {\"match_phrase\": {\"event.code\": \"4789\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Groups Deleted - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performer LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Groups Deleted - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"bb9cf7a0-f49d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzcsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4732\", \"4728\", \"4756\", \"4751\", \"4761\", \"4746\", \"4785\", \"4787\"], \"type\": \"phrases\", \"value\": \"4732, 4728, 4756, 4751, 4761, 4746, 4785, 4787\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4732\"}}, {\"match_phrase\": {\"event.code\": \"4728\"}}, {\"match_phrase\": {\"event.code\": \"4756\"}}, {\"match_phrase\": {\"event.code\": \"4751\"}}, {\"match_phrase\": {\"event.code\": \"4761\"}}, {\"match_phrase\": {\"event.code\": \"4746\"}}, {\"match_phrase\": {\"event.code\": \"4785\"}}, {\"match_phrase\": {\"event.code\": \"4787\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Added - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"User\",\"field\":\"winlog.event_data.MemberName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Performed by Logon ID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":4,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":5,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Added - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"ce867840-f49e-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzgsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4733\", \"4729\", \"4757\", \"4786\", \"4788\", \"4752\", \"4762\", \"4747\"], \"type\": \"phrases\", \"value\": \"4733, 4729, 4757, 4786, 4788, 4752, 4762, 4747\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4733\"}}, {\"match_phrase\": {\"event.code\": \"4729\"}}, {\"match_phrase\": {\"event.code\": \"4757\"}}, {\"match_phrase\": {\"event.code\": \"4786\"}}, {\"match_phrase\": {\"event.code\": \"4788\"}}, {\"match_phrase\": {\"event.code\": \"4752\"}}, {\"match_phrase\": {\"event.code\": \"4762\"}}, {\"match_phrase\": {\"event.code\": \"4747\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Removed from Group - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"User\",\"field\":\"winlog.event_data.MemberName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Performed by Logon ID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":4,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":5,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Removed from Group - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"fee83900-f49f-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzksMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4799\"], \"type\": \"phrases\", \"value\": \"4799\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4799\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Group Enumeration - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Creator\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Creator LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Group Enumeration - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"bc165210-f4b8-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDAsMl0="} +{"attributes":{"columns":["user.name","source.domain","source.ip","winlog.logon.id","winlog.logon.type"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4624\"], \"type\": \"phrases\", \"value\": \"4624\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4624\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Logon Details [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"7e178c80-fee1-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTcsMl0="} +{"attributes":{"columns":["event.action","group.name","group.domain","user.name","user.domain","host.name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4731\", \"4732\", \"4733\", \"4734\", \"4735\", \"4737\", \"4764\", \"4727\", \"4728\", \"4729\", \"4730\", \"4754\", \"4755\", \"4756\", \"4757\", \"4758\", \"4799\", \"4749\", \"4750\", \"4751\", \"4752\", \"4753\", \"4759\", \"4760\", \"4761\", \"4762\", \"4763\", \"4744\", \"4745\", \"4746\", \"4748\"], \"type\": \"phrases\", \"value\": \"4731, 4732, 4733, 4734, 4735, 4737, 4764, 4727, 4728, 4729, 4730, 4754, 4755, 4756, 4757, 4758, 4799, 4749, 4750, 4751, 4752, 4753, 4759, 4760, 4761, 4762, 4763, 4744, 4745, 4746, 4748\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4731\"}}, {\"match_phrase\": {\"event.code\": \"4732\"}}, {\"match_phrase\": {\"event.code\": \"4733\"}}, {\"match_phrase\": {\"event.code\": \"4734\"}}, {\"match_phrase\": {\"event.code\": \"4735\"}}, {\"match_phrase\": {\"event.code\": \"4737\"}}, {\"match_phrase\": {\"event.code\": \"4764\"}}, {\"match_phrase\": {\"event.code\": \"4727\"}}, {\"match_phrase\": {\"event.code\": \"4728\"}}, {\"match_phrase\": {\"event.code\": \"4729\"}}, {\"match_phrase\": {\"event.code\": \"4730\"}}, {\"match_phrase\": {\"event.code\": \"4754\"}}, {\"match_phrase\": {\"event.code\": \"4755\"}}, {\"match_phrase\": {\"event.code\": \"4756\"}}, {\"match_phrase\": {\"event.code\": \"4757\"}}, {\"match_phrase\": {\"event.code\": \"4758\"}}, {\"match_phrase\": {\"event.code\": \"4799\"}}, {\"match_phrase\": {\"event.code\": \"4749\"}}, {\"match_phrase\": {\"event.code\": \"4750\"}}, {\"match_phrase\": {\"event.code\": \"4751\"}}, {\"match_phrase\": {\"event.code\": \"4752\"}}, {\"match_phrase\": {\"event.code\": \"4753\"}}, {\"match_phrase\": {\"event.code\": \"4759\"}}, {\"match_phrase\": {\"event.code\": \"4760\"}}, {\"match_phrase\": {\"event.code\": \"4761\"}}, {\"match_phrase\": {\"event.code\": \"4762\"}}, {\"match_phrase\": {\"event.code\": \"4763\"}}, {\"match_phrase\": {\"event.code\": \"4744\"}}, {\"match_phrase\": {\"event.code\": \"4745\"}}, {\"match_phrase\": {\"event.code\": \"4746\"}}, {\"match_phrase\": {\"event.code\": \"4748\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Group Management Details - Search View [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"9066d5b0-fef2-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDIsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Events - Event Actions [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Group Management Events - Event Actions [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"b89b0c90-9b41-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDMsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Events - Target Groups - Tag Cloud [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":58,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Group Management Events - Target Groups - Tag Cloud [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"58fb9480-9b46-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDQsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Events - Event Actions - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"event.action\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"event.code\",\"field\":\"event.code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Group Management Events - Event Actions - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"33462600-9b47-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDUsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Events - Groups vs Actions - Heatmap [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Target Groups\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Actions\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Blues\",\"colorsNumber\":4,\"colorsRange\":[],\"enableHover\":false,\"invertColors\":false,\"legendPosition\":\"right\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"black\",\"overwriteColor\":false,\"rotate\":0,\"show\":true},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Group Management Events - Groups vs Actions - Heatmap [Winlogbeat Security]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"7.14.0","id":"e20c02d0-9b48-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDYsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Action Distribution over Time [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-30d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"valueAxis\":\"\"},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Group Management Action Distribution over Time [Winlogbeat Security]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"7.14.0","id":"7de2e3f0-9b4d-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDcsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboard links [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Winlogbeat Overview](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/bae11b00-9bfc-11ea-87e4-49f31ec44891) | [Logon Failed and Account Lockout](#/dashboard/d401ef40-a7d5-11e9-a422-d144027429da) | [User Management Events](#/dashboard/71f720f0-ff18-11e9-8405-516218e3d268) | [Group Management Events](#/dashboard/bb858830-f412-11e9-8405-516218e3d268)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard links [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"a3c3f350-9b6d-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjksMl0="} +{"attributes":{"description":"Group management activity.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"22\",\"w\":16,\"x\":0,\"y\":0},\"panelIndex\":\"22\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_22\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"29\",\"w\":16,\"x\":0,\"y\":68},\"panelIndex\":\"29\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_29\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"30\",\"w\":9,\"x\":18,\"y\":48},\"panelIndex\":\"30\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_30\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"31\",\"w\":9,\"x\":0,\"y\":48},\"panelIndex\":\"31\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_31\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"32\",\"w\":9,\"x\":9,\"y\":48},\"panelIndex\":\"32\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_32\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"33\",\"w\":17,\"x\":16,\"y\":68},\"panelIndex\":\"33\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_33\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"34\",\"w\":15,\"x\":33,\"y\":68},\"panelIndex\":\"34\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_34\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"36\",\"w\":9,\"x\":0,\"y\":55},\"panelIndex\":\"36\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Creation Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_36\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"37\",\"w\":9,\"x\":9,\"y\":55},\"panelIndex\":\"37\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Changes Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_37\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"38\",\"w\":9,\"x\":18,\"y\":55},\"panelIndex\":\"38\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Deletion Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_38\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"39\",\"w\":16,\"x\":0,\"y\":75},\"panelIndex\":\"39\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Users Added to Group Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_39\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"40\",\"w\":17,\"x\":16,\"y\":75},\"panelIndex\":\"40\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Users Removed From Group Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_40\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"42\",\"w\":15,\"x\":33,\"y\":75},\"panelIndex\":\"42\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Enumeration - Table [Winlogbeat Security]\",\"panelRefName\":\"panel_42\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":20,\"i\":\"43\",\"w\":21,\"x\":27,\"y\":48},\"panelIndex\":\"43\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Details [Winlogbeat Security]\",\"panelRefName\":\"panel_43\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":22,\"i\":\"45\",\"w\":48,\"x\":0,\"y\":89},\"panelIndex\":\"45\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Management Operations Details [Winlogbeat Security]\",\"panelRefName\":\"panel_45\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"3f7e277d-09d1-4a79-bc17-bc5da5a7e290\",\"w\":20,\"x\":0,\"y\":7},\"panelIndex\":\"3f7e277d-09d1-4a79-bc17-bc5da5a7e290\",\"embeddableConfig\":{\"colors\":{\"added-group-account\":\"#0A437C\",\"added-member-to-group\":\"#1F78C1\",\"deleted-group-account\":\"#5195CE\",\"modified-group-account\":\"#052B51\",\"user-member-enumerated\":\"#447EBC\"},\"vis\":{\"colors\":{\"added-group-account\":\"#0A437C\",\"added-member-to-group\":\"#1F78C1\",\"deleted-group-account\":\"#82B5D8\",\"modified-group-account\":\"#052B51\",\"user-member-enumerated\":\"#447EBC\"}},\"enhancements\":{}},\"panelRefName\":\"panel_3f7e277d-09d1-4a79-bc17-bc5da5a7e290\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"8cda9d6a-096f-41a5-86e6-09dd1f6b9c98\",\"w\":16,\"x\":32,\"y\":7},\"panelIndex\":\"8cda9d6a-096f-41a5-86e6-09dd1f6b9c98\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8cda9d6a-096f-41a5-86e6-09dd1f6b9c98\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"74edddd5-2dc5-41b8-b4f2-bf9c95218f1b\",\"w\":12,\"x\":20,\"y\":7},\"panelIndex\":\"74edddd5-2dc5-41b8-b4f2-bf9c95218f1b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Management Events - Event Actions - Table [Winlogbeat Security]\",\"panelRefName\":\"panel_74edddd5-2dc5-41b8-b4f2-bf9c95218f1b\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"33cef054-615a-49cb-bb2e-eb55fab96ae5\",\"w\":27,\"x\":0,\"y\":27},\"panelIndex\":\"33cef054-615a-49cb-bb2e-eb55fab96ae5\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"panelRefName\":\"panel_33cef054-615a-49cb-bb2e-eb55fab96ae5\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"e0d495aa-f897-403f-815b-6116fae330b7\",\"w\":21,\"x\":27,\"y\":27},\"panelIndex\":\"e0d495aa-f897-403f-815b-6116fae330b7\",\"embeddableConfig\":{\"colors\":{\"added-group-account\":\"#1F78C1\",\"added-member-to-group\":\"#0A437C\",\"deleted-group-account\":\"#5195CE\",\"modified-group-account\":\"#0A50A1\",\"type-changed-group-account\":\"#82B5D8\",\"user-member-enumerated\":\"#447EBC\"},\"vis\":{\"colors\":{\"added-group-account\":\"#1F78C1\",\"added-member-to-group\":\"#0A437C\",\"deleted-group-account\":\"#5195CE\",\"modified-group-account\":\"#0A50A1\",\"removed-member-from-group\":\"#BADFF4\",\"type-changed-group-account\":\"#82B5D8\",\"user-member-enumerated\":\"#447EBC\"}},\"enhancements\":{}},\"panelRefName\":\"panel_e0d495aa-f897-403f-815b-6116fae330b7\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"663e0493-2070-407b-9d00-079915cce7e7\",\"w\":32,\"x\":16,\"y\":0},\"panelIndex\":\"663e0493-2070-407b-9d00-079915cce7e7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_663e0493-2070-407b-9d00-079915cce7e7\"}]","timeRestore":false,"title":"[Winlogbeat Security] Group Management Events","version":1},"coreMigrationVersion":"7.14.0","id":"bb858830-f412-11e9-8405-516218e3d268","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"6f0f2ea0-f414-11e9-8405-516218e3d268","name":"22:panel_22","type":"visualization"},{"id":"ffebe440-f419-11e9-8405-516218e3d268","name":"29:panel_29","type":"visualization"},{"id":"e22c6f40-f498-11e9-8405-516218e3d268","name":"30:panel_30","type":"visualization"},{"id":"ee292bc0-f499-11e9-8405-516218e3d268","name":"31:panel_31","type":"visualization"},{"id":"400b63e0-f49a-11e9-8405-516218e3d268","name":"32:panel_32","type":"visualization"},{"id":"a5f664c0-f49a-11e9-8405-516218e3d268","name":"33:panel_33","type":"visualization"},{"id":"546febc0-f49b-11e9-8405-516218e3d268","name":"34:panel_34","type":"visualization"},{"id":"98884120-f49d-11e9-8405-516218e3d268","name":"36:panel_36","type":"visualization"},{"id":"9e534190-f49d-11e9-8405-516218e3d268","name":"37:panel_37","type":"visualization"},{"id":"bb9cf7a0-f49d-11e9-8405-516218e3d268","name":"38:panel_38","type":"visualization"},{"id":"ce867840-f49e-11e9-8405-516218e3d268","name":"39:panel_39","type":"visualization"},{"id":"fee83900-f49f-11e9-8405-516218e3d268","name":"40:panel_40","type":"visualization"},{"id":"bc165210-f4b8-11e9-8405-516218e3d268","name":"42:panel_42","type":"visualization"},{"id":"7e178c80-fee1-11e9-8405-516218e3d268","name":"43:panel_43","type":"search"},{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"45:panel_45","type":"search"},{"id":"b89b0c90-9b41-11ea-87e4-49f31ec44891","name":"3f7e277d-09d1-4a79-bc17-bc5da5a7e290:panel_3f7e277d-09d1-4a79-bc17-bc5da5a7e290","type":"visualization"},{"id":"58fb9480-9b46-11ea-87e4-49f31ec44891","name":"8cda9d6a-096f-41a5-86e6-09dd1f6b9c98:panel_8cda9d6a-096f-41a5-86e6-09dd1f6b9c98","type":"visualization"},{"id":"33462600-9b47-11ea-87e4-49f31ec44891","name":"74edddd5-2dc5-41b8-b4f2-bf9c95218f1b:panel_74edddd5-2dc5-41b8-b4f2-bf9c95218f1b","type":"visualization"},{"id":"e20c02d0-9b48-11ea-87e4-49f31ec44891","name":"33cef054-615a-49cb-bb2e-eb55fab96ae5:panel_33cef054-615a-49cb-bb2e-eb55fab96ae5","type":"visualization"},{"id":"7de2e3f0-9b4d-11ea-87e4-49f31ec44891","name":"e0d495aa-f897-403f-815b-6116fae330b7:panel_e0d495aa-f897-403f-815b-6116fae330b7","type":"visualization"},{"id":"a3c3f350-9b6d-11ea-87e4-49f31ec44891","name":"663e0493-2070-407b-9d00-079915cce7e7:panel_663e0493-2070-407b-9d00-079915cce7e7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMjcsMl0="} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons-tsvb.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons-tsvb.json deleted file mode 100644 index 67f5233b680..00000000000 --- a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons-tsvb.json +++ /dev/null @@ -1,1931 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "User logon activity dashboard with TSVB metrics.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": false - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Sesiones Usuarios Admin" - }, - "gridData": { - "h": 28, - "i": "1", - "w": 18, - "x": 0, - "y": 38 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "Sesiones Usuarios Admin", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 13, - "i": "2", - "w": 9, - "x": 0, - "y": 6 - }, - "panelIndex": "2", - "panelRefName": "panel_1", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Usuarios Adm" - }, - "gridData": { - "h": 19, - "i": "3", - "w": 18, - "x": 0, - "y": 19 - }, - "panelIndex": "3", - "panelRefName": "panel_2", - "title": "Usuarios Adm", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "4", - "w": 12, - "x": 0, - "y": 0 - }, - "panelIndex": "4", - "panelRefName": "panel_3", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Network Logon Details" - }, - "gridData": { - "h": 27, - "i": "10", - "w": 22, - "x": 0, - "y": 66 - }, - "panelIndex": "10", - "panelRefName": "panel_4", - "title": "Network Logon Details", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "08245e0c-6afe-43ea-ba5f-76c3b17301fd", - "w": 36, - "x": 12, - "y": 0 - }, - "panelIndex": "08245e0c-6afe-43ea-ba5f-76c3b17301fd", - "panelRefName": "panel_5", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 13, - "i": "f403fdcc-6588-4573-a949-9e661783a2b8", - "w": 9, - "x": 9, - "y": 6 - }, - "panelIndex": "f403fdcc-6588-4573-a949-9e661783a2b8", - "panelRefName": "panel_6", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Logon Events Timeline" - }, - "gridData": { - "h": 13, - "i": "51a9affa-8e96-42bd-98e9-80531bdefc53", - "w": 30, - "x": 18, - "y": 6 - }, - "panelIndex": "51a9affa-8e96-42bd-98e9-80531bdefc53", - "panelRefName": "panel_7", - "title": "Logon Events Timeline", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Logon Types" - }, - "gridData": { - "h": 19, - "i": "bbdca4de-11c5-4957-a74c-73769416a562", - "w": 12, - "x": 18, - "y": 19 - }, - "panelIndex": "bbdca4de-11c5-4957-a74c-73769416a562", - "panelRefName": "panel_8", - "title": "Logon Types", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 19, - "i": "4df66ae6-e047-47c7-b1a9-b15221eb9d90", - "w": 18, - "x": 30, - "y": 19 - }, - "panelIndex": "4df66ae6-e047-47c7-b1a9-b15221eb9d90", - "panelRefName": "panel_9", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "RDP Reconnections and Desconnections" - }, - "gridData": { - "h": 28, - "i": "454bb008-9720-455e-8ab9-b2f47d25aa4f", - "w": 19, - "x": 18, - "y": 38 - }, - "panelIndex": "454bb008-9720-455e-8ab9-b2f47d25aa4f", - "panelRefName": "panel_10", - "title": "RDP Reconnections and Desconnections", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 28, - "i": "baec73e7-7166-4577-9483-1252bdd8773c", - "w": 11, - "x": 37, - "y": 38 - }, - "panelIndex": "baec73e7-7166-4577-9483-1252bdd8773c", - "panelRefName": "panel_11", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Logout Details" - }, - "gridData": { - "h": 27, - "i": "28115147-8399-4fcd-95ce-ed0a4f4239e3", - "w": 26, - "x": 22, - "y": 66 - }, - "panelIndex": "28115147-8399-4fcd-95ce-ed0a4f4239e3", - "panelRefName": "panel_12", - "title": "Logout Details", - "version": "7.7.0" - } - ], - "timeRestore": false, - "title": "[Winlogbeat Security] User Logons - Simple Metrics", - "version": 1 - }, - "id": "035846a0-a249-11e9-a422-d144027429da", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "804dd400-a248-11e9-a422-d144027429da", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "5bb93ed0-a249-11e9-a422-d144027429da", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "e2516c10-a249-11e9-a422-d144027429da", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "18348f30-a24d-11e9-a422-d144027429da", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "ce71c9a0-a25e-11e9-a422-d144027429da", - "name": "panel_4", - "type": "search" - }, - { - "id": "d770b040-9b35-11ea-87e4-49f31ec44891", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "2c71e0f0-9c0d-11ea-87e4-49f31ec44891", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "abd44840-9c0f-11ea-87e4-49f31ec44891", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "006d75f0-9c03-11ea-87e4-49f31ec44891", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "21aadac0-9c0b-11ea-87e4-49f31ec44891", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "6f4071a0-7a78-11ea-bc9a-0baf2ca323a3", - "name": "panel_10", - "type": "search" - }, - { - "id": "25f31ee0-9c23-11ea-87e4-49f31ec44891", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "06b6b060-7a80-11ea-bc9a-0baf2ca323a3", - "name": "panel_12", - "type": "search" - } - ], - "type": "dashboard", - "updated_at": "2020-06-04T16:26:23.176Z", - "version": "WzQzLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4672" - ], - "type": "phrases", - "value": "4672" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4672" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Logged on Administrators [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Date", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "2020-05-20T07:35:27.496Z", - "to": "2020-05-22T00:01:10.239Z" - }, - "useNormalizedEsInterval": true - }, - "schema": "bucket", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "user.name", - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "8", - "params": { - "customLabel": "# Thread", - "field": "winlog.process.thread.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "9", - "params": { - "customLabel": "LogonID", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "date_histogram", - "format": { - "id": "date", - "params": { - "pattern": "YYYY-MM-DD HH:mm" - } - }, - "label": "Fecha - Hora ", - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "/s/siem", - "origin": "https://192.168.1.72:5601", - "pathname": "/s/siem/app/kibana" - } - } - }, - "label": "Usuario", - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "number", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "/s/siem", - "origin": "https://192.168.1.72:5601", - "pathname": "/s/siem/app/kibana" - } - } - }, - "label": "# Thread", - "params": {} - }, - { - "accessor": 3, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "/s/siem", - "origin": "https://192.168.1.72:5601", - "pathname": "/s/siem/app/kibana" - } - } - }, - "label": "winlog.logon.id: Descending", - "params": {} - } - ], - "metrics": [ - { - "accessor": 4, - "aggType": "count", - "format": { - "id": "number" - }, - "label": "Cantidad Eventos ", - "params": {} - } - ] - }, - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Logged on Administrators [Winlogbeat Security]", - "type": "table" - } - }, - "id": "804dd400-a248-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzExNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4672" - }, - "type": "phrase" - }, - "query": { - "match": { - "event.code": { - "query": "4672", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Admin Logons Simple [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Admin Logons" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "aggType": "cardinality", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Admin Logons Simple [Winlogbeat Security]", - "type": "metric" - } - }, - "id": "5bb93ed0-a249-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:23.176Z", - "version": "WzQ1LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4672" - }, - "type": "phrase" - }, - "query": { - "match": { - "event.code": { - "query": "4672", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Administrator Users [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "legendOpen": true - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "winlog.logon.id" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "/s/siem", - "origin": "https://192.168.1.72:5601", - "pathname": "/s/siem/app/kibana" - } - } - }, - "label": "user.name: Descending", - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "cardinality", - "format": { - "id": "number" - }, - "label": "Unique count of winlog.logon.id", - "params": {} - } - }, - "isDonut": false, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "bottom", - "type": "pie" - }, - "title": "Administrator Users [Winlogbeat Security]", - "type": "pie" - } - }, - "id": "e2516c10-a249-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzExNiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "User Logon Dashboard [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "## **Logon Information Dashboard**", - "openLinksInNewTab": false - }, - "title": "User Logon Dashboard [Winlogbeat Security] ", - "type": "markdown" - } - }, - "id": "18348f30-a24d-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzExNywxXQ==" - }, - { - "attributes": { - "columns": [ - "user.name", - "winlog.logon.type", - "source.domain", - "source.ip", - "winlog.logon.id" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4624" - }, - "type": "phrase" - }, - "query": { - "match": { - "event.code": { - "query": "4624", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "User Logons [Winlogbeat Security]", - "version": 1 - }, - "id": "ce71c9a0-a25e-11e9-a422-d144027429da", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzExOCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboard links - Simple [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Winlogbeat General ECS Dashboard](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/035846a0-a249-11e9-a422-d144027429da?) | [Logon failed and Account Lockout](#/dashboard/f49f3170-9ffc-11ea-87e4-49f31ec44891) | [User Management Events](#/dashboard/8223bed0-b9e9-11e9-b6a2-c9b4015c4baf) | [Group Management Events](#/dashboard/01c54730-fee6-11e9-8405-516218e3d268)", - "openLinksInNewTab": false - }, - "title": "Dashboard links - Simple [Winlogbeat Security]", - "type": "markdown" - } - }, - "id": "d770b040-9b35-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE3NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4624" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.code": "4624" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Logons Simple [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Logons" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "aggType": "cardinality", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000 - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Logons Simple [Winlogbeat Security]", - "type": "metric" - } - }, - "id": "2c71e0f0-9c0d-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:23.176Z", - "version": "WzUwLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4624", - "4672" - ], - "type": "phrases", - "value": "4624, 4672" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4624" - } - }, - { - "match_phrase": { - "event.code": "4672" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Logon Events in Time - Simple [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "colors": { - "Admin Logons": "#E24D42", - "Logon Events": "#447EBC" - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "2020-05-20T07:35:27.496Z", - "to": "2020-05-22T00:01:10.239Z" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "filters": [ - { - "input": { - "language": "kuery", - "query": "event.code: \"4624\" " - }, - "label": "Logon Events" - }, - { - "input": { - "language": "kuery", - "query": "event.code: \"4672\" " - }, - "label": "Admin Logons" - } - ] - }, - "schema": "group", - "type": "filters" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false - }, - "labels": {}, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "interpolate": "cardinal", - "lineWidth": 2, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "line", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "line", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Logon Events in Time - Simple [Winlogbeat Security]", - "type": "line" - } - }, - "id": "abd44840-9c0f-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:23.176Z", - "version": "WzUxLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4624" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.code": "4624" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Logon Types [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "legendOpen": true - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "winlog.logon.id" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "winlog.logon.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "/s/siem", - "origin": "https://192.168.1.72:5601", - "pathname": "/s/siem/app/kibana" - } - } - }, - "label": "user.name: Descending", - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "cardinality", - "format": { - "id": "number" - }, - "label": "Unique count of winlog.logon.id", - "params": {} - } - }, - "isDonut": false, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Logon Types [Winlogbeat Security]", - "type": "pie" - } - }, - "id": "006d75f0-9c03-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzEyMywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Logon Sources [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "source.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "maxFontSize": 72, - "minFontSize": 18, - "orientation": "single", - "scale": "linear", - "showLabel": false - }, - "title": "Logon Sources [Winlogbeat Security]", - "type": "tagcloud" - } - }, - "id": "21aadac0-9c0b-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "7e178c80-fee1-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzEyNCwxXQ==" - }, - { - "attributes": { - "columns": [ - "user.name", - "source.domain", - "source.ip", - "winlog.logon.id", - "event.action" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4778", - "4779" - ], - "type": "phrases", - "value": "4778, 4779" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4778" - } - }, - { - "match_phrase": { - "event.code": "4779" - } - } - ] - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Remote Interactive Connections and Disconnections [Winlogbeat Security]", - "version": 1 - }, - "id": "6f4071a0-7a78-11ea-bc9a-0baf2ca323a3", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzEyNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4648" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.code": "4648" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Logon with Explicit Credentials [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "user.name", - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 200 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "subjectUserName", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "source.ip", - "field": "source.ip", - "json": "{\"missing\": \"::\"}", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "LogonID", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Logon with Explicit Credentials [Winlogbeat Security]", - "type": "table" - } - }, - "id": "25f31ee0-9c23-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzEyNiwxXQ==" - }, - { - "attributes": { - "columns": [ - "user.name", - "user.domain", - "winlog.logon.id", - "event.action", - "winlog.logon.type", - "winlog.event_data.SubjectUserName" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4625" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.code": "4625" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "winlog.provider_name", - "negate": false, - "params": { - "query": "Microsoft-Windows-Security-Auditing" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "winlog.provider_name": "Microsoft-Windows-Security-Auditing" - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "User Logouts [Winlogbeat Security]", - "version": 1 - }, - "id": "06b6b060-7a80-11ea-bc9a-0baf2ca323a3", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzEyNywxXQ==" - }, - { - "attributes": { - "columns": [ - "user.name", - "source.domain", - "source.ip", - "winlog.logon.id", - "winlog.logon.type" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4624" - ], - "type": "phrases", - "value": "4624" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4624" - } - } - ] - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Logon Details [Winlogbeat Security]", - "version": 1 - }, - "id": "7e178c80-fee1-11e9-8405-516218e3d268", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0MywxXQ==" - } - ], - "version": "7.7.0" -} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons-tsvb.ndjson b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons-tsvb.ndjson new file mode 100644 index 00000000000..08ef741aecd --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons-tsvb.ndjson @@ -0,0 +1,15 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4672\"], \"type\": \"phrases\", \"value\": \"4672\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4672\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logged on Administrators [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Date\",\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-05-20T07:35:27.496Z\",\"to\":\"2020-05-22T00:01:10.239Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"bucket\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"user.name\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"# Thread\",\"field\":\"winlog.process.thread.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"9\",\"params\":{\"customLabel\":\"LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"label\":\"Fecha - Hora \",\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"Usuario\",\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"number\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"# Thread\",\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"winlog.logon.id: Descending\",\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Cantidad Eventos \",\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Logged on Administrators [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"804dd400-a248-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNjUsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4672\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4672\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Admin Logons Simple [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Admin Logons\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Admin Logons Simple [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"5bb93ed0-a249-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:57.330Z","version":"WzIyNTEsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4672\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4672\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Administrator Users [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"winlog.logon.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"user.name: Descending\",\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"label\":\"Unique count of winlog.logon.id\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"bottom\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Administrator Users [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"e2516c10-a249-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNjYsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"User Logon Dashboard [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"## **Logon Information Dashboard**\",\"openLinksInNewTab\":false},\"title\":\"User Logon Dashboard [Winlogbeat Security] \",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"18348f30-a24d-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNjcsMl0="} +{"attributes":{"columns":["user.name","winlog.logon.type","source.domain","source.ip","winlog.logon.id"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4624\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4624\", \"type\": \"phrase\"}}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"User Logons [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"ce71c9a0-a25e-11e9-a422-d144027429da","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNjgsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboard links - Simple [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Winlogbeat General ECS Dashboard](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/035846a0-a249-11e9-a422-d144027429da?) | [Logon failed and Account Lockout](#/dashboard/f49f3170-9ffc-11ea-87e4-49f31ec44891) | [User Management Events](#/dashboard/8223bed0-b9e9-11e9-b6a2-c9b4015c4baf) | [Group Management Events](#/dashboard/01c54730-fee6-11e9-8405-516218e3d268)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard links - Simple [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"d770b040-9b35-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIzMDEsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4624\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.code\": \"4624\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logons Simple [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Logons\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Logons Simple [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"2c71e0f0-9c0d-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:57.330Z","version":"WzIyNTYsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4624\", \"4672\"], \"type\": \"phrases\", \"value\": \"4624, 4672\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4624\"}}, {\"match_phrase\": {\"event.code\": \"4672\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Events in Time - Simple [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"colors\": {\"Admin Logons\": \"#E24D42\", \"Logon Events\": \"#447EBC\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-05-20T07:35:27.496Z\",\"to\":\"2020-05-22T00:01:10.239Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4624\\\" \"},\"label\":\"Logon Events\"},{\"input\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4672\\\" \"},\"label\":\"Admin Logons\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Logon Events in Time - Simple [Winlogbeat Security]\",\"type\":\"line\"}"},"coreMigrationVersion":"7.14.0","id":"abd44840-9c0f-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:57.330Z","version":"WzIyNTcsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4624\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.code\": \"4624\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Types [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"winlog.logon.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"winlog.logon.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"user.name: Descending\",\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"label\":\"Unique count of winlog.logon.id\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Logon Types [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"006d75f0-9c03-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzMsMl0="} +{"attributes":{"columns":["user.name","source.domain","source.ip","winlog.logon.id","winlog.logon.type"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4624\"], \"type\": \"phrases\", \"value\": \"4624\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4624\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Logon Details [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"7e178c80-fee1-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTcsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Logon Sources [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Logon Sources [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"21aadac0-9c0b-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"7e178c80-fee1-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzQsMl0="} +{"attributes":{"columns":["user.name","source.domain","source.ip","winlog.logon.id","event.action"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4778\", \"4779\"], \"type\": \"phrases\", \"value\": \"4778, 4779\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4778\"}}, {\"match_phrase\": {\"event.code\": \"4779\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Remote Interactive Connections and Disconnections [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"6f4071a0-7a78-11ea-bc9a-0baf2ca323a3","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzUsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4648\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.code\": \"4648\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon with Explicit Credentials [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"user.name\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":200},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"subjectUserName\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"source.ip\",\"field\":\"source.ip\",\"json\":\"{\\\"missing\\\": \\\"::\\\"}\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Logon with Explicit Credentials [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"25f31ee0-9c23-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzYsMl0="} +{"attributes":{"columns":["user.name","user.domain","winlog.logon.id","event.action","winlog.logon.type","winlog.event_data.SubjectUserName"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4625\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.code\": \"4625\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"User Logouts [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"06b6b060-7a80-11ea-bc9a-0baf2ca323a3","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzcsMl0="} +{"attributes":{"description":"User logon activity dashboard with TSVB metrics.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":28,\"i\":\"1\",\"w\":18,\"x\":0,\"y\":38},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Sesiones Usuarios Admin\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"2\",\"w\":9,\"x\":0,\"y\":6},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"3\",\"w\":18,\"x\":0,\"y\":19},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Usuarios Adm\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"4\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":27,\"i\":\"10\",\"w\":22,\"x\":0,\"y\":66},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Network Logon Details\",\"panelRefName\":\"panel_10\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"08245e0c-6afe-43ea-ba5f-76c3b17301fd\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"08245e0c-6afe-43ea-ba5f-76c3b17301fd\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_08245e0c-6afe-43ea-ba5f-76c3b17301fd\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"f403fdcc-6588-4573-a949-9e661783a2b8\",\"w\":9,\"x\":9,\"y\":6},\"panelIndex\":\"f403fdcc-6588-4573-a949-9e661783a2b8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_f403fdcc-6588-4573-a949-9e661783a2b8\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"51a9affa-8e96-42bd-98e9-80531bdefc53\",\"w\":30,\"x\":18,\"y\":6},\"panelIndex\":\"51a9affa-8e96-42bd-98e9-80531bdefc53\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Events Timeline\",\"panelRefName\":\"panel_51a9affa-8e96-42bd-98e9-80531bdefc53\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"bbdca4de-11c5-4957-a74c-73769416a562\",\"w\":12,\"x\":18,\"y\":19},\"panelIndex\":\"bbdca4de-11c5-4957-a74c-73769416a562\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Types\",\"panelRefName\":\"panel_bbdca4de-11c5-4957-a74c-73769416a562\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"4df66ae6-e047-47c7-b1a9-b15221eb9d90\",\"w\":18,\"x\":30,\"y\":19},\"panelIndex\":\"4df66ae6-e047-47c7-b1a9-b15221eb9d90\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4df66ae6-e047-47c7-b1a9-b15221eb9d90\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":28,\"i\":\"454bb008-9720-455e-8ab9-b2f47d25aa4f\",\"w\":19,\"x\":18,\"y\":38},\"panelIndex\":\"454bb008-9720-455e-8ab9-b2f47d25aa4f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"RDP Reconnections and Desconnections\",\"panelRefName\":\"panel_454bb008-9720-455e-8ab9-b2f47d25aa4f\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":28,\"i\":\"baec73e7-7166-4577-9483-1252bdd8773c\",\"w\":11,\"x\":37,\"y\":38},\"panelIndex\":\"baec73e7-7166-4577-9483-1252bdd8773c\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_baec73e7-7166-4577-9483-1252bdd8773c\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":27,\"i\":\"28115147-8399-4fcd-95ce-ed0a4f4239e3\",\"w\":26,\"x\":22,\"y\":66},\"panelIndex\":\"28115147-8399-4fcd-95ce-ed0a4f4239e3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logout Details\",\"panelRefName\":\"panel_28115147-8399-4fcd-95ce-ed0a4f4239e3\"}]","timeRestore":false,"title":"[Winlogbeat Security] User Logons - Simple Metrics","version":1},"coreMigrationVersion":"7.14.0","id":"035846a0-a249-11e9-a422-d144027429da","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"804dd400-a248-11e9-a422-d144027429da","name":"1:panel_1","type":"visualization"},{"id":"5bb93ed0-a249-11e9-a422-d144027429da","name":"2:panel_2","type":"visualization"},{"id":"e2516c10-a249-11e9-a422-d144027429da","name":"3:panel_3","type":"visualization"},{"id":"18348f30-a24d-11e9-a422-d144027429da","name":"4:panel_4","type":"visualization"},{"id":"ce71c9a0-a25e-11e9-a422-d144027429da","name":"10:panel_10","type":"search"},{"id":"d770b040-9b35-11ea-87e4-49f31ec44891","name":"08245e0c-6afe-43ea-ba5f-76c3b17301fd:panel_08245e0c-6afe-43ea-ba5f-76c3b17301fd","type":"visualization"},{"id":"2c71e0f0-9c0d-11ea-87e4-49f31ec44891","name":"f403fdcc-6588-4573-a949-9e661783a2b8:panel_f403fdcc-6588-4573-a949-9e661783a2b8","type":"visualization"},{"id":"abd44840-9c0f-11ea-87e4-49f31ec44891","name":"51a9affa-8e96-42bd-98e9-80531bdefc53:panel_51a9affa-8e96-42bd-98e9-80531bdefc53","type":"visualization"},{"id":"006d75f0-9c03-11ea-87e4-49f31ec44891","name":"bbdca4de-11c5-4957-a74c-73769416a562:panel_bbdca4de-11c5-4957-a74c-73769416a562","type":"visualization"},{"id":"21aadac0-9c0b-11ea-87e4-49f31ec44891","name":"4df66ae6-e047-47c7-b1a9-b15221eb9d90:panel_4df66ae6-e047-47c7-b1a9-b15221eb9d90","type":"visualization"},{"id":"6f4071a0-7a78-11ea-bc9a-0baf2ca323a3","name":"454bb008-9720-455e-8ab9-b2f47d25aa4f:panel_454bb008-9720-455e-8ab9-b2f47d25aa4f","type":"search"},{"id":"25f31ee0-9c23-11ea-87e4-49f31ec44891","name":"baec73e7-7166-4577-9483-1252bdd8773c:panel_baec73e7-7166-4577-9483-1252bdd8773c","type":"visualization"},{"id":"06b6b060-7a80-11ea-bc9a-0baf2ca323a3","name":"28115147-8399-4fcd-95ce-ed0a4f4239e3:panel_28115147-8399-4fcd-95ce-ed0a4f4239e3","type":"search"}],"type":"dashboard","updated_at":"2021-08-11T13:18:57.330Z","version":"WzIyNDksMl0="} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons.json deleted file mode 100644 index c6a05f7bdca..00000000000 --- a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons.json +++ /dev/null @@ -1,1785 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "User logon activity dashboard.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": false - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "Admin Users Sessions" - }, - "gridData": { - "h": 28, - "i": "1", - "w": 18, - "x": 0, - "y": 34 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "title": "Admin Users Sessions", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "colors": { - "AdminLocalSta": "#890F02", - "SERVICIO LOCAL": "#508642" - }, - "legendOpen": true, - "title": "Administrators Logged On", - "vis": { - "colors": { - "AdminLocalSta": "#890F02", - "NETWORK SERVICE": "#1F78C1", - "SERVICIO LOCAL": "#508642" - }, - "legendOpen": true - } - }, - "gridData": { - "h": 18, - "i": "3", - "w": 18, - "x": 0, - "y": 16 - }, - "panelIndex": "3", - "panelRefName": "panel_1", - "title": "Administrators Logged On", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "4", - "w": 12, - "x": 0, - "y": 0 - }, - "panelIndex": "4", - "panelRefName": "panel_2", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Logon Details" - }, - "gridData": { - "h": 47, - "i": "10", - "w": 23, - "x": 0, - "y": 62 - }, - "panelIndex": "10", - "panelRefName": "panel_3", - "title": "Logon Details", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 6, - "i": "34fc9633-8a7c-444d-8d19-06095b55fb43", - "w": 36, - "x": 12, - "y": 0 - }, - "panelIndex": "34fc9633-8a7c-444d-8d19-06095b55fb43", - "panelRefName": "panel_4", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 10, - "i": "67d2409d-3e51-45d5-972f-32a36537e622", - "w": 9, - "x": 0, - "y": 6 - }, - "panelIndex": "67d2409d-3e51-45d5-972f-32a36537e622", - "panelRefName": "panel_5", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 10, - "i": "33d05ce3-f60d-4a31-a668-aa6fab0cc800", - "w": 9, - "x": 9, - "y": 6 - }, - "panelIndex": "33d05ce3-f60d-4a31-a668-aa6fab0cc800", - "panelRefName": "panel_6", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Logon Events Timeline" - }, - "gridData": { - "h": 13, - "i": "7b3906e6-3a81-450c-bb31-ca0d670440b7", - "w": 30, - "x": 18, - "y": 6 - }, - "panelIndex": "7b3906e6-3a81-450c-bb31-ca0d670440b7", - "panelRefName": "panel_7", - "title": "Logon Events Timeline", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "colors": { - "CachedInteractive": "#6ED0E0", - "Interactive": "#2F575E", - "Network": "#447EBC", - "RemoteInteractive": "#64B0C8", - "Service": "#6ED0E0", - "Unlock": "#BADFF4" - }, - "legendOpen": true, - "title": "Logon Types", - "vis": { - "colors": { - "CachedInteractive": "#6ED0E0", - "Interactive": "#2F575E", - "Network": "#447EBC", - "RemoteInteractive": "#64B0C8", - "Service": "#65C5DB", - "Unlock": "#BADFF4" - }, - "legendOpen": true - } - }, - "gridData": { - "h": 15, - "i": "cf50b48e-453c-46fb-ad35-7ccfb7b03de0", - "w": 15, - "x": 18, - "y": 19 - }, - "panelIndex": "cf50b48e-453c-46fb-ad35-7ccfb7b03de0", - "panelRefName": "panel_8", - "title": "Logon Types", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 15, - "i": "a743ffe5-a2ac-4c0b-9b6f-a81563140c42", - "w": 15, - "x": 33, - "y": 19 - }, - "panelIndex": "a743ffe5-a2ac-4c0b-9b6f-a81563140c42", - "panelRefName": "panel_9", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "RDP Reconnections and Desconnections" - }, - "gridData": { - "h": 28, - "i": "454bb008-9720-455e-8ab9-b2f47d25aa4f", - "w": 18, - "x": 18, - "y": 34 - }, - "panelIndex": "454bb008-9720-455e-8ab9-b2f47d25aa4f", - "panelRefName": "panel_10", - "title": "RDP Reconnections and Desconnections", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 28, - "i": "29a0e70a-ab23-4d48-8d4e-9a39c5af47ad", - "w": 12, - "x": 36, - "y": 34 - }, - "panelIndex": "29a0e70a-ab23-4d48-8d4e-9a39c5af47ad", - "panelRefName": "panel_11", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Logout Details" - }, - "gridData": { - "h": 46, - "i": "28115147-8399-4fcd-95ce-ed0a4f4239e3", - "w": 25, - "x": 23, - "y": 62 - }, - "panelIndex": "28115147-8399-4fcd-95ce-ed0a4f4239e3", - "panelRefName": "panel_12", - "title": "Logout Details", - "version": "7.7.0" - } - ], - "timeRestore": false, - "title": "[Winlogbeat Security] User Logons", - "version": 1 - }, - "id": "bae11b00-9bfc-11ea-87e4-49f31ec44891", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "804dd400-a248-11e9-a422-d144027429da", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "e2516c10-a249-11e9-a422-d144027429da", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "18348f30-a24d-11e9-a422-d144027429da", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "ce71c9a0-a25e-11e9-a422-d144027429da", - "name": "panel_3", - "type": "search" - }, - { - "id": "a3c3f350-9b6d-11ea-87e4-49f31ec44891", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "0622da40-9bfd-11ea-87e4-49f31ec44891", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "860706a0-9bfd-11ea-87e4-49f31ec44891", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "a909b930-685f-11ea-896f-0d70f7ec3956", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "006d75f0-9c03-11ea-87e4-49f31ec44891", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "21aadac0-9c0b-11ea-87e4-49f31ec44891", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "6f4071a0-7a78-11ea-bc9a-0baf2ca323a3", - "name": "panel_10", - "type": "search" - }, - { - "id": "25f31ee0-9c23-11ea-87e4-49f31ec44891", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "06b6b060-7a80-11ea-bc9a-0baf2ca323a3", - "name": "panel_12", - "type": "search" - } - ], - "type": "dashboard", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzExNCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4672" - ], - "type": "phrases", - "value": "4672" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4672" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Logged on Administrators [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Date", - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "2020-05-20T07:35:27.496Z", - "to": "2020-05-22T00:01:10.239Z" - }, - "useNormalizedEsInterval": true - }, - "schema": "bucket", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "user.name", - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "8", - "params": { - "customLabel": "# Thread", - "field": "winlog.process.thread.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "9", - "params": { - "customLabel": "LogonID", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "date_histogram", - "format": { - "id": "date", - "params": { - "pattern": "YYYY-MM-DD HH:mm" - } - }, - "label": "Fecha - Hora ", - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "/s/siem", - "origin": "https://192.168.1.72:5601", - "pathname": "/s/siem/app/kibana" - } - } - }, - "label": "Usuario", - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "number", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "/s/siem", - "origin": "https://192.168.1.72:5601", - "pathname": "/s/siem/app/kibana" - } - } - }, - "label": "# Thread", - "params": {} - }, - { - "accessor": 3, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "/s/siem", - "origin": "https://192.168.1.72:5601", - "pathname": "/s/siem/app/kibana" - } - } - }, - "label": "winlog.logon.id: Descending", - "params": {} - } - ], - "metrics": [ - { - "accessor": 4, - "aggType": "count", - "format": { - "id": "number" - }, - "label": "Cantidad Eventos ", - "params": {} - } - ] - }, - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Logged on Administrators [Winlogbeat Security]", - "type": "table" - } - }, - "id": "804dd400-a248-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzExNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4672" - }, - "type": "phrase" - }, - "query": { - "match": { - "event.code": { - "query": "4672", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Administrator Users [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "legendOpen": true - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "winlog.logon.id" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "/s/siem", - "origin": "https://192.168.1.72:5601", - "pathname": "/s/siem/app/kibana" - } - } - }, - "label": "user.name: Descending", - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "cardinality", - "format": { - "id": "number" - }, - "label": "Unique count of winlog.logon.id", - "params": {} - } - }, - "isDonut": false, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "bottom", - "type": "pie" - }, - "title": "Administrator Users [Winlogbeat Security]", - "type": "pie" - } - }, - "id": "e2516c10-a249-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzExNiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "User Logon Dashboard [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "## **Logon Information Dashboard**", - "openLinksInNewTab": false - }, - "title": "User Logon Dashboard [Winlogbeat Security] ", - "type": "markdown" - } - }, - "id": "18348f30-a24d-11e9-a422-d144027429da", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzExNywxXQ==" - }, - { - "attributes": { - "columns": [ - "user.name", - "winlog.logon.type", - "source.domain", - "source.ip", - "winlog.logon.id" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4624" - }, - "type": "phrase" - }, - "query": { - "match": { - "event.code": { - "query": "4624", - "type": "phrase" - } - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "User Logons [Winlogbeat Security]", - "version": 1 - }, - "id": "ce71c9a0-a25e-11e9-a422-d144027429da", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzExOCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboard links [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Winlogbeat Overview](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/bae11b00-9bfc-11ea-87e4-49f31ec44891) | [Logon Failed and Account Lockout](#/dashboard/d401ef40-a7d5-11e9-a422-d144027429da) | [User Management Events](#/dashboard/71f720f0-ff18-11e9-8405-516218e3d268) | [Group Management Events](#/dashboard/bb858830-f412-11e9-8405-516218e3d268)", - "openLinksInNewTab": false - }, - "title": "Dashboard links [Winlogbeat Security]", - "type": "markdown" - } - }, - "id": "a3c3f350-9b6d-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:49:11.152Z", - "version": "WzI1MCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Administrator Logons [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(204,204,204,1)", - "id": "d5bcde50-9bfc-11ea-aaa3-618beeff2d9c", - "operator": "lte", - "value": 0 - }, - { - "background_color": "rgba(181,49,0,1)", - "id": "16018150-9bfd-11ea-aaa3-618beeff2d9c", - "operator": "gte", - "value": 0 - } - ], - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "event.code: \"4672\"" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "90d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Administrator Logons", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Administrator Logons [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "0622da40-9bfd-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzEyMCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "User Logons [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(204,204,204,1)", - "id": "d5bcde50-9bfc-11ea-aaa3-618beeff2d9c", - "operator": "lte", - "value": 0 - }, - { - "background_color": "rgba(7,139,141,1)", - "id": "16018150-9bfd-11ea-aaa3-618beeff2d9c", - "operator": "gte", - "value": 0 - } - ], - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "event.code: \"4624\"" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "90d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Logons ", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "User Logons [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "860706a0-9bfd-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzEyMSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Logon Events Timeline [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "filter": { - "language": "kuery", - "query": "event.code: \"4672\" or event.code: \"4624\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_filters": [ - { - "color": "rgba(226,115,0,1)", - "filter": { - "language": "kuery", - "query": "event.code: \"4672\"" - }, - "id": "7560ee50-685f-11ea-8d46-c19e41702dd4", - "label": "Admin logons" - }, - { - "color": "rgba(164,221,243,1)", - "filter": { - "language": "kuery", - "query": "event.code: \"4624\"" - }, - "id": "80e7fb10-685f-11ea-8d46-c19e41702dd4", - "label": "Logon Events" - } - ], - "split_mode": "filters", - "stacked": "none", - "type": "timeseries" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "type": "timeseries" - }, - "title": "Logon Events Timeline [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "a909b930-685f-11ea-896f-0d70f7ec3956", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzEyMiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4624" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.code": "4624" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Logon Types [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "legendOpen": true - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "field": "winlog.logon.id" - }, - "schema": "metric", - "type": "cardinality" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "winlog.logon.type", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other", - "parsedUrl": { - "basePath": "/s/siem", - "origin": "https://192.168.1.72:5601", - "pathname": "/s/siem/app/kibana" - } - } - }, - "label": "user.name: Descending", - "params": {} - } - ], - "metric": { - "accessor": 1, - "aggType": "cardinality", - "format": { - "id": "number" - }, - "label": "Unique count of winlog.logon.id", - "params": {} - } - }, - "isDonut": false, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "Logon Types [Winlogbeat Security]", - "type": "pie" - } - }, - "id": "006d75f0-9c03-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzEyMywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Logon Sources [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "source.ip", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "maxFontSize": 72, - "minFontSize": 18, - "orientation": "single", - "scale": "linear", - "showLabel": false - }, - "title": "Logon Sources [Winlogbeat Security]", - "type": "tagcloud" - } - }, - "id": "21aadac0-9c0b-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "7e178c80-fee1-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzEyNCwxXQ==" - }, - { - "attributes": { - "columns": [ - "user.name", - "source.domain", - "source.ip", - "winlog.logon.id", - "event.action" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4778", - "4779" - ], - "type": "phrases", - "value": "4778, 4779" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4778" - } - }, - { - "match_phrase": { - "event.code": "4779" - } - } - ] - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Remote Interactive Connections and Disconnections [Winlogbeat Security]", - "version": 1 - }, - "id": "6f4071a0-7a78-11ea-bc9a-0baf2ca323a3", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzEyNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4648" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.code": "4648" - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Logon with Explicit Credentials [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "user.name", - "field": "user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 200 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "subjectUserName", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "5", - "params": { - "customLabel": "source.ip", - "field": "source.ip", - "json": "{\"missing\": \"::\"}", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "6", - "params": { - "customLabel": "LogonID", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Logon with Explicit Credentials [Winlogbeat Security]", - "type": "table" - } - }, - "id": "25f31ee0-9c23-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzEyNiwxXQ==" - }, - { - "attributes": { - "columns": [ - "user.name", - "user.domain", - "winlog.logon.id", - "event.action", - "winlog.logon.type", - "winlog.event_data.SubjectUserName" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4625" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "event.code": "4625" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "key": "winlog.provider_name", - "negate": false, - "params": { - "query": "Microsoft-Windows-Security-Auditing" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "winlog.provider_name": "Microsoft-Windows-Security-Auditing" - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "User Logouts [Winlogbeat Security]", - "version": 1 - }, - "id": "06b6b060-7a80-11ea-bc9a-0baf2ca323a3", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-06-04T16:26:26.182Z", - "version": "WzEyNywxXQ==" - }, - { - "attributes": { - "columns": [ - "user.name", - "source.domain", - "source.ip", - "winlog.logon.id", - "winlog.logon.type" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4624" - ], - "type": "phrases", - "value": "4624" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4624" - } - } - ] - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Logon Details [Winlogbeat Security]", - "version": 1 - }, - "id": "7e178c80-fee1-11e9-8405-516218e3d268", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0MywxXQ==" - } - ], - "version": "7.7.0" -} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons.ndjson b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons.ndjson new file mode 100644 index 00000000000..cd7371ce16a --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons.ndjson @@ -0,0 +1,15 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4672\"], \"type\": \"phrases\", \"value\": \"4672\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4672\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logged on Administrators [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Date\",\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-05-20T07:35:27.496Z\",\"to\":\"2020-05-22T00:01:10.239Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"bucket\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"user.name\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"# Thread\",\"field\":\"winlog.process.thread.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"9\",\"params\":{\"customLabel\":\"LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"label\":\"Fecha - Hora \",\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"Usuario\",\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"number\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"# Thread\",\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"winlog.logon.id: Descending\",\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Cantidad Eventos \",\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Logged on Administrators [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"804dd400-a248-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNjUsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4672\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4672\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Administrator Users [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"winlog.logon.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"user.name: Descending\",\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"label\":\"Unique count of winlog.logon.id\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"bottom\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Administrator Users [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"e2516c10-a249-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNjYsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"User Logon Dashboard [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"## **Logon Information Dashboard**\",\"openLinksInNewTab\":false},\"title\":\"User Logon Dashboard [Winlogbeat Security] \",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"18348f30-a24d-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNjcsMl0="} +{"attributes":{"columns":["user.name","winlog.logon.type","source.domain","source.ip","winlog.logon.id"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4624\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4624\", \"type\": \"phrase\"}}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"User Logons [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"ce71c9a0-a25e-11e9-a422-d144027429da","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNjgsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboard links [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Winlogbeat Overview](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/bae11b00-9bfc-11ea-87e4-49f31ec44891) | [Logon Failed and Account Lockout](#/dashboard/d401ef40-a7d5-11e9-a422-d144027429da) | [User Management Events](#/dashboard/71f720f0-ff18-11e9-8405-516218e3d268) | [Group Management Events](#/dashboard/bb858830-f412-11e9-8405-516218e3d268)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard links [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"a3c3f350-9b6d-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjksMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Administrator Logons [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"d5bcde50-9bfc-11ea-aaa3-618beeff2d9c\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(181,49,0,1)\",\"id\":\"16018150-9bfd-11ea-aaa3-618beeff2d9c\",\"operator\":\"gte\",\"value\":0},{\"background_color\":\"rgba(181,49,0,1)\",\"id\":\"bc7a44aa-ac6a-44d2-9557-a2d638c43fdf\",\"operator\":\"empty\",\"value\":null}],\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4672\\\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Administrator Logons\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Administrator Logons [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"0622da40-9bfd-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzAsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"User Logons [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"d5bcde50-9bfc-11ea-aaa3-618beeff2d9c\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(7,139,141,1)\",\"id\":\"16018150-9bfd-11ea-aaa3-618beeff2d9c\",\"operator\":\"gte\",\"value\":0},{\"background_color\":\"rgba(7,139,141,1)\",\"id\":\"ced8b8b4-c6c8-43db-971a-7e609425e08e\",\"operator\":\"empty\",\"value\":null}],\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4624\\\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Logons \",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"User Logons [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"860706a0-9bfd-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzEsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Logon Events Timeline [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4672\\\" or event.code: \\\"4624\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_filters\":[{\"color\":\"rgba(226,115,0,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4672\\\"\"},\"id\":\"7560ee50-685f-11ea-8d46-c19e41702dd4\",\"label\":\"Admin logons\"},{\"color\":\"rgba(164,221,243,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4624\\\"\"},\"id\":\"80e7fb10-685f-11ea-8d46-c19e41702dd4\",\"label\":\"Logon Events\"}],\"split_mode\":\"filters\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Logon Events Timeline [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"a909b930-685f-11ea-896f-0d70f7ec3956","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzIsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4624\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.code\": \"4624\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Types [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"winlog.logon.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"winlog.logon.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"user.name: Descending\",\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"label\":\"Unique count of winlog.logon.id\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Logon Types [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"006d75f0-9c03-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzMsMl0="} +{"attributes":{"columns":["user.name","source.domain","source.ip","winlog.logon.id","winlog.logon.type"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4624\"], \"type\": \"phrases\", \"value\": \"4624\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4624\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Logon Details [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"7e178c80-fee1-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTcsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Logon Sources [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Logon Sources [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"21aadac0-9c0b-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"7e178c80-fee1-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzQsMl0="} +{"attributes":{"columns":["user.name","source.domain","source.ip","winlog.logon.id","event.action"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4778\", \"4779\"], \"type\": \"phrases\", \"value\": \"4778, 4779\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4778\"}}, {\"match_phrase\": {\"event.code\": \"4779\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Remote Interactive Connections and Disconnections [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"6f4071a0-7a78-11ea-bc9a-0baf2ca323a3","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzUsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4648\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.code\": \"4648\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon with Explicit Credentials [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"user.name\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":200},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"subjectUserName\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"source.ip\",\"field\":\"source.ip\",\"json\":\"{\\\"missing\\\": \\\"::\\\"}\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Logon with Explicit Credentials [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"25f31ee0-9c23-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzYsMl0="} +{"attributes":{"columns":["user.name","user.domain","winlog.logon.id","event.action","winlog.logon.type","winlog.event_data.SubjectUserName"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4625\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.code\": \"4625\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"User Logouts [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"06b6b060-7a80-11ea-bc9a-0baf2ca323a3","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzcsMl0="} +{"attributes":{"description":"User logon activity dashboard.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":28,\"i\":\"1\",\"w\":18,\"x\":0,\"y\":34},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Admin Users Sessions\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"3\",\"w\":18,\"x\":0,\"y\":16},\"panelIndex\":\"3\",\"embeddableConfig\":{\"colors\":{\"AdminLocalSta\":\"#890F02\",\"SERVICIO LOCAL\":\"#508642\"},\"legendOpen\":true,\"vis\":{\"colors\":{\"AdminLocalSta\":\"#890F02\",\"NETWORK SERVICE\":\"#1F78C1\",\"SERVICIO LOCAL\":\"#508642\"},\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Administrators Logged On\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"4\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":47,\"i\":\"10\",\"w\":23,\"x\":0,\"y\":62},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Details\",\"panelRefName\":\"panel_10\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"34fc9633-8a7c-444d-8d19-06095b55fb43\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"34fc9633-8a7c-444d-8d19-06095b55fb43\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_34fc9633-8a7c-444d-8d19-06095b55fb43\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"67d2409d-3e51-45d5-972f-32a36537e622\",\"w\":9,\"x\":0,\"y\":6},\"panelIndex\":\"67d2409d-3e51-45d5-972f-32a36537e622\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_67d2409d-3e51-45d5-972f-32a36537e622\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"33d05ce3-f60d-4a31-a668-aa6fab0cc800\",\"w\":9,\"x\":9,\"y\":6},\"panelIndex\":\"33d05ce3-f60d-4a31-a668-aa6fab0cc800\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_33d05ce3-f60d-4a31-a668-aa6fab0cc800\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"7b3906e6-3a81-450c-bb31-ca0d670440b7\",\"w\":30,\"x\":18,\"y\":6},\"panelIndex\":\"7b3906e6-3a81-450c-bb31-ca0d670440b7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Events Timeline\",\"panelRefName\":\"panel_7b3906e6-3a81-450c-bb31-ca0d670440b7\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"cf50b48e-453c-46fb-ad35-7ccfb7b03de0\",\"w\":15,\"x\":18,\"y\":19},\"panelIndex\":\"cf50b48e-453c-46fb-ad35-7ccfb7b03de0\",\"embeddableConfig\":{\"colors\":{\"CachedInteractive\":\"#6ED0E0\",\"Interactive\":\"#2F575E\",\"Network\":\"#447EBC\",\"RemoteInteractive\":\"#64B0C8\",\"Service\":\"#6ED0E0\",\"Unlock\":\"#BADFF4\"},\"legendOpen\":true,\"vis\":{\"colors\":{\"CachedInteractive\":\"#6ED0E0\",\"Interactive\":\"#2F575E\",\"Network\":\"#447EBC\",\"RemoteInteractive\":\"#64B0C8\",\"Service\":\"#65C5DB\",\"Unlock\":\"#BADFF4\"},\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Logon Types\",\"panelRefName\":\"panel_cf50b48e-453c-46fb-ad35-7ccfb7b03de0\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"a743ffe5-a2ac-4c0b-9b6f-a81563140c42\",\"w\":15,\"x\":33,\"y\":19},\"panelIndex\":\"a743ffe5-a2ac-4c0b-9b6f-a81563140c42\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a743ffe5-a2ac-4c0b-9b6f-a81563140c42\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":28,\"i\":\"454bb008-9720-455e-8ab9-b2f47d25aa4f\",\"w\":18,\"x\":18,\"y\":34},\"panelIndex\":\"454bb008-9720-455e-8ab9-b2f47d25aa4f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"RDP Reconnections and Desconnections\",\"panelRefName\":\"panel_454bb008-9720-455e-8ab9-b2f47d25aa4f\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":28,\"i\":\"29a0e70a-ab23-4d48-8d4e-9a39c5af47ad\",\"w\":12,\"x\":36,\"y\":34},\"panelIndex\":\"29a0e70a-ab23-4d48-8d4e-9a39c5af47ad\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_29a0e70a-ab23-4d48-8d4e-9a39c5af47ad\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":46,\"i\":\"28115147-8399-4fcd-95ce-ed0a4f4239e3\",\"w\":25,\"x\":23,\"y\":62},\"panelIndex\":\"28115147-8399-4fcd-95ce-ed0a4f4239e3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logout Details\",\"panelRefName\":\"panel_28115147-8399-4fcd-95ce-ed0a4f4239e3\"}]","timeRestore":false,"title":"[Winlogbeat Security] User Logons","version":1},"coreMigrationVersion":"7.14.0","id":"bae11b00-9bfc-11ea-87e4-49f31ec44891","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"804dd400-a248-11e9-a422-d144027429da","name":"1:panel_1","type":"visualization"},{"id":"e2516c10-a249-11e9-a422-d144027429da","name":"3:panel_3","type":"visualization"},{"id":"18348f30-a24d-11e9-a422-d144027429da","name":"4:panel_4","type":"visualization"},{"id":"ce71c9a0-a25e-11e9-a422-d144027429da","name":"10:panel_10","type":"search"},{"id":"a3c3f350-9b6d-11ea-87e4-49f31ec44891","name":"34fc9633-8a7c-444d-8d19-06095b55fb43:panel_34fc9633-8a7c-444d-8d19-06095b55fb43","type":"visualization"},{"id":"0622da40-9bfd-11ea-87e4-49f31ec44891","name":"67d2409d-3e51-45d5-972f-32a36537e622:panel_67d2409d-3e51-45d5-972f-32a36537e622","type":"visualization"},{"id":"860706a0-9bfd-11ea-87e4-49f31ec44891","name":"33d05ce3-f60d-4a31-a668-aa6fab0cc800:panel_33d05ce3-f60d-4a31-a668-aa6fab0cc800","type":"visualization"},{"id":"a909b930-685f-11ea-896f-0d70f7ec3956","name":"7b3906e6-3a81-450c-bb31-ca0d670440b7:panel_7b3906e6-3a81-450c-bb31-ca0d670440b7","type":"visualization"},{"id":"006d75f0-9c03-11ea-87e4-49f31ec44891","name":"cf50b48e-453c-46fb-ad35-7ccfb7b03de0:panel_cf50b48e-453c-46fb-ad35-7ccfb7b03de0","type":"visualization"},{"id":"21aadac0-9c0b-11ea-87e4-49f31ec44891","name":"a743ffe5-a2ac-4c0b-9b6f-a81563140c42:panel_a743ffe5-a2ac-4c0b-9b6f-a81563140c42","type":"visualization"},{"id":"6f4071a0-7a78-11ea-bc9a-0baf2ca323a3","name":"454bb008-9720-455e-8ab9-b2f47d25aa4f:panel_454bb008-9720-455e-8ab9-b2f47d25aa4f","type":"search"},{"id":"25f31ee0-9c23-11ea-87e4-49f31ec44891","name":"29a0e70a-ab23-4d48-8d4e-9a39c5af47ad:panel_29a0e70a-ab23-4d48-8d4e-9a39c5af47ad","type":"visualization"},{"id":"06b6b060-7a80-11ea-bc9a-0baf2ca323a3","name":"28115147-8399-4fcd-95ce-ed0a4f4239e3:panel_28115147-8399-4fcd-95ce-ed0a4f4239e3","type":"search"}],"type":"dashboard","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNjQsMl0="} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management-tsvb.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management-tsvb.json deleted file mode 100644 index c0d67840468..00000000000 --- a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management-tsvb.json +++ /dev/null @@ -1,4329 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "User management activity with TSVB metrics.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": false - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "1", - "w": 17, - "x": 0, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Created Users [Winlogbeat Security]" - }, - "gridData": { - "h": 16, - "i": "3", - "w": 9, - "x": 0, - "y": 55 - }, - "panelIndex": "3", - "panelRefName": "panel_1", - "title": "Created Users [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Enabled Users [Winlogbeat Security]" - }, - "gridData": { - "h": 16, - "i": "5", - "w": 9, - "x": 9, - "y": 55 - }, - "panelIndex": "5", - "panelRefName": "panel_2", - "title": "Enabled Users [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Disabled Users [Winlogbeat Security]" - }, - "gridData": { - "h": 16, - "i": "6", - "w": 9, - "x": 0, - "y": 80 - }, - "panelIndex": "6", - "panelRefName": "panel_3", - "title": "Disabled Users [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Deleted Users [Winlogbeat Security]" - }, - "gridData": { - "h": 16, - "i": "7", - "w": 9, - "x": 18, - "y": 55 - }, - "panelIndex": "7", - "panelRefName": "panel_4", - "title": "Deleted Users [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Passwords Changes [Winlogbeat Security]" - }, - "gridData": { - "h": 16, - "i": "9", - "w": 9, - "x": 18, - "y": 80 - }, - "panelIndex": "9", - "panelRefName": "panel_5", - "title": "Passwords Changes [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "10", - "w": 9, - "x": 0, - "y": 46 - }, - "panelIndex": "10", - "panelRefName": "panel_6", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "11", - "w": 9, - "x": 9, - "y": 46 - }, - "panelIndex": "11", - "panelRefName": "panel_7", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "12", - "w": 9, - "x": 18, - "y": 46 - }, - "panelIndex": "12", - "panelRefName": "panel_8", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "13", - "w": 9, - "x": 0, - "y": 71 - }, - "panelIndex": "13", - "panelRefName": "panel_9", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "14", - "w": 9, - "x": 18, - "y": 71 - }, - "panelIndex": "14", - "panelRefName": "panel_10", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Unlocked Users [Winlogbeat Security]" - }, - "gridData": { - "h": 16, - "i": "15", - "w": 9, - "x": 9, - "y": 80 - }, - "panelIndex": "15", - "panelRefName": "panel_11", - "title": "Unlocked Users [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Users Changes [Winlogbeat Security]" - }, - "gridData": { - "h": 16, - "i": "16", - "w": 9, - "x": 18, - "y": 105 - }, - "panelIndex": "16", - "panelRefName": "panel_12", - "title": "Users Changes [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "17", - "w": 9, - "x": 0, - "y": 96 - }, - "panelIndex": "17", - "panelRefName": "panel_13", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "18", - "w": 9, - "x": 9, - "y": 71 - }, - "panelIndex": "18", - "panelRefName": "panel_14", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "19", - "w": 9, - "x": 18, - "y": 96 - }, - "panelIndex": "19", - "panelRefName": "panel_15", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Locked-out Users [Winlogbeat Security]" - }, - "gridData": { - "h": 16, - "i": "20", - "w": 9, - "x": 0, - "y": 105 - }, - "panelIndex": "20", - "panelRefName": "panel_16", - "title": "Locked-out Users [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 48, - "i": "22", - "w": 21, - "x": 27, - "y": 73 - }, - "panelIndex": "22", - "panelRefName": "panel_17", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 19, - "i": "23", - "w": 48, - "x": 0, - "y": 121 - }, - "panelIndex": "23", - "panelRefName": "panel_18", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 9, - "i": "24", - "w": 9, - "x": 9, - "y": 96 - }, - "panelIndex": "24", - "panelRefName": "panel_19", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 16, - "i": "25", - "w": 9, - "x": 9, - "y": 105 - }, - "panelIndex": "25", - "panelRefName": "panel_20", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "20adcb1b-cebf-4a75-9bc4-eaeeee626c5e", - "w": 31, - "x": 17, - "y": 0 - }, - "panelIndex": "20adcb1b-cebf-4a75-9bc4-eaeeee626c5e", - "panelRefName": "panel_21", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "colors": { - "added-user-account": "#0A437C", - "deleted-user-account": "#82B5D8", - "enabled-user-account": "#0A50A1", - "modified-user-account": "#052B51", - "renamed-user-account": "#1F78C1", - "reset-password": "#5195CE" - }, - "vis": { - "colors": { - "added-user-account": "#0A437C", - "deleted-user-account": "#82B5D8", - "disabled-user-account": "#BADFF4", - "enabled-user-account": "#0A50A1", - "modified-user-account": "#052B51", - "renamed-user-account": "#1F78C1", - "reset-password": "#5195CE" - } - } - }, - "gridData": { - "h": 19, - "i": "8aad73ff-37b1-487a-a3f1-b80b93618ac4", - "w": 18, - "x": 0, - "y": 7 - }, - "panelIndex": "8aad73ff-37b1-487a-a3f1-b80b93618ac4", - "panelRefName": "panel_22", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 19, - "i": "18cc78ac-3f77-4f54-b351-cb94873cae3f", - "w": 14, - "x": 18, - "y": 7 - }, - "panelIndex": "18cc78ac-3f77-4f54-b351-cb94873cae3f", - "panelRefName": "panel_23", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 19, - "i": "75f5f1fc-bc7c-4f8f-8e5b-0a52d525aa7d", - "w": 16, - "x": 32, - "y": 7 - }, - "panelIndex": "75f5f1fc-bc7c-4f8f-8e5b-0a52d525aa7d", - "panelRefName": "panel_24", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Actions performed over Users [Winlogbeat Security]", - "vis": null - }, - "gridData": { - "h": 20, - "i": "f443b5b0-ada7-426f-ae2f-46573f94f24f", - "w": 48, - "x": 0, - "y": 26 - }, - "panelIndex": "f443b5b0-ada7-426f-ae2f-46573f94f24f", - "panelRefName": "panel_25", - "title": "Actions performed over Users [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "colors": { - "added-user-account": "#0A437C", - "deleted-user-account": "#82B5D8", - "disabled-user-account": "#BADFF4", - "enabled-user-account": "#0A50A1", - "modified-user-account": "#2F575E", - "renamed-user-account": "#1F78C1", - "reset-password": "#5195CE" - }, - "vis": { - "colors": { - "added-user-account": "#0A437C", - "deleted-user-account": "#82B5D8", - "disabled-user-account": "#BADFF4", - "enabled-user-account": "#0A50A1", - "modified-user-account": "#2F575E", - "renamed-user-account": "#1F78C1", - "reset-password": "#5195CE", - "unlocked-user-account": "#0A437C" - } - } - }, - "gridData": { - "h": 27, - "i": "820c0311-d378-49dc-a614-e0fed2254603", - "w": 21, - "x": 27, - "y": 46 - }, - "panelIndex": "820c0311-d378-49dc-a614-e0fed2254603", - "panelRefName": "panel_26", - "version": "7.7.0" - } - ], - "timeRestore": false, - "title": "[Winlogbeat Security] User Management Events - Simple Metric", - "version": 1 - }, - "id": "8223bed0-b9e9-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "8f20c950-bcd4-11e9-b6a2-c9b4015c4baf", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "102efd20-bcdd-11e9-b6a2-c9b4015c4baf", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "855957d0-bcdd-11e9-b6a2-c9b4015c4baf", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "c359b020-bcdd-11e9-b6a2-c9b4015c4baf", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "0cb2d940-bcde-11e9-b6a2-c9b4015c4baf", - "name": "panel_9", - "type": "visualization" - }, - { - "id": "568a8130-bcde-11e9-b6a2-c9b4015c4baf", - "name": "panel_10", - "type": "visualization" - }, - { - "id": "da2110c0-bcea-11e9-b6a2-c9b4015c4baf", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "abf96c10-bcea-11e9-b6a2-c9b4015c4baf", - "name": "panel_12", - "type": "visualization" - }, - { - "id": "84502430-bce8-11e9-b6a2-c9b4015c4baf", - "name": "panel_13", - "type": "visualization" - }, - { - "id": "ab6f8d80-bce8-11e9-b6a2-c9b4015c4baf", - "name": "panel_14", - "type": "visualization" - }, - { - "id": "5d92b100-bce8-11e9-b6a2-c9b4015c4baf", - "name": "panel_15", - "type": "visualization" - }, - { - "id": "4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf", - "name": "panel_16", - "type": "visualization" - }, - { - "id": "7e178c80-fee1-11e9-8405-516218e3d268", - "name": "panel_17", - "type": "search" - }, - { - "id": "324686c0-fefb-11e9-8405-516218e3d268", - "name": "panel_18", - "type": "search" - }, - { - "id": "5e19ff80-231c-11ea-8405-516218e3d268", - "name": "panel_19", - "type": "visualization" - }, - { - "id": "fa876300-231a-11ea-8405-516218e3d268", - "name": "panel_20", - "type": "visualization" - }, - { - "id": "d770b040-9b35-11ea-87e4-49f31ec44891", - "name": "panel_21", - "type": "visualization" - }, - { - "id": "26877510-9b72-11ea-87e4-49f31ec44891", - "name": "panel_22", - "type": "visualization" - }, - { - "id": "5c9ee410-9b74-11ea-87e4-49f31ec44891", - "name": "panel_23", - "type": "visualization" - }, - { - "id": "117f5a30-9b71-11ea-87e4-49f31ec44891", - "name": "panel_24", - "type": "visualization" - }, - { - "id": "aa31c9d0-9b75-11ea-87e4-49f31ec44891", - "name": "panel_25", - "type": "visualization" - }, - { - "id": "caf4d2b0-9b76-11ea-87e4-49f31ec44891", - "name": "panel_26", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "Wzg2LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "User Management Events - Description [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "# **User Management Events**\n\n#### This dashboard shows information about User Management Events collected by winlogbeat\n", - "openLinksInNewTab": false - }, - "title": "User Management Events - Description [Winlogbeat Security]", - "type": "markdown" - } - }, - "id": "2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "Wzg3LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4720" - }, - "type": "phrase", - "value": "4720" - }, - "query": { - "match": { - "event.code": { - "query": "4720", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Created - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Created User", - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performer LogonID", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Created - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "Wzg4LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4722" - }, - "type": "phrase", - "value": "4722" - }, - "query": { - "match": { - "event.code": { - "query": "4722", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Enabled - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Enabled User", - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performer LogonId", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Enabled - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "Wzg5LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4725" - }, - "type": "phrase", - "value": "4725" - }, - "query": { - "match": { - "event.code": { - "query": "4725", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Disabled - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Disabled User", - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performer LogonId", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Disabled - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "8f20c950-bcd4-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzkwLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4726" - }, - "type": "phrase", - "value": "4726" - }, - "query": { - "match": { - "event.code": { - "query": "4726", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Deleted - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Deleted User", - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performed LogonId", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Deleted - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzkxLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4723", - "4724" - ], - "type": "phrases", - "value": "4723, 4724" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4723" - } - }, - { - "match_phrase": { - "event.code": "4724" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Password Changes - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Password Change to", - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performer LogonId", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Password Changes - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzkyLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4720" - }, - "type": "phrase", - "value": "4720" - }, - "query": { - "match": { - "event.code": { - "query": "4720", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Created - Simple Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Users Created" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Users Created - Simple Metric [Winlogbeat Security]", - "type": "metric" - } - }, - "id": "102efd20-bcdd-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzkzLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4722" - }, - "type": "phrase", - "value": "4722" - }, - "query": { - "match": { - "event.code": { - "query": "4722", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Enabled - Simple Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Users Enabled", - "field": "user.name" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Users Enabled - Simple Metric [Winlogbeat Security]", - "type": "metric" - } - }, - "id": "855957d0-bcdd-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "Wzk0LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4726" - }, - "type": "phrase", - "value": "4726" - }, - "query": { - "match": { - "event.code": { - "query": "4726", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Deleted - Simple Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Deleted Users" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Users Deleted - Simple Metric [Winlogbeat Security]", - "type": "metric" - } - }, - "id": "c359b020-bcdd-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "Wzk1LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4725" - }, - "type": "phrase", - "value": "4725" - }, - "query": { - "match": { - "event.code": { - "query": "4725", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Disabled - Simple Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Disabled Users", - "field": "user.name" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Users Disabled - Simple Metric [Winlogbeat Security]", - "type": "metric" - } - }, - "id": "0cb2d940-bcde-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "Wzk2LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4723", - "4724" - ], - "type": "phrases", - "value": "4723, 4724" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4723" - } - }, - { - "match_phrase": { - "event.code": "4724" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Password Reset / Changes [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Password Changes" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Users Password Reset / Changes [Winlogbeat Security]", - "type": "metric" - } - }, - "id": "568a8130-bcde-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "Wzk3LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4767" - }, - "type": "phrase", - "value": "4767" - }, - "query": { - "match": { - "event.code": { - "query": "4767", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Unlocked Users - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Unlocked User", - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performer Logonid", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Unlocked Users - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "da2110c0-bcea-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "Wzk4LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4738" - }, - "type": "phrase", - "value": "4738" - }, - "query": { - "match": { - "event.code": { - "query": "4738", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Changes Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Changed User", - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performer LogonId", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Changes Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "abf96c10-bcea-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "Wzk5LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4740" - ], - "type": "phrases", - "value": "4740" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4740" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Unlocks - Simple Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Users Locked Out" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Users Unlocks - Simple Metric [Winlogbeat Security]", - "type": "metric" - } - }, - "id": "84502430-bce8-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzEwMCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4767" - ], - "type": "phrases", - "value": "4767" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4767" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Unlocked Users - Simple Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Users Unlocks" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Unlocked Users - Simple Metric [Winlogbeat Security]", - "type": "metric" - } - }, - "id": "ab6f8d80-bce8-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzEwMSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4738" - ], - "type": "phrases", - "value": "4738" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4738" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Changes - Simple Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Changes in Users" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Users Changes - Simple Metric [Winlogbeat Security]", - "type": "metric" - } - }, - "id": "5d92b100-bce8-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzEwMiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4740" - }, - "type": "phrase", - "value": "4740" - }, - "query": { - "match": { - "event.code": { - "query": "4740", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Locked Out - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Locked User", - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performer LogonId", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Locked Out - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzEwMywxXQ==" - }, - { - "attributes": { - "columns": [ - "user.name", - "source.domain", - "source.ip", - "winlog.logon.id", - "winlog.logon.type" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4624" - ], - "type": "phrases", - "value": "4624" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4624" - } - } - ] - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Logon Details [Winlogbeat Security]", - "version": 1 - }, - "id": "7e178c80-fee1-11e9-8405-516218e3d268", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0MywxXQ==" - }, - { - "attributes": { - "columns": [ - "event.action", - "winlog.event_data.TargetUserName", - "user.domain", - "user.name", - "winlog.event_data.SubjectDomainName", - "winlog.logon.id", - "related.user" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4720", - "4722", - "4723", - "4724", - "4725", - "4726", - "4738", - "4740", - "4767", - "4781", - "4798" - ], - "type": "phrases", - "value": "4720, 4722, 4723, 4724, 4725, 4726, 4738, 4740, 4767, 4781, 4798" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4720" - } - }, - { - "match_phrase": { - "event.code": "4722" - } - }, - { - "match_phrase": { - "event.code": "4723" - } - }, - { - "match_phrase": { - "event.code": "4724" - } - }, - { - "match_phrase": { - "event.code": "4725" - } - }, - { - "match_phrase": { - "event.code": "4726" - } - }, - { - "match_phrase": { - "event.code": "4738" - } - }, - { - "match_phrase": { - "event.code": "4740" - } - }, - { - "match_phrase": { - "event.code": "4767" - } - }, - { - "match_phrase": { - "event.code": "4781" - } - }, - { - "match_phrase": { - "event.code": "4798" - } - } - ] - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "lucene", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "User management Details - Search [Winlogbeat Security]", - "version": 1 - }, - "id": "324686c0-fefb-11e9-8405-516218e3d268", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzEwNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4781" - ], - "type": "phrases", - "value": "4781" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4781" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Renamed - Simple Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Renamed Users" - }, - "schema": "metric", - "type": "count" - } - ], - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true - }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" - }, - "useRanges": false - }, - "type": "metric" - }, - "title": "Users Renamed - Simple Metric [Winlogbeat Security]", - "type": "metric" - } - }, - "id": "5e19ff80-231c-11ea-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzEwNiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4781" - }, - "type": "phrase", - "value": "4781" - }, - "query": { - "match": { - "event.code": { - "query": "4781", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Renamed - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Old User Name", - "field": "winlog.event_data.OldTargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performer LogonId", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Renamed - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "fa876300-231a-11ea-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzEwNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboard links - Simple [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Winlogbeat General ECS Dashboard](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/035846a0-a249-11e9-a422-d144027429da?) | [Logon failed and Account Lockout](#/dashboard/f49f3170-9ffc-11ea-87e4-49f31ec44891) | [User Management Events](#/dashboard/8223bed0-b9e9-11e9-b6a2-c9b4015c4baf) | [Group Management Events](#/dashboard/01c54730-fee6-11e9-8405-516218e3d268)", - "openLinksInNewTab": false - }, - "title": "Dashboard links - Simple [Winlogbeat Security]", - "type": "markdown" - } - }, - "id": "d770b040-9b35-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:29.252Z", - "version": "WzE3NCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "User Management Actions [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "User Management Actions [Winlogbeat Security]", - "type": "pie" - } - }, - "id": "26877510-9b72-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "324686c0-fefb-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzEwOSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "User Event Actions - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "event.action", - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 25 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "event.code", - "field": "event.code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "User Event Actions - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "5c9ee410-9b74-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "324686c0-fefb-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzExMCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Target Users [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "maxFontSize": 72, - "minFontSize": 18, - "orientation": "single", - "scale": "linear", - "showLabel": false - }, - "title": "Target Users [Winlogbeat Security]", - "type": "tagcloud" - } - }, - "id": "117f5a30-9b71-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "324686c0-fefb-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzExMSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "User Management Events - Affected Users vs Actions - Heatmap [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Target User", - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "colorSchema": "Blues", - "colorsNumber": 4, - "colorsRange": [], - "enableHover": false, - "invertColors": false, - "legendPosition": "right", - "percentageMode": false, - "setColorRange": false, - "times": [], - "type": "heatmap", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "color": "black", - "overwriteColor": false, - "rotate": 0, - "show": true - }, - "scale": { - "defaultYExtents": false, - "type": "linear" - }, - "show": false, - "type": "value" - } - ] - }, - "title": "User Management Events - Affected Users vs Actions - Heatmap [Winlogbeat Security]", - "type": "heatmap" - } - }, - "id": "aa31c9d0-9b75-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "324686c0-fefb-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzExMiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Event Distribution in time [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "now-7d", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false - }, - "labels": { - "show": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Event Distribution in time [Winlogbeat Security]", - "type": "histogram" - } - }, - "id": "caf4d2b0-9b76-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "324686c0-fefb-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzExMywxXQ==" - } - ], - "version": "7.7.0" -} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management-tsvb.ndjson b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management-tsvb.ndjson new file mode 100644 index 00000000000..5783cabf056 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management-tsvb.ndjson @@ -0,0 +1,28 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"User Management Events - Description [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"# **User Management Events**\\n\\n#### This dashboard shows information about User Management Events collected by winlogbeat\\n\",\"openLinksInNewTab\":false},\"title\":\"User Management Events - Description [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMDgsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4720\"}, \"type\": \"phrase\", \"value\": \"4720\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4720\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Created - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Created User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Created - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMDksMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4722\"}, \"type\": \"phrase\", \"value\": \"4722\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4722\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Enabled - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Enabled User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Enabled - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTAsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4725\"}, \"type\": \"phrase\", \"value\": \"4725\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4725\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Disabled - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Disabled User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Disabled - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"8f20c950-bcd4-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTEsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4726\"}, \"type\": \"phrase\", \"value\": \"4726\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4726\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Deleted - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Deleted User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performed LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Deleted - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTIsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4723\", \"4724\"], \"type\": \"phrases\", \"value\": \"4723, 4724\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4723\"}}, {\"match_phrase\": {\"event.code\": \"4724\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Password Changes - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Password Change to\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Password Changes - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTMsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4720\"}, \"type\": \"phrase\", \"value\": \"4720\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4720\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Created - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Users Created\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Created - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"102efd20-bcdd-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyODYsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4722\"}, \"type\": \"phrase\", \"value\": \"4722\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4722\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Enabled - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Users Enabled\",\"field\":\"user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Enabled - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"855957d0-bcdd-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyODcsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4726\"}, \"type\": \"phrase\", \"value\": \"4726\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4726\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Deleted - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Deleted Users\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Deleted - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"c359b020-bcdd-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyODgsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4725\"}, \"type\": \"phrase\", \"value\": \"4725\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4725\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Disabled - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Disabled Users\",\"field\":\"user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Disabled - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"0cb2d940-bcde-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyODksMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4723\", \"4724\"], \"type\": \"phrases\", \"value\": \"4723, 4724\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4723\"}}, {\"match_phrase\": {\"event.code\": \"4724\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Password Reset / Changes [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Password Changes\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Password Reset / Changes [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"568a8130-bcde-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyOTAsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4767\"}, \"type\": \"phrase\", \"value\": \"4767\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4767\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Unlocked Users - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Unlocked User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer Logonid\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Unlocked Users - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"da2110c0-bcea-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTQsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4738\"}, \"type\": \"phrase\", \"value\": \"4738\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4738\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Changes Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Changed User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Changes Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"abf96c10-bcea-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTUsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4740\"], \"type\": \"phrases\", \"value\": \"4740\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4740\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Unlocks - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Users Locked Out\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Unlocks - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"84502430-bce8-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyOTMsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4767\"], \"type\": \"phrases\", \"value\": \"4767\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4767\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Unlocked Users - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Users Unlocks\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Unlocked Users - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"ab6f8d80-bce8-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyOTQsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4738\"], \"type\": \"phrases\", \"value\": \"4738\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4738\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Changes - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Changes in Users\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Changes - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"5d92b100-bce8-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyOTUsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4740\"}, \"type\": \"phrase\", \"value\": \"4740\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4740\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Locked Out - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Locked User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Locked Out - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTYsMl0="} +{"attributes":{"columns":["user.name","source.domain","source.ip","winlog.logon.id","winlog.logon.type"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4624\"], \"type\": \"phrases\", \"value\": \"4624\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4624\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Logon Details [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"7e178c80-fee1-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTcsMl0="} +{"attributes":{"columns":["event.action","winlog.event_data.TargetUserName","user.domain","user.name","winlog.event_data.SubjectDomainName","winlog.logon.id","related.user"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4720\", \"4722\", \"4723\", \"4724\", \"4725\", \"4726\", \"4738\", \"4740\", \"4767\", \"4781\", \"4798\"], \"type\": \"phrases\", \"value\": \"4720, 4722, 4723, 4724, 4725, 4726, 4738, 4740, 4767, 4781, 4798\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4720\"}}, {\"match_phrase\": {\"event.code\": \"4722\"}}, {\"match_phrase\": {\"event.code\": \"4723\"}}, {\"match_phrase\": {\"event.code\": \"4724\"}}, {\"match_phrase\": {\"event.code\": \"4725\"}}, {\"match_phrase\": {\"event.code\": \"4726\"}}, {\"match_phrase\": {\"event.code\": \"4738\"}}, {\"match_phrase\": {\"event.code\": \"4740\"}}, {\"match_phrase\": {\"event.code\": \"4767\"}}, {\"match_phrase\": {\"event.code\": \"4781\"}}, {\"match_phrase\": {\"event.code\": \"4798\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"User management Details - Search [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"324686c0-fefb-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTgsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4781\"], \"type\": \"phrases\", \"value\": \"4781\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4781\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Renamed - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Renamed Users\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Renamed - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"5e19ff80-231c-11ea-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyOTksMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4781\"}, \"type\": \"phrase\", \"value\": \"4781\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4781\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Renamed - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Old User Name\",\"field\":\"winlog.event_data.OldTargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Renamed - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"fa876300-231a-11ea-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjgsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboard links - Simple [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Winlogbeat General ECS Dashboard](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/035846a0-a249-11e9-a422-d144027429da?) | [Logon failed and Account Lockout](#/dashboard/f49f3170-9ffc-11ea-87e4-49f31ec44891) | [User Management Events](#/dashboard/8223bed0-b9e9-11e9-b6a2-c9b4015c4baf) | [Group Management Events](#/dashboard/01c54730-fee6-11e9-8405-516218e3d268)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard links - Simple [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"d770b040-9b35-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIzMDEsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"User Management Actions [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"User Management Actions [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"26877510-9b72-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzAsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"User Event Actions - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"event.action\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"event.code\",\"field\":\"event.code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"User Event Actions - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"5c9ee410-9b74-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzIsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Target Users [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Target Users [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"117f5a30-9b71-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzEsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"User Management Events - Affected Users vs Actions - Heatmap [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Target User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Blues\",\"colorsNumber\":4,\"colorsRange\":[],\"enableHover\":false,\"invertColors\":false,\"legendPosition\":\"right\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"black\",\"overwriteColor\":false,\"rotate\":0,\"show\":true},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"User Management Events - Affected Users vs Actions - Heatmap [Winlogbeat Security]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"7.14.0","id":"aa31c9d0-9b75-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzMsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Event Distribution in time [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-7d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Event Distribution in time [Winlogbeat Security]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"7.14.0","id":"caf4d2b0-9b76-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzQsMl0="} +{"attributes":{"description":"User management activity with TSVB metrics.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"1\",\"w\":17,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"3\",\"w\":9,\"x\":0,\"y\":55},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Created Users [Winlogbeat Security]\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"5\",\"w\":9,\"x\":9,\"y\":55},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Enabled Users [Winlogbeat Security]\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"6\",\"w\":9,\"x\":0,\"y\":80},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Disabled Users [Winlogbeat Security]\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"7\",\"w\":9,\"x\":18,\"y\":55},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Deleted Users [Winlogbeat Security]\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"9\",\"w\":9,\"x\":18,\"y\":80},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Passwords Changes [Winlogbeat Security]\",\"panelRefName\":\"panel_9\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"10\",\"w\":9,\"x\":0,\"y\":46},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"11\",\"w\":9,\"x\":9,\"y\":46},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"12\",\"w\":9,\"x\":18,\"y\":46},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"13\",\"w\":9,\"x\":0,\"y\":71},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"14\",\"w\":9,\"x\":18,\"y\":71},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"15\",\"w\":9,\"x\":9,\"y\":80},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Unlocked Users [Winlogbeat Security]\",\"panelRefName\":\"panel_15\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"16\",\"w\":9,\"x\":18,\"y\":105},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Users Changes [Winlogbeat Security]\",\"panelRefName\":\"panel_16\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"17\",\"w\":9,\"x\":0,\"y\":96},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"18\",\"w\":9,\"x\":9,\"y\":71},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"19\",\"w\":9,\"x\":18,\"y\":96},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"20\",\"w\":9,\"x\":0,\"y\":105},\"panelIndex\":\"20\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Locked-out Users [Winlogbeat Security]\",\"panelRefName\":\"panel_20\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":48,\"i\":\"22\",\"w\":21,\"x\":27,\"y\":73},\"panelIndex\":\"22\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_22\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":19,\"i\":\"23\",\"w\":48,\"x\":0,\"y\":121},\"panelIndex\":\"23\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_23\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"24\",\"w\":9,\"x\":9,\"y\":96},\"panelIndex\":\"24\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_24\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"25\",\"w\":9,\"x\":9,\"y\":105},\"panelIndex\":\"25\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_25\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"20adcb1b-cebf-4a75-9bc4-eaeeee626c5e\",\"w\":31,\"x\":17,\"y\":0},\"panelIndex\":\"20adcb1b-cebf-4a75-9bc4-eaeeee626c5e\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_20adcb1b-cebf-4a75-9bc4-eaeeee626c5e\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"8aad73ff-37b1-487a-a3f1-b80b93618ac4\",\"w\":18,\"x\":0,\"y\":7},\"panelIndex\":\"8aad73ff-37b1-487a-a3f1-b80b93618ac4\",\"embeddableConfig\":{\"colors\":{\"added-user-account\":\"#0A437C\",\"deleted-user-account\":\"#82B5D8\",\"enabled-user-account\":\"#0A50A1\",\"modified-user-account\":\"#052B51\",\"renamed-user-account\":\"#1F78C1\",\"reset-password\":\"#5195CE\"},\"vis\":{\"colors\":{\"added-user-account\":\"#0A437C\",\"deleted-user-account\":\"#82B5D8\",\"disabled-user-account\":\"#BADFF4\",\"enabled-user-account\":\"#0A50A1\",\"modified-user-account\":\"#052B51\",\"renamed-user-account\":\"#1F78C1\",\"reset-password\":\"#5195CE\"}},\"enhancements\":{}},\"panelRefName\":\"panel_8aad73ff-37b1-487a-a3f1-b80b93618ac4\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"18cc78ac-3f77-4f54-b351-cb94873cae3f\",\"w\":14,\"x\":18,\"y\":7},\"panelIndex\":\"18cc78ac-3f77-4f54-b351-cb94873cae3f\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18cc78ac-3f77-4f54-b351-cb94873cae3f\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"75f5f1fc-bc7c-4f8f-8e5b-0a52d525aa7d\",\"w\":16,\"x\":32,\"y\":7},\"panelIndex\":\"75f5f1fc-bc7c-4f8f-8e5b-0a52d525aa7d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_75f5f1fc-bc7c-4f8f-8e5b-0a52d525aa7d\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"f443b5b0-ada7-426f-ae2f-46573f94f24f\",\"w\":48,\"x\":0,\"y\":26},\"panelIndex\":\"f443b5b0-ada7-426f-ae2f-46573f94f24f\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"title\":\"Actions performed over Users [Winlogbeat Security]\",\"panelRefName\":\"panel_f443b5b0-ada7-426f-ae2f-46573f94f24f\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":27,\"i\":\"820c0311-d378-49dc-a614-e0fed2254603\",\"w\":21,\"x\":27,\"y\":46},\"panelIndex\":\"820c0311-d378-49dc-a614-e0fed2254603\",\"embeddableConfig\":{\"colors\":{\"added-user-account\":\"#0A437C\",\"deleted-user-account\":\"#82B5D8\",\"disabled-user-account\":\"#BADFF4\",\"enabled-user-account\":\"#0A50A1\",\"modified-user-account\":\"#2F575E\",\"renamed-user-account\":\"#1F78C1\",\"reset-password\":\"#5195CE\"},\"vis\":{\"colors\":{\"added-user-account\":\"#0A437C\",\"deleted-user-account\":\"#82B5D8\",\"disabled-user-account\":\"#BADFF4\",\"enabled-user-account\":\"#0A50A1\",\"modified-user-account\":\"#2F575E\",\"renamed-user-account\":\"#1F78C1\",\"reset-password\":\"#5195CE\",\"unlocked-user-account\":\"#0A437C\"}},\"enhancements\":{}},\"panelRefName\":\"panel_820c0311-d378-49dc-a614-e0fed2254603\"}]","timeRestore":false,"title":"[Winlogbeat Security] User Management Events - Simple Metric","version":1},"coreMigrationVersion":"7.14.0","id":"8223bed0-b9e9-11e9-b6a2-c9b4015c4baf","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf","name":"1:panel_1","type":"visualization"},{"id":"5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf","name":"3:panel_3","type":"visualization"},{"id":"0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf","name":"5:panel_5","type":"visualization"},{"id":"8f20c950-bcd4-11e9-b6a2-c9b4015c4baf","name":"6:panel_6","type":"visualization"},{"id":"ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf","name":"7:panel_7","type":"visualization"},{"id":"da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf","name":"9:panel_9","type":"visualization"},{"id":"102efd20-bcdd-11e9-b6a2-c9b4015c4baf","name":"10:panel_10","type":"visualization"},{"id":"855957d0-bcdd-11e9-b6a2-c9b4015c4baf","name":"11:panel_11","type":"visualization"},{"id":"c359b020-bcdd-11e9-b6a2-c9b4015c4baf","name":"12:panel_12","type":"visualization"},{"id":"0cb2d940-bcde-11e9-b6a2-c9b4015c4baf","name":"13:panel_13","type":"visualization"},{"id":"568a8130-bcde-11e9-b6a2-c9b4015c4baf","name":"14:panel_14","type":"visualization"},{"id":"da2110c0-bcea-11e9-b6a2-c9b4015c4baf","name":"15:panel_15","type":"visualization"},{"id":"abf96c10-bcea-11e9-b6a2-c9b4015c4baf","name":"16:panel_16","type":"visualization"},{"id":"84502430-bce8-11e9-b6a2-c9b4015c4baf","name":"17:panel_17","type":"visualization"},{"id":"ab6f8d80-bce8-11e9-b6a2-c9b4015c4baf","name":"18:panel_18","type":"visualization"},{"id":"5d92b100-bce8-11e9-b6a2-c9b4015c4baf","name":"19:panel_19","type":"visualization"},{"id":"4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf","name":"20:panel_20","type":"visualization"},{"id":"7e178c80-fee1-11e9-8405-516218e3d268","name":"22:panel_22","type":"search"},{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"23:panel_23","type":"search"},{"id":"5e19ff80-231c-11ea-8405-516218e3d268","name":"24:panel_24","type":"visualization"},{"id":"fa876300-231a-11ea-8405-516218e3d268","name":"25:panel_25","type":"visualization"},{"id":"d770b040-9b35-11ea-87e4-49f31ec44891","name":"20adcb1b-cebf-4a75-9bc4-eaeeee626c5e:panel_20adcb1b-cebf-4a75-9bc4-eaeeee626c5e","type":"visualization"},{"id":"26877510-9b72-11ea-87e4-49f31ec44891","name":"8aad73ff-37b1-487a-a3f1-b80b93618ac4:panel_8aad73ff-37b1-487a-a3f1-b80b93618ac4","type":"visualization"},{"id":"5c9ee410-9b74-11ea-87e4-49f31ec44891","name":"18cc78ac-3f77-4f54-b351-cb94873cae3f:panel_18cc78ac-3f77-4f54-b351-cb94873cae3f","type":"visualization"},{"id":"117f5a30-9b71-11ea-87e4-49f31ec44891","name":"75f5f1fc-bc7c-4f8f-8e5b-0a52d525aa7d:panel_75f5f1fc-bc7c-4f8f-8e5b-0a52d525aa7d","type":"visualization"},{"id":"aa31c9d0-9b75-11ea-87e4-49f31ec44891","name":"f443b5b0-ada7-426f-ae2f-46573f94f24f:panel_f443b5b0-ada7-426f-ae2f-46573f94f24f","type":"visualization"},{"id":"caf4d2b0-9b76-11ea-87e4-49f31ec44891","name":"820c0311-d378-49dc-a614-e0fed2254603:panel_820c0311-d378-49dc-a614-e0fed2254603","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyNzksMl0="} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management.json deleted file mode 100644 index eb8c9344561..00000000000 --- a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management.json +++ /dev/null @@ -1,4013 +0,0 @@ -{ - "objects": [ - { - "attributes": { - "description": "User management activity.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": false - }, - "panelsJSON": [ - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 8, - "i": "1", - "w": 17, - "x": 0, - "y": 0 - }, - "panelIndex": "1", - "panelRefName": "panel_0", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Created Users [Winlogbeat Security]" - }, - "gridData": { - "h": 16, - "i": "3", - "w": 9, - "x": 0, - "y": 56 - }, - "panelIndex": "3", - "panelRefName": "panel_1", - "title": "Created Users [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Enabled Users [Winlogbeat Security]" - }, - "gridData": { - "h": 16, - "i": "5", - "w": 9, - "x": 9, - "y": 56 - }, - "panelIndex": "5", - "panelRefName": "panel_2", - "title": "Enabled Users [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Disabled Users [Winlogbeat Security]" - }, - "gridData": { - "h": 16, - "i": "6", - "w": 9, - "x": 0, - "y": 79 - }, - "panelIndex": "6", - "panelRefName": "panel_3", - "title": "Disabled Users [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Deleted Users [Winlogbeat Security]" - }, - "gridData": { - "h": 16, - "i": "7", - "w": 9, - "x": 18, - "y": 56 - }, - "panelIndex": "7", - "panelRefName": "panel_4", - "title": "Deleted Users [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Passwords Changes [Winlogbeat Security]" - }, - "gridData": { - "h": 16, - "i": "9", - "w": 9, - "x": 18, - "y": 79 - }, - "panelIndex": "9", - "panelRefName": "panel_5", - "title": "Passwords Changes [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Unlocked Users [Winlogbeat Security]" - }, - "gridData": { - "h": 16, - "i": "15", - "w": 9, - "x": 9, - "y": 79 - }, - "panelIndex": "15", - "panelRefName": "panel_6", - "title": "Unlocked Users [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Users Changes [Winlogbeat Security]" - }, - "gridData": { - "h": 16, - "i": "16", - "w": 9, - "x": 18, - "y": 102 - }, - "panelIndex": "16", - "panelRefName": "panel_7", - "title": "Users Changes [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Locked-out Users [Winlogbeat Security]" - }, - "gridData": { - "h": 16, - "i": "20", - "w": 9, - "x": 0, - "y": 102 - }, - "panelIndex": "20", - "panelRefName": "panel_8", - "title": "Locked-out Users [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 46, - "i": "22", - "w": 21, - "x": 27, - "y": 72 - }, - "panelIndex": "22", - "panelRefName": "panel_9", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 19, - "i": "23", - "w": 48, - "x": 0, - "y": 118 - }, - "panelIndex": "23", - "panelRefName": "panel_10", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "24", - "w": 9, - "x": 0, - "y": 72 - }, - "panelIndex": "24", - "panelRefName": "panel_11", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "25", - "w": 9, - "x": 9, - "y": 49 - }, - "panelIndex": "25", - "panelRefName": "panel_12", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "26", - "w": 9, - "x": 18, - "y": 49 - }, - "panelIndex": "26", - "panelRefName": "panel_13", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "27", - "w": 9, - "x": 0, - "y": 49 - }, - "panelIndex": "27", - "panelRefName": "panel_14", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "28", - "w": 9, - "x": 9, - "y": 72 - }, - "panelIndex": "28", - "panelRefName": "panel_15", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "29", - "w": 9, - "x": 18, - "y": 72 - }, - "panelIndex": "29", - "panelRefName": "panel_16", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "30", - "w": 9, - "x": 0, - "y": 95 - }, - "panelIndex": "30", - "panelRefName": "panel_17", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "31", - "w": 9, - "x": 18, - "y": 95 - }, - "panelIndex": "31", - "panelRefName": "panel_18", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 7, - "i": "32", - "w": 9, - "x": 9, - "y": 95 - }, - "panelIndex": "32", - "panelRefName": "panel_19", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 16, - "i": "33", - "w": 9, - "x": 9, - "y": 102 - }, - "panelIndex": "33", - "panelRefName": "panel_20", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "" - }, - "gridData": { - "h": 8, - "i": "cf0adfac-7cf2-479d-8ddb-1edeee62d37c", - "w": 31, - "x": 17, - "y": 0 - }, - "panelIndex": "cf0adfac-7cf2-479d-8ddb-1edeee62d37c", - "panelRefName": "panel_21", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "colors": { - "added-user-account": "#447EBC", - "deleted-user-account": "#82B5D8", - "disabled-user-account": "#82B5D8", - "enabled-user-account": "#0A50A1", - "modified-user-account": "#2F575E", - "renamed-user-account": "#1F78C1", - "reset-password": "#5195CE" - }, - "vis": { - "colors": { - "added-user-account": "#447EBC", - "deleted-user-account": "#82B5D8", - "disabled-user-account": "#82B5D8", - "enabled-user-account": "#0A50A1", - "modified-user-account": "#2F575E", - "renamed-user-account": "#1F78C1", - "reset-password": "#5195CE", - "unlocked-user-account": "#64B0C8" - } - } - }, - "gridData": { - "h": 16, - "i": "a2871661-98a8-489b-b615-e66ebe3b971a", - "w": 17, - "x": 0, - "y": 8 - }, - "panelIndex": "a2871661-98a8-489b-b615-e66ebe3b971a", - "panelRefName": "panel_22", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 16, - "i": "e80fae4a-6087-41e1-b4b9-31802cb1e4bf", - "w": 18, - "x": 30, - "y": 8 - }, - "panelIndex": "e80fae4a-6087-41e1-b4b9-31802cb1e4bf", - "panelRefName": "panel_23", - "version": "7.7.0" - }, - { - "embeddableConfig": {}, - "gridData": { - "h": 16, - "i": "dd3e12e6-0d3c-448e-b0c4-91f7dc8742b6", - "w": 13, - "x": 17, - "y": 8 - }, - "panelIndex": "dd3e12e6-0d3c-448e-b0c4-91f7dc8742b6", - "panelRefName": "panel_24", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "title": "Actions performed over Users [Winlogbeat Security]", - "vis": null - }, - "gridData": { - "h": 25, - "i": "29f54335-78db-4c49-a3e0-a641fd0099f6", - "w": 48, - "x": 0, - "y": 24 - }, - "panelIndex": "29f54335-78db-4c49-a3e0-a641fd0099f6", - "panelRefName": "panel_25", - "title": "Actions performed over Users [Winlogbeat Security]", - "version": "7.7.0" - }, - { - "embeddableConfig": { - "colors": { - "added-user-account": "#0A437C", - "deleted-user-account": "#5195CE", - "enabled-user-account": "#0A50A1", - "modified-user-account": "#052B51", - "renamed-user-account": "#1F78C1", - "reset-password": "#5195CE" - }, - "vis": { - "colors": { - "added-user-account": "#0A437C", - "deleted-user-account": "#5195CE", - "disabled-user-account": "#82B5D8", - "enabled-user-account": "#0A50A1", - "modified-user-account": "#052B51", - "renamed-user-account": "#1F78C1", - "reset-password": "#5195CE" - } - } - }, - "gridData": { - "h": 23, - "i": "1ec8b993-9ac1-4c7f-b7f7-5136f2e310aa", - "w": 21, - "x": 27, - "y": 49 - }, - "panelIndex": "1ec8b993-9ac1-4c7f-b7f7-5136f2e310aa", - "panelRefName": "panel_26", - "version": "7.7.0" - } - ], - "timeRestore": false, - "title": "[Winlogbeat Security] User Management Events", - "version": 1 - }, - "id": "71f720f0-ff18-11e9-8405-516218e3d268", - "migrationVersion": { - "dashboard": "7.3.0" - }, - "references": [ - { - "id": "2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf", - "name": "panel_0", - "type": "visualization" - }, - { - "id": "5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf", - "name": "panel_1", - "type": "visualization" - }, - { - "id": "0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf", - "name": "panel_2", - "type": "visualization" - }, - { - "id": "8f20c950-bcd4-11e9-b6a2-c9b4015c4baf", - "name": "panel_3", - "type": "visualization" - }, - { - "id": "ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf", - "name": "panel_4", - "type": "visualization" - }, - { - "id": "da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf", - "name": "panel_5", - "type": "visualization" - }, - { - "id": "da2110c0-bcea-11e9-b6a2-c9b4015c4baf", - "name": "panel_6", - "type": "visualization" - }, - { - "id": "abf96c10-bcea-11e9-b6a2-c9b4015c4baf", - "name": "panel_7", - "type": "visualization" - }, - { - "id": "4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf", - "name": "panel_8", - "type": "visualization" - }, - { - "id": "7e178c80-fee1-11e9-8405-516218e3d268", - "name": "panel_9", - "type": "search" - }, - { - "id": "324686c0-fefb-11e9-8405-516218e3d268", - "name": "panel_10", - "type": "search" - }, - { - "id": "97c70300-ff1c-11e9-8405-516218e3d268", - "name": "panel_11", - "type": "visualization" - }, - { - "id": "bf45dc50-ff1a-11e9-8405-516218e3d268", - "name": "panel_12", - "type": "visualization" - }, - { - "id": "7322f9f0-ff1c-11e9-8405-516218e3d268", - "name": "panel_13", - "type": "visualization" - }, - { - "id": "d3a5fec0-ff18-11e9-8405-516218e3d268", - "name": "panel_14", - "type": "visualization" - }, - { - "id": "1b6725f0-ff1d-11e9-8405-516218e3d268", - "name": "panel_15", - "type": "visualization" - }, - { - "id": "60301890-ff1d-11e9-8405-516218e3d268", - "name": "panel_16", - "type": "visualization" - }, - { - "id": "9dd22440-ff1d-11e9-8405-516218e3d268", - "name": "panel_17", - "type": "visualization" - }, - { - "id": "c9d959f0-ff1d-11e9-8405-516218e3d268", - "name": "panel_18", - "type": "visualization" - }, - { - "id": "1f271bc0-231a-11ea-8405-516218e3d268", - "name": "panel_19", - "type": "visualization" - }, - { - "id": "fa876300-231a-11ea-8405-516218e3d268", - "name": "panel_20", - "type": "visualization" - }, - { - "id": "a3c3f350-9b6d-11ea-87e4-49f31ec44891", - "name": "panel_21", - "type": "visualization" - }, - { - "id": "26877510-9b72-11ea-87e4-49f31ec44891", - "name": "panel_22", - "type": "visualization" - }, - { - "id": "117f5a30-9b71-11ea-87e4-49f31ec44891", - "name": "panel_23", - "type": "visualization" - }, - { - "id": "5c9ee410-9b74-11ea-87e4-49f31ec44891", - "name": "panel_24", - "type": "visualization" - }, - { - "id": "aa31c9d0-9b75-11ea-87e4-49f31ec44891", - "name": "panel_25", - "type": "visualization" - }, - { - "id": "caf4d2b0-9b76-11ea-87e4-49f31ec44891", - "name": "panel_26", - "type": "visualization" - } - ], - "type": "dashboard", - "updated_at": "2020-06-04T16:26:24.183Z", - "version": "WzU4LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "User Management Events - Description [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 10, - "markdown": "# **User Management Events**\n\n#### This dashboard shows information about User Management Events collected by winlogbeat\n", - "openLinksInNewTab": false - }, - "title": "User Management Events - Description [Winlogbeat Security]", - "type": "markdown" - } - }, - "id": "2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "Wzg3LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4720" - }, - "type": "phrase", - "value": "4720" - }, - "query": { - "match": { - "event.code": { - "query": "4720", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Created - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Created User", - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performer LogonID", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Created - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "Wzg4LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4722" - }, - "type": "phrase", - "value": "4722" - }, - "query": { - "match": { - "event.code": { - "query": "4722", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Enabled - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Enabled User", - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performer LogonId", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Enabled - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "Wzg5LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4725" - }, - "type": "phrase", - "value": "4725" - }, - "query": { - "match": { - "event.code": { - "query": "4725", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Disabled - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Disabled User", - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performer LogonId", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Disabled - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "8f20c950-bcd4-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzkwLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4726" - }, - "type": "phrase", - "value": "4726" - }, - "query": { - "match": { - "event.code": { - "query": "4726", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Deleted - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Deleted User", - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performed LogonId", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Deleted - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzkxLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4723", - "4724" - ], - "type": "phrases", - "value": "4723, 4724" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4723" - } - }, - { - "match_phrase": { - "event.code": "4724" - } - } - ] - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Password Changes - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Password Change to", - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performer LogonId", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Password Changes - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzkyLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4767" - }, - "type": "phrase", - "value": "4767" - }, - "query": { - "match": { - "event.code": { - "query": "4767", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Unlocked Users - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Unlocked User", - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performer Logonid", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Unlocked Users - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "da2110c0-bcea-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "Wzk4LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4738" - }, - "type": "phrase", - "value": "4738" - }, - "query": { - "match": { - "event.code": { - "query": "4738", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Changes Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Changed User", - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performer LogonId", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Changes Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "abf96c10-bcea-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "Wzk5LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4740" - }, - "type": "phrase", - "value": "4740" - }, - "query": { - "match": { - "event.code": { - "query": "4740", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Locked Out - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Locked User", - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performer LogonId", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Locked Out - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzEwMywxXQ==" - }, - { - "attributes": { - "columns": [ - "user.name", - "source.domain", - "source.ip", - "winlog.logon.id", - "winlog.logon.type" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4624" - ], - "type": "phrases", - "value": "4624" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4624" - } - } - ] - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "Logon Details [Winlogbeat Security]", - "version": 1 - }, - "id": "7e178c80-fee1-11e9-8405-516218e3d268", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-06-04T16:26:27.206Z", - "version": "WzE0MywxXQ==" - }, - { - "attributes": { - "columns": [ - "event.action", - "winlog.event_data.TargetUserName", - "user.domain", - "user.name", - "winlog.event_data.SubjectDomainName", - "winlog.logon.id", - "related.user" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": [ - "4720", - "4722", - "4723", - "4724", - "4725", - "4726", - "4738", - "4740", - "4767", - "4781", - "4798" - ], - "type": "phrases", - "value": "4720, 4722, 4723, 4724, 4725, 4726, 4738, 4740, 4767, 4781, 4798" - }, - "query": { - "bool": { - "minimum_should_match": 1, - "should": [ - { - "match_phrase": { - "event.code": "4720" - } - }, - { - "match_phrase": { - "event.code": "4722" - } - }, - { - "match_phrase": { - "event.code": "4723" - } - }, - { - "match_phrase": { - "event.code": "4724" - } - }, - { - "match_phrase": { - "event.code": "4725" - } - }, - { - "match_phrase": { - "event.code": "4726" - } - }, - { - "match_phrase": { - "event.code": "4738" - } - }, - { - "match_phrase": { - "event.code": "4740" - } - }, - { - "match_phrase": { - "event.code": "4767" - } - }, - { - "match_phrase": { - "event.code": "4781" - } - }, - { - "match_phrase": { - "event.code": "4798" - } - } - ] - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "lucene", - "query": "" - }, - "version": true - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "title": "User management Details - Search [Winlogbeat Security]", - "version": 1 - }, - "id": "324686c0-fefb-11e9-8405-516218e3d268", - "migrationVersion": { - "search": "7.4.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzEwNSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Users Disabled - TSVB Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(204,204,204,1)", - "id": "8d597960-ff18-11e9-8249-2371c695f3b0", - "operator": "lte", - "value": 0 - }, - { - "background_color": "rgba(79,147,150,1)", - "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", - "operator": "gte", - "value": 1 - } - ], - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "event.code: \"4725\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "90d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Users Disabled", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Users Disabled - TSVB Metric [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "97c70300-ff1c-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:24.183Z", - "version": "WzcwLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Users Enabled - TSVB Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(204,204,204,1)", - "id": "8d597960-ff18-11e9-8249-2371c695f3b0", - "operator": "lte", - "value": 0 - }, - { - "background_color": "rgba(203,142,136,1)", - "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", - "operator": "gte", - "value": 1 - } - ], - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "event.code: \"4722\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "90d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Users Enabled", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Users Enabled - TSVB Metric [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "bf45dc50-ff1a-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:24.183Z", - "version": "WzcxLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Users Deleted - TSVB Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(204,204,204,1)", - "id": "8d597960-ff18-11e9-8249-2371c695f3b0", - "operator": "lte", - "value": 0 - }, - { - "background_color": "rgba(228,155,75,1)", - "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", - "operator": "gte", - "value": 1 - } - ], - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "event.code: \"4726\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "90d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Users Deleted", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Users Deleted - TSVB Metric [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "7322f9f0-ff1c-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:24.183Z", - "version": "WzcyLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Users Created - TSVB Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(204,204,204,1)", - "id": "8d597960-ff18-11e9-8249-2371c695f3b0", - "operator": "lte", - "value": 0 - }, - { - "background_color": "rgba(181,99,93,1)", - "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", - "operator": "gte", - "value": 1 - } - ], - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "event.code: \"4720\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "90d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Users Created", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Users Created - TSVB Metric [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "d3a5fec0-ff18-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:24.183Z", - "version": "WzczLDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Users Unlocks - TSVB Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(204,204,204,1)", - "id": "8d597960-ff18-11e9-8249-2371c695f3b0", - "operator": "lte", - "value": 0 - }, - { - "background_color": "rgba(116,167,167,1)", - "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", - "operator": "gte", - "value": 1 - } - ], - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "event.code: \"4767\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "90d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Users Unlocks", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Users Unlocks - TSVB Metric [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "1b6725f0-ff1d-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:24.183Z", - "version": "Wzc0LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Users Password Changes - TSVB Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(204,204,204,1)", - "id": "8d597960-ff18-11e9-8249-2371c695f3b0", - "operator": "lte", - "value": 0 - }, - { - "background_color": "rgba(154,196,198,1)", - "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", - "operator": "gte", - "value": 1 - } - ], - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "event.code: \"4723\" OR event.code: \"4724\"" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "90d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Password Changes/Reset", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Users Password Changes - TSVB Metric [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "60301890-ff1d-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:24.183Z", - "version": "Wzc1LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Users locked Out - TSVB Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(204,204,204,1)", - "id": "8d597960-ff18-11e9-8249-2371c695f3b0", - "operator": "lte", - "value": 0 - }, - { - "background_color": "rgba(102,102,102,1)", - "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", - "operator": "gte", - "value": 1 - } - ], - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "event.code: \"4740\"" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "90d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Users Locked Out", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Users locked Out - TSVB Metric [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "9dd22440-ff1d-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:24.183Z", - "version": "Wzc2LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Users Changes TS VB Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(204,204,204,1)", - "id": "8d597960-ff18-11e9-8249-2371c695f3b0", - "operator": "lte", - "value": 0 - }, - { - "background_color": "rgba(221,186,64,1)", - "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", - "operator": "gte", - "value": 1 - } - ], - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "event.code: \"4738\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "90d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Users Changes", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Users Changes TS VB Metric [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "c9d959f0-ff1d-11e9-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:24.183Z", - "version": "Wzc3LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "lucene", - "query": "" - } - } - }, - "title": "Users Renamed TSVB Metric [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "background_color_rules": [ - { - "background_color": "rgba(204,204,204,1)", - "id": "8d597960-ff18-11e9-8249-2371c695f3b0", - "operator": "lte", - "value": 0 - }, - { - "background_color": "rgba(110,139,162,1)", - "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", - "operator": "gte", - "value": 1 - } - ], - "default_index_pattern": "packetbeat-*", - "default_timefield": "@timestamp", - "drop_last_bucket": 0, - "filter": { - "language": "kuery", - "query": "event.code: \"4781\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "winlogbeat-*", - "interval": "90d", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Users Renamed", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 1, - "time_field": "@timestamp", - "time_range_mode": "entire_time_range", - "type": "metric" - }, - "title": "Users Renamed TSVB Metric [Winlogbeat Security]", - "type": "metrics" - } - }, - "id": "1f271bc0-231a-11ea-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:26:24.183Z", - "version": "Wzc4LDFd" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "event.code", - "negate": false, - "params": { - "query": "4781" - }, - "type": "phrase", - "value": "4781" - }, - "query": { - "match": { - "event.code": { - "query": "4781", - "type": "phrase" - } - } - } - } - ], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Users Renamed - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Old User Name", - "field": "winlog.event_data.OldTargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 100 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Performed by", - "field": "winlog.event_data.SubjectUserName", - "missingBucket": true, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Performer LogonId", - "field": "winlog.logon.id", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "dimensions": { - "buckets": [ - { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - }, - { - "accessor": 2, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} - } - ], - "metrics": [ - { - "accessor": 3, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "perPage": 10, - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "Users Renamed - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "fa876300-231a-11ea-8405-516218e3d268", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "winlogbeat-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzEwNywxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "title": "Dashboard links [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [], - "params": { - "fontSize": 12, - "markdown": "[Winlogbeat Overview](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/bae11b00-9bfc-11ea-87e4-49f31ec44891) | [Logon Failed and Account Lockout](#/dashboard/d401ef40-a7d5-11e9-a422-d144027429da) | [User Management Events](#/dashboard/71f720f0-ff18-11e9-8405-516218e3d268) | [Group Management Events](#/dashboard/bb858830-f412-11e9-8405-516218e3d268)", - "openLinksInNewTab": false - }, - "title": "Dashboard links [Winlogbeat Security]", - "type": "markdown" - } - }, - "id": "a3c3f350-9b6d-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [], - "type": "visualization", - "updated_at": "2020-06-04T16:49:11.152Z", - "version": "WzI1MCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "User Management Actions [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "isDonut": false, - "labels": { - "last_level": true, - "show": false, - "truncate": 100, - "values": true - }, - "legendPosition": "right", - "type": "pie" - }, - "title": "User Management Actions [Winlogbeat Security]", - "type": "pie" - } - }, - "id": "26877510-9b72-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "324686c0-fefb-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzEwOSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Target Users [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "params": { - "maxFontSize": 72, - "minFontSize": 18, - "orientation": "single", - "scale": "linear", - "showLabel": false - }, - "title": "Target Users [Winlogbeat Security]", - "type": "tagcloud" - } - }, - "id": "117f5a30-9b71-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "324686c0-fefb-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzExMSwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "User Event Actions - Table [Winlogbeat Security]", - "uiStateJSON": { - "vis": { - "params": { - "sort": { - "columnIndex": null, - "direction": null - } - } - } - }, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "event.action", - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 25 - }, - "schema": "bucket", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "event.code", - "field": "event.code", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 5 - }, - "schema": "bucket", - "type": "terms" - } - ], - "params": { - "perPage": 10, - "percentageCol": "", - "showMetricsAtAllLevels": false, - "showPartialRows": false, - "showTotal": false, - "sort": { - "columnIndex": null, - "direction": null - }, - "totalFunc": "sum" - }, - "title": "User Event Actions - Table [Winlogbeat Security]", - "type": "table" - } - }, - "id": "5c9ee410-9b74-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "324686c0-fefb-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzExMCwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "User Management Events - Affected Users vs Actions - Heatmap [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Target User", - "field": "winlog.event_data.TargetUserName", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 20 - }, - "schema": "segment", - "type": "terms" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTooltip": true, - "colorSchema": "Blues", - "colorsNumber": 4, - "colorsRange": [], - "enableHover": false, - "invertColors": false, - "legendPosition": "right", - "percentageMode": false, - "setColorRange": false, - "times": [], - "type": "heatmap", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "color": "black", - "overwriteColor": false, - "rotate": 0, - "show": true - }, - "scale": { - "defaultYExtents": false, - "type": "linear" - }, - "show": false, - "type": "value" - } - ] - }, - "title": "User Management Events - Affected Users vs Actions - Heatmap [Winlogbeat Security]", - "type": "heatmap" - } - }, - "id": "aa31c9d0-9b75-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "324686c0-fefb-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzExMiwxXQ==" - }, - { - "attributes": { - "description": "", - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "savedSearchRefName": "search_0", - "title": "Event Distribution in time [Winlogbeat Security]", - "uiStateJSON": {}, - "version": 1, - "visState": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "drop_partials": false, - "extended_bounds": {}, - "field": "@timestamp", - "interval": "auto", - "min_doc_count": 1, - "scaleMetricValues": false, - "timeRange": { - "from": "now-7d", - "to": "now" - }, - "useNormalizedEsInterval": true - }, - "schema": "segment", - "type": "date_histogram" - }, - { - "enabled": true, - "id": "3", - "params": { - "field": "event.action", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "group", - "type": "terms" - } - ], - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": true, - "show": true, - "truncate": 100 - }, - "position": "bottom", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "grid": { - "categoryLines": false - }, - "labels": { - "show": false - }, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1" - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "left", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ] - }, - "title": "Event Distribution in time [Winlogbeat Security]", - "type": "histogram" - } - }, - "id": "caf4d2b0-9b76-11ea-87e4-49f31ec44891", - "migrationVersion": { - "visualization": "7.7.0" - }, - "references": [ - { - "id": "324686c0-fefb-11e9-8405-516218e3d268", - "name": "search_0", - "type": "search" - } - ], - "type": "visualization", - "updated_at": "2020-06-04T16:26:25.228Z", - "version": "WzExMywxXQ==" - } - ], - "version": "7.7.0" -} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management.ndjson b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management.ndjson new file mode 100644 index 00000000000..31a875d156a --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management.ndjson @@ -0,0 +1,28 @@ +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"User Management Events - Description [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"# **User Management Events**\\n\\n#### This dashboard shows information about User Management Events collected by winlogbeat\\n\",\"openLinksInNewTab\":false},\"title\":\"User Management Events - Description [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMDgsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4720\"}, \"type\": \"phrase\", \"value\": \"4720\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4720\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Created - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Created User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Created - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMDksMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4722\"}, \"type\": \"phrase\", \"value\": \"4722\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4722\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Enabled - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Enabled User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Enabled - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTAsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4725\"}, \"type\": \"phrase\", \"value\": \"4725\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4725\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Disabled - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Disabled User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Disabled - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"8f20c950-bcd4-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTEsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4726\"}, \"type\": \"phrase\", \"value\": \"4726\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4726\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Deleted - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Deleted User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performed LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Deleted - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTIsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4723\", \"4724\"], \"type\": \"phrases\", \"value\": \"4723, 4724\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4723\"}}, {\"match_phrase\": {\"event.code\": \"4724\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Password Changes - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Password Change to\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Password Changes - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTMsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4767\"}, \"type\": \"phrase\", \"value\": \"4767\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4767\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Unlocked Users - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Unlocked User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer Logonid\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Unlocked Users - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"da2110c0-bcea-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTQsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4738\"}, \"type\": \"phrase\", \"value\": \"4738\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4738\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Changes Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Changed User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Changes Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"abf96c10-bcea-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTUsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4740\"}, \"type\": \"phrase\", \"value\": \"4740\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4740\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Locked Out - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Locked User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Locked Out - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTYsMl0="} +{"attributes":{"columns":["user.name","source.domain","source.ip","winlog.logon.id","winlog.logon.type"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4624\"], \"type\": \"phrases\", \"value\": \"4624\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4624\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Logon Details [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"7e178c80-fee1-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTcsMl0="} +{"attributes":{"columns":["event.action","winlog.event_data.TargetUserName","user.domain","user.name","winlog.event_data.SubjectDomainName","winlog.logon.id","related.user"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4720\", \"4722\", \"4723\", \"4724\", \"4725\", \"4726\", \"4738\", \"4740\", \"4767\", \"4781\", \"4798\"], \"type\": \"phrases\", \"value\": \"4720, 4722, 4723, 4724, 4725, 4726, 4738, 4740, 4767, 4781, 4798\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4720\"}}, {\"match_phrase\": {\"event.code\": \"4722\"}}, {\"match_phrase\": {\"event.code\": \"4723\"}}, {\"match_phrase\": {\"event.code\": \"4724\"}}, {\"match_phrase\": {\"event.code\": \"4725\"}}, {\"match_phrase\": {\"event.code\": \"4726\"}}, {\"match_phrase\": {\"event.code\": \"4738\"}}, {\"match_phrase\": {\"event.code\": \"4740\"}}, {\"match_phrase\": {\"event.code\": \"4767\"}}, {\"match_phrase\": {\"event.code\": \"4781\"}}, {\"match_phrase\": {\"event.code\": \"4798\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"User management Details - Search [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"324686c0-fefb-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTgsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Disabled - TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(79,147,150,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"640db356-7495-4973-be74-089c19405d78\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4725\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Disabled\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Disabled - TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"97c70300-ff1c-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTksMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Enabled - TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(203,142,136,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"769ee004-5239-4a92-9d0b-626e2729ef80\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4722\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Enabled\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Enabled - TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"bf45dc50-ff1a-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjAsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Deleted - TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(228,155,75,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"ca03a640-84d1-4a48-8c91-d5522ea218fb\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4726\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Deleted\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Deleted - TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"7322f9f0-ff1c-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjEsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Created - TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(181,99,93,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"89ac7d8a-cc76-4e8a-9fcf-1bb9f33da0cc\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4720\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Created\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Created - TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"d3a5fec0-ff18-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjIsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Unlocks - TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(116,167,167,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"4d4b1d66-124d-4a42-98c7-877c32f4c3b0\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4767\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Unlocks\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Unlocks - TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"1b6725f0-ff1d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjMsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Password Changes - TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(154,196,198,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"d0af4621-9672-49a2-b335-a587c2b96bbb\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4723\\\" OR event.code: \\\"4724\\\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Password Changes/Reset\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Password Changes - TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"60301890-ff1d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjQsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users locked Out - TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(102,102,102,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"466c06c9-6d85-4c50-98df-a17fe4320b7f\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4740\\\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Locked Out\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users locked Out - TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"9dd22440-ff1d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjUsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Changes TS VB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(221,186,64,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"bd34b042-f527-4b44-8d56-16e4f1610cd0\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4738\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Changes\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Changes TS VB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"c9d959f0-ff1d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjYsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Renamed TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(110,139,162,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"0e0cf738-625b-43f8-9a33-8c1eda49953a\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4781\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Renamed\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Renamed TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"1f271bc0-231a-11ea-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjcsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4781\"}, \"type\": \"phrase\", \"value\": \"4781\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4781\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Renamed - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Old User Name\",\"field\":\"winlog.event_data.OldTargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Renamed - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"fa876300-231a-11ea-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjgsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboard links [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Winlogbeat Overview](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/bae11b00-9bfc-11ea-87e4-49f31ec44891) | [Logon Failed and Account Lockout](#/dashboard/d401ef40-a7d5-11e9-a422-d144027429da) | [User Management Events](#/dashboard/71f720f0-ff18-11e9-8405-516218e3d268) | [Group Management Events](#/dashboard/bb858830-f412-11e9-8405-516218e3d268)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard links [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"a3c3f350-9b6d-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjksMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"User Management Actions [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"User Management Actions [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"26877510-9b72-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzAsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Target Users [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Target Users [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"117f5a30-9b71-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzEsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"User Event Actions - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"event.action\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"event.code\",\"field\":\"event.code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"User Event Actions - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"5c9ee410-9b74-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzIsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"User Management Events - Affected Users vs Actions - Heatmap [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Target User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Blues\",\"colorsNumber\":4,\"colorsRange\":[],\"enableHover\":false,\"invertColors\":false,\"legendPosition\":\"right\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"black\",\"overwriteColor\":false,\"rotate\":0,\"show\":true},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"User Management Events - Affected Users vs Actions - Heatmap [Winlogbeat Security]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"7.14.0","id":"aa31c9d0-9b75-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzMsMl0="} +{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Event Distribution in time [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-7d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Event Distribution in time [Winlogbeat Security]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"7.14.0","id":"caf4d2b0-9b76-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzQsMl0="} +{"attributes":{"description":"User management activity.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"1\",\"w\":17,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"3\",\"w\":9,\"x\":0,\"y\":56},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Created Users [Winlogbeat Security]\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"5\",\"w\":9,\"x\":9,\"y\":56},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Enabled Users [Winlogbeat Security]\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"6\",\"w\":9,\"x\":0,\"y\":79},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Disabled Users [Winlogbeat Security]\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"7\",\"w\":9,\"x\":18,\"y\":56},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Deleted Users [Winlogbeat Security]\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"9\",\"w\":9,\"x\":18,\"y\":79},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Passwords Changes [Winlogbeat Security]\",\"panelRefName\":\"panel_9\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"15\",\"w\":9,\"x\":9,\"y\":79},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Unlocked Users [Winlogbeat Security]\",\"panelRefName\":\"panel_15\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"16\",\"w\":9,\"x\":18,\"y\":102},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Users Changes [Winlogbeat Security]\",\"panelRefName\":\"panel_16\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"20\",\"w\":9,\"x\":0,\"y\":102},\"panelIndex\":\"20\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Locked-out Users [Winlogbeat Security]\",\"panelRefName\":\"panel_20\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":46,\"i\":\"22\",\"w\":21,\"x\":27,\"y\":72},\"panelIndex\":\"22\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_22\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":19,\"i\":\"23\",\"w\":48,\"x\":0,\"y\":118},\"panelIndex\":\"23\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_23\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"24\",\"w\":9,\"x\":0,\"y\":72},\"panelIndex\":\"24\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_24\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"25\",\"w\":9,\"x\":9,\"y\":49},\"panelIndex\":\"25\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_25\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"26\",\"w\":9,\"x\":18,\"y\":49},\"panelIndex\":\"26\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_26\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"27\",\"w\":9,\"x\":0,\"y\":49},\"panelIndex\":\"27\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_27\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"28\",\"w\":9,\"x\":9,\"y\":72},\"panelIndex\":\"28\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_28\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"29\",\"w\":9,\"x\":18,\"y\":72},\"panelIndex\":\"29\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_29\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"30\",\"w\":9,\"x\":0,\"y\":95},\"panelIndex\":\"30\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_30\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"31\",\"w\":9,\"x\":18,\"y\":95},\"panelIndex\":\"31\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_31\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"32\",\"w\":9,\"x\":9,\"y\":95},\"panelIndex\":\"32\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_32\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"33\",\"w\":9,\"x\":9,\"y\":102},\"panelIndex\":\"33\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_33\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"cf0adfac-7cf2-479d-8ddb-1edeee62d37c\",\"w\":31,\"x\":17,\"y\":0},\"panelIndex\":\"cf0adfac-7cf2-479d-8ddb-1edeee62d37c\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_cf0adfac-7cf2-479d-8ddb-1edeee62d37c\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"a2871661-98a8-489b-b615-e66ebe3b971a\",\"w\":17,\"x\":0,\"y\":8},\"panelIndex\":\"a2871661-98a8-489b-b615-e66ebe3b971a\",\"embeddableConfig\":{\"colors\":{\"added-user-account\":\"#447EBC\",\"deleted-user-account\":\"#82B5D8\",\"disabled-user-account\":\"#82B5D8\",\"enabled-user-account\":\"#0A50A1\",\"modified-user-account\":\"#2F575E\",\"renamed-user-account\":\"#1F78C1\",\"reset-password\":\"#5195CE\"},\"vis\":{\"colors\":{\"added-user-account\":\"#447EBC\",\"deleted-user-account\":\"#82B5D8\",\"disabled-user-account\":\"#82B5D8\",\"enabled-user-account\":\"#0A50A1\",\"modified-user-account\":\"#2F575E\",\"renamed-user-account\":\"#1F78C1\",\"reset-password\":\"#5195CE\",\"unlocked-user-account\":\"#64B0C8\"}},\"enhancements\":{}},\"panelRefName\":\"panel_a2871661-98a8-489b-b615-e66ebe3b971a\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"e80fae4a-6087-41e1-b4b9-31802cb1e4bf\",\"w\":18,\"x\":30,\"y\":8},\"panelIndex\":\"e80fae4a-6087-41e1-b4b9-31802cb1e4bf\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_e80fae4a-6087-41e1-b4b9-31802cb1e4bf\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"dd3e12e6-0d3c-448e-b0c4-91f7dc8742b6\",\"w\":13,\"x\":17,\"y\":8},\"panelIndex\":\"dd3e12e6-0d3c-448e-b0c4-91f7dc8742b6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_dd3e12e6-0d3c-448e-b0c4-91f7dc8742b6\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":25,\"i\":\"29f54335-78db-4c49-a3e0-a641fd0099f6\",\"w\":48,\"x\":0,\"y\":24},\"panelIndex\":\"29f54335-78db-4c49-a3e0-a641fd0099f6\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"title\":\"Actions performed over Users [Winlogbeat Security]\",\"panelRefName\":\"panel_29f54335-78db-4c49-a3e0-a641fd0099f6\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":23,\"i\":\"1ec8b993-9ac1-4c7f-b7f7-5136f2e310aa\",\"w\":21,\"x\":27,\"y\":49},\"panelIndex\":\"1ec8b993-9ac1-4c7f-b7f7-5136f2e310aa\",\"embeddableConfig\":{\"colors\":{\"added-user-account\":\"#0A437C\",\"deleted-user-account\":\"#5195CE\",\"enabled-user-account\":\"#0A50A1\",\"modified-user-account\":\"#052B51\",\"renamed-user-account\":\"#1F78C1\",\"reset-password\":\"#5195CE\"},\"vis\":{\"colors\":{\"added-user-account\":\"#0A437C\",\"deleted-user-account\":\"#5195CE\",\"disabled-user-account\":\"#82B5D8\",\"enabled-user-account\":\"#0A50A1\",\"modified-user-account\":\"#052B51\",\"renamed-user-account\":\"#1F78C1\",\"reset-password\":\"#5195CE\"}},\"enhancements\":{}},\"panelRefName\":\"panel_1ec8b993-9ac1-4c7f-b7f7-5136f2e310aa\"}]","timeRestore":false,"title":"[Winlogbeat Security] User Management Events","version":1},"coreMigrationVersion":"7.14.0","id":"71f720f0-ff18-11e9-8405-516218e3d268","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf","name":"1:panel_1","type":"visualization"},{"id":"5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf","name":"3:panel_3","type":"visualization"},{"id":"0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf","name":"5:panel_5","type":"visualization"},{"id":"8f20c950-bcd4-11e9-b6a2-c9b4015c4baf","name":"6:panel_6","type":"visualization"},{"id":"ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf","name":"7:panel_7","type":"visualization"},{"id":"da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf","name":"9:panel_9","type":"visualization"},{"id":"da2110c0-bcea-11e9-b6a2-c9b4015c4baf","name":"15:panel_15","type":"visualization"},{"id":"abf96c10-bcea-11e9-b6a2-c9b4015c4baf","name":"16:panel_16","type":"visualization"},{"id":"4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf","name":"20:panel_20","type":"visualization"},{"id":"7e178c80-fee1-11e9-8405-516218e3d268","name":"22:panel_22","type":"search"},{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"23:panel_23","type":"search"},{"id":"97c70300-ff1c-11e9-8405-516218e3d268","name":"24:panel_24","type":"visualization"},{"id":"bf45dc50-ff1a-11e9-8405-516218e3d268","name":"25:panel_25","type":"visualization"},{"id":"7322f9f0-ff1c-11e9-8405-516218e3d268","name":"26:panel_26","type":"visualization"},{"id":"d3a5fec0-ff18-11e9-8405-516218e3d268","name":"27:panel_27","type":"visualization"},{"id":"1b6725f0-ff1d-11e9-8405-516218e3d268","name":"28:panel_28","type":"visualization"},{"id":"60301890-ff1d-11e9-8405-516218e3d268","name":"29:panel_29","type":"visualization"},{"id":"9dd22440-ff1d-11e9-8405-516218e3d268","name":"30:panel_30","type":"visualization"},{"id":"c9d959f0-ff1d-11e9-8405-516218e3d268","name":"31:panel_31","type":"visualization"},{"id":"1f271bc0-231a-11ea-8405-516218e3d268","name":"32:panel_32","type":"visualization"},{"id":"fa876300-231a-11ea-8405-516218e3d268","name":"33:panel_33","type":"visualization"},{"id":"a3c3f350-9b6d-11ea-87e4-49f31ec44891","name":"cf0adfac-7cf2-479d-8ddb-1edeee62d37c:panel_cf0adfac-7cf2-479d-8ddb-1edeee62d37c","type":"visualization"},{"id":"26877510-9b72-11ea-87e4-49f31ec44891","name":"a2871661-98a8-489b-b615-e66ebe3b971a:panel_a2871661-98a8-489b-b615-e66ebe3b971a","type":"visualization"},{"id":"117f5a30-9b71-11ea-87e4-49f31ec44891","name":"e80fae4a-6087-41e1-b4b9-31802cb1e4bf:panel_e80fae4a-6087-41e1-b4b9-31802cb1e4bf","type":"visualization"},{"id":"5c9ee410-9b74-11ea-87e4-49f31ec44891","name":"dd3e12e6-0d3c-448e-b0c4-91f7dc8742b6:panel_dd3e12e6-0d3c-448e-b0c4-91f7dc8742b6","type":"visualization"},{"id":"aa31c9d0-9b75-11ea-87e4-49f31ec44891","name":"29f54335-78db-4c49-a3e0-a641fd0099f6:panel_29f54335-78db-4c49-a3e0-a641fd0099f6","type":"visualization"},{"id":"caf4d2b0-9b76-11ea-87e4-49f31ec44891","name":"1ec8b993-9ac1-4c7f-b7f7-5136f2e310aa:panel_1ec8b993-9ac1-4c7f-b7f7-5136f2e310aa","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMDcsMl0="}